Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/Hd7pYSxG_2obXPpRYYm9SBnemTo.roa
File: Hd7pYSxG_2obXPpRYYm9SBnemTo.roa (raw, json)
Hash identifier: IRk9a+FHXx9KrCtbe1zGHq/9NypdZApqcseiQoWTuY0=
Subject key identifier: 1D:DE:E9:61:2C:46:FF:6A:1B:5C:FA:51:61:89:BD:48:19:DE:99:3A
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 09C49182
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/Hd7pYSxG_2obXPpRYYm9SBnemTo.roa
Signing time: Wed 29 Jun 2022 07:19:52 +0000
ROA not before: Wed 29 Jun 2022 07:19:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52116
IP address blocks: 188.255.130.0/24 maxlen: 24
188.255.213.0/24 maxlen: 24
188.255.208.0/22 maxlen: 24
188.255.216.0/24 maxlen: 24
188.255.219.0/24 maxlen: 24
188.255.214.0/23 maxlen: 24
188.255.236.0/24 maxlen: 24
188.255.238.0/24 maxlen: 24
188.255.239.0/24 maxlen: 24
188.255.246.0/24 maxlen: 24
188.255.244.0/23 maxlen: 23
188.255.248.0/24 maxlen: 24
188.255.252.0/24 maxlen: 24
188.255.247.0/24 maxlen: 24
188.255.250.0/23 maxlen: 23
188.255.190.0/24 maxlen: 24
212.69.12.0/24 maxlen: 24
178.253.207.0/24 maxlen: 24
178.253.210.0/24 maxlen: 24
178.253.213.0/24 maxlen: 24
178.253.219.0/24 maxlen: 24
178.253.214.0/24 maxlen: 24
178.253.222.0/24 maxlen: 24
93.186.64.0/24 maxlen: 24
93.186.67.0/24 maxlen: 24
93.186.71.0/24 maxlen: 24
93.186.72.0/24 maxlen: 24
212.69.6.0/24 maxlen: 24
212.69.7.0/24 maxlen: 24
178.253.236.0/24 maxlen: 24
178.253.240.0/24 maxlen: 24
81.18.49.0/24 maxlen: 24
81.18.50.0/24 maxlen: 24
81.18.55.0/24 maxlen: 24
81.18.52.0/23 maxlen: 23
81.18.61.0/24 maxlen: 24
79.175.103.0/24 maxlen: 24
79.175.116.0/24 maxlen: 24
79.175.118.0/24 maxlen: 24
79.175.115.0/24 maxlen: 24
188.255.254.0/24 maxlen: 24
188.255.255.0/24 maxlen: 24
178.219.11.0/24 maxlen: 24
178.219.8.0/23 maxlen: 23
185.47.88.0/24 maxlen: 24
185.47.89.0/24 maxlen: 24
185.47.90.0/24 maxlen: 24
77.105.18.0/23 maxlen: 23
77.105.31.0/24 maxlen: 24
80.74.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163877250 (0x9c49182)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jun 29 07:19:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ddee9612c46ff6a1b5cfa516189bd4819de993a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:8e:87:cb:6b:dd:8c:2b:c1:04:51:bc:19:17:
99:cc:dc:67:6b:e4:fd:7e:4e:76:36:95:66:5a:9e:
05:8d:52:37:21:02:9f:9b:33:ff:63:a6:82:89:e6:
1f:04:5e:2b:e1:bf:49:1c:83:da:6e:60:cc:ae:bb:
