Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/Lu10bL7hmW-WqzhtBH7fSvSQHl8.roa
File: Lu10bL7hmW-WqzhtBH7fSvSQHl8.roa (raw, json)
Hash identifier: g1UlPzP+iSrMiEhjJ82P6q38zqE13/biGpmYhmRsaI4=
Subject key identifier: 2E:ED:74:6C:BE:E1:99:6F:96:AB:38:6D:04:7E:DF:4A:F4:90:1E:5F
Certificate issuer: /CN=922208b47b6a864d9d1ff33e06aa81d13819a74e
Certificate serial: 0189EDBAF0EF43C471A30230F1000CBC9CB1
Authority key identifier: 92:22:08:B4:7B:6A:86:4D:9D:1F:F3:3E:06:AA:81:D1:38:19:A7:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kiIItHtqhk2dH_M-BqqB0TgZp04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/Lu10bL7hmW-WqzhtBH7fSvSQHl8.roa
Signing time: Sun 13 Aug 2023 07:09:58 +0000
ROA not before: Sun 13 Aug 2023 07:09:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203020
IP address blocks: 45.144.88.0/22 maxlen: 24
87.239.254.0/24 maxlen: 32
45.149.28.0/22 maxlen: 24
89.44.205.0/24 maxlen: 32
185.147.140.0/22 maxlen: 32
91.228.216.0/24 maxlen: 24
185.36.254.0/24 maxlen: 32
185.217.64.0/22 maxlen: 22
185.166.84.0/24 maxlen: 32
86.105.183.0/24 maxlen: 32
185.188.63.0/24 maxlen: 32
185.188.61.0/24 maxlen: 24
94.46.206.0/24 maxlen: 32
185.184.228.0/24 maxlen: 32
185.201.188.0/24 maxlen: 24
89.40.24.0/24 maxlen: 32
185.152.248.0/22 maxlen: 32
5.154.174.0/24 maxlen: 24
80.246.30.0/24 maxlen: 32
45.156.224.0/22 maxlen: 32
185.153.151.0/24 maxlen: 32
188.119.154.0/24 maxlen: 32
185.160.44.0/22 maxlen: 32
185.96.162.0/24 maxlen: 32
45.95.24.0/22 maxlen: 32
185.152.36.0/22 maxlen: 32
89.35.249.0/24 maxlen: 32
185.108.104.0/24 maxlen: 32
185.108.105.0/24 maxlen: 32
195.47.194.0/24 maxlen: 32
2a06:4a00::/29 maxlen: 32
2a05:28c0::/29 maxlen: 32
2a06:5700::/29 maxlen: 32
2a01:4740::/32 maxlen: 32
2a06:46c0::/29 maxlen: 32
2a06:5000::/29 maxlen: 32
2a05:f4c0::/29 maxlen: 29
2a06:3040::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ed:ba:f0:ef:43:c4:71:a3:02:30:f1:00:0c:bc:9c:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=922208b47b6a864d9d1ff33e06aa81d13819a74e
Validity
Not Before: Aug 13 07:09:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2eed746cbee1996f96ab386d047edf4af4901e5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:f1:e0:c5:8d:79:92:9d:8f:2c:8d:f9:09:d1:
6c:7a:1a:1a:42:e6:f6:4b:4d:c7:95:54:e9:43:87:
ae:34:15:ff:96:47:06:0f:9b:54:bc:70:ba:d8:3b:
a0:47:18:89:70:a8:53:b1:91:98:1d:13:02:0d:63:
1d:31:91:f3:07:a6:4f:bb:96:4c:5c:9d:05:cb:83:
5b:7e:f1:67:be:8a:1c:dd:32:0c:af:8e:f6:79:07:
eb:2c:27:79:db:3b:b2:99:62:82:7b:5d:f4:b4:31:
ae:95:1a:a8:1e:6c:00:c6:62:3c:d7:23:98:2f:5a:
d5:8e:b0:f5:be:74:f9:2a:e1:c1:fd:5d:7c:19:ce:
b2:5d:94:9b:28:05:ac:20:46:5c:f5:62:88:fb:5c:
05:61:15:2f:d4:b6:43:48:ee:b1:68:73:3d:b1:3b:
8e:dd:30:3f:e4:48:87:0b:c3:c8:48:6e:f0:aa:5e:
90:6e:30:c7:b6:a0:70:6c:03:af:9b:78:4d:22:2d:
e7:3a:db:15:54:a3:6e:43:20:37:65:5b:70:2f:8e:
26:e2:a8:2b:5a:40:5c:89:0e:ed:f4:07:65:73:ab:
9e:14:73:66:aa:f6:b4:d6:12:e2:23:25:ff:b5:7b:
7c:c9:2c:eb:26:86:05:d4:1d:5d:8b:52:59:7e:48:
5c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:ED:74:6C:BE:E1:99:6F:96:AB:38:6D:04:7E:DF:4A:F4:90:1E:5F
X509v3 Authority Key Identifier:
keyid:92:22:08:B4:7B:6A:86:4D:9D:1F:F3:3E:06:AA:81:D1:38:19:A7:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kiIItHtqhk2dH_M-BqqB0TgZp04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/Lu10bL7hmW-WqzhtBH7fSvSQHl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/kiIItHtqhk2dH_M-BqqB0TgZp04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.154.174.0/24
45.95.24.0/22
45.144.88.0/22
45.149.28.0/22
45.156.224.0/22
80.246.30.0/24
86.105.183.0/24
87.239.254.0/24
89.35.249.0/24
89.40.24.0/24
89.44.205.0/24
91.228.216.0/24
94.46.206.0/24
185.36.254.0/24
185.96.162.0/24
185.108.104.0/23
185.147.140.0/22
185.152.36.0/22
185.152.248.0/22
185.153.151.0/24
185.160.44.0/22
185.166.84.0/24
185.184.228.0/24
185.188.61.0/24
185.188.63.0/24
185.201.188.0/24
185.217.64.0/22
188.119.154.0/24
195.47.194.0/24
IPv6:
2a01:4740::/32
2a05:28c0::/29
2a05:f4c0::/29
2a06:3040::/29
2a06:46c0::/29
2a06:4a00::/29
2a06:5000::/29
2a06:5700::/29
Signature Algorithm: sha256WithRSAEncryption
89:da:16:bf:5d:13:28:e3:5a:b6:71:c0:5f:f1:7f:72:c6:ce:
e1:46:33:04:31:d5:6a:12:00:69:2b:ac:3d:49:31:4b:5c:95:
22:82:52:87:51:4f:06:d2:fb:84:c6:ac:26:42:b5:18:b5:43:
eb:fa:7a:9c:d3:0d:8b:c8:c3:b3:55:af:60:1c:59:33:03:86:
86:0b:3f:a7:0b:b8:6f:e2:e5:10:d0:dd:c3:ae:fb:8a:f2:d5:
c2:63:5b:0f:62:3f:fe:19:34:ea:e1:83:20:11:05:e1:cb:ee:
4b:4e:03:b2:9a:8d:9a:07:be:7f:35:fc:9a:d5:ef:c6:38:5d:
0a:84:3d:91:97:30:be:1d:53:cc:f4:52:4a:9c:24:1c:2a:03:
59:12:e8:3f:e0:c4:c2:77:b5:ea:6a:09:b5:9c:75:6f:13:1c:
91:d6:eb:cf:f4:88:c9:cd:98:e2:82:e5:57:73:4e:f5:80:f3:
0e:ad:8f:7f:18:24:59:9a:67:15:6d:49:fc:96:a2:d1:9a:01:
24:61:0e:32:2c:70:bb:24:95:f6:86:1f:b3:1e:55:ef:00:d4:
23:a5:6c:94:fa:11:98:e7:91:1b:80:86:bb:be:bc:33:df:5f:
79:5e:1e:f5:49:2a:62:3a:44:bf:16:89:35:2a:8c:02:17:c8:
d3:24:3c:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 15:07:04 2025 by rpki-client