Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/1-2ypznnlJULgK18yI3i6rXMpZKk.roa
File: 1-2ypznnlJULgK18yI3i6rXMpZKk.roa (raw, json)
Hash identifier: vjFPLorf4Die7y1kvdCSxdAw1nnI2+pIiIDY0ttKAfM=
Subject key identifier: FB:6C:A9:CE:79:E5:25:42:E0:2B:5F:32:23:78:BA:AD:73:29:64:A9
Certificate issuer: /CN=e138ec242a43e9c9d4ceb25dc90e5453373d3f46
Certificate serial: 369BFEFC
Authority key identifier: E1:38:EC:24:2A:43:E9:C9:D4:CE:B2:5D:C9:0E:54:53:37:3D:3F:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/1-2ypznnlJULgK18yI3i6rXMpZKk.roa
Signing time: Sun 20 Mar 2022 20:19:23 +0000
ROA not before: Sun 20 Mar 2022 20:19:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43350
IP address blocks: 185.107.44.0/22 maxlen: 22
109.201.128.0/19 maxlen: 19
185.107.45.0/24 maxlen: 24
185.107.56.0/22 maxlen: 22
185.107.68.0/22 maxlen: 22
185.107.80.0/22 maxlen: 22
185.107.37.0/24 maxlen: 24
185.107.36.0/24 maxlen: 24
185.107.38.0/24 maxlen: 24
212.92.112.0/21 maxlen: 21
212.92.120.0/22 maxlen: 22
212.92.124.0/23 maxlen: 23
92.114.100.0/24 maxlen: 24
92.114.100.0/22 maxlen: 22
89.38.160.0/22 maxlen: 22
85.159.232.0/21 maxlen: 24
46.166.176.0/20 maxlen: 21
37.143.32.0/21 maxlen: 24
185.107.92.0/22 maxlen: 22
185.107.100.0/22 maxlen: 24
185.107.116.0/22 maxlen: 24
46.166.128.0/19 maxlen: 24
212.92.104.0/21 maxlen: 21
185.11.144.0/24 maxlen: 24
37.156.228.0/24 maxlen: 24
188.209.57.0/24 maxlen: 24
188.209.56.0/24 maxlen: 24
188.209.55.0/24 maxlen: 24
37.153.168.0/22 maxlen: 22
77.247.176.0/24 maxlen: 24
77.247.176.0/21 maxlen: 21
5.104.136.0/21 maxlen: 24
185.7.76.0/22 maxlen: 22
176.126.232.0/24 maxlen: 24
176.126.233.0/24 maxlen: 24
2a00:1768::/32 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 916193020 (0x369bfefc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e138ec242a43e9c9d4ceb25dc90e5453373d3f46
Validity
Not Before: Mar 20 20:19:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb6ca9ce79e52542e02b5f322378baad732964a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:52:74:02:74:27:8c:d4:ac:44:80:c2:b7:3b:
24:2f:a4:7f:88:b4:64:46:bb:42:ec:ae:de:b9:7d:
97:6a:bc:3c:f0:1b:99:4d:da:e5:43:a3:47:c0:41:
4c:7e:94:6d:a1:da:63:15:48:77:38:5d:a1:e0:c8:
c7:de:ce:a9:2a:69:61:a0:da:a6:47:cc:b7:fa:a4:
05:95:4e:26:aa:75:90:b1:23:eb:71:cf:8d:10:25:
7e:9e:cc:df:dd:a7:5f:94:bd:ee:f6:87:7e:c8:53:
08:35:c8:a8:3d:87:1b:32:50:65:0f:ae:2e:b2:4e:
41:78:a7:25:55:0a:79:0e:b3:6a:d5:5b:16:08:37:
3a:78:7a:76:16:01:aa:b9:3c:e1:15:30:ab:34:d3:
17:a6:2c:07:32:00:a1:9a:0e:a9:dd:c6:09:a5:e8:
f6:52:df:df:a2:f6:ce:5c:93:9c:5a:85:38:06:8b:
c9:aa:23:da:36:62:5a:b6:2c:65:91:70:03:d0:40:
e4:30:95:80:07:f8:7c:ff:ea:a1:57:21:92:04:36:
bb:21:84:22:64:dc:c4:64:5b:82:09:4e:0f:23:05:
92:c9:49:cc:33:68:0c:98:32:7b:4a:1d:41:a8:17:
aa:7c:f2:4f:54:bf:0a:e6:1b:81:81:3e:53:09:7d:
3f:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:6C:A9:CE:79:E5:25:42:E0:2B:5F:32:23:78:BA:AD:73:29:64:A9
X509v3 Authority Key Identifier:
keyid:E1:38:EC:24:2A:43:E9:C9:D4:CE:B2:5D:C9:0E:54:53:37:3D:3F:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/1-2ypznnlJULgK18yI3i6rXMpZKk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.136.0/21
37.143.32.0/21
37.153.168.0/22
37.156.228.0/24
46.166.128.0/19
46.166.176.0/20
77.247.176.0/21
85.159.232.0/21
89.38.160.0/22
92.114.100.0/22
109.201.128.0/19
176.126.232.0/23
185.7.76.0/22
185.11.144.0/24
185.107.36.0-185.107.38.255
185.107.44.0/22
185.107.56.0/22
185.107.68.0/22
185.107.80.0/22
185.107.92.0/22
185.107.100.0/22
185.107.116.0/22
188.209.55.0-188.209.57.255
212.92.104.0-212.92.125.255
IPv6:
2a00:1768::/32
Signature Algorithm: sha256WithRSAEncryption
a7:56:9e:6f:1d:68:79:5b:51:c3:a1:f1:12:2a:a4:f3:53:c9:
f9:25:7d:07:ac:20:34:ff:df:2d:20:59:d7:68:d0:b2:00:6e:
3b:cd:58:1c:e2:18:63:0d:40:68:ad:25:5c:c0:25:b8:9f:6c:
86:8e:27:cd:33:11:b3:e4:3c:a1:66:c5:65:b6:ba:62:1f:83:
d3:d0:cf:f1:ed:09:94:1c:12:34:ad:a5:75:30:75:a7:31:fe:
df:6e:34:fc:3f:f5:7c:15:fa:bc:c9:90:ad:5c:fb:13:6d:5c:
51:2f:c0:1e:eb:57:80:cf:24:7b:73:90:91:d5:2a:d4:0f:04:
97:63:e8:b4:f2:b1:6f:87:b2:9d:27:35:d1:30:8e:c6:44:fc:
0a:75:59:ac:ff:82:94:e9:92:3a:12:fd:81:5b:ad:76:d6:99:
06:e4:7f:c4:ec:c5:34:3c:28:5b:13:28:d7:b1:f9:14:25:50:
4a:45:82:19:0f:3b:68:02:c9:44:31:18:72:57:ab:77:12:35:
94:5e:05:71:63:02:f1:64:35:e5:33:c1:80:69:20:44:3a:25:
0c:ac:53:b4:9b:d1:af:e4:ae:b3:15:4d:3c:c3:9d:bf:d6:a1:
63:c5:88:92:b8:3b:bf:86:d4:ee:89:0f:4b:a5:81:57:1f:ab:
84:29:99:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:11 2024 by rpki-client on console-ams.rpki-client.org