07:11:d4:a7:27:09:fd:4a:19:f5:fe:ba:02:fe:25:
5c:78:38:06:c8:84:83:fc:4e:be:12:54:1a:1a:85:
72:d3:10:88:51:56:08:c9:70:e2:38:e1:b8:38:12:
62:d0:1e:79:6f:b0:8b:2e:e2:95:28:27:2b:01:2c:
27:00:46:6d:13:49:19:76:98:99:21:41:89:ba:5e:
e1:bb:fe:ed:08:fa:02:61:e0:3a:fd:8f:cc:0d:03:
72:e1:41:8b:a1:b2:2c:cf:8c:88:7c:35:f0:11:69:
62:e6:a6:4d:fc:45:f3:e3:c5:75:db:1e:63:4e:c9:
8c:ce:60:53:8f:90:60:03:38:a4:69:b8:8d:5a:6a:
77:e3:bd:65:6f:61:a5:8e:29:99:a6:c2:bb:e2:3b:
1a:d1:39:b1:b8:c0:80:87:e8:21:8a:09:17:05:80:
8e:d3:25:db:65:5a:25:45:55:5c:e4:bf:db:d4:5e:
20:61:87:a3:8f:7b:9d:c4:a7:26:54:49:c1:b2:0c:
84:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:DE:E9:61:2C:46:FF:6A:1B:5C:FA:51:61:89:BD:48:19:DE:99:3A
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/Hd7pYSxG_2obXPpRYYm9SBnemTo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.18.0/23
77.105.31.0/24
79.175.103.0/24
79.175.115.0-79.175.116.255
79.175.118.0/24
80.74.173.0/24
81.18.49.0-81.18.50.255
81.18.52.0/23
81.18.55.0/24
81.18.61.0/24
93.186.64.0/24
93.186.67.0/24
93.186.71.0-93.186.72.255
178.219.8.0/23
178.219.11.0/24
178.253.207.0/24
178.253.210.0/24
178.253.213.0-178.253.214.255
178.253.219.0/24
178.253.222.0/24
178.253.236.0/24
178.253.240.0/24
185.47.88.0-185.47.90.255
188.255.130.0/24
188.255.190.0/24
188.255.208.0/22
188.255.213.0-188.255.216.255
188.255.219.0/24
188.255.236.0/24
188.255.238.0/23
188.255.244.0-188.255.248.255
188.255.250.0-188.255.252.255
188.255.254.0/23
212.69.6.0/23
212.69.12.0/24
Signature Algorithm: sha256WithRSAEncryption
37:33:f4:ab:3c:d0:01:bd:f5:e5:2a:4e:4f:91:f2:f0:d8:7d:
9a:5a:f0:29:51:fb:e9:2e:50:6d:e9:b6:32:1c:eb:c1:27:77:
79:3a:aa:c0:26:34:e7:e5:6b:1b:fb:c9:c2:56:13:1f:6a:80:
fb:c1:75:e6:07:cd:22:56:26:d6:b8:8b:2f:03:71:88:b5:65:
48:b5:ed:5f:ec:69:52:d2:2d:94:90:74:a1:f2:94:ee:f6:29:
30:3d:cd:a4:f7:b6:5b:a0:f7:23:23:fc:6d:57:59:d0:ac:a2:
04:c4:eb:bc:9f:49:1a:1c:79:b3:a5:af:00:87:0e:be:59:50:
bf:6f:34:85:6e:7a:7e:d5:04:ff:54:b3:67:1b:93:9e:8f:4c:
f1:cb:e1:5c:ec:7b:cf:7a:06:fe:16:eb:98:53:a9:a4:75:b4:
30:1d:68:e4:4f:1f:6f:09:83:12:f1:f6:73:80:d5:2c:e0:eb:
39:06:f7:c3:8e:35:12:0a:48:b6:d9:79:f7:c6:58:dc:15:e1:
a0:60:a3:df:54:40:65:53:4c:7b:4c:52:d1:ca:3f:73:8d:71:
a5:2c:2a:52:66:1d:dc:75:ce:db:9c:c5:6e:52:ec:97:fe:46:
be:97:4f:7c:c8:e9:dd:81:eb:32:09:77:ee:ea:49:64:de:c9:
76:62:20:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:04 2024 by rpki-client on console-ams.rpki-client.org