Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/0vuQodvtofNbbx0sIW57-uUJhRE.roa
File: 0vuQodvtofNbbx0sIW57-uUJhRE.roa (raw, json)
Hash identifier: y8N9/3/vhagqbRpj/MPRRDfoBFECMUIxKz9500xEY04=
Subject key identifier: D2:FB:90:A1:DB:ED:A1:F3:5B:6F:1D:2C:21:6E:7B:FA:E5:09:85:11
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 018B1D778C3B09EA7F2C30E8BB149C7329F6
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/0vuQodvtofNbbx0sIW57-uUJhRE.roa
Signing time: Wed 11 Oct 2023 06:40:55 +0000
ROA not before: Wed 11 Oct 2023 06:40:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 176.46.137.0/24 maxlen: 24
176.46.144.0/23 maxlen: 23
176.46.140.0/24 maxlen: 24
176.46.143.0/24 maxlen: 24
176.46.144.0/24 maxlen: 24
176.46.145.0/24 maxlen: 24
176.46.146.0/24 maxlen: 24
176.46.147.0/24 maxlen: 24
176.46.149.0/24 maxlen: 24
176.46.151.0/24 maxlen: 24
176.46.152.0/24 maxlen: 24
176.46.159.0/24 maxlen: 24
176.46.128.0/24 maxlen: 24
176.46.131.0/24 maxlen: 24
176.46.132.0/24 maxlen: 24
109.203.160.0/24 maxlen: 24
109.203.162.0/24 maxlen: 24
109.203.163.0/24 maxlen: 24
109.203.164.0/24 maxlen: 24
109.203.165.0/24 maxlen: 24
109.203.166.0/24 maxlen: 24
109.203.167.0/24 maxlen: 24
31.170.55.0/24 maxlen: 24
94.74.191.0/24 maxlen: 24
94.74.187.0/24 maxlen: 24
37.49.144.0/24 maxlen: 24
37.49.146.0/24 maxlen: 24
37.49.148.0/24 maxlen: 24
37.49.149.0/24 maxlen: 24
37.49.150.0/24 maxlen: 24
37.49.151.0/24 maxlen: 24
94.74.137.0/24 maxlen: 24
94.74.140.0/24 maxlen: 24
94.74.147.0/24 maxlen: 24
94.74.158.0/24 maxlen: 24
94.74.159.0/24 maxlen: 24
94.74.164.0/24 maxlen: 24
94.74.168.0/24 maxlen: 24
94.74.169.0/24 maxlen: 24
94.74.171.0/24 maxlen: 24
94.74.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1d:77:8c:3b:09:ea:7f:2c:30:e8:bb:14:9c:73:29:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Oct 11 06:40:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d2fb90a1dbeda1f35b6f1d2c216e7bfae5098511
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:06:da:bc:a5:f3:b9:ed:7d:43:f5:3b:0b:47:
48:25:76:55:f9:09:5c:d4:07:c8:e9:a9:b4:d2:19:
9c:26:89:9e:c3:66:74:64:81:b4:53:c9:22:0e:73:
46:97:9f:51:1a:77:de:62:23:ab:f0:ca:08:57:47:
b9:d0:84:bd:55:68:b6:22:22:08:b2:94:e3:95:b2:
32:a0:e2:4a:68:87:34:60:9d:be:a6:cf:8c:c9:68:
8e:dd:13:9e:17:f0:be:c2:03:c7:0c:5a:65:95:bb:
e7:63:88:61:94:2b:95:9c:53:6b:36:29:96:aa:20:
8f:9f:72:9b:15:4b:ab:6a:70:1d:90:9b:0c:d6:5a:
e0:7d:a8:fb:17:b8:64:b0:7f:b8:70:b2:56:53:78:
64:a0:89:f1:17:f0:7a:27:9a:7b:fc:13:db:05:d0:
af:a6:9b:bf:a0:32:35:7e:6a:f7:a8:fb:94:d5:b8:
50:09:7f:23:40:b2:08:3f:ea:9d:b6:89:36:c2:17:
5c:82:26:4c:ca:88:ef:ea:c5:7a:e6:49:82:ce:80:
25:69:c8:fa:b9:87:94:05:45:ff:b4:05:31:b4:fd:
18:ad:49:56:ce:18:6a:65:e7:32:35:bd:02:64:31:
7a:24:39:bf:6b:a4:ed:6a:47:e2:3e:cc:0e:bd:5c:
09:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:FB:90:A1:DB:ED:A1:F3:5B:6F:1D:2C:21:6E:7B:FA:E5:09:85:11
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/0vuQodvtofNbbx0sIW57-uUJhRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.55.0/24
37.49.144.0/24
37.49.146.0/24
37.49.148.0/22
94.74.137.0/24
94.74.140.0/24
94.74.147.0/24
94.74.158.0/23
94.74.164.0/24
94.74.168.0/23
94.74.171.0/24
94.74.173.0/24
94.74.187.0/24
94.74.191.0/24
109.203.160.0/24
109.203.162.0-109.203.167.255
176.46.128.0/24
176.46.131.0-176.46.132.255
176.46.137.0/24
176.46.140.0/24
176.46.143.0-176.46.147.255
176.46.149.0/24
176.46.151.0-176.46.152.255
176.46.159.0/24
Signature Algorithm: sha256WithRSAEncryption
23:72:19:c6:d9:86:ec:51:42:13:98:81:8e:f1:01:02:7a:b8:
af:fb:48:c1:06:de:3d:dc:6d:0f:bd:5d:14:a4:35:b2:39:a0:
82:7f:27:f3:fc:89:ec:13:1a:e1:1d:37:4e:b1:e4:a0:8e:7b:
95:69:aa:ba:8e:df:d1:f8:be:0c:bc:06:73:f2:e2:9f:ac:1a:
6e:39:e3:3f:d5:8d:7c:b4:73:ba:7f:43:21:b0:fe:06:8f:ed:
08:1d:ed:08:6d:86:12:1d:da:53:cb:52:f2:16:43:e5:1a:94:
1b:28:7c:05:24:b3:67:24:c6:15:40:82:23:a4:31:a7:54:47:
69:ec:b5:a8:6e:c7:b6:a8:42:38:69:85:0e:3a:df:11:97:6f:
76:cb:4c:d8:6a:ff:da:54:ee:8d:1f:80:8d:ff:5e:da:36:6a:
52:73:78:4a:69:c6:cd:a5:71:ec:64:3d:bd:57:2d:55:52:77:
f4:c4:43:0e:71:fd:29:70:78:15:ef:b0:f5:0a:d1:4c:da:e7:
aa:db:86:7b:24:99:ff:88:e0:f5:d1:4c:69:c2:cc:60:d5:cf:
9c:32:6e:70:e7:2c:99:b1:dc:44:76:70:35:b5:ef:18:6a:46:
67:c6:ac:b8:06:75:9c:37:8b:8c:83:58:ac:51:a7:3c:17:ec:
e3:6e:ff:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:07:08 2025 by rpki-client