Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/0988af-8d7f-4c29-b5cc-7aab6ef955a1/1/C9tfQn1cpiyx4WaZLmjH4IcRFpA.roa
File: C9tfQn1cpiyx4WaZLmjH4IcRFpA.roa (raw, json)
Hash identifier: FcxYuBWsByRe47l6IGPx1wPhx/UVIkVj3LCZ0uYx2Xw=
Subject key identifier: 0B:DB:5F:42:7D:5C:A6:2C:B1:E1:66:99:2E:68:C7:E0:87:11:16:90
Certificate issuer: /CN=624c494f56193b4e9adf3db72e4f01978c587f18
Certificate serial: 03E13A68
Authority key identifier: 62:4C:49:4F:56:19:3B:4E:9A:DF:3D:B7:2E:4F:01:97:8C:58:7F:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YkxJT1YZO06a3z23Lk8Bl4xYfxg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/0988af-8d7f-4c29-b5cc-7aab6ef955a1/1/C9tfQn1cpiyx4WaZLmjH4IcRFpA.roa
Signing time: Sat 01 Jan 2022 04:56:47 +0000
ROA not before: Sat 01 Jan 2022 04:56:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57363
IP address blocks: 91.231.234.0/24 maxlen: 24
91.231.235.0/24 maxlen: 24
91.231.236.0/24 maxlen: 24
91.231.237.0/24 maxlen: 24
91.231.239.0/24 maxlen: 24
91.238.108.0/24 maxlen: 24
91.238.109.0/24 maxlen: 24
91.238.110.0/24 maxlen: 24
185.31.112.0/24 maxlen: 24
185.31.114.0/24 maxlen: 24
185.31.115.0/24 maxlen: 24
91.240.170.0/24 maxlen: 24
91.240.168.0/24 maxlen: 24
91.240.169.0/24 maxlen: 24
151.236.109.0/24 maxlen: 24
151.236.110.0/23 maxlen: 23
151.236.111.0/24 maxlen: 24
151.236.106.0/24 maxlen: 24
151.236.107.0/24 maxlen: 24
151.236.113.0/24 maxlen: 24
151.236.122.0/23 maxlen: 23
151.236.123.0/24 maxlen: 24
151.236.125.0/24 maxlen: 24
151.236.64.0/24 maxlen: 24
151.236.65.0/24 maxlen: 24
151.236.67.0/24 maxlen: 24
151.236.68.0/24 maxlen: 24
151.236.69.0/24 maxlen: 24
151.236.70.0/24 maxlen: 24
151.236.74.0/24 maxlen: 24
151.236.75.0/24 maxlen: 24
151.236.76.0/22 maxlen: 22
151.236.77.0/24 maxlen: 24
151.236.72.0/24 maxlen: 24
151.236.73.0/24 maxlen: 24
151.236.81.0/24 maxlen: 24
151.236.83.0/24 maxlen: 24
151.236.84.0/24 maxlen: 24
151.236.85.0/24 maxlen: 24
151.236.80.0/24 maxlen: 24
151.236.89.0/24 maxlen: 24
151.236.90.0/24 maxlen: 24
151.236.91.0/24 maxlen: 24
151.236.86.0/24 maxlen: 24
151.236.87.0/24 maxlen: 24
151.236.95.0/24 maxlen: 24
151.236.96.0/24 maxlen: 24
151.236.97.0/24 maxlen: 24
151.236.102.0/24 maxlen: 24
151.236.99.0/24 maxlen: 24
151.236.100.0/24 maxlen: 24
2a02:aec0:3::/48 maxlen: 48
2a02:aec0:7::/48 maxlen: 48
2a02:aec0:8::/48 maxlen: 48
2a02:aec0:1::/48 maxlen: 48
2a02:aec0:5::/48 maxlen: 48
2a02:aec0:2::/48 maxlen: 48
2a02:aec0:9::/48 maxlen: 48
2a02:aec0:6::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65092200 (0x3e13a68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=624c494f56193b4e9adf3db72e4f01978c587f18
Validity
Not Before: Jan 1 04:56:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0bdb5f427d5ca62cb1e166992e68c7e087111690
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:5f:6a:68:d1:57:5b:5e:86:34:9f:5b:8e:e5:
cb:cb:b1:56:75:3e:f1:6b:d3:45:58:fa:f9:39:8a:
40:2e:c7:34:fa:7e:55:c2:18:56:d9:18:18:ba:4a:
d8:1f:ff:d9:3a:25:c0:5d:e2:7c:25:6d:29:15:52:
9e:b7:73:9d:29:0a:91:d5:18:2c:24:84:79:97:a8:
66:a0:bf:a9:97:57:17:88:a2:ef:50:e5:3c:0b:ee:
51:2d:62:ee:c0:d7:0e:91:83:85:da:19:d0:68:90:
d4:e0:26:3d:18:cb:73:75:b6:ff:dd:46:38:3e:c1:
94:90:18:8c:81:d5:d4:40:f2:87:97:08:03:a8:21:
d3:00:d1:58:fc:70:92:01:15:d8:74:38:99:28:03:
d8:b3:7f:c9:94:ce:5c:e2:48:a7:08:b5:19:34:c7:
4b:37:d8:0c:2e:7a:22:8b:b2:f6:39:44:6a:18:92:
9c:6d:b7:f5:6d:fb:b6:fb:a4:3f:a6:1b:fe:ba:fe:
12:40:93:64:f7:1a:80:5d:3b:08:88:8d:6f:de:cb:
e2:a8:03:3b:0b:74:b2:4c:85:db:38:60:e6:57:2f:
f0:6d:aa:97:4e:e5:ac:e0:a4:a1:5f:86:4f:51:b7:
07:59:45:09:30:46:dd:ab:74:a6:1a:47:0a:52:08:
4a:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:DB:5F:42:7D:5C:A6:2C:B1:E1:66:99:2E:68:C7:E0:87:11:16:90
X509v3 Authority Key Identifier:
keyid:62:4C:49:4F:56:19:3B:4E:9A:DF:3D:B7:2E:4F:01:97:8C:58:7F:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YkxJT1YZO06a3z23Lk8Bl4xYfxg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/0988af-8d7f-4c29-b5cc-7aab6ef955a1/1/C9tfQn1cpiyx4WaZLmjH4IcRFpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/0988af-8d7f-4c29-b5cc-7aab6ef955a1/1/YkxJT1YZO06a3z23Lk8Bl4xYfxg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.234.0-91.231.237.255
91.231.239.0/24
91.238.108.0-91.238.110.255
91.240.168.0-91.240.170.255
151.236.64.0/23
151.236.67.0-151.236.70.255
151.236.72.0-151.236.81.255
151.236.83.0-151.236.87.255
151.236.89.0-151.236.91.255
151.236.95.0-151.236.97.255
151.236.99.0-151.236.100.255
151.236.102.0/24
151.236.106.0/23
151.236.109.0-151.236.111.255
151.236.113.0/24
151.236.122.0/23
151.236.125.0/24
185.31.112.0/24
185.31.114.0/23
IPv6:
2a02:aec0:1::-2a02:aec0:3:ffff:ffff:ffff:ffff:ffff
2a02:aec0:5::-2a02:aec0:9:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
13:b8:68:65:ce:f2:56:87:99:e7:55:e3:e5:1d:be:d6:26:9e:
da:ad:c0:33:74:bc:a9:12:f7:88:11:69:23:b7:af:75:5a:cb:
8f:53:68:c0:28:73:2f:35:47:d8:61:83:55:e4:fb:f4:f4:c3:
ba:08:51:52:3a:c7:8a:f9:3e:d9:55:1f:a4:fd:d6:12:71:8f:
e1:07:3a:c1:cd:9d:0e:e7:11:bd:f2:8f:63:7b:ed:67:4e:4e:
69:f1:34:98:7f:a0:76:96:33:23:41:ea:09:3e:a2:35:7d:b5:
50:81:8a:b3:b0:94:ad:20:9f:31:13:bb:6e:98:80:36:f6:6e:
e7:bb:18:62:08:89:41:9b:ee:b2:08:e4:94:6a:02:6e:66:e8:
13:b9:9f:71:e3:bb:91:4a:73:60:dc:0b:37:aa:54:c7:41:05:
b3:9d:91:fc:70:5f:0a:05:5a:60:6b:4e:0a:fe:18:95:f4:72:
6d:a2:c3:ee:5e:7d:39:ee:a6:9e:bf:40:69:fb:da:64:e5:03:
81:5b:cb:1a:f3:90:2d:f2:7d:ea:7c:3c:c9:bf:ef:53:d3:9d:
a6:e1:a9:f3:c9:c6:ac:01:38:a9:47:a4:58:7e:a8:8a:8a:32:
79:42:7e:04:ba:8f:a4:ac:c3:2a:27:df:d4:95:70:39:25:18:
01:eb:43:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:22 2024 by rpki-client on console-ams.rpki-client.org