Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/ysFvztJ5AA3pVMQSNDiCV1mZc5k.roa
File: ysFvztJ5AA3pVMQSNDiCV1mZc5k.roa (raw, json)
Hash identifier: 71exGKDMxXDJTsJyF/zlrThHz1sewNJKEMVokLizaAg=
Subject key identifier: CA:C1:6F:CE:D2:79:00:0D:E9:54:C4:12:34:38:82:57:59:99:73:99
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 018837A2553E4FDCC6E98437F80143986B3D
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/ysFvztJ5AA3pVMQSNDiCV1mZc5k.roa
Signing time: Sat 20 May 2023 05:29:25 +0000
ROA not before: Sat 20 May 2023 05:29:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12679
IP address blocks: 176.46.133.0/24 maxlen: 24
176.46.135.0/24 maxlen: 24
176.46.134.0/24 maxlen: 24
176.46.139.0/24 maxlen: 24
176.46.137.0/24 maxlen: 24
176.46.136.0/24 maxlen: 24
176.46.138.0/24 maxlen: 24
176.46.140.0/24 maxlen: 24
176.46.142.0/24 maxlen: 24
176.46.141.0/24 maxlen: 24
176.46.143.0/24 maxlen: 24
176.46.132.0/24 maxlen: 24
176.46.130.0/24 maxlen: 24
176.46.129.0/24 maxlen: 24
176.46.131.0/24 maxlen: 24
176.46.128.0/24 maxlen: 24
109.203.164.0/22 maxlen: 24
109.203.163.0/24 maxlen: 24
109.203.160.0/22 maxlen: 24
31.170.55.0/24 maxlen: 24
94.74.191.0/24 maxlen: 24
94.74.187.0/24 maxlen: 24
37.49.144.0/22 maxlen: 24
37.49.146.0/24 maxlen: 24
37.49.148.0/22 maxlen: 24
94.74.137.0/24 maxlen: 24
94.74.140.0/24 maxlen: 24
94.74.147.0/24 maxlen: 24
94.74.156.0/24 maxlen: 24
94.74.159.0/24 maxlen: 24
94.74.158.0/24 maxlen: 24
94.74.169.0/24 maxlen: 24
94.74.171.0/24 maxlen: 24
94.74.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:37:a2:55:3e:4f:dc:c6:e9:84:37:f8:01:43:98:6b:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: May 20 05:29:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cac16fced279000de954c4123438825759997399
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:7e:83:5e:60:af:57:58:ce:1e:71:e0:ce:bc:
f0:c4:30:53:84:6f:d0:5c:15:31:fe:4d:c8:ac:24:
c7:f0:55:70:30:68:7c:d9:6f:6a:c0:d5:1b:24:42:
00:65:58:64:11:a2:37:fa:c3:eb:67:06:e5:74:48:
1b:16:64:6b:a0:48:8a:96:25:f0:51:cb:07:b1:dd:
f2:46:1b:73:ba:05:59:99:64:d7:45:5c:96:b2:38:
b9:c3:60:b4:be:36:47:2b:db:90:9f:9b:e5:43:61:
d4:5a:1c:9c:63:24:74:aa:58:e9:3a:93:c5:62:dd:
e6:e2:26:55:de:33:95:92:e1:86:71:3e:fb:0d:93:
c9:ce:ca:49:27:4a:01:2f:b1:38:a9:f3:34:15:09:
23:32:0a:ce:22:e0:69:a6:a4:d1:14:ce:90:61:0c:
7e:02:4a:df:a3:51:95:97:54:8e:8c:15:6e:c4:7b:
90:56:58:69:6a:cf:75:cb:92:b1:f4:71:95:5f:97:
78:46:15:14:03:44:f7:b8:8d:ec:6a:eb:a1:2f:fa:
0a:05:40:0f:14:5d:75:32:15:62:c2:0a:80:22:53:
40:c1:63:49:8a:8a:31:89:10:0c:d5:61:ba:fb:8c:
45:d4:6b:3b:c2:95:81:13:b8:72:5f:73:4a:20:4c:
f6:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:C1:6F:CE:D2:79:00:0D:E9:54:C4:12:34:38:82:57:59:99:73:99
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/ysFvztJ5AA3pVMQSNDiCV1mZc5k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.55.0/24
37.49.144.0/21
94.74.137.0/24
94.74.140.0/24
94.74.147.0/24
94.74.156.0/24
94.74.158.0/23
94.74.169.0/24
94.74.171.0/24
94.74.173.0/24
94.74.187.0/24
94.74.191.0/24
109.203.160.0/21
176.46.128.0/20
Signature Algorithm: sha256WithRSAEncryption
29:4c:f0:48:70:e3:0f:26:69:a0:bf:27:f6:7c:b9:c5:6c:d2:
eb:d4:a1:71:3c:27:e4:fb:8b:74:c8:e3:a6:ff:f4:9e:9c:2d:
d3:de:3a:f3:66:60:44:ba:24:be:17:10:23:3a:a3:34:0e:e2:
5d:a7:bd:7e:1c:cc:cd:0e:90:d5:2d:7d:33:3a:69:01:51:0e:
a1:f7:f5:d7:e2:0f:3a:5d:08:12:de:18:6f:37:76:15:8a:0d:
08:f6:e8:11:38:41:37:42:60:63:4f:8d:4b:01:a3:f8:3a:d5:
a5:58:7e:fd:41:24:33:ca:db:b0:fd:1a:10:b9:4d:98:62:75:
41:2a:15:51:59:d6:a6:a3:dc:ee:85:91:ff:1b:2a:ae:74:4e:
f4:4b:61:17:71:2a:ce:04:88:a8:e0:1b:67:bd:2c:d7:e9:71:
7b:54:c4:5c:ae:00:74:1f:fd:21:48:ad:6e:de:0a:51:5c:fc:
24:ac:a6:89:75:9f:31:c3:dd:ad:13:f7:ad:70:8f:ef:71:ce:
69:a1:01:88:df:aa:53:65:a9:6f:d3:f0:5c:35:8e:e5:70:22:
4d:62:57:62:33:0c:ac:21:ca:aa:4b:e2:39:ee:57:6c:5e:51:
83:3e:ac:03:18:f4:27:41:94:85:a3:a2:98:84:9e:7c:a4:40:
a0:0c:8d:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:07:30 2025 by rpki-client