Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/NRc25JPxiEMNnMUP1WAaBU3Rw04.roa
File: NRc25JPxiEMNnMUP1WAaBU3Rw04.roa (raw, json)
Hash identifier: uEOIw8kgg8I/nOnHRCkXLMuzmQkaRwuvT5t0FEAsSRQ=
Subject key identifier: 35:17:36:E4:93:F1:88:43:0D:9C:C5:0F:D5:60:1A:05:4D:D1:C3:4E
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 19081602
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/NRc25JPxiEMNnMUP1WAaBU3Rw04.roa
Signing time: Wed 01 Jun 2022 13:47:20 +0000
ROA not before: Wed 01 Jun 2022 13:47:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34549
IP address blocks: 83.243.45.114/32 maxlen: 32
178.251.225.0/24 maxlen: 32
178.251.224.0/22 maxlen: 32
178.251.224.0/21 maxlen: 21
178.251.228.0/23 maxlen: 32
178.251.230.0/24 maxlen: 32
178.251.230.0/23 maxlen: 32
178.251.229.0/24 maxlen: 32
80.77.16.0/24 maxlen: 32
80.77.16.0/20 maxlen: 32
185.90.161.0/24 maxlen: 32
185.90.160.0/24 maxlen: 32
185.90.160.0/22 maxlen: 32
185.90.162.0/24 maxlen: 32
83.243.46.83/32 maxlen: 32
80.77.31.254/32 maxlen: 32
185.150.96.0/22 maxlen: 32
5.1.64.0/20 maxlen: 32
5.1.64.0/19 maxlen: 32
5.1.64.0/24 maxlen: 32
45.155.248.0/22 maxlen: 22
94.247.40.0/21 maxlen: 32
5.1.66.0/24 maxlen: 32
5.1.65.0/24 maxlen: 32
5.1.67.0/24 maxlen: 32
5.1.70.0/24 maxlen: 32
94.247.46.0/24 maxlen: 32
94.247.45.0/24 maxlen: 32
5.1.72.0/24 maxlen: 32
5.1.76.0/24 maxlen: 32
5.1.73.0/24 maxlen: 32
5.1.82.0/24 maxlen: 32
5.1.85.0/24 maxlen: 32
5.1.84.0/24 maxlen: 32
5.1.91.0/24 maxlen: 32
5.1.86.0/24 maxlen: 32
5.1.90.0/24 maxlen: 32
5.1.89.0/24 maxlen: 32
5.1.87.0/24 maxlen: 32
5.1.93.0/24 maxlen: 32
5.1.94.0/24 maxlen: 32
5.1.94.0/23 maxlen: 32
185.44.107.0/24 maxlen: 32
185.44.106.0/24 maxlen: 32
83.243.40.0/21 maxlen: 32
83.243.44.0/24 maxlen: 32
83.243.47.0/24 maxlen: 32
83.243.46.0/24 maxlen: 32
83.243.45.0/24 maxlen: 32
195.10.195.0/24 maxlen: 32
31.47.232.0/21 maxlen: 32
185.37.144.0/22 maxlen: 32
185.37.145.0/24 maxlen: 32
185.37.147.0/24 maxlen: 32
185.44.104.0/22 maxlen: 32
2a01:360::/29 maxlen: 29
2a0f:b80::/29 maxlen: 29
2a01:360::/32 maxlen: 32
2a07:6fc0::/29 maxlen: 48
2a00:f820::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 419960322 (0x19081602)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Jun 1 13:47:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=351736e493f188430d9cc50fd5601a054dd1c34e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:32:f2:f5:f3:4a:54:71:50:f0:e5:ee:55:77:
9c:0d:70:f7:8c:e4:e1:53:b2:24:70:f0:a4:49:1f:
11:5c:a5:bd:00:24:1c:56:2e:78:03:5e:4e:00:72:
59:fa:22:f7:53:eb:c8:42:d8:fd:fe:82:46:64:bc:
c6:2a:5d:2a:aa:1d:b1:55:ae:f7:39:a7:46:24:42:
c2:e9:1e:69:64:cf:27:58:77:41:ed:d3:ff:90:40:
23:f0:6c:28:be:38:b1:24:ba:80:e0:32:bb:20:b9:
f6:69:49:eb:cb:96:92:ac:4c:da:49:48:ca:aa:65:
9c:6e:26:59:32:98:a3:1d:97:ab:30:06:c6:47:f7:
5e:89:dd:59:20:4a:03:07:f2:a0:c3:01:65:ea:c5:
5c:1b:73:ed:2a:72:9f:d8:74:c2:12:fb:c9:53:4e:
52:0b:85:fc:ab:ca:4c:70:14:e2:8b:86:8d:58:60:
0b:87:45:81:48:52:48:58:01:d2:28:bc:2f:71:bc:
20:2f:5f:20:b0:ce:93:c6:6e:54:6b:00:c0:3b:57:
0c:a8:e5:d1:10:22:69:ec:75:65:ef:30:22:06:ea:
a9:94:42:3d:a0:56:13:2c:a9:99:48:d6:da:f5:d3:
6a:c6:95:44:ab:f8:1d:1e:79:3d:bb:cb:99:62:4a:
83:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:17:36:E4:93:F1:88:43:0D:9C:C5:0F:D5:60:1A:05:4D:D1:C3:4E
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/NRc25JPxiEMNnMUP1WAaBU3Rw04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.64.0/19
31.47.232.0/21
45.155.248.0/22
80.77.16.0/20
83.243.40.0/21
94.247.40.0/21
178.251.224.0/21
185.37.144.0/22
185.44.104.0/22
185.90.160.0/22
185.150.96.0/22
195.10.195.0/24
IPv6:
2a00:f820::/29
2a01:360::/29
2a07:6fc0::/29
2a0f:b80::/29
Signature Algorithm: sha256WithRSAEncryption
1d:dd:d7:17:81:1f:81:5d:49:36:4a:0a:56:9c:8e:71:fe:d3:
39:dd:54:1f:b8:fa:b7:a3:04:4b:39:05:13:59:ad:d2:84:51:
e8:7f:52:33:3d:2b:ab:42:b4:7a:4e:d3:ed:d4:0d:6d:fe:90:
4c:8b:30:6e:af:23:8c:22:4a:68:97:d1:cc:bb:c4:c8:e1:84:
03:a0:4b:15:11:02:61:d8:8d:4c:9a:31:18:ed:c8:32:c5:cd:
ef:73:df:f2:f4:19:7e:f1:0e:fd:37:21:18:71:a5:f8:13:98:
aa:bd:d4:bf:85:a0:81:08:9b:3d:5c:f5:8a:83:2e:91:35:a9:
ab:20:13:c7:f0:36:35:ba:0f:b6:a4:0a:ce:b7:c7:72:fd:f6:
c0:4e:91:44:b5:2a:b1:86:19:56:d9:95:5e:6c:73:c5:a7:9c:
77:10:3e:88:62:ac:a0:da:59:6b:6c:48:3f:c8:2b:04:56:a7:
1b:f5:d5:1e:85:1e:70:06:b8:95:f0:58:30:f6:e7:27:47:c7:
8a:c9:03:37:8f:c5:1c:a5:a2:d2:d7:5b:9a:1a:8b:0e:dd:c6:
9f:62:dc:07:f5:4f:af:c9:29:b2:c8:af:b7:84:1c:19:d7:e8:
d9:8d:bb:55:18:51:81:9b:ed:eb:71:fe:dd:4b:d8:f9:ee:3b:
08:aa:e0:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:08 2023 by rpki-client on console-ams.rpki-client.org