Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/739b81-3cd3-469c-b954-3553b4ed6794/1/V_4W7NxEWjNsofVVo9HvL48c3FE.roa
File: V_4W7NxEWjNsofVVo9HvL48c3FE.roa (raw, json)
Hash identifier: 6Icz7Fe/eRdCyQASRudtALIjHowlcCLWS9HP05LPayQ=
Subject key identifier: 57:FE:16:EC:DC:44:5A:33:6C:A1:F5:55:A3:D1:EF:2F:8F:1C:DC:51
Certificate issuer: /CN=50741158f3ed65bee1bde12f34f895afb0dd50d5
Certificate serial: 01827710C222ABD984D3E5FDB499B5CF2E4A
Authority key identifier: 50:74:11:58:F3:ED:65:BE:E1:BD:E1:2F:34:F8:95:AF:B0:DD:50:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UHQRWPPtZb7hveEvNPiVr7DdUNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/739b81-3cd3-469c-b954-3553b4ed6794/1/V_4W7NxEWjNsofVVo9HvL48c3FE.roa
Signing time: Sun 07 Aug 2022 06:49:23 +0000
ROA not before: Sun 07 Aug 2022 06:49:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208905
IP address blocks: 147.235.40.0/24 maxlen: 24
147.235.49.0/24 maxlen: 24
147.235.50.0/23 maxlen: 24
147.235.46.0/23 maxlen: 24
147.235.45.0/24 maxlen: 24
147.235.61.0/24 maxlen: 24
147.235.60.0/23 maxlen: 23
147.235.60.0/22 maxlen: 22
147.235.62.0/24 maxlen: 24
147.235.62.0/23 maxlen: 23
147.235.60.0/24 maxlen: 24
147.235.63.0/24 maxlen: 24
147.235.76.0/22 maxlen: 22
147.235.78.0/23 maxlen: 23
147.235.77.0/24 maxlen: 24
147.235.78.0/24 maxlen: 24
147.235.75.0/24 maxlen: 24
147.235.74.0/23 maxlen: 23
147.235.74.0/24 maxlen: 24
147.235.76.0/24 maxlen: 24
147.235.73.0/24 maxlen: 24
147.235.72.0/23 maxlen: 23
147.235.72.0/24 maxlen: 24
147.235.72.0/22 maxlen: 22
147.235.76.0/23 maxlen: 23
147.235.80.0/24 maxlen: 24
147.235.79.0/24 maxlen: 24
147.235.26.0/23 maxlen: 24
147.235.25.0/24 maxlen: 24
147.235.36.0/24 maxlen: 24
147.235.152.0/23 maxlen: 24
147.235.180.0/23 maxlen: 24
147.235.94.0/23 maxlen: 23
147.235.94.0/24 maxlen: 24
147.235.95.0/24 maxlen: 24
147.235.93.0/24 maxlen: 24
147.235.224.0/23 maxlen: 24
147.235.232.0/23 maxlen: 24
185.130.84.0/22 maxlen: 22
2a06:c702::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:77:10:c2:22:ab:d9:84:d3:e5:fd:b4:99:b5:cf:2e:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50741158f3ed65bee1bde12f34f895afb0dd50d5
Validity
Not Before: Aug 7 06:49:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=57fe16ecdc445a336ca1f555a3d1ef2f8f1cdc51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:54:5d:b9:ea:a9:0d:54:cd:af:a6:50:99:6d:
c7:e8:81:e5:d5:e7:13:ed:8e:4f:ee:9e:15:dc:e7:
78:ce:65:c9:66:a2:1f:85:60:b9:b1:6a:43:66:8a:
