Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/SXyE95Ym1zYmORHowI5Yijcw9ZU.roa
File: SXyE95Ym1zYmORHowI5Yijcw9ZU.roa (raw, json)
Hash identifier: M7wqUv1caYtjtDRnLo7ma68P8U2vI+RXNKYtAW+3Lcc=
Subject key identifier: 49:7C:84:F7:96:26:D7:36:26:39:11:E8:C0:8E:58:8A:37:30:F5:95
Certificate issuer: /CN=64fa66fb84a781a0584fd0d1c2df39bda4760519
Certificate serial: 08E07799
Authority key identifier: 64:FA:66:FB:84:A7:81:A0:58:4F:D0:D1:C2:DF:39:BD:A4:76:05:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZPpm-4SngaBYT9DRwt85vaR2BRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/SXyE95Ym1zYmORHowI5Yijcw9ZU.roa
Signing time: Tue 26 Apr 2022 07:32:20 +0000
ROA not before: Tue 26 Apr 2022 07:32:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49367
IP address blocks: 89.43.52.0/24 maxlen: 24
188.215.7.0/24 maxlen: 24
188.215.6.0/23 maxlen: 23
188.215.6.0/24 maxlen: 24
85.204.255.0/24 maxlen: 24
89.34.236.0/23 maxlen: 23
89.34.239.0/24 maxlen: 24
188.208.16.0/23 maxlen: 23
89.43.34.0/23 maxlen: 23
94.176.212.0/24 maxlen: 24
89.39.254.0/24 maxlen: 24
86.107.110.0/24 maxlen: 24
185.184.240.0/22 maxlen: 22
188.211.248.0/24 maxlen: 24
94.177.48.0/23 maxlen: 23
193.239.140.0/23 maxlen: 23
91.212.52.0/24 maxlen: 24
188.240.229.0/24 maxlen: 24
188.240.228.0/23 maxlen: 23
188.240.228.0/24 maxlen: 24
37.156.174.0/24 maxlen: 24
89.40.142.0/23 maxlen: 23
45.86.144.0/22 maxlen: 22
91.229.186.0/24 maxlen: 24
45.83.56.0/22 maxlen: 22
93.113.145.0/24 maxlen: 24
93.113.144.0/21 maxlen: 21
93.113.144.0/22 maxlen: 22
93.113.144.0/24 maxlen: 24
93.113.147.0/24 maxlen: 24
93.113.146.0/24 maxlen: 24
93.113.149.0/24 maxlen: 24
93.113.148.0/24 maxlen: 24
93.113.150.0/24 maxlen: 24
93.113.151.0/24 maxlen: 24
89.42.134.0/24 maxlen: 24
89.40.227.0/24 maxlen: 24
77.81.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148928409 (0x8e07799)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64fa66fb84a781a0584fd0d1c2df39bda4760519
Validity
Not Before: Apr 26 07:32:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=497c84f79626d736263911e8c08e588a3730f595
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:27:88:96:6b:92:89:95:18:c5:b1:c4:59:17:
8b:9a:e9:9c:91:ae:48:95:43:42:b1:e0:ab:fa:9e:
e9:f3:c6:d7:61:4a:ef:df:fc:14:13:97:0c:c8:bb:
97:fc:57:d1:dc:b3:05:9a:15:34:5d:52:80:57:4b:
56:5f:9d:74:a9:79:f6:78:cc:df:d6:7e:6c:24:c2:
f8:54:8e:77:68:e8:17:5a:a2:5f:23:b8:4e:e5:da:
7b:69:65:8c:53:c3:06:4f:dd:e8:d1:be:61:70:07:
10:1d:7f:69:0f:70:95:0c:cc:f3:d0:5c:55:cc:a9:
a2:5e:ed:ed:d8:ed:a1:3f:4b:99:dc:22:7a:51:4f:
1e:81:eb:9c:e5:06:54:d4:bb:e2:29:b2:8c:a8:45:
da:01:1a:bb:22:10:5d:4f:53:50:64:e7:5d:58:9f:
9c:e0:cb:f7:0c:41:88:f7:1f:ed:8a:c0:05:40:0f:
ac:83:fc:c1:54:92:41:77:1a:94:dc:d1:4f:cf:a4:
a4:50:34:74:0b:16:25:3f:5e:50:91:5c:08:b0:e0:
d8:fa:59:a3:a0:b2:43:6b:e9:4d:0e:9d:1a:3c:d5:
eb:b9:2e:e8:73:ed:55:a0:32:f9:c5:e1:0e:73:68:
ef:8f:9e:b5:0d:c0:e5:f5:87:df:4d:2e:96:43:53:
5a:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:7C:84:F7:96:26:D7:36:26:39:11:E8:C0:8E:58:8A:37:30:F5:95
X509v3 Authority Key Identifier:
keyid:64:FA:66:FB:84:A7:81:A0:58:4F:D0:D1:C2:DF:39:BD:A4:76:05:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZPpm-4SngaBYT9DRwt85vaR2BRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/SXyE95Ym1zYmORHowI5Yijcw9ZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/ZPpm-4SngaBYT9DRwt85vaR2BRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.156.174.0/24
45.83.56.0/22
45.86.144.0/22
77.81.103.0/24
85.204.255.0/24
86.107.110.0/24
89.34.236.0/23
89.34.239.0/24
89.39.254.0/24
89.40.142.0/23
89.40.227.0/24
89.42.134.0/24
89.43.34.0/23
89.43.52.0/24
91.212.52.0/24
91.229.186.0/24
93.113.144.0/21
94.176.212.0/24
94.177.48.0/23
185.184.240.0/22
188.208.16.0/23
188.211.248.0/24
188.215.6.0/23
188.240.228.0/23
193.239.140.0/23
Signature Algorithm: sha256WithRSAEncryption
99:b7:13:a3:c2:8f:d9:05:88:0d:a9:21:9d:67:68:30:71:7a:
13:cf:9e:5b:4e:fe:17:d0:5e:4c:ca:38:fa:f0:c1:6a:16:8e:
df:53:3e:2a:df:c6:13:92:ff:0c:a9:1f:ea:d5:bf:e8:4e:d4:
59:00:5f:f1:0c:0d:2d:ea:9c:38:83:ed:84:66:11:8b:a7:66:
32:9c:a9:b1:c5:04:ba:d4:2b:67:96:fa:8b:9b:52:78:35:73:
dd:54:4b:22:26:51:14:fd:6b:97:7f:c4:a5:1a:70:f0:28:f8:
dd:6d:5a:84:d9:6b:fc:8a:e4:51:cf:4b:d3:df:72:61:9e:34:
9a:65:6c:99:cb:b5:fb:0d:92:85:26:e2:37:f6:89:7f:5a:e0:
82:74:c8:07:71:8e:ba:ca:a3:32:cf:10:e5:68:e2:b0:74:49:
d1:f2:bf:aa:4f:fd:3b:75:2a:85:b6:34:47:7e:0c:2f:1a:22:
b9:18:9d:e1:23:de:d7:22:fa:a1:91:ab:e0:bc:3d:5f:d2:cc:
0b:b5:14:13:ed:a8:40:4b:14:26:9d:a6:11:b6:6c:17:b0:28:
b9:4f:3e:1b:47:16:ee:fe:f7:c3:5d:83:fb:d8:61:2d:4c:96:
df:f4:4b:df:b6:a9:79:0b:ca:0d:3a:a2:2e:6d:2c:53:54:92:
6e:9c:96:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:12 2024 by rpki-client on console-fra.rpki-client.org