Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/RxPqbJAfP3BGoulKU1w7r82TnBg.roa
File: RxPqbJAfP3BGoulKU1w7r82TnBg.roa (raw, json)
Hash identifier: jjWxCyTePT2mM7trRv0BdQYVXus8YGgLUUbktglkMt8=
Subject key identifier: 47:13:EA:6C:90:1F:3F:70:46:A2:E9:4A:53:5C:3B:AF:CD:93:9C:18
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 0183E63C9006AF8E2F5CD4D2522253445CB2
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/RxPqbJAfP3BGoulKU1w7r82TnBg.roa
Signing time: Mon 17 Oct 2022 13:57:52 +0000
ROA not before: Mon 17 Oct 2022 13:57:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.134.40.0/22 maxlen: 24
212.63.118.0/24 maxlen: 24
212.63.117.0/24 maxlen: 24
212.63.116.0/24 maxlen: 24
212.63.116.0/22 maxlen: 24
212.63.121.0/24 maxlen: 24
212.63.119.0/24 maxlen: 24
212.63.123.0/24 maxlen: 24
212.63.122.0/24 maxlen: 24
185.83.104.0/22 maxlen: 24
45.144.12.0/22 maxlen: 24
188.208.20.0/22 maxlen: 24
193.32.236.0/22 maxlen: 24
45.90.52.0/22 maxlen: 24
185.94.48.0/22 maxlen: 24
91.245.200.0/21 maxlen: 24
185.93.232.0/22 maxlen: 24
185.131.12.0/22 maxlen: 22
93.92.224.0/22 maxlen: 24
85.217.132.0/24 maxlen: 24
85.217.129.0/24 maxlen: 24
85.217.139.0/24 maxlen: 24
85.217.138.0/24 maxlen: 24
85.217.137.0/24 maxlen: 24
85.217.136.0/24 maxlen: 24
85.217.135.0/24 maxlen: 24
85.217.134.0/24 maxlen: 24
85.217.133.0/24 maxlen: 24
85.217.141.0/24 maxlen: 24
85.217.143.0/24 maxlen: 24
85.217.142.0/24 maxlen: 24
85.217.152.0/24 maxlen: 24
85.217.151.0/24 maxlen: 24
85.217.150.0/24 maxlen: 24
85.217.147.0/24 maxlen: 24
85.217.146.0/24 maxlen: 24
85.217.155.0/24 maxlen: 24
85.217.154.0/24 maxlen: 24
85.217.153.0/24 maxlen: 24
85.217.159.0/24 maxlen: 24
85.217.158.0/24 maxlen: 24
85.217.157.0/24 maxlen: 24
85.217.156.0/24 maxlen: 24
185.130.24.0/23 maxlen: 24
194.49.0.0/22 maxlen: 24
185.130.26.0/23 maxlen: 24
188.241.96.0/21 maxlen: 24
45.157.56.0/22 maxlen: 24
185.234.184.0/24 maxlen: 24
185.234.186.0/23 maxlen: 23
185.234.185.0/24 maxlen: 24
185.44.233.0/24 maxlen: 24
185.44.234.0/23 maxlen: 24
185.176.84.0/22 maxlen: 24
185.210.16.0/22 maxlen: 24
79.142.184.0/22 maxlen: 24
185.51.108.0/22 maxlen: 24
185.162.172.0/23 maxlen: 24
185.162.175.0/24 maxlen: 24
185.162.174.0/24 maxlen: 24
195.82.105.0/24 maxlen: 24
195.82.104.0/24 maxlen: 24
195.82.106.0/24 maxlen: 24
195.82.124.0/24 maxlen: 24
185.216.216.0/22 maxlen: 22
185.216.218.0/23 maxlen: 23
185.216.217.0/24 maxlen: 24
139.28.76.0/22 maxlen: 22
185.196.203.0/24 maxlen: 24
185.196.202.0/24 maxlen: 24
185.196.200.0/23 maxlen: 24
5.226.16.0/20 maxlen: 24
91.242.144.0/22 maxlen: 24
85.117.244.0/22 maxlen: 24
185.202.188.0/22 maxlen: 24
88.98.98.0/24 maxlen: 24
88.98.96.0/20 maxlen: 24
88.98.96.0/23 maxlen: 23
88.98.104.0/23 maxlen: 24
88.98.100.0/22 maxlen: 24
88.98.99.0/24 maxlen: 24
88.98.111.0/24 maxlen: 24
88.98.110.0/24 maxlen: 24
88.98.108.0/23 maxlen: 24
88.98.108.0/22 maxlen: 24
88.98.106.0/23 maxlen: 24
88.98.112.0/20 maxlen: 24
141.98.52.0/22 maxlen: 24
