Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/0VhT6B3rEkGPBQW6av-CTG4CjwM.roa
File: 0VhT6B3rEkGPBQW6av-CTG4CjwM.roa (raw, json)
Hash identifier: puusbnZlqCJTsexcFolQ6YiPSd3eUSqUnT2ijuLWcZ4=
Subject key identifier: D1:58:53:E8:1D:EB:12:41:8F:05:05:BA:6A:FF:82:4C:6E:02:8F:03
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 0184ED33698C177B6977AA99DEB588C8BF24
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/0VhT6B3rEkGPBQW6av-CTG4CjwM.roa
Signing time: Wed 07 Dec 2022 15:28:00 +0000
ROA not before: Wed 07 Dec 2022 15:28:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12679
IP address blocks: 176.46.133.0/24 maxlen: 24
176.46.135.0/24 maxlen: 24
176.46.134.0/24 maxlen: 24
176.46.137.0/24 maxlen: 24
176.46.136.0/24 maxlen: 24
176.46.132.0/24 maxlen: 24
176.46.130.0/24 maxlen: 24
176.46.131.0/24 maxlen: 24
176.46.128.0/24 maxlen: 24
109.203.164.0/22 maxlen: 24
109.203.160.0/22 maxlen: 24
31.170.55.0/24 maxlen: 24
94.74.191.0/24 maxlen: 24
94.74.187.0/24 maxlen: 24
37.49.144.0/22 maxlen: 24
37.49.148.0/22 maxlen: 24
94.74.137.0/24 maxlen: 24
94.74.140.0/24 maxlen: 24
94.74.145.0/24 maxlen: 24
94.74.147.0/24 maxlen: 24
94.74.156.0/24 maxlen: 24
94.74.159.0/24 maxlen: 24
94.74.158.0/24 maxlen: 24
94.74.164.0/24 maxlen: 24
94.74.169.0/24 maxlen: 24
94.74.168.0/24 maxlen: 24
94.74.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ed:33:69:8c:17:7b:69:77:aa:99:de:b5:88:c8:bf:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Dec 7 15:28:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d15853e81deb12418f0505ba6aff824c6e028f03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:65:4f:bb:8c:6e:31:33:a7:f6:c2:99:5f:74:
14:d7:68:10:26:9f:a3:31:56:3e:d3:52:00:0c:06:
ae:b4:b1:98:9b:9e:63:bd:06:c8:85:c8:2a:22:73:
da:17:5d:d2:69:78:e4:25:78:12:e8:ef:75:f7:40:
2e:f5:4a:7a:e1:a8:24:77:e9:28:ec:de:e9:ad:8c:
93:1f:24:89:96:61:10:aa:54:3f:3f:41:13:40:20:
c6:f7:4d:df:0a:d6:cb:4c:f1:a4:f9:d4:c4:9b:33:
3b:7f:a4:45:db:10:58:18:05:2f:fe:9e:8a:c2:93:
ff:59:bc:06:f0:d0:81:b3:f9:0c:9f:cb:4e:66:28:
a0:03:78:cc:8b:c9:0b:b4:4f:46:69:49:1c:73:dc:
a4:fb:30:08:6a:7b:d7:82:fb:1c:ba:c3:30:e3:fb:
25:cb:46:62:64:1c:ad:09:1e:76:05:0c:f5:aa:d1:
b0:75:d6:26:01:09:39:88:d5:a7:6f:94:42:a8:4f:
91:ba:52:87:24:7f:c0:30:23:2d:c0:79:89:54:0e:
0b:11:6d:fb:3d:a5:d3:d4:6b:4a:26:db:23:59:54:
e2:cb:77:4d:03:36:e7:f4:21:da:a2:70:3a:1b:df:
81:d1:ff:d1:1e:f9:4c:36:be:a5:4f:19:e6:5a:59:
6b:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:58:53:E8:1D:EB:12:41:8F:05:05:BA:6A:FF:82:4C:6E:02:8F:03
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/0VhT6B3rEkGPBQW6av-CTG4CjwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.55.0/24
37.49.144.0/21
94.74.137.0/24
94.74.140.0/24
94.74.145.0/24
94.74.147.0/24
94.74.156.0/24
94.74.158.0/23
94.74.164.0/24
94.74.168.0/23
94.74.173.0/24
94.74.187.0/24
94.74.191.0/24
109.203.160.0/21
176.46.128.0/24
176.46.130.0-176.46.137.255
Signature Algorithm: sha256WithRSAEncryption
31:09:61:bc:a9:c8:60:80:dd:08:9b:01:c0:c9:74:68:e7:a3:
30:ee:b0:e1:1b:1b:c6:1e:14:be:f2:28:34:6c:34:23:b7:5c:
09:5c:f0:2e:33:31:41:ba:56:e9:e7:1b:0d:2b:4a:51:b9:c2:
34:9e:cf:b5:ac:b1:85:e0:17:de:10:a4:c0:6a:69:6c:10:3b:
0f:95:e9:f8:62:3e:c1:7a:90:62:34:5c:56:52:70:42:7a:79:
af:6f:e6:ef:59:eb:91:42:e4:08:9e:f4:8e:c4:fc:5a:cb:a9:
13:24:0a:89:20:be:6c:f3:42:ad:86:10:25:29:6a:ea:be:f2:
aa:fb:21:bf:14:86:99:e2:8e:ae:ea:ab:31:31:a3:71:33:5d:
76:8a:06:3f:19:6a:65:5d:a8:ac:fc:16:6f:94:2b:a9:26:3c:
03:af:53:6a:4a:a9:81:26:84:d9:2d:23:8d:5d:10:7a:ca:2d:
ee:9d:d1:ff:f2:fb:35:34:ec:dd:b9:52:06:77:d6:0b:65:ba:
53:0a:3a:31:5d:7f:c6:70:58:a5:8b:ac:59:c8:94:ce:22:9f:
8e:5f:c2:63:e2:cb:d1:ce:b1:97:03:28:67:59:fb:57:69:40:
98:5c:51:aa:60:08:af:3e:fb:79:8a:32:73:e8:e8:34:20:be:
a3:a1:24:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:10:07 2025 by rpki-client