Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/rcnwjIHaihHwX-TTluETT5FmN8c.roa
File: rcnwjIHaihHwX-TTluETT5FmN8c.roa (raw, json)
Hash identifier: 2eCjIwRw3jnnLXGoofy3BGZkJK89HKG7oPGFn4Eql7k=
Subject key identifier: AD:C9:F0:8C:81:DA:8A:11:F0:5F:E4:D3:96:E1:13:4F:91:66:37:C7
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 018B1D6F4ED18CB6A3500EA3E2C44835678C
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/rcnwjIHaihHwX-TTluETT5FmN8c.roa
Signing time: Wed 11 Oct 2023 06:31:55 +0000
ROA not before: Wed 11 Oct 2023 06:31:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 176.46.133.0/24 maxlen: 24
176.46.134.0/24 maxlen: 24
176.46.135.0/24 maxlen: 24
176.46.136.0/24 maxlen: 24
176.46.137.0/24 maxlen: 24
176.46.140.0/24 maxlen: 24
176.46.141.0/24 maxlen: 24
176.46.142.0/24 maxlen: 24
176.46.143.0/24 maxlen: 24
176.46.144.0/24 maxlen: 24
176.46.145.0/24 maxlen: 24
176.46.144.0/23 maxlen: 23
176.46.146.0/24 maxlen: 24
176.46.147.0/24 maxlen: 24
176.46.148.0/24 maxlen: 24
176.46.149.0/24 maxlen: 24
176.46.150.0/24 maxlen: 24
176.46.151.0/24 maxlen: 24
176.46.152.0/24 maxlen: 24
176.46.153.0/24 maxlen: 24
176.46.154.0/24 maxlen: 24
176.46.155.0/24 maxlen: 24
176.46.156.0/24 maxlen: 24
176.46.157.0/24 maxlen: 24
176.46.158.0/24 maxlen: 24
176.46.159.0/24 maxlen: 24
176.46.128.0/24 maxlen: 24
176.46.129.0/24 maxlen: 24
176.46.130.0/24 maxlen: 24
176.46.131.0/24 maxlen: 24
176.46.132.0/24 maxlen: 24
31.170.55.0/24 maxlen: 24
37.49.144.0/24 maxlen: 24
37.49.146.0/24 maxlen: 24
37.49.148.0/24 maxlen: 24
37.49.149.0/24 maxlen: 24
37.49.150.0/24 maxlen: 24
37.49.151.0/24 maxlen: 24
109.203.160.0/24 maxlen: 24
109.203.162.0/24 maxlen: 24
109.203.163.0/24 maxlen: 24
109.203.164.0/24 maxlen: 24
109.203.165.0/24 maxlen: 24
109.203.166.0/24 maxlen: 24
109.203.167.0/24 maxlen: 24
94.74.191.0/24 maxlen: 24
94.74.187.0/24 maxlen: 24
94.74.137.0/24 maxlen: 24
94.74.140.0/24 maxlen: 24
94.74.147.0/24 maxlen: 24
94.74.158.0/24 maxlen: 24
94.74.159.0/24 maxlen: 24
94.74.164.0/24 maxlen: 24
94.74.168.0/24 maxlen: 24
94.74.169.0/24 maxlen: 24
94.74.171.0/24 maxlen: 24
94.74.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1d:6f:4e:d1:8c:b6:a3:50:0e:a3:e2:c4:48:35:67:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Oct 11 06:31:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=adc9f08c81da8a11f05fe4d396e1134f916637c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:d4:a2:fa:13:95:df:f6:b5:08:55:50:1e:7e:
a5:e2:9b:66:55:96:4b:d9:36:66:7c:fa:d1:89:68:
da:9d:7c:6d:35:57:8e:d3:3b:60:61:d1:a9:01:f7:
ff:e8:fd:cc:6a:32:e4:aa:ed:db:7c:ba:82:ca:c3:
9f:33:b3:dd:f5:21:e3:73:b4:12:3f:f1:b3:9f:12:
ff:06:27:83:f7:93:c7:bd:53:45:8b:1d:22:77:6c:
0b:ae:64:9c:cb:3d:c6:52:50:fd:8e:e8:4b:8b:d8:
cf:de:68:3d:5a:b4:fd:ea:7d:54:7a:d7:ec:78:77:
d7:89:37:84:62:e5:5e:0d:52:60:c3:79:34:00:31:
20:70:16:04:21:85:0f:d1:f4:e9:d8:30:be:f6:7e:
01:f9:58:22:8f:a2:f4:82:78:18:1c:69:d1:d0:32:
1f:2c:c5:f9:02:c7:42:53:8c:6f:f1:c1:f4:79:17:
43:92:1a:f9:26:60:c9:71:60:3a:27:bf:a5:69:a7:
f5:b0:75:42:e1:26:c7:ec:21:b8:06:cc:2e:1a:f9:
9e:c1:42:76:12:08:22:ef:3e:36:04:fb:c7:12:37:
0f:9e:42:bd:11:20:d3:e1:bf:f0:ce:93:61:5f:ed:
ce:15:db:c3:ba:fd:96:97:38:97:cd:56:fa:eb:e7:
52:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:C9:F0:8C:81:DA:8A:11:F0:5F:E4:D3:96:E1:13:4F:91:66:37:C7
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/rcnwjIHaihHwX-TTluETT5FmN8c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.55.0/24
37.49.144.0/24
37.49.146.0/24
37.49.148.0/22
94.74.137.0/24
94.74.140.0/24
94.74.147.0/24
94.74.158.0/23
94.74.164.0/24
94.74.168.0/23
94.74.171.0/24
94.74.173.0/24
94.74.187.0/24
94.74.191.0/24
109.203.160.0/24
109.203.162.0-109.203.167.255
176.46.128.0-176.46.137.255
176.46.140.0-176.46.159.255
Signature Algorithm: sha256WithRSAEncryption
03:13:45:f9:1e:d7:50:92:c8:90:1d:98:29:52:33:ee:f6:b0:
0c:90:dc:7d:b5:7e:7f:75:ec:ae:d3:ce:eb:5a:8c:88:26:6a:
d0:a1:06:52:56:6f:5a:2b:ab:79:36:79:d3:db:4b:c0:95:cb:
24:f2:72:41:0b:31:79:26:69:dc:89:a4:83:71:56:d7:fc:fd:
ed:75:87:86:c6:3a:b7:19:a6:b7:f8:4f:b0:9d:f7:ea:af:da:
c1:e4:65:6c:51:3a:33:94:d9:3e:f2:61:a6:51:7d:ae:5f:49:
1d:a5:d6:2c:c3:14:3d:de:cb:e3:07:42:eb:8d:88:e3:59:93:
7f:5c:99:ee:41:b9:97:b6:2f:f1:a2:ed:8f:a2:40:ae:03:55:
a7:37:ba:d8:64:d3:d9:c7:2d:c4:7b:16:38:5e:09:f9:49:3e:
c8:76:0b:51:e3:a3:91:4e:41:33:8f:01:1f:55:0f:f8:3a:e5:
d7:7a:6a:46:82:98:d1:7d:dd:33:57:0b:8b:cf:e5:f2:63:11:
5b:43:22:b6:77:3c:d6:de:12:6d:68:9b:0f:d3:06:96:32:5d:
48:56:ee:c0:4a:99:12:1e:55:de:9c:c5:91:56:4e:80:92:cb:
07:21:dc:1a:40:c4:73:35:f7:19:2b:a2:45:36:9e:2f:8b:ae:
f6:d9:bf:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:59:00 2025 by rpki-client