Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/JMEWLWcNiUOaqrvVRfu6uihe8mI.roa
File: JMEWLWcNiUOaqrvVRfu6uihe8mI.roa (raw, json)
Hash identifier: 3/AZ9Qwu9bNeRdxJR+1qucPo1IUJDsKey8Hg7o2IuVI=
Subject key identifier: 24:C1:16:2D:67:0D:89:43:9A:AA:BB:D5:45:FB:BA:BA:28:5E:F2:62
Certificate issuer: /CN=f919e1f3fe69b4ebdff02a9a857e7c6c2b25301a
Certificate serial: 04162701
Authority key identifier: F9:19:E1:F3:FE:69:B4:EB:DF:F0:2A:9A:85:7E:7C:6C:2B:25:30:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Rnh8_5ptOvf8CqahX58bCslMBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/JMEWLWcNiUOaqrvVRfu6uihe8mI.roa
Signing time: Thu 24 Mar 2022 08:51:33 +0000
ROA not before: Thu 24 Mar 2022 08:51:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208677
IP address blocks: 37.18.8.0/23 maxlen: 23
37.18.10.0/24 maxlen: 24
37.18.22.0/24 maxlen: 24
178.170.242.0/24 maxlen: 24
46.243.141.0/24 maxlen: 24
46.243.142.0/23 maxlen: 23
37.230.139.0/24 maxlen: 24
37.18.102.0/24 maxlen: 24
37.18.100.0/23 maxlen: 23
37.18.107.0/24 maxlen: 24
37.18.112.0/23 maxlen: 23
37.18.108.0/22 maxlen: 22
37.18.115.0/24 maxlen: 24
37.18.114.0/24 maxlen: 24
37.18.116.0/22 maxlen: 22
37.18.120.0/23 maxlen: 23
37.18.122.0/24 maxlen: 24
37.230.186.0/24 maxlen: 24
37.230.184.0/23 maxlen: 23
37.230.180.0/23 maxlen: 23
46.243.206.0/24 maxlen: 24
46.243.201.0/24 maxlen: 24
46.243.226.0/23 maxlen: 23
37.18.72.0/23 maxlen: 23
188.72.106.0/23 maxlen: 23
37.230.192.0/21 maxlen: 21
37.230.224.0/24 maxlen: 24
37.230.233.0/24 maxlen: 24
94.139.252.0/22 maxlen: 22
178.170.192.0/22 maxlen: 22
178.170.191.0/24 maxlen: 24
45.9.24.0/22 maxlen: 22
141.101.201.0/24 maxlen: 24
45.89.224.0/22 maxlen: 22
2a0c:2b80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68560641 (0x4162701)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f919e1f3fe69b4ebdff02a9a857e7c6c2b25301a
Validity
Not Before: Mar 24 08:51:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24c1162d670d89439aaabbd545fbbaba285ef262
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:02:1b:02:42:2d:b5:76:b8:08:c6:e5:40:2a:
69:81:ad:96:16:ed:94:cb:d6:26:7d:a4:ef:b1:6d:
cd:70:09:a9:f9:64:aa:e9:1e:dc:08:54:7f:a6:b6:
7e:3d:f3:25:61:0d:f8:44:10:ef:7d:e8:10:a5:4d:
16:9b:15:e2:9a:6f:06:46:c2:d6:46:fd:8d:34:79:
23:90:ce:c6:77:76:c1:b2:7b:dd:07:48:8c:f5:50:
c1:84:3d:ee:20:b4:cb:86:2f:56:7c:fe:fd:7c:77:
22:2d:b3:fc:ec:b4:a1:c9:4b:f2:f6:ff:11:60:e5:
3e:e7:3b:39:4f:cf:ab:70:8a:12:d4:b6:d1:f4:1b:
09:8c:78:25:a5:04:c3:f6:6d:12:57:5e:44:ab:56:
a9:99:20:85:41:11:09:2c:fb:9b:a6:58:35:10:00:
ee:77:08:63:c2:07:27:ff:60:ab:6e:3c:82:1d:e0:
85:83:e2:87:db:ff:79:55:f0:d6:11:a0:9a:50:84:
14:9c:9f:5d:59:0c:14:66:d1:13:2b:f1:47:f4:d7:
3c:42:1b:c1:1c:a4:d6:c0:eb:a9:72:a9:7a:da:34:
96:16:0e:90:ba:d4:dd:73:07:29:76:3a:af:6c:7a:
6b:61:a2:7f:06:21:aa:8e:8a:08:68:46:b6:eb:2a:
8e:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:C1:16:2D:67:0D:89:43:9A:AA:BB:D5:45:FB:BA:BA:28:5E:F2:62
X509v3 Authority Key Identifier:
keyid:F9:19:E1:F3:FE:69:B4:EB:DF:F0:2A:9A:85:7E:7C:6C:2B:25:30:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Rnh8_5ptOvf8CqahX58bCslMBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/JMEWLWcNiUOaqrvVRfu6uihe8mI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/1-Rnh8_5ptOvf8CqahX58bCslMBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.8.0-37.18.10.255
