Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/dWca0Yj-NPizbuQS3GhLt0Np8Pc.roa
File: dWca0Yj-NPizbuQS3GhLt0Np8Pc.roa (raw, json)
Hash identifier: sElV37qsKGIU4H7PL/tuqNiDp71Qu3EjqThAyPabqEY=
Subject key identifier: 75:67:1A:D1:88:FE:34:F8:B3:6E:E4:12:DC:68:4B:B7:43:69:F0:F7
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 0189F84AF19760207AEFA82CFD218E263BA6
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/dWca0Yj-NPizbuQS3GhLt0Np8Pc.roa
Signing time: Tue 15 Aug 2023 08:23:28 +0000
ROA not before: Tue 15 Aug 2023 08:23:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12679
IP address blocks: 176.46.133.0/24 maxlen: 24
176.46.135.0/24 maxlen: 24
176.46.134.0/24 maxlen: 24
176.46.139.0/24 maxlen: 24
176.46.136.0/24 maxlen: 24
176.46.138.0/24 maxlen: 24
176.46.140.0/24 maxlen: 24
176.46.142.0/24 maxlen: 24
176.46.141.0/24 maxlen: 24
176.46.143.0/24 maxlen: 24
176.46.144.0/20 maxlen: 24
176.46.132.0/24 maxlen: 24
176.46.130.0/24 maxlen: 24
176.46.129.0/24 maxlen: 24
176.46.131.0/24 maxlen: 24
176.46.128.0/24 maxlen: 24
109.203.164.0/22 maxlen: 24
109.203.160.0/22 maxlen: 24
94.74.191.0/24 maxlen: 24
94.74.187.0/24 maxlen: 24
37.49.144.0/22 maxlen: 24
37.49.146.0/24 maxlen: 24
37.49.148.0/22 maxlen: 24
94.74.137.0/24 maxlen: 24
94.74.156.0/24 maxlen: 24
94.74.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f8:4a:f1:97:60:20:7a:ef:a8:2c:fd:21:8e:26:3b:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Aug 15 08:23:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75671ad188fe34f8b36ee412dc684bb74369f0f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d9:65:6b:ce:21:01:15:fb:61:b5:3c:af:6f:
9c:e6:fb:bc:ea:3c:30:c0:7c:88:27:40:28:f2:74:
46:48:9c:97:e7:7b:61:d6:4d:35:87:e7:ba:01:02:
85:8c:8e:a4:c5:52:4a:28:4d:a3:50:b8:26:af:d6:
55:49:05:e4:56:9a:83:83:f0:b4:f4:a9:8d:76:db:
92:e3:36:da:1c:4d:49:ca:db:7d:fb:86:23:87:00:
e9:23:ca:d8:37:2c:b6:b9:d0:d5:c0:48:d4:57:9c:
a3:1e:ee:79:ac:92:1d:58:69:bf:d6:61:63:96:99:
92:b0:9e:44:75:9f:56:95:f7:32:32:6e:df:bf:ba:
3f:f1:42:ab:23:73:1e:3e:00:51:16:03:e2:3d:9e:
0f:a3:fe:54:8b:71:5d:65:2f:14:a4:de:92:19:ec:
88:c6:74:18:57:ae:21:16:87:9a:ed:39:92:64:f9:
70:a6:08:b3:da:c9:d3:76:6d:02:e8:e0:b2:4b:4a:
a5:85:c9:09:e3:6e:f4:f0:b9:d0:b8:af:0b:84:8a:
45:28:be:19:96:04:a4:ac:08:85:b1:ba:94:14:46:
0f:09:2a:06:12:8d:b7:be:fa:01:3f:3d:ff:d4:26:
0a:eb:01:89:87:c8:1a:fa:d7:fc:eb:06:6b:c1:b2:
7c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:67:1A:D1:88:FE:34:F8:B3:6E:E4:12:DC:68:4B:B7:43:69:F0:F7
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/dWca0Yj-NPizbuQS3GhLt0Np8Pc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.49.144.0/21
94.74.137.0/24
94.74.156.0/24
94.74.173.0/24
94.74.187.0/24
94.74.191.0/24
109.203.160.0/21
176.46.128.0-176.46.136.255
176.46.138.0-176.46.159.255
Signature Algorithm: sha256WithRSAEncryption
91:4e:b7:11:6c:bb:a6:e9:97:46:da:b1:de:1f:5f:93:af:94:
c3:6a:d1:16:8b:5d:0a:55:18:ec:30:54:11:79:7b:8b:b9:02:
ab:67:b3:b4:87:03:f1:f7:e5:05:fc:02:a5:f4:5f:61:d0:44:
1f:3f:8a:b8:ef:1a:d0:83:62:e4:94:f2:c6:26:e4:26:d9:93:
73:9e:69:7c:2c:fb:d3:b2:ac:65:c5:8b:81:98:9e:d7:3d:72:
d4:08:5b:1f:52:69:86:13:76:36:63:25:b1:c7:ca:83:e7:83:
50:49:ee:ea:59:bd:72:a4:e6:9c:ca:d8:21:84:2f:be:1d:98:
97:28:93:77:8a:44:46:a1:6b:34:53:bc:e4:eb:26:95:c4:01:
d5:ee:3f:c2:3f:3e:96:4d:a0:a8:49:89:cf:d6:ff:81:28:51:
77:72:90:3c:26:24:98:cb:8e:95:92:4f:53:17:b3:02:d0:2a:
65:d9:77:c0:26:bd:2f:bb:ef:41:3c:fa:2d:d3:74:d1:a0:21:
f3:89:8d:4d:38:a0:d9:e1:f9:03:18:cf:f0:ff:04:06:bc:fd:
21:f0:04:e5:cb:79:b4:4d:5b:4f:e1:d6:6b:72:76:c2:b6:24:
e8:01:94:74:e5:75:0a:98:9d:95:7d:e4:50:76:88:97:05:ac:
f8:ba:f3:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:06:36 2025 by rpki-client