Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/Dlvdijhx-1FuyrUrurIZtHwYW7o.roa
File: Dlvdijhx-1FuyrUrurIZtHwYW7o.roa (raw, json)
Hash identifier: Ko60KIwtW67KIT1QGJbP3rcR53stv73PkMYgfKHu6kE=
Subject key identifier: 0E:5B:DD:8A:38:71:FB:51:6E:CA:B5:2B:BA:B2:19:B4:7C:18:5B:BA
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 01876FBDE6AB94A6395651FA66A441E97EB2
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/Dlvdijhx-1FuyrUrurIZtHwYW7o.roa
Signing time: Tue 11 Apr 2023 09:55:28 +0000
ROA not before: Tue 11 Apr 2023 09:55:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12679
IP address blocks: 176.46.133.0/24 maxlen: 24
176.46.135.0/24 maxlen: 24
176.46.134.0/24 maxlen: 24
176.46.137.0/24 maxlen: 24
176.46.136.0/24 maxlen: 24
176.46.132.0/24 maxlen: 24
176.46.130.0/24 maxlen: 24
176.46.129.0/24 maxlen: 24
176.46.131.0/24 maxlen: 24
176.46.128.0/24 maxlen: 24
109.203.164.0/22 maxlen: 24
109.203.163.0/24 maxlen: 24
109.203.160.0/22 maxlen: 24
31.170.55.0/24 maxlen: 24
94.74.191.0/24 maxlen: 24
94.74.187.0/24 maxlen: 24
37.49.144.0/22 maxlen: 24
37.49.146.0/24 maxlen: 24
37.49.148.0/22 maxlen: 24
94.74.137.0/24 maxlen: 24
94.74.140.0/24 maxlen: 24
94.74.147.0/24 maxlen: 24
94.74.156.0/24 maxlen: 24
94.74.159.0/24 maxlen: 24
94.74.158.0/24 maxlen: 24
94.74.164.0/24 maxlen: 24
94.74.169.0/24 maxlen: 24
94.74.171.0/24 maxlen: 24
94.74.168.0/24 maxlen: 24
94.74.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:6f:bd:e6:ab:94:a6:39:56:51:fa:66:a4:41:e9:7e:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Apr 11 09:55:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e5bdd8a3871fb516ecab52bbab219b47c185bba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:35:28:93:aa:5d:58:f7:da:05:eb:93:3f:d5:
54:43:bc:79:a8:61:c7:65:99:65:d9:24:af:7b:95:
3d:2c:51:e7:dc:6d:56:6e:e0:1a:28:b7:87:56:e0:
a6:f3:0c:42:ae:8f:c3:18:7e:01:f8:87:5d:55:c4:
96:08:72:8c:f9:1b:34:8f:96:2f:b4:aa:2d:c2:b0:
fc:27:21:45:d0:ff:bf:b0:72:8f:e5:55:3b:2e:4a:
99:4b:f1:36:42:be:f0:8b:4e:06:a2:c5:8f:0a:7c:
27:a0:c7:35:53:f3:ed:69:6d:96:6c:81:00:73:56:
8c:d5:88:6c:5d:4a:28:fc:7f:75:90:6b:ed:75:cd:
c3:4f:8b:d0:d6:d3:90:3d:6a:3f:72:87:c6:9f:1d:
b9:6f:b1:fe:fa:35:77:c1:eb:63:25:78:d3:91:eb:
5a:f5:41:20:21:d6:41:8a:3d:86:69:6d:1a:bc:c3:
5d:b3:5a:d5:d1:87:2a:c4:9a:76:95:eb:32:08:cd:
09:22:01:6d:62:a9:2d:6b:80:de:48:2f:ad:d8:ea:
39:87:95:5c:e8:49:1e:05:17:fa:7d:4e:f5:86:f9:
78:76:11:09:81:dd:7a:63:01:0a:b6:c0:22:08:38:
3a:27:44:a6:52:15:3f:64:e8:8d:bb:00:25:f2:21:
44:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:5B:DD:8A:38:71:FB:51:6E:CA:B5:2B:BA:B2:19:B4:7C:18:5B:BA
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/Dlvdijhx-1FuyrUrurIZtHwYW7o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.55.0/24
37.49.144.0/21
94.74.137.0/24
94.74.140.0/24
94.74.147.0/24
94.74.156.0/24
94.74.158.0/23
94.74.164.0/24
94.74.168.0/23
94.74.171.0/24
94.74.173.0/24
94.74.187.0/24
94.74.191.0/24
109.203.160.0/21
176.46.128.0-176.46.137.255
Signature Algorithm: sha256WithRSAEncryption
73:99:cb:53:64:8e:3b:9b:56:da:16:b2:c9:89:b8:a8:6c:4a:
c4:ae:7b:b7:2a:0f:74:a4:1c:5c:09:6c:49:8b:b4:c9:7e:28:
b5:4b:b7:9e:09:d9:89:c7:ce:f6:04:86:5a:11:d9:54:1e:98:
ad:4d:ed:0b:de:a0:87:55:71:c4:7c:29:50:83:3c:36:06:65:
5e:60:b8:12:ec:e2:c4:e3:d0:dc:b3:0c:63:a1:f6:75:03:1d:
1b:3e:04:a2:88:22:77:82:98:b3:0a:e7:f3:4c:19:3b:4f:4b:
76:88:fd:be:39:fa:c5:85:4d:ed:16:35:40:9b:2a:61:27:9b:
97:4d:26:cb:42:61:83:48:f7:bc:98:e8:6e:85:21:e7:47:cd:
d4:86:42:14:d3:c1:fb:a6:e2:1d:8d:d8:5e:14:de:ac:5b:7e:
db:bd:94:dc:78:a9:72:ec:0d:94:ea:61:9f:af:80:d8:b8:5a:
48:56:2b:bb:84:ea:1f:1c:15:18:47:86:1e:51:c4:5d:22:e2:
83:17:e1:2c:7f:ca:2a:5e:37:e8:42:d0:9f:e0:5b:e8:25:46:
14:bb:61:0f:aa:a9:e7:26:e3:a3:d2:53:1d:0f:23:a0:2e:4f:
e9:68:00:8e:2e:ff:8c:ce:46:55:40:c2:f4:18:d4:1d:0f:b9:
2d:b1:70:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:04:09 2025 by rpki-client