Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/dP_Yk87bjbUAr5G7ZqHF-4nL_yE.roa
File: dP_Yk87bjbUAr5G7ZqHF-4nL_yE.roa (raw, json)
Hash identifier: wflXiOc9Ftm2zndgrBPvQnfELcqei4yoHkPTXZTkdro=
Subject key identifier: 74:FF:D8:93:CE:DB:8D:B5:00:AF:91:BB:66:A1:C5:FB:89:CB:FF:21
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 1901FC49
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/dP_Yk87bjbUAr5G7ZqHF-4nL_yE.roa
Signing time: Sat 05 Mar 2022 00:52:11 +0000
ROA not before: Sat 05 Mar 2022 00:52:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140107
IP address blocks: 45.81.236.0/22 maxlen: 32
45.12.234.0/23 maxlen: 32
45.135.220.0/22 maxlen: 32
45.12.162.0/24 maxlen: 32
193.16.8.0/24 maxlen: 24
185.117.23.0/24 maxlen: 24
185.115.129.0/24 maxlen: 24
84.39.190.0/24 maxlen: 32
45.15.36.0/23 maxlen: 32
185.137.183.0/24 maxlen: 24
185.253.249.0/24 maxlen: 24
45.83.252.0/23 maxlen: 32
185.133.74.0/24 maxlen: 24
185.146.195.0/24 maxlen: 24
45.82.204.0/23 maxlen: 32
45.94.164.0/22 maxlen: 24
185.182.63.0/24 maxlen: 24
79.143.50.0/24 maxlen: 24
79.143.57.0/24 maxlen: 24
79.143.63.0/24 maxlen: 24
185.240.236.0/22 maxlen: 24
45.128.28.0/22 maxlen: 24
45.81.10.0/23 maxlen: 32
94.199.100.0/24 maxlen: 24
45.135.100.0/22 maxlen: 24
45.14.47.0/24 maxlen: 32
185.172.144.0/24 maxlen: 24
185.120.33.0/24 maxlen: 24
194.49.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 419560521 (0x1901fc49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Mar 5 00:52:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74ffd893cedb8db500af91bb66a1c5fb89cbff21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:6d:6e:7a:b2:db:bf:62:da:bd:d2:04:75:b4:
04:3b:e7:f5:f3:88:a3:66:c3:0d:a8:e9:fc:2d:f0:
c4:79:0a:1e:af:7e:9b:9f:9d:9a:89:e2:9a:4b:5e:
2d:aa:d8:f6:fa:58:13:06:6d:50:11:19:28:44:7e:
67:e4:2a:64:99:e4:91:44:49:49:c6:7f:d8:9b:c8:
9d:cf:45:71:9a:d8:ef:cb:a3:5f:a2:41:fc:0a:c0:
9a:37:d7:2d:4d:26:0a:d0:93:22:4e:4e:82:08:8a:
8a:b1:9f:6d:d0:28:c8:5c:18:9c:20:1d:a7:34:f0:
0d:3e:b1:87:0f:54:1b:2f:e7:ce:8c:1e:45:ef:2e:
46:8f:5f:7b:24:e1:31:5f:d2:d4:84:f2:2b:0d:71:
a0:87:03:e2:d2:be:ad:03:03:30:43:b6:c5:68:e3:
fe:b6:f8:8b:74:08:5c:6c:cf:16:54:e3:fe:5c:86:
fb:03:cd:a9:a1:a1:5b:23:25:03:98:b6:9a:b9:87:
9a:d2:ec:09:66:91:03:20:34:d7:3d:03:fa:35:c2:
26:6f:0c:f5:f0:1c:bf:65:42:0b:d4:52:ae:56:31:
52:a6:7b:4d:c8:99:d9:7b:d1:b6:62:8b:e3:6f:1e:
71:23:e4:85:e8:6b:ad:e8:3f:1c:f2:43:ce:09:b4:
38:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:FF:D8:93:CE:DB:8D:B5:00:AF:91:BB:66:A1:C5:FB:89:CB:FF:21
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/dP_Yk87bjbUAr5G7ZqHF-4nL_yE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.162.0/24
45.12.234.0/23
45.14.47.0/24
45.15.36.0/23
45.81.10.0/23
45.81.236.0/22
45.82.204.0/23
45.83.252.0/23
45.94.164.0/22
45.128.28.0/22
45.135.100.0/22
45.135.220.0/22
79.143.50.0/24
79.143.57.0/24
79.143.63.0/24
84.39.190.0/24
94.199.100.0/24
185.115.129.0/24
185.117.23.0/24
185.120.33.0/24
185.133.74.0/24
185.137.183.0/24
185.146.195.0/24
185.172.144.0/24
185.182.63.0/24
185.240.236.0/22
185.253.249.0/24
193.16.8.0/24
194.49.113.0/24
Signature Algorithm: sha256WithRSAEncryption
09:e7:8b:ea:a1:b2:68:d2:e3:24:fe:12:45:7c:47:07:26:fd:
17:8b:d9:53:4b:3d:26:3c:a8:40:6c:a3:29:f7:cb:e2:21:b5:
de:43:4a:46:97:c5:02:c9:a4:61:c2:29:37:e3:28:29:d2:13:
c5:3a:96:c8:f0:79:1a:1d:fd:e8:00:5b:46:99:ca:1b:49:8c:
27:56:55:bc:72:3d:97:93:21:a2:9f:7b:a3:94:a3:4d:1e:db:
0e:c8:ac:91:ac:51:bd:12:6b:5e:59:22:35:3a:ef:66:d8:38:
93:c6:2e:8b:a0:5f:af:13:37:f3:f0:7e:cc:a0:c4:39:87:9a:
9a:d4:a2:ba:7a:e8:e4:11:cf:8e:0b:a1:80:3b:1d:d3:92:09:
2c:47:ad:b4:12:5c:d6:6b:b3:8f:12:a3:d3:7f:3c:95:53:ee:
eb:58:ef:14:10:cb:c2:2a:c5:0d:6a:75:da:63:c3:88:22:89:
e4:c9:e6:4a:91:e0:2a:d2:4d:fd:42:9c:9a:15:8c:fe:1c:77:
69:60:b9:04:a4:9a:e6:a8:2f:f3:e0:05:d4:9c:ab:7a:58:74:
41:43:98:16:07:21:7e:50:57:9e:2c:1e:f8:e3:f6:0f:b6:17:
c9:c7:61:36:25:4a:28:1d:70:27:01:44:f1:c5:4a:dc:7b:fe:
a0:ad:ee:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org