Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/VnJzlVEj9sTJuNppZEzlBh5_00E.roa
File: VnJzlVEj9sTJuNppZEzlBh5_00E.roa (raw, json)
Hash identifier: hl+tKwvl3K6b8FZNdxjTMV1QsMUSCNHW4OpJgWIsaSg=
Subject key identifier: 56:72:73:95:51:23:F6:C4:C9:B8:DA:69:64:4C:E5:06:1E:7F:D3:41
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 05486797
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/VnJzlVEj9sTJuNppZEzlBh5_00E.roa
Signing time: Wed 20 Apr 2022 06:48:18 +0000
ROA not before: Wed 20 Apr 2022 06:48:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8308
IP address blocks: 194.181.65.0/24 maxlen: 24
194.181.66.0/24 maxlen: 24
194.181.68.0/24 maxlen: 24
194.181.69.0/24 maxlen: 24
194.181.70.0/24 maxlen: 24
194.181.71.0/24 maxlen: 24
194.181.72.0/24 maxlen: 24
194.181.73.0/24 maxlen: 24
194.181.74.0/24 maxlen: 24
194.181.75.0/24 maxlen: 24
194.181.76.0/24 maxlen: 24
194.181.77.0/24 maxlen: 24
194.181.78.0/24 maxlen: 24
194.181.92.0/24 maxlen: 24
217.9.160.0/20 maxlen: 20
217.9.160.0/24 maxlen: 24
217.9.165.0/24 maxlen: 24
194.181.19.0/24 maxlen: 24
194.181.20.0/24 maxlen: 24
194.181.21.0/24 maxlen: 24
194.181.22.0/24 maxlen: 24
194.181.23.0/24 maxlen: 24
194.181.24.0/24 maxlen: 24
194.181.25.0/24 maxlen: 24
194.181.26.0/24 maxlen: 24
194.181.27.0/24 maxlen: 24
194.181.28.0/24 maxlen: 24
194.181.29.0/24 maxlen: 24
194.181.30.0/24 maxlen: 24
194.181.34.0/24 maxlen: 24
194.181.35.0/24 maxlen: 24
194.181.36.0/24 maxlen: 24
194.181.37.0/24 maxlen: 24
194.181.32.0/24 maxlen: 24
194.181.33.0/24 maxlen: 24
194.181.39.0/24 maxlen: 24
194.181.42.0/24 maxlen: 24
194.181.46.0/24 maxlen: 24
194.181.50.0/24 maxlen: 24
194.181.51.0/24 maxlen: 24
194.181.52.0/24 maxlen: 24
194.181.53.0/24 maxlen: 24
194.181.54.0/24 maxlen: 24
194.181.55.0/24 maxlen: 24
194.181.58.0/24 maxlen: 24
194.181.59.0/24 maxlen: 24
194.181.60.0/24 maxlen: 24
194.181.61.0/24 maxlen: 24
194.181.62.0/24 maxlen: 24
194.181.63.0/24 maxlen: 24
194.181.64.0/24 maxlen: 24
195.187.0.0/18 maxlen: 18
193.59.0.0/16 maxlen: 16
195.164.0.0/16 maxlen: 16
194.181.1.0/24 maxlen: 24
194.181.4.0/24 maxlen: 24
194.181.5.0/24 maxlen: 24
194.181.0.0/16 maxlen: 16
195.187.101.0/24 maxlen: 24
195.187.128.0/17 maxlen: 17
194.181.255.0/24 maxlen: 24
2001:a10::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88631191 (0x5486797)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Apr 20 06:48:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=567273955123f6c4c9b8da69644ce5061e7fd341
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:ee:81:be:f9:b3:90:66:5f:79:b4:6b:5d:61:
c3:9e:95:e5:bd:dc:87:0a:b1:a8:7b:9d:cf:76:20:
a1:a0:bc:42:d3:ae:db:01:39:cd:50:05:f9:bf:36:
f6:14:86:54:5c:48:29:02:3a:dc:b7:19:30:0a:2a:
cc:10:7e:a3:55:4d:f1:ff:b9:2b:44:7a:b6:b1:2f:
ea:24:15:33:55:1b:2d:d5:6a:31:1b:a4:ae:23:d3:
8a:fb:f8:12:fa:24:97:a0:ca:b2:e2:39:e3:6f:52:
e5:ab:e9:cf:ae:d5:00:0b:94:0f:b8:3c:6a:ce:43:
9c:ca:e6:bf:c6:22:dd:49:97:b8:e5:35:28:0f:a7:
4b:a0:04:12:2f:c7:7c:11:51:a0:c8:cc:c3:d5:88:
61:b6:62:a6:7c:ff:4b:c0:ea:d6:5c:9c:6f:e1:5d:
fd:de:eb:1b:39:6b:3f:0f:aa:d7:77:35:46:23:e5:
de:eb:19:2e:b0:25:3a:e0:c0:b0:c2:24:17:c2:a3:
11:d0:f9:f7:06:7a:19:6c:50:7f:cf:97:39:0d:26:
72:e0:bb:0e:39:65:1f:82:40:42:b0:44:b2:d8:3d:
d1:51:0f:07:f2:92:6b:82:40:ac:92:2f:db:9a:2f:
73:b4:0c:89:96:3b:1f:13:6c:92:ea:1a:ab:eb:04:
b0:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:72:73:95:51:23:F6:C4:C9:B8:DA:69:64:4C:E5:06:1E:7F:D3:41
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/VnJzlVEj9sTJuNppZEzlBh5_00E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.59.0.0/16
194.181.0.0/16
195.164.0.0/16
195.187.0.0/18
195.187.101.0/24
195.187.128.0/17
217.9.160.0/20
IPv6:
2001:a10::/32
Signature Algorithm: sha256WithRSAEncryption
3f:73:4b:fe:63:34:9c:75:ee:f2:d0:c2:94:6c:2d:05:ab:2d:
75:39:5a:d8:d0:66:75:56:11:ef:99:b9:c4:37:71:30:5b:98:
cf:ec:56:e5:3d:52:ae:43:3e:31:81:8b:61:54:49:fe:85:50:
69:97:9e:85:10:0c:fb:f1:76:03:53:55:cd:ae:f9:fc:a0:da:
4c:91:a8:df:ab:65:55:1d:b8:35:26:55:2f:e5:d4:12:b8:10:
9d:11:4a:4a:9a:d4:2e:d8:5a:aa:cf:05:da:6e:14:2a:59:0a:
a8:6f:97:fd:31:c8:c9:20:ef:0e:8d:27:8a:ce:54:d1:20:d5:
54:cb:fc:f2:73:bb:31:d4:b5:bd:ea:df:45:03:b2:f9:3e:47:
6e:f3:45:d8:ae:95:27:05:c7:63:45:50:71:09:b4:bc:84:c0:
9f:81:57:cb:bb:49:bc:42:b3:d3:61:4f:30:5d:6a:8f:51:40:
81:aa:dd:ee:3b:3c:6a:eb:5a:17:60:ba:b1:23:c9:2d:96:30:
79:ac:e6:3a:ac:82:8b:56:04:46:2e:0c:e0:0f:44:cb:2c:85:
0d:91:4f:b5:dd:9f:42:94:ba:51:19:9f:1d:52:13:34:38:27:
46:cd:8c:a6:3d:4a:6b:f2:9d:a1:e9:9a:ca:1b:9b:1a:9a:d5:
28:c2:84:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:40 2024 by rpki-client on console-fra.rpki-client.org