Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/f21ee7-4925-4dd6-b202-64278c0d8ebf/1/Ol1V_lQIUvw4Ln7ly8RcEnW2ObM.roa
File: Ol1V_lQIUvw4Ln7ly8RcEnW2ObM.roa (raw, json)
Hash identifier: 8Ojcxz2dFHdQKYOTnYRA0eIrH/UvtkEAXd6yab9zlGM=
Subject key identifier: 3A:5D:55:FE:54:08:52:FC:38:2E:7E:E5:CB:C4:5C:12:75:B6:39:B3
Certificate issuer: /CN=54d6ff134bd656f0ce14d410b02bec551eb69a2c
Certificate serial: 0182C9E270C6FBD9D110DBFE88EEDC69843C
Authority key identifier: 54:D6:FF:13:4B:D6:56:F0:CE:14:D4:10:B0:2B:EC:55:1E:B6:9A:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VNb_E0vWVvDOFNQQsCvsVR62miw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/f21ee7-4925-4dd6-b202-64278c0d8ebf/1/Ol1V_lQIUvw4Ln7ly8RcEnW2ObM.roa
Signing time: Tue 23 Aug 2022 08:47:16 +0000
ROA not before: Tue 23 Aug 2022 08:47:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35394
IP address blocks: 185.220.44.0/22 maxlen: 22
185.196.56.0/22 maxlen: 22
185.186.28.0/22 maxlen: 22
185.236.168.0/22 maxlen: 22
185.172.168.0/22 maxlen: 22
185.93.152.0/22 maxlen: 22
193.27.246.0/23 maxlen: 23
193.27.248.0/23 maxlen: 23
185.245.176.0/24 maxlen: 24
80.67.44.0/22 maxlen: 22
185.245.177.0/24 maxlen: 24
185.245.178.0/24 maxlen: 24
185.245.179.0/24 maxlen: 24
213.217.24.0/22 maxlen: 22
185.79.36.0/22 maxlen: 22
45.85.136.0/22 maxlen: 22
185.72.44.0/22 maxlen: 22
185.143.96.0/22 maxlen: 22
185.240.232.0/22 maxlen: 22
130.185.88.0/21 maxlen: 21
193.161.220.0/22 maxlen: 22
194.61.16.0/22 maxlen: 22
185.93.44.0/22 maxlen: 22
185.217.204.0/22 maxlen: 22
2a03:3d60::/29 maxlen: 29
2a0c:8f80::/29 maxlen: 29
2a09:5000::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c9:e2:70:c6:fb:d9:d1:10:db:fe:88:ee:dc:69:84:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54d6ff134bd656f0ce14d410b02bec551eb69a2c
Validity
Not Before: Aug 23 08:47:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3a5d55fe540852fc382e7ee5cbc45c1275b639b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:cf:99:17:96:8e:d3:a8:d7:7b:25:a3:47:b6:
ad:d4:c6:d8:42:5d:82:97:2b:2c:91:b5:96:c6:af:
26:a5:94:0a:cd:65:89:fb:b8:79:b3:54:75:b2:83:
ab:dc:18:5e:e3:54:fd:77:16:54:4c:8f:af:5d:9d:
c0:a7:18:5a:34:c1:61:87:77:c3:2f:98:37:66:dd:
ab:04:b7:13:36:03:35:ac:68:3d:60:63:06:d5:44:
eb:f3:b0:57:63:89:34:d6:86:f5:34:69:06:90:ad:
3c:5c:b6:5c:6d:a2:7f:94:c4:b5:74:e4:59:d3:64:
fb:da:02:3e:b7:77:85:49:44:d1:c8:ed:09:5f:b3:
b2:b7:ae:81:c0:51:87:02:08:56:07:bc:d3:17:0c:
df:ff:5d:7a:39:36:f0:c6:39:99:1f:60:7f:02:ae:
29:e3:52:9b:a3:d5:1f:0f:32:ad:c4:eb:46:9b:48:
c1:c0:07:e2:7d:33:b6:fb:9b:2c:f6:6a:43:42:9b:
be:7b:fd:48:a7:3d:c3:67:b1:38:79:3c:3d:09:49:
06:e1:50:75:67:38:cc:c4:35:18:e0:7d:d9:96:76:
fe:73:9a:3b:62:aa:73:63:2c:58:cc:be:eb:35:50:
05:49:47:41:9c:c5:0d:5c:43:e3:33:da:77:ca:76:
d4:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:5D:55:FE:54:08:52:FC:38:2E:7E:E5:CB:C4:5C:12:75:B6:39:B3
X509v3 Authority Key Identifier:
keyid:54:D6:FF:13:4B:D6:56:F0:CE:14:D4:10:B0:2B:EC:55:1E:B6:9A:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VNb_E0vWVvDOFNQQsCvsVR62miw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/f21ee7-4925-4dd6-b202-64278c0d8ebf/1/Ol1V_lQIUvw4Ln7ly8RcEnW2ObM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/f21ee7-4925-4dd6-b202-64278c0d8ebf/1/VNb_E0vWVvDOFNQQsCvsVR62miw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.136.0/22
80.67.44.0/22
130.185.88.0/21
185.72.44.0/22
185.79.36.0/22
185.93.44.0/22
185.93.152.0/22
185.143.96.0/22
185.172.168.0/22
185.186.28.0/22
185.196.56.0/22
185.217.204.0/22
185.220.44.0/22
185.236.168.0/22
185.240.232.0/22
185.245.176.0/22
193.27.246.0-193.27.249.255
193.161.220.0/22
194.61.16.0/22
213.217.24.0/22
IPv6:
2a03:3d60::/29
2a09:5000::/29
2a0c:8f80::/29
Signature Algorithm: sha256WithRSAEncryption
2f:83:15:15:2c:11:e9:35:8f:43:a9:54:68:0c:10:eb:da:d2:
72:ed:8b:81:bc:03:bf:c7:25:1c:2f:23:7f:7a:3b:96:44:58:
d9:81:f7:8d:c5:02:52:cc:1d:ee:50:06:25:c7:65:81:29:97:
6e:0f:3d:17:5e:ff:64:e9:8f:f3:2f:b7:a2:43:b4:52:74:2d:
db:f0:3a:d9:df:b5:eb:65:49:22:c3:af:8d:47:50:c1:ab:32:
7a:98:9d:13:6c:ed:a6:fb:21:37:9a:f3:09:4f:59:63:65:ae:
33:52:0b:6c:e5:a9:46:67:34:7e:68:23:d5:de:15:c4:58:3a:
de:24:a5:5b:f3:b6:36:d7:fa:96:b9:95:f7:c5:1c:e1:f3:52:
a5:6a:f5:41:3c:a6:a6:c3:8b:10:25:9d:05:d3:29:f5:de:5d:
1b:34:f0:eb:47:52:29:84:1b:2d:7c:1c:2c:15:53:31:fe:d8:
44:34:d9:1a:bf:53:45:87:09:14:22:67:13:09:df:43:5c:07:
bc:0a:d5:e4:19:85:0c:73:40:7b:c0:a4:d3:4a:fb:a6:82:e7:
df:c3:13:f2:ed:68:26:8d:96:47:32:2d:96:cc:63:84:4e:8b:
70:e6:0d:54:d8:77:f3:cd:26:44:76:5e:57:c0:2a:ce:45:64:
79:78:d9:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:32 2024 by rpki-client on console-ams.rpki-client.org