51:d5:e7:b1:d9:64:0e:27:72:5c:10:d2:66:36:f4:
b0:57:ac:cc:f6:2c:56:33:93:05:c4:49:6e:48:34:
97:09:77:ad:50:b1:35:4a:16:7c:32:9d:b3:56:ea:
8e:73:93:d7:1d:74:6c:1a:fd:4a:60:b5:5e:1e:1d:
39:84:16:43:93:39:d5:8d:25:8a:9f:5a:f8:99:93:
56:89:d4:7f:bb:6f:26:91:ee:0d:ae:53:01:0a:fd:
4c:e8:50:2d:a8:bc:98:7e:6f:29:e7:68:f5:c2:8c:
cb:f2:26:d7:96:f9:04:15:43:f7:16:50:07:ae:38:
ad:1d:10:86:a4:54:ef:29:5f:7f:66:e3:e5:f8:b7:
1d:4f:ad:08:6b:a0:ff:50:c5:3c:ff:a4:1f:db:13:
16:f5:5c:fc:42:2a:e2:87:3a:d1:ff:73:a7:6a:f1:
89:9b:23:26:aa:d8:c5:9f:9d:0f:fc:64:64:5f:62:
a9:1e:f6:c7:64:a3:60:6d:51:ab:ff:5a:1c:a7:01:
68:74:b1:09:fc:cc:fb:52:55:a9:58:9c:71:31:4d:
09:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:FE:16:EC:DC:44:5A:33:6C:A1:F5:55:A3:D1:EF:2F:8F:1C:DC:51
X509v3 Authority Key Identifier:
keyid:50:74:11:58:F3:ED:65:BE:E1:BD:E1:2F:34:F8:95:AF:B0:DD:50:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UHQRWPPtZb7hveEvNPiVr7DdUNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/739b81-3cd3-469c-b954-3553b4ed6794/1/V_4W7NxEWjNsofVVo9HvL48c3FE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/739b81-3cd3-469c-b954-3553b4ed6794/1/UHQRWPPtZb7hveEvNPiVr7DdUNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.235.25.0-147.235.27.255
147.235.36.0/24
147.235.40.0/24
147.235.45.0-147.235.47.255
147.235.49.0-147.235.51.255
147.235.60.0/22
147.235.72.0-147.235.80.255
147.235.93.0-147.235.95.255
147.235.152.0/23
147.235.180.0/23
147.235.224.0/23
147.235.232.0/23
185.130.84.0/22
IPv6:
2a06:c702::/48
Signature Algorithm: sha256WithRSAEncryption
05:cb:4d:bb:7e:91:4d:30:62:de:f4:10:9b:c0:78:e4:2c:10:
8d:14:15:a6:51:f4:56:9a:3a:6f:c8:b4:44:03:d3:f2:c9:6f:
5d:18:a4:24:49:48:35:67:75:9a:b4:18:70:3f:23:9c:c1:f3:
b0:07:aa:2a:01:2b:53:60:a8:2a:9a:f5:99:5d:76:fa:c5:23:
95:c6:45:b7:6c:9f:dd:d1:8a:e0:60:7a:63:37:aa:40:1b:16:
46:62:0f:4d:d8:69:d3:83:2c:83:89:a4:c8:d6:ee:39:b3:fa:
8a:a8:29:cc:0b:9a:b3:c9:a6:e6:17:85:f4:51:ae:e2:24:b4:
6d:8b:9c:6f:3a:d3:52:e1:0d:56:d1:2a:b5:67:bc:c7:3c:19:
a7:39:cd:be:f9:17:e2:a7:f3:74:6f:34:a9:90:48:a5:49:a5:
0c:01:a6:a5:b9:8f:e2:79:f3:29:77:81:a3:9b:51:1a:8a:d3:
9d:98:3b:32:84:06:c6:f2:95:ea:fa:15:80:4b:e4:6a:b0:78:
5f:77:e7:0b:43:ad:6e:9a:3b:a5:da:cd:bc:85:fb:23:37:a4:
e1:c2:30:02:d8:14:24:3d:97:f4:ba:09:b1:39:ac:18:d2:35:
3f:d9:2b:29:08:2d:70:51:51:5e:88:83:48:73:aa:5e:df:1c:
ca:8c:80:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:26 2023 by rpki-client on console-ams.rpki-client.org