Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/6eeE4m8P_VWeZdgyxGQIs3Fhswk.roa
File: 6eeE4m8P_VWeZdgyxGQIs3Fhswk.roa (raw, json)
Hash identifier: IbkBDL6fOaj7Yz7DpCuketNvj++9Sm3mfNXtjDpress=
Subject key identifier: E9:E7:84:E2:6F:0F:FD:55:9E:65:D8:32:C4:64:08:B3:71:61:B3:09
Certificate issuer: /CN=1847b59d21ea36b3062fca80ce75c1616af5119a
Certificate serial: 018A405F425899EDCB5FFC9B9DB5457C8F29
Authority key identifier: 18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/6eeE4m8P_VWeZdgyxGQIs3Fhswk.roa
Signing time: Tue 29 Aug 2023 08:18:19 +0000
ROA not before: Tue 29 Aug 2023 08:18:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48716
IP address blocks: 185.146.0.0/22 maxlen: 24
185.102.72.0/22 maxlen: 24
91.147.95.0/24 maxlen: 24
91.147.94.0/24 maxlen: 24
91.147.92.0/24 maxlen: 24
91.147.92.0/22 maxlen: 22
91.147.93.0/24 maxlen: 24
195.93.152.0/23 maxlen: 24
195.49.211.0/24 maxlen: 24
195.49.212.0/24 maxlen: 24
195.49.209.0/24 maxlen: 24
195.49.210.0/24 maxlen: 24
195.49.213.0/24 maxlen: 24
109.233.108.0/22 maxlen: 32
195.49.214.0/24 maxlen: 24
195.49.215.0/24 maxlen: 24
77.240.38.0/23 maxlen: 24
94.247.128.0/21 maxlen: 24
91.215.137.0/24 maxlen: 32
91.215.136.0/22 maxlen: 24
91.215.136.0/24 maxlen: 24
91.215.139.0/24 maxlen: 32
185.4.180.0/22 maxlen: 24
195.210.46.0/23 maxlen: 24
91.201.214.0/23 maxlen: 24
185.22.64.0/22 maxlen: 24
78.40.108.0/23 maxlen: 24
89.219.32.0/22 maxlen: 24
194.110.54.0/23 maxlen: 24
77.243.80.0/23 maxlen: 24
194.39.64.0/23 maxlen: 24
194.39.64.0/22 maxlen: 24
185.35.222.0/23 maxlen: 24
194.39.67.0/24 maxlen: 24
194.39.66.0/24 maxlen: 24
2a00:5da0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:40:5f:42:58:99:ed:cb:5f:fc:9b:9d:b5:45:7c:8f:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1847b59d21ea36b3062fca80ce75c1616af5119a
Validity
Not Before: Aug 29 08:18:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e9e784e26f0ffd559e65d832c46408b37161b309
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:78:91:f3:f9:df:00:f9:9c:71:0a:da:98:04:
3e:63:6d:23:60:23:10:e7:ce:eb:f9:89:3b:3c:35:
f2:45:6c:d4:08:7e:dc:6a:e8:39:13:41:a9:0c:97:
46:52:e9:38:ff:b8:fa:3b:7d:87:40:84:50:b8:03:
03:75:09:ce:81:9d:f4:11:b9:1e:80:dd:91:91:f9:
7c:0d:13:59:e1:ec:8f:04:25:9a:01:16:6a:e0:a7:
cb:a8:f7:bb:ca:69:c8:52:0c:42:8b:50:d8:5e:ef:
ab:f1:4b:9e:07:3d:c7:e1:c6:fa:9a:b6:ec:85:96:
e0:1e:b1:ce:7f:81:2b:b7:c3:1d:1a:38:11:51:87:
1d:01:c1:e5:b5:62:c9:b3:fd:b7:10:94:f7:73:d7:
62:e9:8f:4d:49:2a:7e:60:ed:ba:d0:52:99:0d:61:
81:78:ba:22:f7:58:62:27:ee:2c:be:27:49:9f:8a:
2d:c3:a6:95:b7:31:ca:5a:b7:0c:92:51:85:f5:b5:
d0:09:bd:a3:ea:3a:93:06:d9:dd:cf:52:9d:cd:7f:
a5:7c:ec:4a:cf:87:fe:48:69:62:45:11:43:6c:f1:
72:d7:87:58:b1:ab:99:17:90:d5:e5:1a:1c:59:92:
8c:3c:3b:0c:94:f4:cc:e2:62:74:92:11:38:b9:56:
4e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:E7:84:E2:6F:0F:FD:55:9E:65:D8:32:C4:64:08:B3:71:61:B3:09
X509v3 Authority Key Identifier:
keyid:18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/6eeE4m8P_VWeZdgyxGQIs3Fhswk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.240.38.0/23
77.243.80.0/23
78.40.108.0/23
89.219.32.0/22
91.147.92.0/22
91.201.214.0/23
91.215.136.0/22
94.247.128.0/21
109.233.108.0/22
185.4.180.0/22
185.22.64.0/22
185.35.222.0/23
185.102.72.0/22
185.146.0.0/22
194.39.64.0/22
194.110.54.0/23
195.49.209.0-195.49.215.255
195.93.152.0/23
195.210.46.0/23
IPv6:
2a00:5da0::/32
Signature Algorithm: sha256WithRSAEncryption
3d:33:32:1c:a9:06:53:64:79:32:8f:ad:8e:60:8d:01:5e:9e:
d1:44:04:f6:7d:f8:ca:18:4e:e7:60:3a:6e:7f:da:fc:53:2e:
b2:78:58:d4:a9:f9:d8:be:7a:53:34:86:c8:fb:6f:4d:8d:fb:
0b:6c:5a:91:9f:ba:85:6f:4d:9f:4e:79:f8:bc:f8:2b:b5:8a:
f4:3d:63:18:ce:f4:28:81:03:1c:80:de:b5:13:40:e5:ea:80:
2f:cf:7e:2d:fe:1b:71:59:2d:20:d7:66:9e:f8:8c:46:4a:8b:
66:02:a1:62:99:73:35:3f:7a:a3:ea:71:e5:0a:7f:92:63:e2:
d3:18:76:38:01:40:b5:69:aa:61:fb:df:91:22:79:6f:c0:2b:
c9:05:aa:6b:0b:38:da:3e:96:8e:54:a1:d3:2d:0a:0a:82:6b:
8b:ba:9b:19:32:21:b2:09:f0:ee:ed:6b:7b:80:63:c2:20:a0:
2a:f2:a3:5b:8c:f0:57:e2:99:99:4c:91:35:83:13:47:74:94:
f7:d2:27:c1:24:d9:be:22:86:1f:36:d7:98:20:9a:60:04:91:
37:7d:64:63:3a:47:1d:5b:37:ab:79:2d:8a:18:d4:ad:85:4b:
c5:52:85:55:35:3e:87:99:46:06:39:da:ca:4e:36:b8:81:1d:
00:de:66:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:42 2025 by rpki-client