Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/pj3mKUUfKMZQL0p7cdmN_wPea08.roa
File: pj3mKUUfKMZQL0p7cdmN_wPea08.roa (raw, json)
Hash identifier: KN/hDMyOChAgwMZ7xxg32YHNCMDdS8u2EQd1KHV+snw=
Subject key identifier: A6:3D:E6:29:45:1F:28:C6:50:2F:4A:7B:71:D9:8D:FF:03:DE:6B:4F
Certificate issuer: /CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Certificate serial: 0183B6F7B223A6E0F8C7539B3F498EFB8DBB
Authority key identifier: 08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/pj3mKUUfKMZQL0p7cdmN_wPea08.roa
Signing time: Sat 08 Oct 2022 09:40:29 +0000
ROA not before: Sat 08 Oct 2022 09:40:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44285
IP address blocks: 45.140.224.0/22 maxlen: 22
45.87.4.0/22 maxlen: 22
185.18.213.0/24 maxlen: 24
185.18.212.0/22 maxlen: 22
185.18.212.0/24 maxlen: 24
185.18.215.0/24 maxlen: 24
185.18.214.0/24 maxlen: 24
37.32.32.0/24 maxlen: 24
37.32.32.0/21 maxlen: 21
37.32.33.0/24 maxlen: 24
37.32.32.0/22 maxlen: 22
37.32.36.0/22 maxlen: 22
37.32.37.0/24 maxlen: 24
37.32.38.0/24 maxlen: 24
37.32.36.0/24 maxlen: 24
37.32.35.0/24 maxlen: 24
37.32.34.0/24 maxlen: 24
37.32.39.0/24 maxlen: 24
185.51.201.0/24 maxlen: 24
185.51.200.0/24 maxlen: 24
185.51.203.0/24 maxlen: 24
185.51.202.0/24 maxlen: 24
86.57.120.0/23 maxlen: 23
86.57.122.0/23 maxlen: 23
86.57.96.0/20 maxlen: 20
86.57.112.0/23 maxlen: 23
86.57.114.0/23 maxlen: 23
86.57.116.0/22 maxlen: 22
217.172.124.0/23 maxlen: 23
217.172.120.0/24 maxlen: 24
217.172.120.0/21 maxlen: 21
217.172.127.0/24 maxlen: 24
217.172.126.0/23 maxlen: 23
45.9.253.0/24 maxlen: 24
45.9.252.0/24 maxlen: 24
45.9.254.0/24 maxlen: 24
37.75.246.0/24 maxlen: 24
37.75.245.0/24 maxlen: 24
37.75.244.0/24 maxlen: 24
37.75.244.0/22 maxlen: 22
37.75.243.0/24 maxlen: 24
37.75.247.0/24 maxlen: 24
195.110.38.0/24 maxlen: 24
195.110.38.0/23 maxlen: 23
195.110.39.0/24 maxlen: 24
185.182.250.0/24 maxlen: 24
185.182.250.0/23 maxlen: 23
185.182.248.0/22 maxlen: 22
185.182.248.0/23 maxlen: 23
185.182.251.0/24 maxlen: 24
91.236.168.0/23 maxlen: 23
91.236.169.0/24 maxlen: 24
91.236.168.0/24 maxlen: 24
46.28.74.0/24 maxlen: 24
46.28.73.0/24 maxlen: 24
46.28.72.0/24 maxlen: 24
46.28.72.0/21 maxlen: 24
185.121.128.0/22 maxlen: 24
185.121.128.0/24 maxlen: 24
185.121.131.0/24 maxlen: 24
185.121.130.0/24 maxlen: 24
185.121.129.0/24 maxlen: 24
88.135.38.0/24 maxlen: 24
88.135.37.0/24 maxlen: 24
185.141.132.0/24 maxlen: 24
185.141.134.0/24 maxlen: 24
185.141.133.0/24 maxlen: 24
185.141.135.0/24 maxlen: 24
84.47.226.0/24 maxlen: 24
84.47.224.0/22 maxlen: 22
84.47.225.0/24 maxlen: 24
84.47.224.0/21 maxlen: 21
84.47.224.0/24 maxlen: 24
188.209.152.0/23 maxlen: 23
84.47.231.0/24 maxlen: 24
84.47.227.0/24 maxlen: 24
84.47.230.0/24 maxlen: 24
84.47.229.0/24 maxlen: 24
84.47.228.0/24 maxlen: 24
84.47.228.0/22 maxlen: 22
88.135.39.0/24 maxlen: 24
185.128.138.0/24 maxlen: 24
185.128.137.0/24 maxlen: 24
185.128.136.0/24 maxlen: 24
185.128.139.0/24 maxlen: 24
2a02:828::/32 maxlen: 32
2a02:829::/32 maxlen: 32
