Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/v2RlkzzaKweawoXx2YWSE0llYKE.roa
File: v2RlkzzaKweawoXx2YWSE0llYKE.roa (raw, json)
Hash identifier: UoCzPGEa/VFBm+0YrLQY1Gax0sOC42OM1vwhGk3nTrE=
Subject key identifier: BF:64:65:93:3C:DA:2B:07:9A:C2:85:F1:D9:85:92:13:49:65:60:A1
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 190186C0
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/v2RlkzzaKweawoXx2YWSE0llYKE.roa
Signing time: Sat 05 Mar 2022 00:52:10 +0000
ROA not before: Sat 05 Mar 2022 00:52:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 54600
IP address blocks: 45.81.236.0/22 maxlen: 32
45.135.220.0/22 maxlen: 32
45.12.234.0/24 maxlen: 32
45.12.235.0/24 maxlen: 32
45.12.162.0/24 maxlen: 32
185.117.23.0/24 maxlen: 24
185.115.129.0/24 maxlen: 24
45.15.37.0/24 maxlen: 32
45.15.36.0/24 maxlen: 32
45.15.36.0/23 maxlen: 32
185.137.183.0/24 maxlen: 24
185.253.249.0/24 maxlen: 24
45.83.252.0/23 maxlen: 32
45.83.253.0/24 maxlen: 32
45.83.252.0/24 maxlen: 32
185.133.74.0/24 maxlen: 24
185.146.195.0/24 maxlen: 24
45.82.204.0/23 maxlen: 32
45.94.164.0/22 maxlen: 24
185.182.63.0/24 maxlen: 24
79.143.50.0/24 maxlen: 24
79.143.57.0/24 maxlen: 24
79.143.63.0/24 maxlen: 24
185.240.236.0/22 maxlen: 24
45.128.28.0/22 maxlen: 24
45.81.11.0/24 maxlen: 32
45.81.10.0/24 maxlen: 32
45.135.100.0/22 maxlen: 24
45.14.47.0/24 maxlen: 32
185.172.144.0/24 maxlen: 24
185.120.33.0/24 maxlen: 24
45.130.74.0/24 maxlen: 24
194.49.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 419530432 (0x190186c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Mar 5 00:52:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf6465933cda2b079ac285f1d9859213496560a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:05:70:86:5c:34:f5:2f:ab:44:27:69:04:05:
77:6d:3a:30:4f:77:31:f4:b1:15:f4:a6:26:81:c9:
8d:ff:37:06:f6:26:aa:fe:14:2f:bd:20:78:c3:70:
62:07:d7:59:40:78:83:3a:24:b2:da:e3:ab:11:30:
01:e4:ee:84:ef:40:bc:7d:1b:46:99:96:8f:e9:83:
5e:a2:5d:60:e7:87:d8:e2:e8:aa:0d:4b:d4:90:7b:
17:aa:8e:9e:e6:c2:87:d4:bf:1b:ee:0e:b1:52:e8:
3a:21:a1:1f:a2:36:07:e5:b6:30:a9:26:23:03:79:
28:eb:bc:d0:0a:d7:ae:7c:23:38:b3:52:4d:b7:b5:
c8:5e:6e:f8:c9:66:f6:c3:a1:c7:ae:1d:b9:f8:ac:
07:4d:63:cb:b7:ce:66:89:99:45:78:e5:1f:12:f6:
a1:a9:62:e2:aa:89:2b:7a:84:30:f8:ca:cf:76:b2:
07:d0:ad:f6:08:c8:5e:40:52:be:18:0e:ed:9c:01:
a7:65:d8:ae:67:6e:db:da:89:c8:32:4b:84:b6:47:
03:b7:73:20:fb:02:23:9e:fc:6a:4e:88:23:5c:ee:
2b:3e:df:93:4f:60:06:96:96:5a:fa:ed:45:77:03:
d5:e5:2b:b4:9b:0a:84:88:a0:6d:3a:20:fb:03:df:
04:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:64:65:93:3C:DA:2B:07:9A:C2:85:F1:D9:85:92:13:49:65:60:A1
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/v2RlkzzaKweawoXx2YWSE0llYKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.162.0/24
45.12.234.0/23
45.14.47.0/24
45.15.36.0/23
45.81.10.0/23
45.81.236.0/22
45.82.204.0/23
45.83.252.0/23
45.94.164.0/22
45.128.28.0/22
45.130.74.0/24
45.135.100.0/22
45.135.220.0/22
79.143.50.0/24
79.143.57.0/24
79.143.63.0/24
185.115.129.0/24
185.117.23.0/24
185.120.33.0/24
185.133.74.0/24
185.137.183.0/24
185.146.195.0/24
185.172.144.0/24
185.182.63.0/24
185.240.236.0/22
185.253.249.0/24
194.49.113.0/24
Signature Algorithm: sha256WithRSAEncryption
51:29:59:22:da:db:e1:46:10:fa:99:20:11:8a:c8:43:dd:b7:
c4:c0:ba:12:1c:88:63:5b:ae:67:f8:d4:3e:4b:98:ef:aa:cd:
71:49:5a:f8:b6:bb:9f:e0:13:a6:c1:43:41:24:45:b4:8f:ee:
e1:bf:e2:73:e3:02:1e:bc:d1:c9:29:98:44:e2:91:28:60:a0:
2b:b7:fc:8d:10:70:da:0c:17:40:19:5d:53:79:a3:69:a4:33:
88:88:54:6a:34:b4:a8:29:2b:8b:51:ea:48:26:0a:2b:44:10:
89:99:51:b6:c9:f5:ec:62:1f:95:87:3f:9f:99:c5:32:8c:77:
f5:5e:cc:6f:fd:29:ba:8e:ca:6e:b2:fe:63:9e:56:7d:90:5d:
04:ff:86:5c:5d:dc:0a:61:4e:43:23:d8:15:3c:ce:33:7d:fa:
3f:55:74:bc:75:a2:4f:93:9f:82:85:d3:5b:29:72:c1:8f:e3:
41:20:8d:19:d6:39:8c:79:a9:ad:d5:9e:4f:f5:1b:f7:53:bc:
0a:2d:c0:fc:06:2a:7a:61:66:fc:49:db:64:f9:ff:22:9a:e2:
2e:ae:f4:9d:22:71:bb:c2:bb:3b:a0:04:b0:f9:82:88:81:ae:
17:e6:0c:3c:bc:10:9b:5e:8f:1e:e7:db:58:02:b4:eb:67:6e:
dc:8d:5c:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org