2a06:8840::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e6:3c:90:06:af:8e:2f:5c:d4:d2:52:22:53:44:5c:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Oct 17 13:57:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4713ea6c901f3f7046a2e94a535c3bafcd939c18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:3b:8d:11:3f:84:82:18:34:f8:84:0b:83:ed:
b2:40:1e:9d:a4:e7:6d:6c:e5:d8:f3:6f:2e:b2:31:
ce:54:c5:b2:ed:f7:06:41:d1:57:9d:cc:9a:c6:88:
10:80:59:c5:b9:e9:07:36:50:06:8c:36:72:cb:bd:
fc:b2:2c:ed:69:b2:6f:bd:75:cf:f9:e8:f6:7b:69:
11:67:c5:30:bb:6b:7d:f4:61:46:d8:d7:d8:50:94:
00:5b:e8:15:b1:1a:e2:fb:81:1d:52:51:75:9f:f0:
6c:5c:4c:05:0a:ab:b5:89:f8:ff:f4:47:f2:34:0e:
40:c8:6e:27:78:a3:1d:70:ba:dc:0b:b4:0c:cd:f7:
42:72:06:3c:04:00:cf:4b:28:29:43:8e:1d:cb:e1:
83:cb:eb:58:55:fd:0d:7c:a5:96:44:b8:e6:8b:50:
95:08:e0:0d:d0:fc:af:8b:f7:6a:0b:cc:4d:df:d2:
77:59:1e:ec:63:70:3a:87:7c:7f:6e:15:63:2e:33:
47:7f:2b:ae:a5:81:3d:7c:7e:24:c5:31:25:dc:7a:
be:59:3f:09:44:ba:34:6b:f4:84:55:33:29:32:43:
a0:bc:35:03:48:31:da:59:44:c3:c1:22:6c:54:1c:
b2:33:51:49:f2:45:fb:38:01:78:63:96:71:4f:95:
e9:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:13:EA:6C:90:1F:3F:70:46:A2:E9:4A:53:5C:3B:AF:CD:93:9C:18
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/RxPqbJAfP3BGoulKU1w7r82TnBg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.16.0/20
45.90.52.0/22
45.144.12.0/22
45.157.56.0/22
79.142.184.0/22
85.117.244.0/22
85.217.129.0/24
85.217.132.0-85.217.139.255
85.217.141.0-85.217.143.255
85.217.146.0/23
85.217.150.0-85.217.159.255
88.98.96.0/19
91.242.144.0/22
91.245.200.0/21
93.92.224.0/22
139.28.76.0/22
141.98.52.0/22
185.44.233.0-185.44.235.255
185.51.108.0/22
185.83.104.0/22
185.93.232.0/22
185.94.48.0/22
185.130.24.0/22
185.131.12.0/22
185.134.40.0/22
185.162.172.0/22
185.176.84.0/22
185.196.200.0/22
185.202.188.0/22
185.210.16.0/22
185.216.216.0/22
185.234.184.0/22
188.208.20.0/22
188.241.96.0/21
193.32.236.0/22
194.49.0.0/22
195.82.104.0-195.82.106.255
195.82.124.0/24
212.63.116.0/22
212.63.121.0-212.63.123.255
IPv6:
2a06:8840::/29
Signature Algorithm: sha256WithRSAEncryption
15:a2:8f:66:f6:bd:72:06:50:4b:36:ec:f7:03:2b:7a:91:3b:
35:be:8b:75:c3:96:05:19:11:e5:61:9b:0a:fd:83:5d:ad:3a:
e5:86:79:7a:4a:0f:5c:84:ee:1a:ff:a7:b9:c5:ba:ad:6d:dd:
55:6e:63:d1:e5:de:b3:ed:32:6d:17:a3:61:d9:c7:43:ab:63:
8f:38:f5:72:83:30:df:fa:fd:db:9e:f9:bb:0d:df:ca:93:5c:
e7:8f:98:34:74:9a:a1:05:3d:4f:46:97:fd:d4:b8:84:c7:96:
13:43:1c:02:d4:67:23:24:aa:e6:e1:71:57:8b:cd:11:04:bf:
cc:8d:b0:2b:a8:71:a5:d5:15:13:14:7a:c2:be:0b:01:90:79:
55:40:a7:18:75:23:c7:58:3c:0f:13:0d:e3:4d:32:f4:b1:03:
28:98:7f:c6:4f:33:a2:83:8c:ac:71:08:2e:36:0f:f7:1c:67:
ef:66:2a:12:2b:ac:00:60:73:e3:a9:37:c1:34:90:1c:8b:24:
e5:ae:56:38:5f:ff:80:36:06:d4:78:aa:08:1c:6a:7c:b3:c1:
32:db:a3:7c:6a:ba:44:cf:91:f4:95:8d:d1:4a:8d:ac:30:1b:
26:ee:a9:e6:1f:71:df:35:e9:10:68:e7:a5:65:ef:ef:e9:71:
ff:5a:5f:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:36 2024 by rpki-client on console-fra.rpki-client.org