2a02:82b::/32 maxlen: 32
2a02:82f::/32 maxlen: 32
2a02:828:1::/48 maxlen: 48
2a02:82a::/32 maxlen: 32
2a02:828::/29 maxlen: 29
2a02:828::/64 maxlen: 64
2a02:828::/48 maxlen: 48
2a02:82e::/32 maxlen: 32
2a02:82c::/32 maxlen: 32
2a02:82d::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:b6:f7:b2:23:a6:e0:f8:c7:53:9b:3f:49:8e:fb:8d:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Validity
Not Before: Oct 8 09:40:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a63de629451f28c6502f4a7b71d98dff03de6b4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:23:52:69:00:6e:ba:6e:30:6e:02:5b:c3:43:
2e:c7:c8:d5:c5:05:36:6f:9b:05:7e:f8:7e:63:d3:
e2:53:2d:2c:fc:c0:ad:65:59:c6:da:de:d5:66:d2:
28:0d:60:f8:3a:53:7d:c4:77:1c:50:ff:9e:ca:e8:
d8:01:a8:77:4b:8b:1e:b5:c6:0e:61:14:cd:6d:97:
12:63:5a:02:b7:fd:cd:8d:a2:ed:2f:52:9f:9c:9d:
64:88:48:7c:69:d8:7f:b6:bd:09:f4:2f:0f:b3:03:
f9:ce:d8:4f:44:27:3e:a4:8b:51:f2:3c:83:5d:b1:
d8:cb:17:ab:f8:8e:4e:92:3d:fc:ce:51:7c:ec:df:
5c:51:a5:b1:eb:98:3c:67:b5:3d:73:03:1e:c9:59:
52:8a:61:9a:1a:c1:5a:41:98:8b:40:9d:f9:26:41:
e2:ae:fe:c1:3a:ab:9d:0c:67:b5:bf:0d:91:48:53:
05:3f:04:f2:ac:74:fe:84:58:45:c0:f0:0c:be:3a:
6d:06:ad:20:bb:f3:8f:02:bb:9d:51:4a:c6:3b:d5:
85:1d:84:5d:60:35:67:5b:d0:4d:1e:0b:c8:79:fa:
97:55:fd:f2:dc:ec:51:ff:00:cd:9d:9e:1b:ee:99:
ed:cc:1e:29:ff:40:47:25:f5:09:1e:ed:34:6d:a7:
f0:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:3D:E6:29:45:1F:28:C6:50:2F:4A:7B:71:D9:8D:FF:03:DE:6B:4F
X509v3 Authority Key Identifier:
keyid:08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/pj3mKUUfKMZQL0p7cdmN_wPea08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/CBt6IuUc-5z4QgXkRJmYrVXY8GU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.32.0/21
37.75.243.0-37.75.247.255
45.9.252.0-45.9.254.255
45.87.4.0/22
45.140.224.0/22
46.28.72.0/21
84.47.224.0/21
86.57.96.0-86.57.123.255
88.135.37.0-88.135.39.255
91.236.168.0/23
185.18.212.0/22
185.51.200.0/22
185.121.128.0/22
185.128.136.0/22
185.141.132.0/22
185.182.248.0/22
188.209.152.0/23
195.110.38.0/23
217.172.120.0/21
IPv6:
2a02:828::/29
Signature Algorithm: sha256WithRSAEncryption
76:69:92:b6:b5:e3:20:34:1b:c5:32:c1:b2:f6:a7:a8:bc:61:
67:b6:3d:1e:77:40:78:ba:f5:61:24:af:db:6c:56:3c:e2:32:
20:6f:be:b3:d9:89:60:18:5a:d8:78:cb:19:97:2c:12:7c:34:
75:d2:7f:03:aa:51:da:40:1a:9a:43:5a:69:fc:f9:6c:d8:da:
fb:fd:b5:2f:53:20:94:51:e9:f3:75:c5:0a:77:7b:d8:d8:22:
91:dc:58:40:ea:7f:bf:5b:fe:3c:7e:c6:14:3e:01:d5:7f:4e:
76:91:a0:15:81:2f:e8:d7:4a:2e:5b:5f:2a:a6:0c:58:ee:0d:
a4:b8:90:cf:7d:55:5d:88:2b:b8:61:c0:dd:85:b4:7e:6a:8f:
13:7a:1d:94:e9:8d:f4:bc:cf:14:f5:90:f1:32:de:23:e3:d1:
1c:a2:9f:a4:24:b4:7e:80:91:a8:6b:cc:ef:0a:cb:c2:63:fe:
5c:3d:e0:02:4d:68:72:b3:fe:89:90:5b:6e:94:3a:d4:3b:87:
e1:2a:a7:cc:1b:74:56:0e:b0:9b:f9:47:f6:dc:81:d1:3d:49:
27:b2:6f:7a:79:ca:15:55:99:ea:ad:79:4d:dc:72:a6:01:49:
79:0c:17:67:3d:53:b3:3d:26:64:ba:0b:54:6c:95:ca:b3:3c:
15:7c:14:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:22 2024 by rpki-client on console-fra.rpki-client.org