Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/VS-_VB-Kn_Wm4FVy3tVSKwQQ1OU.roa
File: VS-_VB-Kn_Wm4FVy3tVSKwQQ1OU.roa (raw, json)
Hash identifier: 3K8Zsi32sbBNVopNunKZ52/EsXjQhfNOp7G0EFwf+Yk=
Subject key identifier: 55:2F:BF:54:1F:8A:9F:F5:A6:E0:55:72:DE:D5:52:2B:04:10:D4:E5
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 178C9F59
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/VS-_VB-Kn_Wm4FVy3tVSKwQQ1OU.roa
Signing time: Sat 01 Jan 2022 13:03:17 +0000
ROA not before: Sat 01 Jan 2022 13:03:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34549
IP address blocks: 83.243.45.114/32 maxlen: 32
178.251.225.0/24 maxlen: 32
178.251.224.0/22 maxlen: 32
178.251.224.0/21 maxlen: 21
178.251.228.0/23 maxlen: 32
178.251.230.0/23 maxlen: 32
178.251.230.0/24 maxlen: 32
80.77.16.0/24 maxlen: 32
80.77.16.0/20 maxlen: 32
185.90.161.0/24 maxlen: 32
185.90.160.0/22 maxlen: 32
185.90.160.0/24 maxlen: 32
185.90.162.0/24 maxlen: 32
83.243.46.83/32 maxlen: 32
80.77.31.254/32 maxlen: 32
185.150.96.0/22 maxlen: 32
5.1.64.0/20 maxlen: 32
5.1.64.0/19 maxlen: 32
5.1.64.0/24 maxlen: 32
45.155.248.0/22 maxlen: 22
94.247.40.0/21 maxlen: 32
5.1.66.0/24 maxlen: 32
5.1.65.0/24 maxlen: 32
5.1.67.0/24 maxlen: 32
5.1.70.0/24 maxlen: 32
94.247.46.0/24 maxlen: 32
94.247.45.0/24 maxlen: 32
5.1.72.0/24 maxlen: 32
5.1.76.0/24 maxlen: 32
5.1.73.0/24 maxlen: 32
5.1.82.0/24 maxlen: 32
5.1.85.0/24 maxlen: 32
5.1.84.0/24 maxlen: 32
5.1.91.0/24 maxlen: 32
5.1.86.0/24 maxlen: 32
5.1.90.0/24 maxlen: 32
5.1.89.0/24 maxlen: 32
5.1.87.0/24 maxlen: 32
5.1.93.0/24 maxlen: 32
5.1.94.0/23 maxlen: 32
5.1.94.0/24 maxlen: 32
185.44.107.0/24 maxlen: 32
185.44.106.0/24 maxlen: 32
83.243.40.0/21 maxlen: 32
83.243.44.0/24 maxlen: 32
83.243.47.0/24 maxlen: 32
83.243.46.0/24 maxlen: 32
83.243.45.0/24 maxlen: 32
195.10.195.0/24 maxlen: 32
31.47.232.0/21 maxlen: 32
185.37.144.0/22 maxlen: 32
185.37.145.0/24 maxlen: 32
185.37.147.0/24 maxlen: 32
185.44.104.0/22 maxlen: 32
2a01:360::/29 maxlen: 29
2a0f:b80::/29 maxlen: 29
2a01:360::/32 maxlen: 32
2a07:6fc0::/29 maxlen: 48
2a00:f820::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 395091801 (0x178c9f59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Jan 1 13:03:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=552fbf541f8a9ff5a6e05572ded5522b0410d4e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a2:b9:57:21:30:d0:67:e3:98:39:c8:34:87:
fe:83:89:7d:a5:f6:56:66:b1:80:9e:8e:0c:81:b5:
32:7c:f1:24:c2:91:a4:38:46:fd:ce:01:1e:55:c4:
71:b7:81:3b:eb:06:73:83:27:77:47:e8:04:ad:50:
3c:66:27:a2:7a:94:b8:c7:30:6b:72:49:6a:29:f1:
ca:5a:bc:a6:d0:39:f9:7a:9f:9e:d1:99:b5:71:19:
64:19:ef:37:97:b7:1a:03:46:de:56:92:61:95:e1:
a9:6d:bd:13:a2:fe:54:02:ee:84:b5:fa:51:1e:c3:
e9:79:b0:c1:36:39:51:f4:0b:81:5b:56:4a:e9:ba:
ca:1f:86:ca:a6:a9:e0:c8:2c:1c:36:e1:2c:ad:0d:
ea:0a:02:68:31:7a:98:1f:ae:e4:58:93:0d:c7:12:
70:94:80:4a:ee:0f:05:79:93:a0:37:ab:d2:ac:6b:
ae:f0:e6:8c:68:97:64:50:3d:60:f2:38:7b:e2:a3:
c0:a1:f5:3b:bf:1c:fd:60:e0:9b:d1:d7:27:7e:90:
cd:9d:b3:97:1c:cf:d5:10:47:ed:26:ad:c1:53:39:
26:af:8d:f2:40:60:70:fb:73:45:54:36:9a:a9:11:
d0:0e:f5:82:af:6a:39:bc:44:56:b4:d5:0c:e7:fd:
04:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:2F:BF:54:1F:8A:9F:F5:A6:E0:55:72:DE:D5:52:2B:04:10:D4:E5
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/VS-_VB-Kn_Wm4FVy3tVSKwQQ1OU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.64.0/19
31.47.232.0/21
45.155.248.0/22
80.77.16.0/20
83.243.40.0/21
94.247.40.0/21
178.251.224.0/21
185.37.144.0/22
185.44.104.0/22
185.90.160.0/22
185.150.96.0/22
195.10.195.0/24
IPv6:
2a00:f820::/29
2a01:360::/29
2a07:6fc0::/29
2a0f:b80::/29
Signature Algorithm: sha256WithRSAEncryption
64:c2:97:1a:54:da:c3:42:3f:75:86:0a:7a:77:4f:c3:f7:6e:
56:57:d1:9f:da:da:02:fe:db:4c:19:89:89:8b:6b:98:3b:03:
59:6d:f5:fa:c0:98:89:cf:1e:dc:b8:82:92:09:bc:9d:8c:b8:
e6:28:0f:ef:c9:41:ac:36:9f:1c:0b:f6:c5:df:b8:9a:85:06:
4a:07:cd:de:40:24:0d:49:2e:b7:55:45:3d:96:36:d9:5f:a9:
2d:bb:8b:4c:4a:b7:61:76:7c:62:0c:70:b6:30:d1:a4:b0:55:
5e:81:36:95:80:e3:f3:86:38:0a:55:e2:00:ca:85:80:9e:e1:
f7:57:65:a5:b1:c3:7c:c1:00:c5:cb:69:49:1e:ad:d1:3b:6a:
a7:28:03:da:33:f3:82:f7:e9:2e:33:9d:cc:61:9b:05:9a:7d:
df:d9:87:4c:e0:28:ad:51:ec:60:ad:12:0f:1d:83:de:97:8c:
4a:36:36:c2:04:eb:c2:7e:4d:7c:f5:12:ff:0c:b2:89:6e:9c:
21:b6:7c:9a:0d:c9:19:2a:e5:f1:a6:4a:99:36:1d:58:eb:90:
87:b0:4c:65:4a:be:9f:a9:fa:f8:81:4f:44:55:d8:e8:ed:1e:
3b:1e:ef:0c:e5:1a:a9:d6:df:50:c9:fc:43:d5:bc:ed:83:d9:
5c:19:20:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:17 2023 by rpki-client on console-fra.rpki-client.org