Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e27d9b-cad6-4e1d-9d07-b7a6608a8fbc/1/rvbPIha5bDSxZjAGfY5iPiAW1EA.roa
File: rvbPIha5bDSxZjAGfY5iPiAW1EA.roa (raw, json)
Hash identifier: qFwed0iALDbXreFHat8sLveQIfPteErKmuFcD4TVcbM=
Subject key identifier: AE:F6:CF:22:16:B9:6C:34:B1:66:30:06:7D:8E:62:3E:20:16:D4:40
Certificate issuer: /CN=c9265b8ba9e6190f2609787cd9d92efd48efbd9d
Certificate serial: 2318F1EF
Authority key identifier: C9:26:5B:8B:A9:E6:19:0F:26:09:78:7C:D9:D9:2E:FD:48:EF:BD:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ySZbi6nmGQ8mCXh82dku_UjvvZ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e27d9b-cad6-4e1d-9d07-b7a6608a8fbc/1/rvbPIha5bDSxZjAGfY5iPiAW1EA.roa
Signing time: Sat 01 Jan 2022 02:02:04 +0000
ROA not before: Sat 01 Jan 2022 02:02:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8343
IP address blocks: 178.23.136.0/21 maxlen: 21
178.23.138.0/24 maxlen: 24
178.23.139.0/24 maxlen: 24
178.23.142.0/24 maxlen: 24
178.23.141.0/24 maxlen: 24
178.23.140.0/24 maxlen: 24
178.23.143.0/24 maxlen: 24
185.19.244.0/22 maxlen: 22
37.143.95.0/24 maxlen: 24
37.143.93.0/24 maxlen: 24
37.143.92.0/24 maxlen: 24
37.143.94.0/24 maxlen: 24
195.58.242.0/24 maxlen: 24
195.58.244.0/24 maxlen: 24
195.58.243.0/24 maxlen: 24
195.58.246.0/24 maxlen: 24
195.58.245.0/24 maxlen: 24
195.58.241.0/24 maxlen: 24
195.58.249.0/24 maxlen: 24
195.58.251.0/24 maxlen: 24
195.58.250.0/24 maxlen: 24
195.58.253.0/24 maxlen: 24
195.58.252.0/22 maxlen: 22
195.58.252.0/24 maxlen: 24
195.58.248.0/24 maxlen: 24
195.58.247.0/24 maxlen: 24
195.58.255.0/24 maxlen: 24
195.58.254.0/24 maxlen: 24
37.143.88.0/21 maxlen: 21
37.143.89.0/24 maxlen: 24
37.143.88.0/24 maxlen: 24
37.143.91.0/24 maxlen: 24
37.143.90.0/24 maxlen: 24
195.58.224.0/19 maxlen: 19
195.58.224.0/24 maxlen: 24
195.58.226.0/24 maxlen: 24
195.58.227.0/24 maxlen: 24
195.58.229.0/24 maxlen: 24
195.58.228.0/24 maxlen: 24
195.58.230.0/24 maxlen: 24
195.58.232.0/24 maxlen: 24
195.58.231.0/24 maxlen: 24
195.58.233.0/24 maxlen: 24
195.58.236.0/24 maxlen: 24
195.58.235.0/24 maxlen: 24
195.58.237.0/24 maxlen: 24
195.58.239.0/24 maxlen: 24
195.58.240.0/24 maxlen: 24
195.58.238.0/24 maxlen: 24
195.58.234.0/24 maxlen: 24
2a00:1b50:1::/48 maxlen: 48
2a00:1b50:1000::/48 maxlen: 48
2a00:1b50:10::/48 maxlen: 48
2a00:1b50::/32 maxlen: 32
2a00:1b50::/36 maxlen: 36
2a00:1b50:1000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 588837359 (0x2318f1ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9265b8ba9e6190f2609787cd9d92efd48efbd9d
Validity
