Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/C_PIBXSmFhDKFFoD9xqyZS1X0MM.roa
File: C_PIBXSmFhDKFFoD9xqyZS1X0MM.roa (raw, json)
Hash identifier: 2HlRZhl6QO2NmmKxpJ8MfWHps4CH21WmOsgKz5j71ys=
Subject key identifier: 0B:F3:C8:05:74:A6:16:10:CA:14:5A:03:F7:1A:B2:65:2D:57:D0:C3
Certificate issuer: /CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Certificate serial: 018318EEC01AC09451223AD5B9A0422AD121
Authority key identifier: 7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/C_PIBXSmFhDKFFoD9xqyZS1X0MM.roa
Signing time: Wed 07 Sep 2022 17:10:43 +0000
ROA not before: Wed 07 Sep 2022 17:10:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8075
IP address blocks: 94.245.64.0/18 maxlen: 24
172.208.0.0/13 maxlen: 13
51.124.0.0/16 maxlen: 16
192.100.112.0/21 maxlen: 21
192.100.120.0/21 maxlen: 21
192.100.128.0/22 maxlen: 22
192.100.132.0/23 maxlen: 23
172.160.0.0/11 maxlen: 11
51.144.0.0/15 maxlen: 15
51.107.0.0/16 maxlen: 16
40.171.0.0/16 maxlen: 16
192.100.104.0/21 maxlen: 21
51.138.0.0/16 maxlen: 16
51.10.0.0/15 maxlen: 15
194.110.197.0/24 maxlen: 24
51.104.0.0/15 maxlen: 15
51.12.0.0/15 maxlen: 15
51.103.0.0/16 maxlen: 16
51.140.0.0/14 maxlen: 14
135.130.0.0/16 maxlen: 16
57.150.0.0/15 maxlen: 15
132.164.0.0/16 maxlen: 16
193.221.113.0/24 maxlen: 24
51.53.0.0/16 maxlen: 16
57.160.0.0/12 maxlen: 12
51.120.0.0/16 maxlen: 16
57.156.0.0/14 maxlen: 14
193.149.64.0/19 maxlen: 24
172.200.0.0/13 maxlen: 13
51.116.0.0/16 maxlen: 16
40.170.0.0/16 maxlen: 16
51.136.0.0/15 maxlen: 15
209.199.0.0/16 maxlen: 16
159.128.0.0/16 maxlen: 16
194.41.16.0/20 maxlen: 20
194.41.18.0/24 maxlen: 24
194.41.22.0/24 maxlen: 24
194.41.23.0/24 maxlen: 24
194.41.20.0/24 maxlen: 24
194.41.21.0/24 maxlen: 24
194.41.19.0/24 maxlen: 24
51.132.0.0/16 maxlen: 16
157.31.0.0/16 maxlen: 16
213.199.128.0/18 maxlen: 24
147.243.0.0/16 maxlen: 24
51.51.0.0/16 maxlen: 16
57.152.0.0/14 maxlen: 14
151.206.0.0/16 maxlen: 16
138.105.0.0/16 maxlen: 16
40.169.0.0/16 maxlen: 16
2a00:1c68::/29 maxlen: 29
2a01:111:4004::/48 maxlen: 48
2a01:111::/32 maxlen: 32
2a01:111:4000::/36 maxlen: 36
2a01:111:2000::/36 maxlen: 36
2a01:111:f000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:18:ee:c0:1a:c0:94:51:22:3a:d5:b9:a0:42:2a:d1:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Validity
Not Before: Sep 7 17:10:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0bf3c80574a61610ca145a03f71ab2652d57d0c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:8a:f8:98:55:0e:37:53:01:40:b5:d7:ca:60:
5d:72:d5:d4:76:5d:82:a1:e8:51:6c:a0:aa:7d:b0:
