Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/rHT8YAOWE6S0c1MZduNemhCj-lY.roa
File: rHT8YAOWE6S0c1MZduNemhCj-lY.roa (raw, json)
Hash identifier: VQ/o/YkoNXm8I9maKR7WiWNWUgBesiLTgg7KweRdiDU=
Subject key identifier: AC:74:FC:60:03:96:13:A4:B4:73:53:19:76:E3:5E:9A:10:A3:FA:56
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 0184AF9334CAF7CB5B98F8C84E24E2A364C5
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/rHT8YAOWE6S0c1MZduNemhCj-lY.roa
Signing time: Fri 25 Nov 2022 16:16:10 +0000
ROA not before: Fri 25 Nov 2022 16:16:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 77.36.120.0/21 maxlen: 21
185.55.4.0/22 maxlen: 23
176.112.80.0/22 maxlen: 22
176.103.240.0/21 maxlen: 22
46.151.32.0/22 maxlen: 24
178.159.144.0/22 maxlen: 24
176.113.184.0/21 maxlen: 24
93.120.120.0/22 maxlen: 24
81.161.0.0/22 maxlen: 22
185.55.140.0/22 maxlen: 22
185.55.140.0/23 maxlen: 23
185.55.142.0/23 maxlen: 23
64.43.112.0/22 maxlen: 22
31.131.8.0/22 maxlen: 22
176.110.216.0/22 maxlen: 22
176.110.216.0/21 maxlen: 21
64.43.124.0/22 maxlen: 22
176.110.220.0/22 maxlen: 22
176.102.120.0/21 maxlen: 21
176.102.120.0/22 maxlen: 22
176.102.124.0/22 maxlen: 22
193.36.204.0/22 maxlen: 22
176.96.88.0/22 maxlen: 22
109.207.136.0/22 maxlen: 22
176.96.48.0/21 maxlen: 24
176.116.232.0/22 maxlen: 22
91.246.176.0/21 maxlen: 21
176.111.160.0/22 maxlen: 24
93.120.12.0/22 maxlen: 22
46.173.240.0/21 maxlen: 21
93.120.16.0/21 maxlen: 21
178.212.184.0/22 maxlen: 22
178.212.184.0/21 maxlen: 21
178.212.188.0/22 maxlen: 22
91.233.0.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:af:93:34:ca:f7:cb:5b:98:f8:c8:4e:24:e2:a3:64:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Nov 25 16:16:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac74fc60039613a4b473531976e35e9a10a3fa56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8c:4f:0a:f8:68:1b:96:5e:43:54:ea:82:c1:
33:46:28:8d:07:61:e0:55:26:5b:60:f7:55:cf:e3:
a5:f5:6a:04:77:2a:b7:c6:73:b8:9d:cf:18:cc:b3:
1f:e4:bd:d0:27:e2:67:23:13:dc:ab:90:a1:3d:f9:
ca:40:d0:85:74:f0:2e:db:a8:ad:8c:d2:23:5c:15:
8e:a8:7a:76:6d:f5:86:34:6e:58:82:d2:24:99:3c:
c6:20:2b:cc:21:9c:e5:f5:02:a8:81:0c:52:50:02:
e2:30:9e:e0:c4:b2:f9:66:ac:bb:97:29:86:cd:1c:
f7:05:39:4d:5a:3f:e1:5d:9d:ac:db:08:d3:a3:59:
98:98:a0:a4:77:9e:f6:ac:1e:1e:60:b6:56:f3:74:
47:00:5c:1a:29:e1:da:c2:9b:88:52:00:b1:75:7c:
f6:8f:75:1a:82:c5:b8:bd:6c:d3:76:73:24:00:51:
4a:68:0f:96:c2:97:0b:0c:c0:79:1a:52:2e:74:a4:
6f:7b:df:a0:17:6c:f9:0d:a5:45:85:d5:1f:94:07:
67:ea:e7:79:99:8c:97:b9:40:4b:94:4d:d1:a0:4b:
86:26:e7:1a:6f:b3:0b:e4:b2:a7:3f:aa:5d:ae:a4:
5b:37:03:bf:00:a3:35:21:7e:14:6e:eb:9e:6a:59:
b0:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:74:FC:60:03:96:13:A4:B4:73:53:19:76:E3:5E:9A:10:A3:FA:56
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/rHT8YAOWE6S0c1MZduNemhCj-lY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.131.8.0/22
46.151.32.0/22
46.173.240.0/21
64.43.112.0/22
64.43.124.0/22
77.36.120.0/21
81.161.0.0/22
91.233.0.0/23
91.246.176.0/21
93.120.12.0-93.120.23.255
93.120.120.0/22
109.207.136.0/22
176.96.48.0/21
176.96.88.0/22
176.102.120.0/21
176.103.240.0/21
176.110.216.0/21
176.111.160.0/22
176.112.80.0/22
176.113.184.0/21
176.116.232.0/22
178.159.144.0/22
178.212.184.0/21
185.55.4.0/22
185.55.140.0/22
193.36.204.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:4a:07:0b:c3:25:b5:21:08:b7:14:9d:52:c9:0b:61:38:b7:
7c:45:05:8f:4a:fb:74:c4:d9:27:f5:c4:9e:2e:ed:6f:79:53:
b2:6c:2e:fa:8c:13:50:2d:69:f9:c4:0a:fa:48:ce:12:a6:6e:
58:e9:59:22:7b:3f:82:40:8a:d8:d0:18:b1:cf:34:23:c2:a6:
70:c7:93:e9:c8:4d:84:ec:c6:f0:9d:00:b2:b6:27:76:32:01:
16:37:5d:16:6b:02:39:28:4f:bb:6f:30:02:7e:8f:3b:b9:de:
cd:bc:44:46:f3:a2:54:7c:66:c5:ea:03:cb:4b:a7:f0:96:9d:
75:6b:a3:6f:03:4b:87:cc:06:e0:73:c2:e6:bf:42:99:6b:c4:
b1:7a:d7:d9:b7:54:c0:f2:ef:96:0b:b0:f0:e0:f1:e8:59:7f:
d7:b0:71:5b:30:20:28:30:7f:ab:aa:6e:d3:79:87:79:4d:ce:
bf:cb:5e:43:21:c1:a9:74:12:4b:92:5b:df:e2:a2:db:ff:f1:
31:c8:c9:c8:e5:df:06:c3:8b:84:7f:37:c1:55:37:11:a5:6e:
f3:e2:5d:8f:06:c6:a8:96:03:35:9d:90:26:34:9b:0b:c3:f1:
c4:67:60:ea:7e:3c:4d:5e:97:a6:0c:91:5e:66:2c:df:a3:4b:
ae:fc:5f:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:48 2024 by rpki-client on console-ams.rpki-client.org