Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d5da0c-9cf3-4f8b-a562-cb11bc5b2f1b/1/I9WyVTuFcRgCMojxXu7zX6ToGB8.roa
File: I9WyVTuFcRgCMojxXu7zX6ToGB8.roa (raw, json)
Hash identifier: K+p1qko7cCOOpsviZ4Jcc07SJcq8GFwrw1711sBOIdk=
Subject key identifier: 23:D5:B2:55:3B:85:71:18:02:32:88:F1:5E:EE:F3:5F:A4:E8:18:1F
Certificate issuer: /CN=b32c9c26df7ccd8ad38d89bd5d49380b93b1e009
Certificate serial: 018259FC9B094188591BBDF621248C91E15D
Authority key identifier: B3:2C:9C:26:DF:7C:CD:8A:D3:8D:89:BD:5D:49:38:0B:93:B1:E0:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/syycJt98zYrTjYm9XUk4C5Ox4Ak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d5da0c-9cf3-4f8b-a562-cb11bc5b2f1b/1/I9WyVTuFcRgCMojxXu7zX6ToGB8.roa
Signing time: Mon 01 Aug 2022 15:18:23 +0000
ROA not before: Mon 01 Aug 2022 15:18:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30860
IP address blocks: 45.11.58.0/24 maxlen: 24
45.11.57.0/24 maxlen: 24
45.11.56.0/24 maxlen: 24
195.66.210.0/24 maxlen: 24
45.11.59.0/24 maxlen: 24
176.119.24.0/24 maxlen: 24
176.119.25.0/24 maxlen: 24
176.119.26.0/24 maxlen: 24
176.119.26.0/23 maxlen: 23
176.119.30.0/24 maxlen: 24
176.119.31.0/24 maxlen: 24
176.119.29.0/24 maxlen: 24
176.119.27.0/24 maxlen: 24
176.119.28.0/24 maxlen: 24
95.214.233.0/24 maxlen: 24
95.214.232.0/24 maxlen: 24
95.214.234.0/23 maxlen: 23
45.134.172.0/22 maxlen: 24
152.89.63.0/24 maxlen: 24
152.89.61.0/24 maxlen: 24
152.89.62.0/24 maxlen: 24
152.89.60.0/24 maxlen: 24
91.208.115.0/24 maxlen: 24
45.12.3.0/24 maxlen: 24
45.12.0.0/22 maxlen: 24
45.12.1.0/24 maxlen: 24
193.23.181.0/24 maxlen: 24
31.42.187.0/24 maxlen: 24
185.66.88.0/23 maxlen: 23
185.66.90.0/24 maxlen: 24
185.66.91.0/24 maxlen: 24
194.42.204.0/22 maxlen: 22
62.182.80.0/23 maxlen: 23
62.182.85.0/24 maxlen: 24
62.182.84.0/24 maxlen: 24
62.182.82.0/23 maxlen: 23
185.254.198.0/24 maxlen: 24
185.254.199.0/24 maxlen: 24
185.254.196.0/23 maxlen: 23
62.182.87.0/24 maxlen: 24
62.182.86.0/24 maxlen: 24
31.42.186.0/24 maxlen: 24
31.42.184.0/23 maxlen: 23
2a09:2dc0::/29 maxlen: 29
2a09:2dc1::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:59:fc:9b:09:41:88:59:1b:bd:f6:21:24:8c:91:e1:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b32c9c26df7ccd8ad38d89bd5d49380b93b1e009
Validity
Not Before: Aug 1 15:18:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23d5b2553b857118023288f15eeef35fa4e8181f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:aa:d5:91:17:1f:d8:b4:78:c9:01:83:da:9b:
c1:01:a9:12:93:79:8b:46:39:c1:1d:93:5b:59:a5:
f9:6d:26:b2:de:92:0e:e9:8a:e4:da:98:bc:b8:60:
96:f4:5d:d4:3d:7e:0d:bf:6e:4c:77:ae:74:a6:96:
b2:5e:51:d4:de:84:6c:1a:11:06:f8:9c:28:de:fb:
8e:29:10:eb:0c:70:77:41:78:d4:48:10:4b:a2:e3:
c1:56:35:ad:49:b8:c5:68:a3:b3:0e:d5:29:a9:02:
6f:17:5d:eb:85:0a:35:47:26:51:4d:8e:06:66:09:
12:97:0c:f3:e6:39:2e:5d:46:18:bc:8f:e7:e5:1c:
f6:91:6a:51:11:a3:2f:6c:f9:6b:15:27:8a:63:57:
cd:fc:18:86:bf:c8:ff:f9:d3:47:06:4f:80:a5:6a:
e2:d4:04:5f:62:cb:d0:1d:65:95:a1:bf:b5:d6:be:
7c:a1:86:46:a2:6e:28:34:90:18:7a:23:71:57:e9:
f9:41:a3:3d:41:a3:5b:c3:d5:94:64:77:4a:ad:26:
0d:93:de:83:29:b6:c3:dc:ed:b2:95:33:f9:57:de:
62:27:1d:c0:b3:43:9b:8f:8a:87:91:26:65:20:c9:
c9:38:6d:c3:18:f6:84:52:77:97:fa:1c:33:b3:ce:
8b:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:D5:B2:55:3B:85:71:18:02:32:88:F1:5E:EE:F3:5F:A4:E8:18:1F
X509v3 Authority Key Identifier:
keyid:B3:2C:9C:26:DF:7C:CD:8A:D3:8D:89:BD:5D:49:38:0B:93:B1:E0:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/syycJt98zYrTjYm9XUk4C5Ox4Ak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d5da0c-9cf3-4f8b-a562-cb11bc5b2f1b/1/I9WyVTuFcRgCMojxXu7zX6ToGB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d5da0c-9cf3-4f8b-a562-cb11bc5b2f1b/1/syycJt98zYrTjYm9XUk4C5Ox4Ak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.184.0/22
45.11.56.0/22
45.12.0.0/22
45.134.172.0/22
62.182.80.0/21
91.208.115.0/24
95.214.232.0/22
152.89.60.0/22
176.119.24.0/21
185.66.88.0/22
185.254.196.0/22
193.23.181.0/24
194.42.204.0/22
195.66.210.0/24
IPv6:
2a09:2dc0::/29
Signature Algorithm: sha256WithRSAEncryption
1b:77:c1:68:ce:2f:72:9e:e5:8b:7f:4d:7d:cb:1b:97:b1:37:
09:f2:57:db:94:ed:32:71:c1:87:80:5c:16:27:e7:d4:cb:0e:
67:eb:77:42:68:8e:4a:db:1a:66:16:98:37:25:c1:79:9e:2b:
df:93:a0:5d:ac:6d:ab:58:25:70:76:19:d9:7e:37:30:3f:90:
12:75:d2:d3:26:12:14:af:98:80:0c:df:91:23:0b:b1:5e:d9:
63:77:a2:d0:fb:77:6f:3a:75:56:63:98:85:85:94:13:1a:ec:
22:0d:1b:60:1e:e4:63:4d:1e:d9:23:ba:5b:ce:f9:0d:4a:d7:
ef:66:36:50:70:f4:df:67:dd:27:82:6d:a4:19:2d:25:cf:84:
c7:99:20:02:ff:34:cc:60:36:b2:97:cb:eb:a4:82:93:7b:21:
cf:fa:18:7b:35:87:6e:20:8f:9d:1b:e8:c9:e7:7b:c7:83:85:
54:33:d8:28:66:88:cf:2c:b2:3d:21:58:a2:d7:b6:3f:d7:1c:
15:28:3c:8e:ef:65:70:ee:51:ab:2a:9e:69:6b:a6:e6:04:aa:
24:10:4a:df:9f:3e:49:10:7e:de:a7:c7:cd:de:6f:73:36:bf:
c0:e4:32:2d:92:68:c3:b0:b1:fb:2d:80:67:ae:83:40:bb:31:
c0:42:08:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:53 2024 by rpki-client on console-ams.rpki-client.org