Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/0988af-8d7f-4c29-b5cc-7aab6ef955a1/1/h_rzNlteqVVWHlhJYi_BKlJ3vPc.roa
File: h_rzNlteqVVWHlhJYi_BKlJ3vPc.roa (raw, json)
Hash identifier: eg7DKqggP+tcbylmwIY9Ez2XTzqsmCb6lnJfyfpAMyA=
Subject key identifier: 87:FA:F3:36:5B:5E:A9:55:56:1E:58:49:62:2F:C1:2A:52:77:BC:F7
Certificate issuer: /CN=624c494f56193b4e9adf3db72e4f01978c587f18
Certificate serial: 050E2FC2
Authority key identifier: 62:4C:49:4F:56:19:3B:4E:9A:DF:3D:B7:2E:4F:01:97:8C:58:7F:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YkxJT1YZO06a3z23Lk8Bl4xYfxg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/0988af-8d7f-4c29-b5cc-7aab6ef955a1/1/h_rzNlteqVVWHlhJYi_BKlJ3vPc.roa
Signing time: Fri 06 May 2022 09:55:01 +0000
ROA not before: Fri 06 May 2022 09:55:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57363
IP address blocks: 91.231.234.0/24 maxlen: 24
91.231.235.0/24 maxlen: 24
91.231.236.0/24 maxlen: 24
91.231.237.0/24 maxlen: 24
91.231.239.0/24 maxlen: 24
91.238.108.0/24 maxlen: 24
91.238.109.0/24 maxlen: 24
91.238.110.0/24 maxlen: 24
185.31.112.0/24 maxlen: 24
185.31.114.0/24 maxlen: 24
185.31.115.0/24 maxlen: 24
91.240.170.0/24 maxlen: 24
91.240.168.0/24 maxlen: 24
91.240.169.0/24 maxlen: 24
151.236.109.0/24 maxlen: 24
151.236.110.0/23 maxlen: 23
151.236.111.0/24 maxlen: 24
151.236.106.0/24 maxlen: 24
151.236.107.0/24 maxlen: 24
151.236.113.0/24 maxlen: 24
151.236.122.0/23 maxlen: 23
151.236.123.0/24 maxlen: 24
151.236.125.0/24 maxlen: 24
151.236.64.0/24 maxlen: 24
151.236.65.0/24 maxlen: 24
151.236.67.0/24 maxlen: 24
151.236.68.0/24 maxlen: 24
151.236.70.0/24 maxlen: 24
151.236.74.0/24 maxlen: 24
151.236.75.0/24 maxlen: 24
151.236.77.0/24 maxlen: 24
151.236.78.0/24 maxlen: 24
151.236.72.0/24 maxlen: 24
151.236.73.0/24 maxlen: 24
151.236.81.0/24 maxlen: 24
151.236.83.0/24 maxlen: 24
151.236.84.0/24 maxlen: 24
151.236.85.0/24 maxlen: 24
151.236.80.0/24 maxlen: 24
151.236.89.0/24 maxlen: 24
151.236.90.0/24 maxlen: 24
151.236.91.0/24 maxlen: 24
151.236.86.0/24 maxlen: 24
151.236.87.0/24 maxlen: 24
151.236.95.0/24 maxlen: 24
151.236.96.0/24 maxlen: 24
151.236.97.0/24 maxlen: 24
151.236.102.0/24 maxlen: 24
151.236.99.0/24 maxlen: 24
151.236.100.0/24 maxlen: 24
2a02:aec0:3::/48 maxlen: 48
2a02:aec0:7::/48 maxlen: 48
2a02:aec0:8::/48 maxlen: 48
2a02:aec0:1::/48 maxlen: 48
2a02:aec0:5::/48 maxlen: 48
2a02:aec0:2::/48 maxlen: 48
2a02:aec0:9::/48 maxlen: 48
2a02:aec0:6::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84815810 (0x50e2fc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=624c494f56193b4e9adf3db72e4f01978c587f18
Validity
Not Before: May 6 09:55:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87faf3365b5ea955561e5849622fc12a5277bcf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:50:6e:42:3e:b2:56:96:66:0d:57:74:88:34:
70:9b:2d:de:e0:ee:31:27:6b:2e:45:cc:c0:f7:5d:
4d:7e:ec:70:25:32:45:4b:d2:4e:7d:44:80:2c:33:
b2:97:97:db:a3:b5:58:ea:28:6d:7e:54:f2:59:6c:
5d:d0:f6:ee:f3:f3:6e:62:36:ff:a2:7b:1a:83:4e:
b3:24:77:ac:a4:51:76:e4:ed:c2:29:1f:c2:4e:eb:
b9:8e:b2:3b:b9:c4:12:0c:a6:14:19:50:96:a8:63:
42:a4:71:63:89:03:21:33:2c:42:2c:43:05:7e:1f:
20:ac:38:27:b8:e8:05:c3:54:90:0c:b8:a8:f5:c5:
4b:a1:66:69:af:89:5c:d4:06:0e:99:c9:2d:71:1c:
87:1e:7b:03:06:4e:90:cc:fe:2f:7d:23:9f:e1:78:
be:72:a7:09:07:7d:8b:85:49:0c:d3:a8:68:d3:48:
e4:f3:84:fe:53:c7:f5:82:b4:93:a2:18:55:f8:19:
4b:12:89:21:24:ed:ee:e2:67:c0:1c:b8:03:dd:99:
0f:71:2a:31:0a:13:f7:f8:5f:bb:5d:da:19:81:ec:
09:e6:b3:c1:ba:f3:a7:0b:91:cb:d0:0a:0e:0b:5f:
86:94:a6:45:89:73:a1:6c:04:9b:0b:b1:0e:71:18:
6d:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:FA:F3:36:5B:5E:A9:55:56:1E:58:49:62:2F:C1:2A:52:77:BC:F7
X509v3 Authority Key Identifier:
keyid:62:4C:49:4F:56:19:3B:4E:9A:DF:3D:B7:2E:4F:01:97:8C:58:7F:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YkxJT1YZO06a3z23Lk8Bl4xYfxg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/0988af-8d7f-4c29-b5cc-7aab6ef955a1/1/h_rzNlteqVVWHlhJYi_BKlJ3vPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/0988af-8d7f-4c29-b5cc-7aab6ef955a1/1/YkxJT1YZO06a3z23Lk8Bl4xYfxg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.234.0-91.231.237.255
91.231.239.0/24
91.238.108.0-91.238.110.255
91.240.168.0-91.240.170.255
151.236.64.0/23
151.236.67.0-151.236.68.255
151.236.70.0/24
151.236.72.0/22
151.236.77.0-151.236.78.255
151.236.80.0/23
151.236.83.0-151.236.87.255
151.236.89.0-151.236.91.255
151.236.95.0-151.236.97.255
151.236.99.0-151.236.100.255
151.236.102.0/24
151.236.106.0/23
151.236.109.0-151.236.111.255
151.236.113.0/24
151.236.122.0/23
151.236.125.0/24
185.31.112.0/24
185.31.114.0/23
IPv6:
2a02:aec0:1::-2a02:aec0:3:ffff:ffff:ffff:ffff:ffff
2a02:aec0:5::-2a02:aec0:9:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
4d:ef:7d:9c:0d:c5:b9:95:a3:4e:29:ae:50:4e:da:af:05:15:
5c:c7:ea:04:57:d6:d5:fe:19:2f:d2:b5:f5:79:65:64:73:63:
b6:c4:13:d0:8c:22:e8:4b:59:15:de:27:08:99:29:ec:0f:86:
78:d4:c1:cc:96:f4:97:3c:95:3a:24:ce:ee:45:bf:bc:f7:30:
fb:0a:18:77:91:74:73:86:a1:bf:f2:a9:c2:2b:c8:24:29:4c:
78:cf:51:93:d1:8a:dc:b9:86:52:3a:11:77:c3:f7:b5:3c:a2:
d8:79:09:8c:5a:46:92:75:19:b1:c0:bb:fa:29:ea:62:32:30:
7a:18:b5:30:3f:e7:9c:fc:96:6c:b7:fd:4c:9e:56:54:a2:8e:
c6:ac:c4:73:2b:e2:21:1d:26:11:f8:ac:f4:95:36:f1:ea:ae:
1a:c5:e3:c4:2a:d0:77:94:4b:35:53:91:87:cb:df:af:81:4f:
7e:ce:6f:b2:04:ee:ae:e3:c2:3e:2e:56:ee:51:29:ba:f2:a3:
c8:b1:bb:09:b3:71:65:c9:9e:4e:20:84:cc:81:fd:82:49:57:
b5:bb:47:3a:43:e6:8e:27:9f:67:85:ea:cc:7e:d5:14:07:ad:
a2:c8:f3:05:bf:d1:50:9e:a3:6b:38:dd:04:76:f6:25:e9:08:
0c:48:a5:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:50 2024 by rpki-client on console-fra.rpki-client.org