Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/0988af-8d7f-4c29-b5cc-7aab6ef955a1/1/xPExsAJV0fTmmiZEbgDiCzm2MyA.roa
File: xPExsAJV0fTmmiZEbgDiCzm2MyA.roa (raw, json)
Hash identifier: HGJcI/JKx9j3LQRKl6o6ZR3mGbL3EGAnEVkgs0C5A+I=
Subject key identifier: C4:F1:31:B0:02:55:D1:F4:E6:9A:26:44:6E:00:E2:0B:39:B6:33:20
Certificate issuer: /CN=624c494f56193b4e9adf3db72e4f01978c587f18
Certificate serial: 04731FA8
Authority key identifier: 62:4C:49:4F:56:19:3B:4E:9A:DF:3D:B7:2E:4F:01:97:8C:58:7F:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YkxJT1YZO06a3z23Lk8Bl4xYfxg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/0988af-8d7f-4c29-b5cc-7aab6ef955a1/1/xPExsAJV0fTmmiZEbgDiCzm2MyA.roa
Signing time: Sat 05 Mar 2022 12:16:24 +0000
ROA not before: Sat 05 Mar 2022 12:16:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57363
IP address blocks: 91.231.234.0/24 maxlen: 24
91.231.235.0/24 maxlen: 24
91.231.236.0/24 maxlen: 24
91.231.237.0/24 maxlen: 24
91.231.239.0/24 maxlen: 24
91.238.108.0/24 maxlen: 24
91.238.109.0/24 maxlen: 24
91.238.110.0/24 maxlen: 24
185.31.112.0/24 maxlen: 24
185.31.114.0/24 maxlen: 24
185.31.115.0/24 maxlen: 24
91.240.170.0/24 maxlen: 24
91.240.168.0/24 maxlen: 24
91.240.169.0/24 maxlen: 24
151.236.109.0/24 maxlen: 24
151.236.110.0/23 maxlen: 23
151.236.111.0/24 maxlen: 24
151.236.106.0/24 maxlen: 24
151.236.107.0/24 maxlen: 24
151.236.113.0/24 maxlen: 24
151.236.122.0/23 maxlen: 23
151.236.123.0/24 maxlen: 24
151.236.125.0/24 maxlen: 24
151.236.64.0/24 maxlen: 24
151.236.65.0/24 maxlen: 24
151.236.67.0/24 maxlen: 24
151.236.68.0/24 maxlen: 24
151.236.70.0/24 maxlen: 24
151.236.74.0/24 maxlen: 24
151.236.75.0/24 maxlen: 24
151.236.76.0/22 maxlen: 22
151.236.77.0/24 maxlen: 24
151.236.72.0/24 maxlen: 24
151.236.73.0/24 maxlen: 24
151.236.81.0/24 maxlen: 24
151.236.83.0/24 maxlen: 24
151.236.84.0/24 maxlen: 24
151.236.85.0/24 maxlen: 24
151.236.80.0/24 maxlen: 24
151.236.89.0/24 maxlen: 24
151.236.90.0/24 maxlen: 24
151.236.91.0/24 maxlen: 24
151.236.86.0/24 maxlen: 24
151.236.87.0/24 maxlen: 24
151.236.95.0/24 maxlen: 24
151.236.96.0/24 maxlen: 24
151.236.97.0/24 maxlen: 24
151.236.102.0/24 maxlen: 24
151.236.99.0/24 maxlen: 24
151.236.100.0/24 maxlen: 24
2a02:aec0:3::/48 maxlen: 48
2a02:aec0:7::/48 maxlen: 48
2a02:aec0:8::/48 maxlen: 48
2a02:aec0:1::/48 maxlen: 48
2a02:aec0:5::/48 maxlen: 48
2a02:aec0:2::/48 maxlen: 48
2a02:aec0:9::/48 maxlen: 48
2a02:aec0:6::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74653608 (0x4731fa8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=624c494f56193b4e9adf3db72e4f01978c587f18
Validity
Not Before: Mar 5 12:16:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c4f131b00255d1f4e69a26446e00e20b39b63320
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:00:f7:ec:9d:84:11:3e:ff:ca:56:45:f0:39:
bf:d9:bb:ad:0b:f5:ed:1e:0f:eb:b8:b9:2d:11:ca:
78:a2:06:ca:dc:ed:a4:d7:d2:96:ba:f8:e6:3b:52:
c1:8d:f2:28:a8:59:2f:bf:ab:e6:da:4b:7d:2d:17:
1d:1d:9d:0c:a4:9f:ab:73:4c:2f:45:d9:85:6b:d7:
0c:ff:37:7b:96:b8:c8:85:33:7c:44:bf:20:e3:3b:
1c:b1:d4:c9:26:db:2c:d9:93:92:40:e0:ff:8b:be:
37:7a:1d:6a:c0:af:7b:91:5e:93:8a:c7:39:19:3e:
eb:c4:ae:db:2d:22:73:c3:57:a4:da:fe:88:a1:72:
81:8a:a3:a5:09:ef:79:33:d3:e4:c1:47:4e:63:6b:
56:51:05:5a:66:c7:ee:0a:8e:f3:bd:95:93:95:fa:
04:c5:44:e9:b9:40:8f:aa:2c:7f:c7:18:88:81:c3:
f3:ca:7e:7f:24:e7:04:10:c0:a2:b5:4f:9c:59:fe:
74:79:8a:b8:6e:1a:67:72:4b:ce:4d:56:eb:3d:db:
d5:c4:00:6f:65:99:3a:bd:40:d4:b4:51:98:e8:6d:
f0:b0:7c:87:92:65:fe:5e:9f:f0:d0:c7:a2:ee:e2:
d5:6d:26:ae:95:f9:89:6b:bf:56:aa:0e:5a:e8:0b:
b1:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:F1:31:B0:02:55:D1:F4:E6:9A:26:44:6E:00:E2:0B:39:B6:33:20
X509v3 Authority Key Identifier:
keyid:62:4C:49:4F:56:19:3B:4E:9A:DF:3D:B7:2E:4F:01:97:8C:58:7F:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YkxJT1YZO06a3z23Lk8Bl4xYfxg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/0988af-8d7f-4c29-b5cc-7aab6ef955a1/1/xPExsAJV0fTmmiZEbgDiCzm2MyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/0988af-8d7f-4c29-b5cc-7aab6ef955a1/1/YkxJT1YZO06a3z23Lk8Bl4xYfxg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.234.0-91.231.237.255
91.231.239.0/24
91.238.108.0-91.238.110.255
91.240.168.0-91.240.170.255
151.236.64.0/23
151.236.67.0-151.236.68.255
151.236.70.0/24
151.236.72.0-151.236.81.255
151.236.83.0-151.236.87.255
151.236.89.0-151.236.91.255
151.236.95.0-151.236.97.255
151.236.99.0-151.236.100.255
151.236.102.0/24
151.236.106.0/23
151.236.109.0-151.236.111.255
151.236.113.0/24
151.236.122.0/23
151.236.125.0/24
185.31.112.0/24
185.31.114.0/23
IPv6:
2a02:aec0:1::-2a02:aec0:3:ffff:ffff:ffff:ffff:ffff
2a02:aec0:5::-2a02:aec0:9:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
76:d7:b7:11:0d:ec:53:20:57:e9:36:ff:0a:6d:bf:05:52:8d:
50:c6:e8:2c:1b:87:74:85:4f:59:8d:18:70:99:34:0b:6a:35:
ca:f7:9a:c4:8a:2d:e4:2f:ea:03:25:2e:60:2d:31:de:18:72:
9a:e8:16:07:49:ab:06:d1:70:aa:58:87:69:55:3c:29:58:a6:
b5:7e:ef:62:8c:8b:03:47:17:dd:85:f5:b9:44:70:a7:b0:4b:
27:af:89:28:92:f9:15:bb:77:7d:9a:58:d4:07:b9:67:c9:23:
49:c9:93:18:fb:df:85:41:71:29:8f:d6:ef:5e:45:17:2a:b6:
74:9a:b2:75:b6:e0:80:91:1c:51:ea:4a:76:f9:dd:6e:5b:df:
17:d6:e6:75:1c:89:55:2c:b2:7f:c0:9b:38:bc:ed:24:d6:65:
b6:48:8e:9d:b0:3d:b4:73:81:74:fd:b7:94:7e:31:31:b0:e9:
b6:ff:0d:b7:d8:a6:92:f4:a0:35:8b:f8:5b:4a:fd:fe:23:5c:
3f:ac:d7:f9:d1:10:40:e0:1a:22:e9:0c:a1:ae:4e:56:a5:b1:
b3:86:32:2f:61:0b:67:b4:31:18:04:90:06:61:f7:a9:b1:36:
b7:de:6f:54:dc:a4:31:f8:c9:d1:35:9b:06:22:45:57:0b:d1:
73:29:ee:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:50 2024 by rpki-client on console-fra.rpki-client.org