Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/WJSXULnk5L-oVf45WXAGQqFRmMI.roa
File: WJSXULnk5L-oVf45WXAGQqFRmMI.roa (raw, json)
Hash identifier: 9ca3BTlBV69ayAFqsTQg71UWGZY/5UQciGgraT2BZi4=
Subject key identifier: 58:94:97:50:B9:E4:E4:BF:A8:55:FE:39:59:70:06:42:A1:51:98:C2
Certificate issuer: /CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Certificate serial: 0182B74430DA85A499F819BD674D65962C2D
Authority key identifier: 7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/WJSXULnk5L-oVf45WXAGQqFRmMI.roa
Signing time: Fri 19 Aug 2022 18:01:15 +0000
ROA not before: Fri 19 Aug 2022 18:01:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8075
IP address blocks: 94.245.64.0/18 maxlen: 24
172.208.0.0/13 maxlen: 13
51.124.0.0/16 maxlen: 16
192.100.112.0/21 maxlen: 21
192.100.120.0/21 maxlen: 21
192.100.128.0/22 maxlen: 22
192.100.132.0/23 maxlen: 23
172.160.0.0/11 maxlen: 11
51.144.0.0/15 maxlen: 15
40.171.0.0/16 maxlen: 16
51.107.0.0/16 maxlen: 16
192.100.104.0/21 maxlen: 21
51.138.0.0/16 maxlen: 16
51.10.0.0/15 maxlen: 15
194.110.197.0/24 maxlen: 24
51.104.0.0/15 maxlen: 15
51.12.0.0/15 maxlen: 15
51.103.0.0/16 maxlen: 16
51.140.0.0/14 maxlen: 14
135.130.0.0/16 maxlen: 16
57.150.0.0/15 maxlen: 15
132.164.0.0/16 maxlen: 16
193.221.113.0/24 maxlen: 24
51.53.0.0/16 maxlen: 16
57.160.0.0/12 maxlen: 12
51.120.0.0/16 maxlen: 16
57.156.0.0/14 maxlen: 14
193.149.64.0/19 maxlen: 24
172.200.0.0/13 maxlen: 13
51.116.0.0/16 maxlen: 16
40.170.0.0/16 maxlen: 16
51.136.0.0/15 maxlen: 15
209.199.0.0/16 maxlen: 16
159.128.0.0/16 maxlen: 16
194.41.16.0/20 maxlen: 20
194.41.18.0/24 maxlen: 24
194.41.22.0/24 maxlen: 24
194.41.23.0/24 maxlen: 24
194.41.20.0/24 maxlen: 24
194.41.21.0/24 maxlen: 24
194.41.19.0/24 maxlen: 24
51.132.0.0/16 maxlen: 16
157.31.0.0/16 maxlen: 16
213.199.128.0/18 maxlen: 24
147.243.0.0/16 maxlen: 24
51.51.0.0/16 maxlen: 16
57.152.0.0/14 maxlen: 14
40.169.0.0/16 maxlen: 16
138.105.0.0/16 maxlen: 16
2a00:1c68::/29 maxlen: 29
2a01:111:4004::/48 maxlen: 48
2a01:111::/32 maxlen: 32
2a01:111:f000::/36 maxlen: 36
2a01:111:2000::/36 maxlen: 36
2a01:111:4000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b7:44:30:da:85:a4:99:f8:19:bd:67:4d:65:96:2c:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Validity
Not Before: Aug 19 18:01:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=58949750b9e4e4bfa855fe3959700642a15198c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a4:a7:9a:8d:b3:80:61:0d:09:33:73:72:ec:
4d:5d:c5:38:4c:f4:9c:8f:fb:d0:ef:5e:68:6a:65:
62:48:f4:2b:37:59:70:ca:50:6b:2a:4f:1c:bb:20:
20:b5:eb:87:6b:6d:79:0a:72:e6:1f:28:7c:02:fa:
46:3d:14:97:f5:2a:93:b2:39:7b:28:bb:22:a4:bc:
4f:0c:c1:c7:ef:64:4a:32:16:ae:8e:54:77:8b:ba:
f5:da:e6:4d:16:45:e3:2c:1e:80:65:b8:75:78:c6:
bc:01:86:52:9b:b1:a8:a9:c5:44:ef:c5:47:4d:49:
6c:4e:24:b9:f8:50:b7:3d:6a:3b:39:4a:a9:8a:1b:
91:87:bf:77:bc:0c:f0:7d:21:cb:f4:f3:77:0d:52:
3d:01:d9:33:f7:6c:94:af:c3:26:42:7f:76:31:81:
e5:61:a3:df:7e:ba:f3:4d:95:04:c4:a6:f9:75:c6:
72:8d:94:31:5d:6f:7e:db:35:87:37:ea:ee:30:d6:
c7:dc:f4:22:33:91:85:4e:b5:82:05:93:8d:28:72:
8d:fc:32:2e:1c:33:97:6b:3e:61:05:e2:ce:2d:41:
e4:a8:9e:c4:57:fd:4b:c3:a6:34:4e:80:3a:5d:da:
b6:b6:d1:ca:99:2d:cf:24:09:71:94:bd:31:15:2b:
33:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:94:97:50:B9:E4:E4:BF:A8:55:FE:39:59:70:06:42:A1:51:98:C2
X509v3 Authority Key Identifier:
keyid:7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/WJSXULnk5L-oVf45WXAGQqFRmMI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/fOaNr18IlFbA4dAiRTk1Maxbj8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
40.169.0.0-40.171.255.255
51.10.0.0-51.13.255.255
51.51.0.0/16
51.53.0.0/16
51.103.0.0-51.105.255.255
51.107.0.0/16
51.116.0.0/16
51.120.0.0/16
51.124.0.0/16
51.132.0.0/16
51.136.0.0-51.138.255.255
51.140.0.0-51.145.255.255
57.150.0.0-57.175.255.255
94.245.64.0/18
132.164.0.0/16
135.130.0.0/16
138.105.0.0/16
147.243.0.0/16
157.31.0.0/16
159.128.0.0/16
172.160.0.0/11
172.200.0.0-172.215.255.255
192.100.104.0-192.100.133.255
193.149.64.0/19
193.221.113.0/24
194.41.16.0/20
194.110.197.0/24
209.199.0.0/16
213.199.128.0/18
IPv6:
2a00:1c68::/29
2a01:111::/32
Signature Algorithm: sha256WithRSAEncryption
36:fe:a2:ef:d2:5e:d8:fb:04:df:21:e3:13:fd:a5:2f:ad:04:
91:f8:29:2f:1d:ba:f7:1a:59:a2:7f:a3:34:40:e9:21:37:54:
2e:2a:81:69:c6:b4:92:c6:5b:0d:40:55:68:bf:74:a3:8e:c6:
94:55:97:c1:b5:4c:39:83:8c:0c:2a:ee:7d:60:4e:58:a1:ff:
74:e8:76:50:08:07:3c:d9:43:16:70:af:29:24:27:81:05:3b:
fa:da:27:68:34:3e:cb:92:d9:9f:79:75:8c:df:e5:cb:04:77:
92:f3:ff:c3:f0:20:a7:63:62:a1:c8:b5:26:e2:d4:6a:e1:eb:
79:92:fd:7c:05:54:fb:3a:85:27:12:81:4b:51:6e:f3:22:fa:
d1:46:3d:2b:7b:db:42:ab:19:4d:dc:aa:92:22:a1:ff:21:d6:
54:96:bb:e1:ab:6c:9a:e5:0d:a2:e1:a7:33:45:d6:9a:8d:e8:
27:cd:29:91:db:28:aa:6f:79:18:f8:0b:5c:9d:0c:12:d9:fc:
74:7d:7e:a6:ae:82:fc:fb:d6:44:5a:44:0b:57:90:e4:40:e1:
7e:0b:0e:ce:28:26:fd:14:30:bd:ce:cb:00:ab:6e:0d:71:e1:
50:0d:21:bc:44:a8:bd:e7:7c:09:e8:0d:b4:53:73:d1:7b:e0:
75:56:3f:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:00 2024 by rpki-client on console-ams.rpki-client.org