Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/SSBxe8ubr6jjsytb8Go540SeVHg.roa
File: SSBxe8ubr6jjsytb8Go540SeVHg.roa (raw, json)
Hash identifier: WPJyDm8RrlQa/vOgh+bOW9db6a9Vt8tDdSt5TIMIFlc=
Subject key identifier: 49:20:71:7B:CB:9B:AF:A8:E3:B3:2B:5B:F0:6A:39:E3:44:9E:54:78
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 01852B6AA0805816DC93CB2AC8C4F01F4A54
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/SSBxe8ubr6jjsytb8Go540SeVHg.roa
Signing time: Mon 19 Dec 2022 17:24:46 +0000
ROA not before: Mon 19 Dec 2022 17:24:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 85.133.227.0/24 maxlen: 24
85.133.228.0/24 maxlen: 24
85.133.233.0/24 maxlen: 24
85.133.234.0/24 maxlen: 24
85.133.237.0/24 maxlen: 24
85.133.238.0/24 maxlen: 24
85.133.236.0/24 maxlen: 24
85.133.241.0/24 maxlen: 24
85.133.242.0/24 maxlen: 24
85.133.250.0/24 maxlen: 24
85.133.253.0/24 maxlen: 24
85.133.174.0/24 maxlen: 24
85.133.178.0/24 maxlen: 24
85.133.179.0/24 maxlen: 24
85.133.194.0/24 maxlen: 24
85.133.199.0/24 maxlen: 24
85.133.205.0/24 maxlen: 24
85.133.208.0/24 maxlen: 24
85.133.216.0/24 maxlen: 24
85.133.217.0/24 maxlen: 24
85.133.215.0/24 maxlen: 24
85.133.219.0/24 maxlen: 24
85.133.221.0/24 maxlen: 24
85.133.132.0/24 maxlen: 24
85.133.136.0/24 maxlen: 24
85.133.137.0/24 maxlen: 24
85.133.135.0/24 maxlen: 24
85.133.143.0/24 maxlen: 24
85.133.146.0/24 maxlen: 24
85.133.151.0/24 maxlen: 24
85.133.153.0/24 maxlen: 24
85.133.166.0/24 maxlen: 24
85.133.160.0/24 maxlen: 24
85.133.161.0/24 maxlen: 24
85.133.165.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2b:6a:a0:80:58:16:dc:93:cb:2a:c8:c4:f0:1f:4a:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Dec 19 17:24:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4920717bcb9bafa8e3b32b5bf06a39e3449e5478
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:59:41:89:b9:70:c7:7f:cd:7b:26:c5:3b:03:
37:fa:77:b8:14:2f:29:06:6d:f4:6b:88:7a:02:5f:
76:3d:09:96:11:a3:58:3e:20:99:31:d6:0f:cf:c6:
4c:6e:f1:0f:6d:d9:1c:d9:7b:d0:28:e2:f5:10:5e:
bc:98:51:96:1f:1a:8b:ff:ed:b5:ee:99:21:78:b3:
e7:70:99:ca:e6:2c:d3:f0:da:f8:c9:65:54:50:41:
ee:8c:33:8d:19:b4:58:3d:bf:c3:7d:eb:b4:47:58:
00:90:e0:bd:69:b3:ec:74:3b:44:c3:fd:47:25:43:
0d:35:5f:ad:e1:ad:0c:cd:ae:24:7f:af:f3:83:8a:
d8:63:9f:7e:59:f7:40:77:ce:24:b6:ee:66:45:28:
8b:a7:f2:b3:f8:97:6b:c0:2d:c8:e8:36:43:97:85:
60:0e:85:8e:0b:bf:56:34:f7:b2:78:3a:41:a4:b2:
d2:75:8e:70:ea:a6:4e:cb:6c:25:e7:eb:83:45:71:
ab:1b:0e:e2:0d:f1:4e:d9:2b:4c:8f:43:0c:6c:0e:
6b:6d:7c:a4:c2:bd:3c:03:83:86:ca:4c:6e:27:7a:
02:83:90:21:93:6a:02:cf:45:66:a4:7e:57:86:9d:
3b:1f:f2:02:53:99:47:34:9c:41:5f:90:40:7c:71:
3e:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:20:71:7B:CB:9B:AF:A8:E3:B3:2B:5B:F0:6A:39:E3:44:9E:54:78
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/SSBxe8ubr6jjsytb8Go540SeVHg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.132.0/24
85.133.135.0-85.133.137.255
85.133.143.0/24
85.133.146.0/24
85.133.151.0/24
85.133.153.0/24
85.133.160.0/23
85.133.165.0-85.133.166.255
85.133.174.0/24
85.133.178.0/23
85.133.194.0/24
85.133.199.0/24
85.133.205.0/24
85.133.208.0/24
85.133.215.0-85.133.217.255
85.133.219.0/24
85.133.221.0/24
85.133.227.0-85.133.228.255
85.133.233.0-85.133.234.255
85.133.236.0-85.133.238.255
85.133.241.0-85.133.242.255
85.133.250.0/24
85.133.253.0/24
Signature Algorithm: sha256WithRSAEncryption
67:9a:67:cc:f1:80:6b:32:de:41:ea:13:51:71:5e:a4:cc:7c:
08:50:50:89:09:97:7e:74:a2:02:6d:09:5f:8a:5d:e6:f6:fc:
fd:4c:29:0b:de:06:77:9a:63:a7:f9:62:8d:94:e9:c9:d2:32:
18:f8:cb:9e:dc:8d:d4:db:e1:d9:81:9f:27:42:64:76:6a:8f:
72:2c:49:a3:3c:3e:b6:e3:42:f6:ad:8c:7c:3a:54:64:b2:e6:
b5:9d:bd:95:42:e2:90:47:6c:04:8c:3a:c5:d8:ae:95:5b:3b:
d4:9e:c8:6d:3a:02:a6:e6:e2:c2:6f:dc:84:86:68:6a:e9:12:
af:35:57:c7:cb:c0:59:44:c7:3a:57:76:d3:c0:b3:1a:bd:f4:
2a:08:fa:d6:b0:8e:04:7c:37:ca:9c:a0:c2:87:7c:d4:62:27:
c0:88:27:e2:ef:f8:a7:ea:48:82:d5:f5:4f:b9:7d:9c:f6:8f:
e0:d3:16:de:94:f5:b6:79:e7:d7:3f:f6:15:2c:ac:5e:80:28:
4b:59:57:c4:ed:81:53:9d:02:66:9d:9b:09:3b:aa:ab:ea:35:
88:cd:41:17:7e:69:10:56:3d:cb:89:a6:36:cf:2c:54:79:fb:
75:d2:2c:ea:87:c5:b9:d0:19:b3:c3:8b:0b:ab:28:94:4d:4c:
81:4a:e0:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:01 2024 by rpki-client on console-ams.rpki-client.org