Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/hCGXl50lNoSZ1ELayGZYs6LFPmo.roa
File: hCGXl50lNoSZ1ELayGZYs6LFPmo.roa (raw, json)
Hash identifier: Hp+bYyG9v1NNGYI6cmaU29WaJ/kpm7/rTtxsA19wKsc=
Subject key identifier: 84:21:97:97:9D:25:36:84:99:D4:42:DA:C8:66:58:B3:A2:C5:3E:6A
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 018A64617AD1A12091F442D0D01B9E3C8B38
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/hCGXl50lNoSZ1ELayGZYs6LFPmo.roa
Signing time: Tue 05 Sep 2023 08:07:04 +0000
ROA not before: Tue 05 Sep 2023 08:07:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 176.46.133.0/24 maxlen: 24
176.46.134.0/24 maxlen: 24
176.46.135.0/24 maxlen: 24
176.46.136.0/24 maxlen: 24
176.46.137.0/24 maxlen: 24
176.46.140.0/24 maxlen: 24
176.46.141.0/24 maxlen: 24
176.46.142.0/24 maxlen: 24
176.46.143.0/24 maxlen: 24
176.46.144.0/24 maxlen: 24
176.46.145.0/24 maxlen: 24
176.46.144.0/23 maxlen: 23
176.46.146.0/24 maxlen: 24
176.46.147.0/24 maxlen: 24
176.46.148.0/24 maxlen: 24
176.46.149.0/24 maxlen: 24
176.46.150.0/24 maxlen: 24
176.46.151.0/24 maxlen: 24
176.46.152.0/24 maxlen: 24
176.46.153.0/24 maxlen: 24
176.46.154.0/24 maxlen: 24
176.46.155.0/24 maxlen: 24
176.46.156.0/24 maxlen: 24
176.46.157.0/24 maxlen: 24
176.46.158.0/24 maxlen: 24
176.46.159.0/24 maxlen: 24
176.46.128.0/24 maxlen: 24
176.46.129.0/24 maxlen: 24
176.46.130.0/24 maxlen: 24
176.46.131.0/24 maxlen: 24
176.46.132.0/24 maxlen: 24
31.170.55.0/24 maxlen: 24
37.49.144.0/24 maxlen: 24
37.49.145.0/24 maxlen: 24
37.49.146.0/24 maxlen: 24
37.49.147.0/24 maxlen: 24
37.49.148.0/24 maxlen: 24
37.49.149.0/24 maxlen: 24
37.49.150.0/24 maxlen: 24
37.49.151.0/24 maxlen: 24
109.203.160.0/24 maxlen: 24
109.203.162.0/24 maxlen: 24
109.203.163.0/24 maxlen: 24
109.203.164.0/24 maxlen: 24
109.203.165.0/24 maxlen: 24
109.203.166.0/24 maxlen: 24
109.203.167.0/24 maxlen: 24
94.74.191.0/24 maxlen: 24
94.74.187.0/24 maxlen: 24
94.74.137.0/24 maxlen: 24
94.74.140.0/24 maxlen: 24
94.74.147.0/24 maxlen: 24
94.74.156.0/24 maxlen: 24
94.74.158.0/24 maxlen: 24
94.74.159.0/24 maxlen: 24
94.74.164.0/24 maxlen: 24
94.74.168.0/24 maxlen: 24
94.74.169.0/24 maxlen: 24
94.74.171.0/24 maxlen: 24
94.74.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:64:61:7a:d1:a1:20:91:f4:42:d0:d0:1b:9e:3c:8b:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Sep 5 08:07:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=842197979d25368499d442dac86658b3a2c53e6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:d1:43:65:19:b0:5d:48:d4:b9:98:05:ca:99:
d8:eb:5e:9e:c7:f9:3a:32:5d:4d:f7:17:0f:27:65:
a9:94:02:ab:b5:b1:e9:6b:f2:1d:bb:02:cf:f1:c4:
6d:ad:32:9b:84:0b:f5:e0:ea:8d:1a:2a:70:29:ff:
4c:85:37:58:da:b4:6d:95:79:31:6b:1b:bd:73:52:
cc:e3:82:81:3f:07:96:9d:9c:d8:df:3b:d1:60:bb:
1d:d3:de:5d:12:a8:7c:ba:a8:fe:40:71:39:17:90:
b9:80:55:8f:f3:0a:5a:a5:4d:a0:ea:20:79:1f:1e:
16:68:1e:0e:40:9e:8d:ff:ce:25:da:5e:79:39:a6:
a8:a0:1e:dd:04:fa:c5:a8:3c:09:c9:8f:9b:26:11:
f0:0e:18:cd:63:20:fa:5e:d4:76:9b:ec:05:e7:7f:
46:e4:07:90:43:92:59:66:6e:fb:94:d1:da:23:70:
c6:39:1e:08:e0:95:a4:29:95:04:57:1b:90:96:d9:
24:f4:3e:d7:6f:46:ee:87:c4:87:1d:a0:38:a0:fe:
6a:ee:b2:ea:bb:77:19:46:64:1e:6d:94:08:c3:b2:
1a:67:43:63:72:df:ff:3a:a1:69:18:00:b4:44:d4:
40:be:f6:02:c9:c7:3e:ab:76:4a:8e:c7:3b:86:c0:
f4:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:21:97:97:9D:25:36:84:99:D4:42:DA:C8:66:58:B3:A2:C5:3E:6A
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/hCGXl50lNoSZ1ELayGZYs6LFPmo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.55.0/24
37.49.144.0/21
94.74.137.0/24
94.74.140.0/24
94.74.147.0/24
94.74.156.0/24
94.74.158.0/23
94.74.164.0/24
94.74.168.0/23
94.74.171.0/24
94.74.173.0/24
94.74.187.0/24
94.74.191.0/24
109.203.160.0/24
109.203.162.0-109.203.167.255
176.46.128.0-176.46.137.255
176.46.140.0-176.46.159.255
Signature Algorithm: sha256WithRSAEncryption
82:3b:58:57:29:be:b1:a8:1f:c9:75:32:54:7b:2b:47:8e:32:
17:f7:7e:63:2b:62:27:83:47:0b:7d:53:54:87:c5:5f:f5:5f:
18:4e:5f:47:0e:2c:15:d1:c2:53:3c:e9:0e:c9:be:fc:83:e9:
d0:51:47:45:cc:15:ef:b0:f2:03:c5:ed:5b:87:06:e8:04:b0:
33:96:73:8d:08:5a:2f:c4:6e:b2:9a:82:c6:27:de:e2:a1:f5:
a2:ad:d7:1a:18:d1:50:7c:df:18:14:aa:1a:f1:34:e5:05:d5:
09:90:25:05:19:46:a1:96:3c:51:26:d4:0e:77:87:72:71:cd:
81:fd:24:b6:44:50:c9:83:1b:72:81:bf:66:eb:e6:8a:85:bb:
34:52:e7:16:10:5c:e3:8a:4a:aa:39:1c:40:55:86:0c:72:3e:
25:11:ce:8d:a1:65:98:73:7d:b3:ee:cb:32:a8:c8:db:60:2a:
ae:d0:fe:9e:fc:76:c7:ba:64:37:32:ec:5c:3d:76:47:4b:00:
5b:75:c9:84:50:12:36:8f:58:33:48:5e:67:1c:44:75:06:c3:
41:a4:82:06:9a:99:8f:58:54:96:28:67:f6:03:af:db:73:91:
70:d7:f0:13:cf:c2:b5:2f:32:dd:c7:07:b3:c0:7c:86:ff:be:
ae:fb:3b:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:07:26 2025 by rpki-client