Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/JMMybmAiTHWMJ1dSTaVkb1Gjxhg.roa
File: JMMybmAiTHWMJ1dSTaVkb1Gjxhg.roa (raw, json)
Hash identifier: H72bF5FSezLQLMK36kaMHGyJDxo7fe4/kCgl//xeWxM=
Subject key identifier: 24:C3:32:6E:60:22:4C:75:8C:27:57:52:4D:A5:64:6F:51:A3:C6:18
Certificate issuer: /CN=c42708df93954aac601aef1835bd5d69245fb02f
Certificate serial: 42AC381A
Authority key identifier: C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/JMMybmAiTHWMJ1dSTaVkb1Gjxhg.roa
Signing time: Tue 15 Mar 2022 14:18:27 +0000
ROA not before: Tue 15 Mar 2022 14:18:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 45012
IP address blocks: 193.22.255.0/24 maxlen: 24
185.80.92.0/24 maxlen: 24
185.80.93.0/24 maxlen: 24
185.80.94.0/23 maxlen: 23
91.220.49.0/24 maxlen: 24
185.137.168.0/22 maxlen: 24
128.127.65.0/24 maxlen: 24
128.127.66.0/24 maxlen: 24
194.145.226.0/24 maxlen: 24
91.203.108.0/22 maxlen: 24
178.250.170.0/24 maxlen: 24
93.90.178.0/24 maxlen: 24
178.250.174.0/24 maxlen: 24
37.218.252.0/24 maxlen: 24
37.218.248.0/22 maxlen: 22
37.218.254.0/24 maxlen: 24
178.20.96.0/21 maxlen: 24
192.162.87.0/24 maxlen: 24
185.207.230.0/24 maxlen: 24
185.207.228.0/22 maxlen: 24
185.207.228.0/24 maxlen: 24
31.47.240.0/20 maxlen: 24
89.22.100.0/22 maxlen: 24
89.22.108.0/24 maxlen: 24
89.22.110.0/23 maxlen: 24
89.22.112.0/22 maxlen: 24
89.22.116.0/22 maxlen: 24
89.22.122.0/23 maxlen: 24
89.22.124.0/22 maxlen: 24
5.44.100.0/23 maxlen: 24
5.44.104.0/22 maxlen: 24
2a00:fa40:3000::/36 maxlen: 36
2a00:fa40:4000::/36 maxlen: 36
2a01:64c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1118582810 (0x42ac381a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c42708df93954aac601aef1835bd5d69245fb02f
Validity
Not Before: Mar 15 14:18:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24c3326e60224c758c2757524da5646f51a3c618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:09:7b:24:0f:46:62:13:3a:94:b8:c7:e4:82:
f1:78:6c:ee:2e:91:71:3f:4e:0a:91:f7:a0:ae:3f:
22:e4:1e:ba:6f:78:e0:45:20:c9:8f:83:38:f0:00:
61:ab:a0:a6:bf:36:93:b7:ea:6f:df:1d:89:d3:41:
82:b2:1a:4a:bd:cc:57:2b:29:f9:60:a2:25:ba:33:
f1:57:e7:32:a1:34:da:3c:3b:be:1d:d3:e7:fe:6f:
fd:3e:bc:da:be:dc:a3:95:04:81:d1:85:1b:9e:b8:
cf:ce:37:df:7a:b0:89:84:78:38:a0:c3:3a:65:e7:
39:e4:81:3b:12:d3:b9:a7:fa:2b:f5:7c:88:57:b1:
dd:4d:ed:12:0d:44:de:22:96:84:90:37:81:0a:8b:
87:47:d4:03:db:5f:1e:b1:14:7f:43:d7:06:2b:5d:
a6:b1:5e:92:6b:7e:e1:21:ad:1c:a9:89:81:f3:49:
b5:fb:ca:d8:2d:9f:9b:9b:ed:63:87:27:50:e3:dd:
21:41:e3:00:65:af:24:2c:53:6e:fc:86:e1:90:e0:
3d:e9:54:ca:fd:83:3a:64:ac:b0:38:39:61:13:76:
a7:b9:c3:d0:2e:1b:51:09:ff:fa:7a:57:fc:09:eb:
0b:9c:cc:6e:5f:de:58:1c:84:5c:19:59:18:74:db:
3a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:C3:32:6E:60:22:4C:75:8C:27:57:52:4D:A5:64:6F:51:A3:C6:18
X509v3 Authority Key Identifier:
keyid:C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/JMMybmAiTHWMJ1dSTaVkb1Gjxhg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/xCcI35OVSqxgGu8YNb1daSRfsC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.100.0/23
5.44.104.0/22
31.47.240.0/20
37.218.248.0-37.218.252.255
37.218.254.0/24
89.22.100.0/22
89.22.108.0/24
89.22.110.0-89.22.119.255
89.22.122.0-89.22.127.255
91.203.108.0/22
91.220.49.0/24
93.90.178.0/24
128.127.65.0-128.127.66.255
178.20.96.0/21
178.250.170.0/24
178.250.174.0/24
185.80.92.0/22
185.137.168.0/22
185.207.228.0/22
192.162.87.0/24
193.22.255.0/24
194.145.226.0/24
IPv6:
2a00:fa40:3000::-2a00:fa40:4fff:ffff:ffff:ffff:ffff:ffff
2a01:64c0::/32
Signature Algorithm: sha256WithRSAEncryption
00:c7:13:be:09:6a:9b:33:04:64:e0:85:d1:da:6d:11:4e:6b:
0e:db:26:2d:ee:21:72:56:13:cc:37:1c:73:0f:ff:37:c2:27:
bf:68:79:0b:34:22:06:69:4a:47:df:cf:62:60:b6:33:05:bf:
c6:14:a5:3f:33:12:e6:8c:d1:2c:60:70:f1:63:25:e7:d9:fb:
d3:d6:b4:0e:46:f6:b2:72:e1:bf:25:02:7e:56:a0:a7:b9:65:
84:69:fa:e8:81:54:4a:8a:5d:c8:65:82:94:ba:0f:12:d5:85:
07:ed:94:5d:82:c6:6e:55:5d:b3:78:c6:34:8f:ab:8d:62:ee:
46:5d:09:77:1e:76:6f:67:c0:54:40:5b:c9:e0:15:a9:7e:5f:
4d:fb:ce:a5:c2:2c:f6:b0:df:18:d1:81:b1:12:69:69:dc:fd:
56:8a:37:62:25:1b:7c:81:d0:9e:e2:c7:8d:c1:9c:5a:e1:d8:
43:86:c6:d4:60:6b:4e:f1:d3:00:db:b4:18:19:09:58:d2:31:
64:75:52:c8:19:af:d5:ea:9d:7e:62:76:11:13:ec:5a:55:e2:
cf:31:35:31:c0:02:17:95:de:fb:08:75:35:dd:8d:b9:ae:61:
ba:57:d7:0f:f1:64:ed:ff:9c:61:60:70:86:63:e9:84:88:66:
b3:cc:85:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:44 2024 by rpki-client on console-fra.rpki-client.org