Not Before: Jan 1 02:02:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aef6cf2216b96c34b16630067d8e623e2016d440
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:52:42:14:5d:67:ca:2c:6f:d4:3b:00:3e:4a:
69:a6:9f:3f:09:61:69:ad:1c:28:22:45:4f:6c:3d:
90:90:20:fb:51:32:5e:a5:fc:38:77:85:d7:c6:fb:
87:33:dd:55:98:44:c3:75:16:c2:4d:6e:58:f8:5c:
4e:52:12:ec:8d:eb:16:ef:a3:f3:68:63:73:a9:07:
7f:ab:0d:bb:73:7e:72:a6:45:0d:e0:73:6e:bc:38:
dc:7b:35:57:47:e4:41:d1:30:16:32:e4:85:71:1f:
89:b2:ff:28:26:69:df:c4:d2:5c:f6:57:94:2c:57:
77:bc:44:04:68:da:0c:0c:17:d4:a0:40:7b:2b:99:
7d:34:39:59:87:b3:e5:c0:f8:9f:b7:56:7c:ff:20:
3c:a1:61:86:31:34:c7:dd:c1:0c:77:ce:f7:d7:40:
dc:76:92:a4:99:56:ad:c3:90:85:bf:a4:d7:3d:2a:
97:4c:cc:9e:bd:7a:fb:8a:a6:70:33:c0:30:cb:ea:
7f:bf:b6:78:59:1e:44:45:88:0b:d9:f7:f0:f6:f0:
8b:b1:af:4d:13:59:58:4a:07:04:17:5f:ae:06:ac:
4f:3d:5f:84:1f:7f:06:71:86:7c:54:9e:96:9f:12:
02:ce:4e:b3:f9:80:d9:8d:e0:8b:9a:07:d0:1e:fe:
a4:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:F6:CF:22:16:B9:6C:34:B1:66:30:06:7D:8E:62:3E:20:16:D4:40
X509v3 Authority Key Identifier:
keyid:C9:26:5B:8B:A9:E6:19:0F:26:09:78:7C:D9:D9:2E:FD:48:EF:BD:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ySZbi6nmGQ8mCXh82dku_UjvvZ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e27d9b-cad6-4e1d-9d07-b7a6608a8fbc/1/rvbPIha5bDSxZjAGfY5iPiAW1EA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e27d9b-cad6-4e1d-9d07-b7a6608a8fbc/1/ySZbi6nmGQ8mCXh82dku_UjvvZ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.143.88.0/21
178.23.136.0/21
185.19.244.0/22
195.58.224.0/19
IPv6:
2a00:1b50::/32
Signature Algorithm: sha256WithRSAEncryption
67:49:0b:6b:43:f4:36:3d:b6:6d:21:54:fd:c4:75:8a:d9:60:
67:06:cd:af:8b:a2:f2:72:f0:ef:99:16:5c:7d:2e:9e:f0:17:
0a:17:0c:b2:77:af:8d:36:ed:e5:cb:73:0d:fc:09:98:d8:66:
37:00:af:8f:c2:f5:fe:d0:04:fd:f2:3d:b8:8b:66:59:d1:1f:
5f:84:48:f9:f5:e0:f7:9f:5f:5f:30:15:3c:55:1c:1d:19:12:
48:25:9b:f0:69:c7:ab:e0:d9:19:28:5e:90:56:9b:33:08:90:
62:60:e6:78:ac:7b:cc:df:ff:5c:53:1f:a9:c7:f4:0d:49:6b:
56:a7:f9:27:a4:7c:bb:a7:27:19:6f:e7:a2:eb:c4:d3:39:98:
4b:92:91:fb:11:66:dc:6f:7e:14:b4:0a:b4:d6:41:46:f5:c7:
1c:41:b9:a5:18:0b:27:59:d3:87:bd:b6:e5:1d:8a:87:38:af:
d5:c1:50:cd:f4:53:b8:83:e8:e0:9c:35:e4:d7:9c:35:37:b5:
48:0f:53:dc:e4:1e:34:89:46:99:8c:04:14:a2:10:c5:7b:55:
81:61:20:45:18:ae:ba:4f:be:3c:bd:8d:73:f5:96:9e:61:f2:
63:a6:f0:10:00:d8:78:be:89:29:d9:ac:a7:bc:81:a8:70:d9:
1b:a4:aa:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:41 2024 by rpki-client on console-ams.rpki-client.org