Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/OxVz5N3Hh5WsF_nHOwHMfL-0ycA.roa
File: OxVz5N3Hh5WsF_nHOwHMfL-0ycA.roa (raw, json)
Hash identifier: rDl7GEjrBjNBlwgsgTo/u6H2VsGfTWFn5KgHxrTw/vo=
Subject key identifier: 3B:15:73:E4:DD:C7:87:95:AC:17:F9:C7:3B:01:CC:7C:BF:B4:C9:C0
Certificate issuer: /CN=0170a169b6cd411022279e9ff997f134ff54ab1c
Certificate serial: 35F35CEB
Authority key identifier: 01:70:A1:69:B6:CD:41:10:22:27:9E:9F:F9:97:F1:34:FF:54:AB:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AXChabbNQRAiJ56f-ZfxNP9Uqxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/OxVz5N3Hh5WsF_nHOwHMfL-0ycA.roa
Signing time: Wed 09 Mar 2022 08:47:22 +0000
ROA not before: Wed 09 Mar 2022 08:47:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35699
IP address blocks: 45.145.244.0/22 maxlen: 24
62.56.192.0/20 maxlen: 24
216.147.96.0/20 maxlen: 24
87.236.180.0/22 maxlen: 24
45.230.12.0/22 maxlen: 24
91.126.32.0/19 maxlen: 24
91.126.64.0/19 maxlen: 24
185.239.36.0/22 maxlen: 24
147.161.64.0/18 maxlen: 24
91.126.16.0/20 maxlen: 24
45.151.224.0/22 maxlen: 24
91.126.160.0/19 maxlen: 24
74.126.176.0/20 maxlen: 24
143.131.192.0/18 maxlen: 24
110.93.8.0/22 maxlen: 24
185.203.208.0/22 maxlen: 24
91.126.96.0/19 maxlen: 24
86.111.60.0/22 maxlen: 24
64.190.114.0/23 maxlen: 24
91.126.128.0/19 maxlen: 24
135.129.224.0/20 maxlen: 24
98.96.184.0/21 maxlen: 24
103.202.232.0/22 maxlen: 24
45.130.132.0/22 maxlen: 24
91.126.192.0/19 maxlen: 24
45.133.138.0/23 maxlen: 24
147.136.252.0/23 maxlen: 24
91.126.224.0/19 maxlen: 24
91.126.232.0/21 maxlen: 24
173.243.32.0/20 maxlen: 24
2a00:1af4::/32 maxlen: 32
2a00:1af4:1000::/48 maxlen: 48
2a00:1af0::/29 maxlen: 29
2a00:1af4:1003::/48 maxlen: 48
2a00:1af1::/32 maxlen: 32
2a00:1af1::/36 maxlen: 36
2a00:1af2::/32 maxlen: 32
2a00:1af3::/32 maxlen: 32
2a00:1af0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 905141483 (0x35f35ceb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0170a169b6cd411022279e9ff997f134ff54ab1c
Validity
Not Before: Mar 9 08:47:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b1573e4ddc78795ac17f9c73b01cc7cbfb4c9c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b3:0e:b0:12:09:5a:24:da:aa:79:0b:ef:2c:
cc:b7:c8:26:bf:1b:5d:75:ae:82:eb:80:11:ef:d2:
10:ab:04:61:18:94:27:d7:76:38:33:06:1e:a5:83:
30:0d:66:29:9a:42:e5:cd:48:49:1d:85:00:ff:e6:
24:23:19:95:a3:c5:45:9c:47:82:b2:c2:32:66:00:
b6:07:2c:ca:9c:4b:3a:a2:1e:f6:dc:95:97:84:30:
03:60:7e:ae:7c:95:6d:e8:7e:31:50:ac:1b:d0:87:
18:58:f8:4a:65:d5:7f:29:46:e2:ad:7a:b2:ce:1b:
c9:f8:74:9f:82:b5:2c:48:a5:bf:99:43:83:4c:b3:
6d:e5:d8:36:34:d0:a3:f5:f0:38:81:77:f3:0d:8f:
c4:c2:b9:25:b4:c8:64:e1:da:4e:eb:65:cc:e9:35:
e9:d8:2f:0d:8b:8a:8c:1f:e7:ce:1e:ef:2d:2a:c2:
b2:85:18:cf:dc:12:c2:20:80:c1:1c:0e:b0:04:ec:
e7:4d:af:4d:8b:ee:c3:b8:fe:b4:c7:6f:06:86:5b:
21:4c:e0:43:af:b7:40:cd:24:8b:04:04:44:6d:4a:
1f:e5:e5:b5:b9:2a:49:28:da:16:ba:85:44:61:a7:
60:82:2d:99:ca:79:82:46:56:aa:0f:ec:83:85:de:
8d:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:15:73:E4:DD:C7:87:95:AC:17:F9:C7:3B:01:CC:7C:BF:B4:C9:C0
X509v3 Authority Key Identifier:
keyid:01:70:A1:69:B6:CD:41:10:22:27:9E:9F:F9:97:F1:34:FF:54:AB:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AXChabbNQRAiJ56f-ZfxNP9Uqxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/OxVz5N3Hh5WsF_nHOwHMfL-0ycA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/AXChabbNQRAiJ56f-ZfxNP9Uqxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.132.0/22
45.133.138.0/23
45.145.244.0/22
45.151.224.0/22
45.230.12.0/22
62.56.192.0/20
64.190.114.0/23
74.126.176.0/20
86.111.60.0/22
87.236.180.0/22
91.126.16.0-91.126.255.255
98.96.184.0/21
103.202.232.0/22
110.93.8.0/22
135.129.224.0/20
143.131.192.0/18
147.136.252.0/23
147.161.64.0/18
173.243.32.0/20
185.203.208.0/22
185.239.36.0/22
216.147.96.0/20
IPv6:
2a00:1af0::/29
Signature Algorithm: sha256WithRSAEncryption
12:22:78:fb:0c:fb:c5:9b:14:d4:c3:a6:13:77:23:b8:bf:5f:
57:e8:40:5f:98:12:40:27:24:ab:2f:f3:06:4d:36:5f:aa:ad:
72:34:ce:5b:7f:f2:5e:54:cd:36:23:b7:73:e7:db:c5:01:48:
93:15:cc:76:9c:f5:08:22:d0:8d:ce:78:96:b8:73:a8:4a:c1:
de:d6:ef:a7:35:91:29:be:33:36:ca:11:90:a9:54:8f:03:be:
85:87:47:52:e8:c0:b5:2f:32:20:86:6c:25:40:bf:f3:51:86:
99:cd:65:dd:58:f5:83:5b:17:f4:41:2f:b5:be:1a:90:6e:c8:
41:a0:ae:b0:43:a0:1f:80:70:68:97:4b:0e:c0:16:f5:bb:93:
06:5c:5e:5a:86:d7:ee:6e:a1:1f:0f:42:61:3d:fa:24:4b:33:
21:d8:81:21:ec:83:d7:87:51:a6:83:0f:29:98:3c:6b:59:8b:
22:5d:9f:80:95:65:ff:51:a7:cf:11:57:42:0e:03:53:90:26:
f2:79:36:e8:b4:47:8e:35:a7:30:d9:2c:58:40:c4:18:2b:8e:
5a:67:b4:b5:78:56:95:56:64:28:ac:71:93:45:be:f4:6e:49:
b7:9c:0f:42:2d:39:a2:0d:f8:9f:93:88:c7:70:49:e7:9f:2b:
97:28:1f:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:06 2023 by rpki-client on console-fra.rpki-client.org