Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/4bkuX2kA6yhh0TOlk4HduZy2Cr0.roa
File: 4bkuX2kA6yhh0TOlk4HduZy2Cr0.roa (raw, json)
Hash identifier: pLBbTEke3J62EY76DCRX1oIbYR5OkL+l4KA8PXt2Kio=
Subject key identifier: E1:B9:2E:5F:69:00:EB:28:61:D1:33:A5:93:81:DD:B9:9C:B6:0A:BD
Certificate issuer: /CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Certificate serial: 0182A3496FE4849CAC492798FEA5751E1F94
Authority key identifier: 7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/4bkuX2kA6yhh0TOlk4HduZy2Cr0.roa
Signing time: Mon 15 Aug 2022 20:54:35 +0000
ROA not before: Mon 15 Aug 2022 20:54:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8075
IP address blocks: 94.245.64.0/18 maxlen: 24
172.208.0.0/13 maxlen: 13
51.124.0.0/16 maxlen: 16
192.100.112.0/21 maxlen: 21
192.100.120.0/21 maxlen: 21
192.100.128.0/22 maxlen: 22
192.100.132.0/23 maxlen: 23
172.160.0.0/11 maxlen: 11
51.144.0.0/15 maxlen: 15
51.107.0.0/16 maxlen: 16
192.100.104.0/21 maxlen: 21
51.138.0.0/16 maxlen: 16
51.10.0.0/15 maxlen: 15
194.110.197.0/24 maxlen: 24
51.104.0.0/15 maxlen: 15
51.12.0.0/15 maxlen: 15
51.103.0.0/16 maxlen: 16
51.140.0.0/14 maxlen: 14
135.130.0.0/16 maxlen: 16
57.150.0.0/15 maxlen: 15
132.164.0.0/16 maxlen: 16
193.221.113.0/24 maxlen: 24
51.53.0.0/16 maxlen: 16
57.160.0.0/12 maxlen: 12
51.120.0.0/16 maxlen: 16
57.156.0.0/14 maxlen: 14
193.149.64.0/19 maxlen: 24
172.200.0.0/13 maxlen: 13
51.116.0.0/16 maxlen: 16
51.136.0.0/15 maxlen: 15
159.128.0.0/16 maxlen: 16
194.41.16.0/20 maxlen: 20
194.41.18.0/24 maxlen: 24
194.41.22.0/24 maxlen: 24
194.41.23.0/24 maxlen: 24
194.41.20.0/24 maxlen: 24
194.41.21.0/24 maxlen: 24
194.41.19.0/24 maxlen: 24
51.132.0.0/16 maxlen: 16
157.31.0.0/16 maxlen: 16
213.199.128.0/18 maxlen: 24
147.243.0.0/16 maxlen: 24
51.51.0.0/16 maxlen: 16
57.152.0.0/14 maxlen: 14
138.105.0.0/16 maxlen: 16
2a00:1c68::/29 maxlen: 29
2a01:111:4004::/48 maxlen: 48
2a01:111::/32 maxlen: 32
2a01:111:f000::/36 maxlen: 36
2a01:111:2000::/36 maxlen: 36
2a01:111:4000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:a3:49:6f:e4:84:9c:ac:49:27:98:fe:a5:75:1e:1f:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Validity
Not Before: Aug 15 20:54:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e1b92e5f6900eb2861d133a59381ddb99cb60abd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:e7:5b:b6:b6:3a:b2:c1:27:db:c1:41:38:ae:
7d:a5:26:06:eb:2c:f9:34:b1:7f:19:cd:90:d6:1a:
a6:6d:73:06:f2:ba:12:59:28:4d:4a:dc:7f:3d:af:
e4:98:fa:9f:03:11:93:8c:98:c5:d8:15:4c:09:70:
6f:40:17:20:66:52:b1:86:71:d2:72:e9:45:26:a9:
4b:0e:b8:53:09:67:40:05:8c:14:c8:c8:d9:08:7f:
91:45:85:5c:a3:49:f1:c6:9a:0f:c0:4d:1a:16:f2:
f1:71:0c:9b:e1:af:fd:95:17:3c:65:5d:13:a0:ed:
49:6d:57:63:c7:e3:2f:2c:7b:f2:ac:58:c3:5e:a3:
67:8a:ce:5d:b9:63:f9:dd:d3:5e:ea:a4:00:71:94:
91:84:61:4f:da:96:e8:21:3e:56:10:3a:33:74:d2:
24:32:aa:86:fb:48:33:40:39:db:17:b6:ac:88:1a:
48:ad:b3:a9:b7:d0:c2:2e:b4:21:a1:73:7f:a4:3a:
29:f6:a7:a0:c2:3b:a2:72:ae:44:d6:9a:f0:f2:f6:
e0:a8:d7:09:54:7b:1b:b7:4e:4b:a6:81:bf:06:44:
db:e9:d6:5b:9d:c7:6a:03:f1:99:20:bb:93:ae:02:
73:c8:92:ef:23:91:52:a7:de:3e:52:7c:13:a5:62:
c0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:B9:2E:5F:69:00:EB:28:61:D1:33:A5:93:81:DD:B9:9C:B6:0A:BD
X509v3 Authority Key Identifier:
keyid:7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/4bkuX2kA6yhh0TOlk4HduZy2Cr0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/fOaNr18IlFbA4dAiRTk1Maxbj8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.10.0.0-51.13.255.255
51.51.0.0/16
51.53.0.0/16
51.103.0.0-51.105.255.255
51.107.0.0/16
51.116.0.0/16
51.120.0.0/16
51.124.0.0/16
51.132.0.0/16
51.136.0.0-51.138.255.255
51.140.0.0-51.145.255.255
57.150.0.0-57.175.255.255
94.245.64.0/18
132.164.0.0/16
135.130.0.0/16
138.105.0.0/16
147.243.0.0/16
157.31.0.0/16
159.128.0.0/16
172.160.0.0/11
172.200.0.0-172.215.255.255
192.100.104.0-192.100.133.255
193.149.64.0/19
193.221.113.0/24
194.41.16.0/20
194.110.197.0/24
213.199.128.0/18
IPv6:
2a00:1c68::/29
2a01:111::/32
Signature Algorithm: sha256WithRSAEncryption
61:98:b3:8c:5f:c8:71:91:ab:2f:41:d7:3d:29:6f:03:a5:5f:
c3:a0:4f:a8:97:13:59:9e:c9:62:0e:36:24:bf:7b:9d:82:94:
5b:50:f9:cc:22:84:ba:e5:f2:4d:cf:7e:39:be:10:c0:e8:b3:
51:b3:20:96:ec:4d:94:2a:c8:02:13:2b:fc:52:bd:e9:58:22:
6d:c8:6b:54:06:97:c4:36:d2:27:7f:e4:15:dd:4d:8a:ab:fc:
73:a1:e8:a8:90:59:60:40:ab:ec:60:f4:26:90:88:44:7d:97:
51:65:cf:2c:4b:1e:28:0e:f7:5a:dc:34:fd:35:a5:ad:3c:03:
2e:87:ae:d1:35:47:50:88:b9:cf:a3:76:ee:c0:b5:07:92:88:
72:74:5e:ab:76:f5:f5:32:a7:1d:b0:78:40:3b:47:da:0e:e6:
d6:7e:2d:2a:26:03:e0:0f:81:c5:51:32:47:82:e4:19:99:74:
58:a7:60:07:9d:90:93:5c:35:a7:13:99:a7:75:3e:8b:13:9f:
1d:fd:57:43:1e:28:6f:f2:50:2d:92:62:34:cf:f4:74:af:ab:
4d:d4:48:8b:72:f5:87:8f:5b:08:63:20:15:f2:15:6e:79:6d:
52:3b:65:25:44:ad:c5:dc:41:2a:7a:29:ae:0a:0d:14:ad:b9:
7f:09:c5:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:00 2024 by rpki-client on console-ams.rpki-client.org