37.18.22.0/24
37.18.72.0/23
37.18.100.0-37.18.102.255
37.18.107.0-37.18.122.255
37.230.139.0/24
37.230.180.0/23
37.230.184.0-37.230.186.255
37.230.192.0/21
37.230.224.0/24
37.230.233.0/24
45.9.24.0/22
45.89.224.0/22
46.243.141.0-46.243.143.255
46.243.201.0/24
46.243.206.0/24
46.243.226.0/23
94.139.252.0/22
141.101.201.0/24
178.170.191.0-178.170.195.255
178.170.242.0/24
188.72.106.0/23
IPv6:
2a0c:2b80::/29
Signature Algorithm: sha256WithRSAEncryption
45:66:c1:e6:f5:ad:b8:bb:9c:9e:0d:80:78:bb:0c:df:38:a1:
86:cd:f0:7c:67:0f:35:a5:93:ec:4e:f2:42:5c:56:d7:39:41:
56:09:1b:3a:aa:ba:84:00:41:39:18:d9:07:7b:67:d8:ec:15:
37:8a:91:5e:62:3e:73:21:19:b0:90:66:df:54:41:54:20:44:
2c:52:b7:b4:db:7b:89:7e:97:4a:c6:43:8f:cf:9a:35:49:56:
34:f8:ef:79:e8:48:82:71:7c:b6:60:27:b4:3d:fe:d3:72:89:
b0:89:0d:5c:56:f2:23:55:7c:06:bb:00:5e:32:74:13:a2:99:
d9:d0:ad:77:50:70:ae:a1:14:40:75:7e:4e:24:cf:03:1c:77:
05:9e:95:84:2a:e4:6c:91:ef:df:2c:3f:50:a9:b1:a1:50:d4:
4b:f6:bf:8a:70:b1:8b:33:c5:5d:55:b4:cc:c8:43:3e:46:17:
49:d6:9e:cb:2c:ca:34:28:d8:d5:98:02:fe:91:db:14:77:27:
d9:2b:c2:95:97:d2:d1:4e:be:5b:da:ed:f7:b7:48:87:72:15:
91:db:da:b3:47:19:2f:43:75:3f:1a:6e:63:68:ac:6f:ef:5d:
2e:82:b7:04:17:d4:fa:d3:c4:d9:f6:90:19:b8:21:bb:c0:21:
2c:e3:76:87
-----BEGIN CERTIFICATE-----
MIIFszCCBJugAwIBAgIEBBYnATANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
OTE5ZTFmM2ZlNjliNGViZGZmMDJhOWE4NTdlN2M2YzJiMjUzMDFhMB4XDTIyMDMy
NDA4NTEzM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjRjMTE2MmQ2NzBk
ODk0MzlhYWFiYmQ1NDVmYmJhYmEyODVlZjI2MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMsCGwJCLbV2uAjG5UAqaYGtlhbtlMvWJn2k77FtzXAJqflk
quke3AhUf6a2fj3zJWEN+EQQ733oEKVNFpsV4ppvBkbC1kb9jTR5I5DOxnd2wbJ7
3QdIjPVQwYQ97iC0y4YvVnz+/Xx3Ii2z/Oy0oclL8vb/EWDlPuc7OU/Pq3CKEtS2
0fQbCYx4JaUEw/ZtEldeRKtWqZkghUERCSz7m6ZYNRAA7ncIY8IHJ/9gq248gh3g
hYPih9v/eVXw1hGgmlCEFJyfXVkMFGbREyvxR/TXPEIbwRyk1sDrqXKpeto0lhYO
kLrU3XMHKXY6r2x6a2GifwYhqo6KCGhGtusqjq8CAwEAAaOCAs0wggLJMB0GA1Ud
DgQWBBQkwRYtZw2JQ5qqu9VF+7q6KF7yYjAfBgNVHSMEGDAWgBT5GeHz/mm069/w
KpqFfnxsKyUwGjAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtUm5oOF81cHRPdmY4Q3FhaFg1OGJDc2xNQm8uY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxUL2Y2LzFjOTgwOS0xZjYwLTQzYzItODEwMy1kYWQwNDIwYjg1ZDMv
MS9KTUVXTFdjTmlVT2FxcnZWUmZ1NnVpaGU4bUkucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Y2
LzFjOTgwOS0xZjYwLTQzYzItODEwMy1kYWQwNDIwYjg1ZDMvMS8xLVJuaDhfNXB0
T3ZmOENxYWhYNThiQ3NsTUJvLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MIHgBggrBgEFBQcBBwEB/wSB0DCBzTCBuwQCAAEwgbQwDAMEAyUSCAMEACUSCgME
ACUSFgMEASUSSDAMAwQCJRJkAwQAJRJmMAwDBAAlEmsDBAAlEnoDBAAl5osDBAEl
5rQwDAMEAyXmuAMEACXmugMEAyXmwAMEACXm4AMEACXm6QMEAi0JGAMEAi1Z4DAM
AwQALvONAwQELvOAAwQALvPJAwQALvPOAwQBLvPiAwQCXov8AwQAjWXJMAwDBACy
qr8DBAKyqsADBACyqvIDBAG8SGowDQQCAAIwBwMFAyoMK4AwDQYJKoZIhvcNAQEL
BQADggEBAEVmweb1rbi7nJ4NgHi7DN84oYbN8HxnDzWlk+xO8kJcVtc5QVYJGzqq
uoQAQTkY2Qd7Z9jsFTeKkV5iPnMhGbCQZt9UQVQgRCxSt7Tbe4l+l0rGQ4/PmjVJ
VjT473noSIJxfLZgJ7Q9/tNyibCJDVxW8iNVfAa7AF4ydBOimdnQrXdQcK6hFEB1
fk4kzwMcdwWelYQq5GyR798sP1CpsaFQ1Ev2v4pwsYszxV1VtMzIQz5GF0nWnsss
yjQo2NWYAv6R2xR3J9krwpWX0tFOvlva7fe3SIdyFZHb2rNHGS9DdT8abmNorG/v
XS6CtwQX1PrTxNn2kBm4IbvAISzjdoc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:55 2024 by rpki-client on console-ams.rpki-client.org