Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/xkv48nUTbYUjKBRIV998YTUa5_Q.roa
File: xkv48nUTbYUjKBRIV998YTUa5_Q.roa (raw, json)
Hash identifier: szixiHzQl1JY9v3udXUdvAtqrRAUTFFq32KwRq44bmA=
Subject key identifier: C6:4B:F8:F2:75:13:6D:85:23:28:14:48:57:DF:7C:61:35:1A:E7:F4
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 2DEAF9C6
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/xkv48nUTbYUjKBRIV998YTUa5_Q.roa
Signing time: Mon 09 May 2022 06:18:43 +0000
ROA not before: Mon 09 May 2022 06:18:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57367
IP address blocks: 128.204.216.0/24 maxlen: 24
128.204.218.0/24 maxlen: 24
128.204.217.0/24 maxlen: 24
128.204.219.0/24 maxlen: 24
31.186.80.0/21 maxlen: 21
128.204.221.0/24 maxlen: 24
128.204.220.0/22 maxlen: 22
128.204.220.0/24 maxlen: 24
128.204.223.0/24 maxlen: 24
128.204.222.0/24 maxlen: 24
85.194.240.0/22 maxlen: 22
195.167.159.0/24 maxlen: 24
195.167.157.0/24 maxlen: 24
195.167.156.0/24 maxlen: 24
85.194.242.0/24 maxlen: 24
85.194.244.0/22 maxlen: 22
85.194.246.0/24 maxlen: 24
85.194.247.0/24 maxlen: 24
185.36.168.0/22 maxlen: 22
206.252.232.0/24 maxlen: 24
206.252.251.0/24 maxlen: 24
212.91.27.0/24 maxlen: 24
212.91.26.0/24 maxlen: 24
77.79.227.0/24 maxlen: 24
77.79.248.0/24 maxlen: 24
77.79.250.0/24 maxlen: 24
91.185.184.0/24 maxlen: 24
91.185.186.0/24 maxlen: 24
91.185.185.0/24 maxlen: 24
91.185.188.0/24 maxlen: 24
91.185.187.0/24 maxlen: 24
91.185.189.0/24 maxlen: 24
91.185.191.0/24 maxlen: 24
91.185.190.0/24 maxlen: 24
85.232.241.0/24 maxlen: 24
213.189.52.0/24 maxlen: 24
213.189.54.0/24 maxlen: 24
213.189.53.0/24 maxlen: 24
213.189.55.0/24 maxlen: 24
213.189.56.0/24 maxlen: 24
213.189.58.0/24 maxlen: 24
2001:1a68:1a::/48 maxlen: 48
2001:1a68:ec00::/40 maxlen: 40
2001:1a68:19::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 770374086 (0x2deaf9c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: May 9 06:18:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c64bf8f275136d852328144857df7c61351ae7f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:12:40:87:02:55:e4:88:02:20:a2:b0:d6:e5:
56:37:c3:75:a6:e2:bd:de:bd:15:72:1b:75:57:44:
67:ef:2a:38:c8:14:45:a6:29:4c:8e:e4:d5:5c:f2:
2c:21:d4:6c:4d:7e:ae:92:d3:2f:66:93:1b:12:b4:
4a:99:f3:cc:f0:75:24:a5:bf:9a:dd:4d:19:90:95:
2a:b9:48:6b:a2:2f:53:5f:14:9d:51:00:26:0a:c1:
74:bf:6c:07:16:12:cd:9a:3d:c2:1e:e2:44:90:b5:
44:97:c8:aa:a2:de:dc:24:07:b5:b1:7b:f6:06:02:
cd:e4:3f:2c:71:49:9d:d2:7d:9b:09:8d:17:82:42:
37:02:ae:0d:2d:f0:cc:b6:1d:0c:b4:40:e2:5c:98:
39:0c:96:07:0c:8f:40:4e:01:2e:91:4a:9d:20:66:
ee:dc:21:63:11:c2:3f:99:71:ae:9d:8c:78:a2:82:
a6:23:65:0e:8f:67:00:ec:f1:d1:ea:ad:c6:ee:05:
12:f0:78:43:5e:83:c5:b0:99:bf:99:ba:bf:49:fc:
7f:de:b3:d5:d4:81:db:a1:c7:e2:11:a4:d3:d0:f8:
47:c8:ed:56:34:df:dd:30:ba:e3:3c:06:3e:36:06:
b1:d3:cc:ac:b3:b9:2c:4e:91:4f:22:b6:ca:e8:24:
5d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:4B:F8:F2:75:13:6D:85:23:28:14:48:57:DF:7C:61:35:1A:E7:F4
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/xkv48nUTbYUjKBRIV998YTUa5_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.186.80.0/21
77.79.227.0/24
77.79.248.0/24
77.79.250.0/24
85.194.240.0/21
85.232.241.0/24
91.185.184.0/21
128.204.216.0/21
185.36.168.0/22
195.167.156.0/23
195.167.159.0/24
206.252.232.0/24
206.252.251.0/24
212.91.26.0/23
213.189.52.0-213.189.56.255
213.189.58.0/24
IPv6:
2001:1a68:19::-2001:1a68:1a:ffff:ffff:ffff:ffff:ffff
2001:1a68:ec00::/40
Signature Algorithm: sha256WithRSAEncryption
7e:7e:7e:00:22:26:9f:97:25:08:a8:9c:56:5d:6f:89:41:20:
f0:c9:42:31:96:57:9c:f9:42:5d:ac:48:2b:bc:da:75:50:f9:
60:3f:ba:e5:f5:6a:ef:f9:b2:6d:9f:f8:64:e3:30:f2:d4:d2:
a0:f8:be:c5:f1:cf:aa:2c:49:37:c3:da:e6:48:cb:05:33:6b:
09:87:f1:d0:e4:6a:69:3e:ad:33:85:20:a8:26:8f:10:a7:54:
01:fd:3a:a7:c9:91:64:7c:46:60:2f:56:08:7c:fb:e8:f0:a7:
21:dd:e9:fd:e2:f6:82:38:4e:66:15:ac:af:7b:5a:55:d1:36:
7f:4f:79:5d:e2:a9:50:8c:63:a1:c9:8e:99:5e:a0:15:89:56:
47:49:ba:b5:3f:ea:29:39:33:bf:8d:1a:26:c6:12:59:93:48:
c8:a5:ea:e8:45:0f:93:92:b8:61:4e:c5:ca:04:56:af:ee:a1:
37:7c:9d:c0:4e:77:81:b4:fc:b7:f8:e8:97:0c:98:d0:0b:be:
8b:19:46:bd:4a:46:68:47:5a:54:4d:c5:67:a5:c1:76:96:7b:
34:53:97:15:7f:f9:59:fa:7d:4e:4e:ae:f5:3b:24:78:23:87:
fa:a2:22:b0:11:15:fe:23:29:cc:3e:28:5c:b8:04:f9:d9:f1:
6d:57:0a:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:52 2024 by rpki-client on console-ams.rpki-client.org