0f:31:f9:a3:16:4b:a9:18:3f:65:d3:1f:fa:3c:f2:
7d:2c:ad:61:b4:2d:65:21:c1:7b:9e:4a:0f:35:c5:
8e:d1:80:99:4c:a0:19:14:4d:3b:68:08:31:04:62:
cc:78:ec:7f:5f:34:d4:85:d7:54:37:52:52:aa:f7:
65:a1:9a:26:65:07:87:d1:7a:b5:78:70:54:a8:2b:
ca:db:01:16:9c:00:01:fb:e4:71:85:07:1b:60:41:
5f:e0:7f:87:d3:51:c1:e5:ae:58:7e:80:18:5d:57:
c5:32:8e:bb:1a:06:be:c9:f7:5c:af:2d:20:a2:91:
f5:5f:88:a3:a5:e8:38:06:16:f1:44:39:fb:2b:28:
18:77:7d:d7:22:a0:cf:e2:2c:65:d3:4a:09:5c:fb:
95:6a:4c:a4:1d:d2:97:e8:c4:a6:53:33:94:e9:18:
6b:24:0d:78:36:15:0d:bf:fd:de:11:c1:66:e8:14:
0c:4a:19:ba:e8:4f:bf:ae:cd:cc:62:f6:30:7e:61:
06:d1:c3:d6:a0:bc:3c:ab:83:29:c9:b8:c0:85:32:
2e:ab:9e:93:8d:cb:27:8d:7a:49:0e:11:c6:34:23:
1a:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:F3:C8:05:74:A6:16:10:CA:14:5A:03:F7:1A:B2:65:2D:57:D0:C3
X509v3 Authority Key Identifier:
keyid:7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/C_PIBXSmFhDKFFoD9xqyZS1X0MM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/fOaNr18IlFbA4dAiRTk1Maxbj8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
40.169.0.0-40.171.255.255
51.10.0.0-51.13.255.255
51.51.0.0/16
51.53.0.0/16
51.103.0.0-51.105.255.255
51.107.0.0/16
51.116.0.0/16
51.120.0.0/16
51.124.0.0/16
51.132.0.0/16
51.136.0.0-51.138.255.255
51.140.0.0-51.145.255.255
57.150.0.0-57.175.255.255
94.245.64.0/18
132.164.0.0/16
135.130.0.0/16
138.105.0.0/16
147.243.0.0/16
151.206.0.0/16
157.31.0.0/16
159.128.0.0/16
172.160.0.0/11
172.200.0.0-172.215.255.255
192.100.104.0-192.100.133.255
193.149.64.0/19
193.221.113.0/24
194.41.16.0/20
194.110.197.0/24
209.199.0.0/16
213.199.128.0/18
IPv6:
2a00:1c68::/29
2a01:111::/32
Signature Algorithm: sha256WithRSAEncryption
13:ac:20:a9:d2:9c:af:2f:ec:3f:db:95:fd:30:7c:cb:29:e2:
40:05:3b:0c:2c:50:a7:2b:88:bd:67:87:bc:3e:9f:eb:22:dc:
d4:bc:c9:11:23:9d:59:18:dc:ae:66:88:69:31:28:e4:88:41:
3a:80:db:7a:25:8d:1d:21:9c:0a:f2:0b:fb:33:8f:72:22:61:
4a:65:b5:b1:f7:9a:53:51:1d:91:e8:69:30:c1:a6:3b:f6:87:
0a:46:ba:68:25:8a:41:30:f1:fc:b7:3f:66:03:22:5f:4d:b2:
dd:56:ee:d0:85:1a:ae:1b:73:42:0a:67:02:a6:6e:4a:4b:57:
37:40:4d:68:1d:db:77:2b:05:38:9a:a4:0a:24:b8:3b:fd:f7:
ad:c1:96:74:63:92:8a:30:a6:f6:32:ac:b4:a6:63:da:82:4e:
7a:39:68:fc:76:92:e9:b6:49:00:53:5c:bf:37:8f:37:31:93:
e9:ca:8f:cc:d6:ba:a8:48:c7:fd:40:82:22:3a:7d:0b:9b:2b:
43:58:1e:5c:09:5d:5a:d5:1b:30:74:74:34:2d:d2:8a:38:a2:
c5:81:36:ba:f5:63:3b:19:87:df:68:70:ae:5e:74:f1:6d:62:
53:8d:ec:0c:2b:0b:2a:e4:ff:0e:85:f3:d3:cf:c0:80:1d:29:
29:b3:d8:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:32 2024 by rpki-client on console-fra.rpki-client.org