Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/ROOp-b0w7HrPreT8P7kNikLAzl4.roa
File: ROOp-b0w7HrPreT8P7kNikLAzl4.roa (raw, json)
Hash identifier: asxVrSozJJIhoYt/DZDaSaFncqIsnS3YEhpkHRWLPSk=
Subject key identifier: 44:E3:A9:F9:BD:30:EC:7A:CF:AD:E4:FC:3F:B9:0D:8A:42:C0:CE:5E
Certificate issuer: /CN=0170a169b6cd411022279e9ff997f134ff54ab1c
Certificate serial: 35D607D1
Authority key identifier: 01:70:A1:69:B6:CD:41:10:22:27:9E:9F:F9:97:F1:34:FF:54:AB:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AXChabbNQRAiJ56f-ZfxNP9Uqxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/ROOp-b0w7HrPreT8P7kNikLAzl4.roa
Signing time: Wed 23 Feb 2022 14:09:10 +0000
ROA not before: Wed 23 Feb 2022 14:09:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35699
IP address blocks: 45.145.244.0/22 maxlen: 24
62.56.192.0/20 maxlen: 24
216.147.96.0/20 maxlen: 24
87.236.180.0/22 maxlen: 24
45.230.12.0/22 maxlen: 24
91.126.32.0/19 maxlen: 24
91.126.64.0/19 maxlen: 24
185.239.36.0/22 maxlen: 24
147.161.64.0/18 maxlen: 24
91.126.16.0/20 maxlen: 24
45.151.224.0/22 maxlen: 24
91.126.160.0/19 maxlen: 24
74.126.176.0/20 maxlen: 24
143.131.192.0/18 maxlen: 24
110.93.8.0/22 maxlen: 24
185.203.208.0/22 maxlen: 24
91.126.96.0/19 maxlen: 24
64.190.114.0/23 maxlen: 24
91.126.128.0/19 maxlen: 24
135.129.224.0/20 maxlen: 24
98.96.184.0/21 maxlen: 24
103.202.232.0/22 maxlen: 24
45.130.132.0/22 maxlen: 24
91.126.192.0/19 maxlen: 24
45.133.138.0/23 maxlen: 24
147.136.252.0/23 maxlen: 24
91.126.224.0/19 maxlen: 24
91.126.232.0/21 maxlen: 24
173.243.32.0/20 maxlen: 24
2a00:1af4::/32 maxlen: 32
2a00:1af4:1000::/48 maxlen: 48
2a00:1af0::/29 maxlen: 29
2a00:1af4:1003::/48 maxlen: 48
2a00:1af1::/32 maxlen: 32
2a00:1af1::/36 maxlen: 36
2a00:1af2::/32 maxlen: 32
2a00:1af3::/32 maxlen: 32
2a00:1af0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 903219153 (0x35d607d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0170a169b6cd411022279e9ff997f134ff54ab1c
Validity
Not Before: Feb 23 14:09:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=44e3a9f9bd30ec7acfade4fc3fb90d8a42c0ce5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:db:e5:c4:87:4b:6b:de:06:75:61:d9:32:f9:
25:07:67:e9:46:b6:38:b2:37:8f:c8:d3:01:2e:5f:
af:5e:f9:fa:73:04:39:7f:22:92:03:61:18:4c:a1:
3b:a4:6f:bc:cd:9b:da:6f:c0:03:c5:ad:4c:fa:b7:
40:bd:83:e2:08:ee:c4:37:cd:92:73:a5:3b:f5:1d:
16:3e:69:f3:ff:65:32:08:dc:1c:ce:de:b8:9d:d0:
57:bd:07:5f:1d:2a:97:6d:76:39:0b:f6:50:be:9b:
c7:99:81:9c:d5:6a:73:97:62:f2:f1:bc:43:a1:a2:
4f:7d:0d:5f:ba:9d:f6:0a:6a:41:e5:59:50:0b:ec:
62:74:53:42:54:93:c2:32:a1:5d:3f:b9:13:28:80:
9a:6e:11:f0:c5:5b:2a:14:9b:0d:1f:bb:1e:50:7e:
dd:73:16:89:d0:c1:60:6f:50:f5:3e:4e:93:d2:10:
45:ef:1b:e6:ed:e2:d8:73:84:5f:5f:1c:5b:30:d4:
a8:e2:9e:e3:0f:24:52:46:e8:af:e6:7e:6d:fc:d7:
25:4d:7e:11:9f:2a:08:f9:c5:20:4e:44:59:1a:3d:
06:f3:fc:df:b1:d3:a2:d6:1b:ee:e5:1c:0c:5f:22:
8b:49:8e:2d:12:fd:9f:d2:51:9c:1b:c9:34:0e:82:
f3:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:E3:A9:F9:BD:30:EC:7A:CF:AD:E4:FC:3F:B9:0D:8A:42:C0:CE:5E
X509v3 Authority Key Identifier:
keyid:01:70:A1:69:B6:CD:41:10:22:27:9E:9F:F9:97:F1:34:FF:54:AB:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AXChabbNQRAiJ56f-ZfxNP9Uqxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/ROOp-b0w7HrPreT8P7kNikLAzl4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/AXChabbNQRAiJ56f-ZfxNP9Uqxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.132.0/22
45.133.138.0/23
45.145.244.0/22
45.151.224.0/22
45.230.12.0/22
62.56.192.0/20
64.190.114.0/23
74.126.176.0/20
87.236.180.0/22
91.126.16.0-91.126.255.255
98.96.184.0/21
103.202.232.0/22
110.93.8.0/22
135.129.224.0/20
143.131.192.0/18
147.136.252.0/23
147.161.64.0/18
173.243.32.0/20
185.203.208.0/22
185.239.36.0/22
216.147.96.0/20
IPv6:
2a00:1af0::/29
Signature Algorithm: sha256WithRSAEncryption
48:92:e9:bd:0c:78:32:ce:be:41:81:e1:6b:48:83:1d:cb:68:
ed:61:fc:d4:1a:04:bd:1e:a3:18:35:58:c9:2b:34:da:81:03:
e5:35:6a:08:28:35:10:f1:22:0b:47:44:68:85:30:72:10:f8:
df:6f:fd:2d:11:a5:b3:24:39:b4:8d:e3:3a:7e:6e:16:27:41:
92:79:81:79:26:c2:90:2e:9d:82:d3:ac:ea:6d:9b:88:c1:3c:
3d:5c:9c:15:42:c1:80:78:76:5a:eb:30:19:ed:1b:3f:97:1e:
2d:5c:0b:7f:47:f8:ce:77:b3:33:1d:13:3e:a5:fa:88:58:3e:
28:e0:71:c4:2c:e6:1f:4a:19:be:42:13:1d:0f:76:4a:ac:ac:
f6:a1:c4:fa:5c:71:f3:f9:a4:66:f5:a4:59:d7:86:bb:b9:d3:
2d:6f:31:bb:2c:fb:10:a6:d3:d2:ef:e8:fe:75:52:21:fd:f3:
72:e7:73:e4:27:c2:7a:b2:e0:b9:94:74:54:0d:8d:6e:ce:7f:
c5:4f:88:4d:f3:ed:96:2c:f7:a9:c9:6d:af:93:90:f3:d6:04:
7b:ed:a1:f2:14:51:d5:a5:41:5a:41:c1:0b:18:35:86:bb:c2:
ed:18:7c:20:6a:44:f0:89:a2:61:72:f9:22:d7:b4:3e:48:b1:
ec:63:1d:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:56 2023 by rpki-client on console-ams.rpki-client.org