Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/JkzN4diBksBlg1koO93j25IXoms.roa
File: JkzN4diBksBlg1koO93j25IXoms.roa (raw, json)
Hash identifier: /cO6YwSJKPE0v11NthORGK1yD8/rH64nYRAUO86td6E=
Subject key identifier: 26:4C:CD:E1:D8:81:92:C0:65:83:59:28:3B:DD:E3:DB:92:17:A2:6B
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 0184BE9F496439427A5C373DAFAD9F2C8193
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/JkzN4diBksBlg1koO93j25IXoms.roa
Signing time: Mon 28 Nov 2022 14:23:40 +0000
ROA not before: Mon 28 Nov 2022 14:23:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12716
IP address blocks: 151.251.254.0/24 maxlen: 24
151.251.255.0/24 maxlen: 24
37.63.96.0/22 maxlen: 24
83.97.30.0/24 maxlen: 24
84.252.40.0/23 maxlen: 23
151.251.240.0/24 maxlen: 24
151.251.238.0/24 maxlen: 24
151.251.239.0/24 maxlen: 24
151.251.245.0/24 maxlen: 24
151.251.240.0/20 maxlen: 20
151.251.243.0/24 maxlen: 24
151.251.246.0/24 maxlen: 24
151.251.241.0/24 maxlen: 24
151.251.244.0/24 maxlen: 24
151.251.242.0/24 maxlen: 24
151.251.253.0/24 maxlen: 24
151.251.248.0/24 maxlen: 24
151.251.251.0/24 maxlen: 24
151.251.249.0/24 maxlen: 24
151.251.252.0/24 maxlen: 24
151.251.247.0/24 maxlen: 24
151.251.250.0/24 maxlen: 24
89.215.62.0/23 maxlen: 23
151.251.44.0/22 maxlen: 22
151.251.68.0/22 maxlen: 22
185.224.160.0/23 maxlen: 23
37.63.0.0/20 maxlen: 20
37.63.16.0/22 maxlen: 22
62.204.154.0/23 maxlen: 23
151.251.121.0/24 maxlen: 24
85.118.64.0/22 maxlen: 22
85.118.71.0/24 maxlen: 24
85.118.68.0/23 maxlen: 23
213.226.17.0/24 maxlen: 24
85.118.70.0/24 maxlen: 24
85.118.76.0/22 maxlen: 22
85.118.74.0/24 maxlen: 24
85.118.72.0/23 maxlen: 23
213.226.19.0/24 maxlen: 24
185.151.156.0/22 maxlen: 22
85.118.84.0/24 maxlen: 24
85.118.80.0/22 maxlen: 22
213.226.36.0/24 maxlen: 24
85.118.92.0/24 maxlen: 24
85.118.93.0/24 maxlen: 24
213.226.40.0/24 maxlen: 24
213.226.51.0/24 maxlen: 24
213.226.57.0/24 maxlen: 24
213.226.56.0/24 maxlen: 24
213.226.63.0/24 maxlen: 24
213.226.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:be:9f:49:64:39:42:7a:5c:37:3d:af:ad:9f:2c:81:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Nov 28 14:23:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=264ccde1d88192c0658359283bdde3db9217a26b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:15:38:5b:ba:8d:1f:19:37:41:9b:50:fb:d5:
a9:4e:1d:b0:29:06:6b:3b:1f:7c:53:47:27:18:91:
82:3d:6d:12:0f:24:59:51:a4:19:4a:32:b6:f1:e7:
f7:39:67:50:80:21:20:85:39:33:dd:12:e9:f6:ec:
f1:f4:26:c0:b6:d2:00:0e:96:46:01:e0:6c:3c:f4:
61:a7:e5:37:a4:d4:09:4a:e6:00:46:8b:12:ce:c1:
3a:69:24:a9:e2:82:31:5a:a1:79:ac:dd:de:c0:f5:
27:4d:1f:52:16:58:e4:ee:06:58:37:13:5b:ff:cf:
47:95:13:ca:87:3f:07:66:82:b8:3f:2e:28:c1:f9:
fe:dc:1b:43:e5:68:6a:e2:c0:c8:e7:fe:e3:e3:a4:
5a:f9:ed:68:5c:af:4c:40:94:f7:2b:fc:90:3f:63:
74:85:f8:93:d4:4a:ca:d2:3a:4c:c1:51:d1:e9:c3:
3b:c6:fb:41:e8:c3:bd:27:54:ff:e6:3e:b0:dd:3f:
5d:3d:65:61:5c:5a:b6:aa:db:c8:14:28:3e:2a:b1:
5f:20:14:2a:ca:97:c2:60:76:a8:76:b1:99:fc:a9:
11:a9:74:29:a5:fc:e2:d9:eb:4e:e0:12:32:ce:30:
57:6f:9c:5d:fe:9c:99:cb:21:f9:66:cd:b5:15:49:
a5:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:4C:CD:E1:D8:81:92:C0:65:83:59:28:3B:DD:E3:DB:92:17:A2:6B
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/JkzN4diBksBlg1koO93j25IXoms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.63.0.0-37.63.19.255
37.63.96.0/22
62.204.154.0/23
83.97.30.0/24
84.252.40.0/23
85.118.64.0-85.118.74.255
85.118.76.0-85.118.84.255
85.118.92.0/23
89.215.62.0/23
151.251.44.0/22
151.251.68.0/22
151.251.121.0/24
151.251.238.0-151.251.255.255
185.151.156.0/22
185.224.160.0/23
213.226.17.0/24
213.226.19.0/24
213.226.36.0/24
213.226.40.0/24
213.226.51.0/24
213.226.56.0/23
213.226.59.0/24
213.226.63.0/24
Signature Algorithm: sha256WithRSAEncryption
25:d2:d1:db:e6:bc:c9:9d:27:3a:f9:da:68:ba:c8:50:06:d2:
1f:d2:c0:67:61:51:77:6b:77:f0:7e:6c:9a:88:d4:29:e8:25:
b6:3d:24:01:27:d4:dc:bf:2b:29:6d:2d:12:2d:47:a8:52:6c:
0c:ea:1b:12:a8:e1:74:c9:ba:97:e2:06:d4:6a:4c:bd:fe:ed:
78:6e:74:b7:f2:f5:3a:c7:96:8a:ce:1b:4d:9f:e3:87:86:7f:
f0:6e:67:92:64:84:38:c4:55:ff:d9:29:db:9e:ba:d9:00:3d:
34:9b:6c:45:88:11:d2:2b:8f:c2:01:76:90:57:d4:3c:10:36:
49:e9:bf:9b:a4:ea:50:18:59:ac:0c:26:4a:73:3a:30:74:b9:
14:4b:a4:40:8a:12:1d:d8:b2:a1:01:d9:63:fa:d7:d1:c2:45:
aa:69:66:14:fa:25:24:45:3d:0b:f8:a8:7f:bc:57:43:34:5c:
04:c5:85:88:cd:4d:52:9f:c4:6a:79:21:63:f8:a5:e7:1d:5e:
d5:0c:60:c8:b8:3a:32:3f:e5:a1:b6:ab:b3:f4:20:42:f5:ee:
4f:40:f3:45:35:bb:67:91:ca:99:e1:de:58:ca:64:35:84:9d:
6d:e6:33:2c:ff:46:1f:dd:eb:86:43:46:9f:36:3b:fe:2e:40:
04:06:9d:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:18 2023 by rpki-client on console-fra.rpki-client.org