Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/Nm-2xxU3aa4INJFJpOaix7_0xQ4.roa
File: Nm-2xxU3aa4INJFJpOaix7_0xQ4.roa (raw, json)
Hash identifier: JoVSpAXI6obt2DBLh+a9HM0PbtvEB4GyVINWxuBa8tU=
Subject key identifier: 36:6F:B6:C7:15:37:69:AE:08:34:91:49:A4:E6:A2:C7:BF:F4:C5:0E
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 09C18B41
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/Nm-2xxU3aa4INJFJpOaix7_0xQ4.roa
Signing time: Tue 28 Jun 2022 17:26:02 +0000
ROA not before: Tue 28 Jun 2022 17:26:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28964
IP address blocks: 178.253.193.0/24 maxlen: 24
178.253.212.0/24 maxlen: 24
178.253.218.0/24 maxlen: 24
178.253.216.0/24 maxlen: 24
178.253.217.0/24 maxlen: 24
178.253.220.0/23 maxlen: 23
93.186.65.0/24 maxlen: 24
93.186.77.0/24 maxlen: 24
188.255.206.0/23 maxlen: 23
188.255.205.0/24 maxlen: 24
188.255.217.0/24 maxlen: 24
188.255.228.0/24 maxlen: 24
188.255.230.0/23 maxlen: 23
109.121.48.0/24 maxlen: 24
109.121.49.0/24 maxlen: 24
109.121.53.0/24 maxlen: 24
109.121.55.0/24 maxlen: 24
212.69.3.0/24 maxlen: 24
212.69.4.0/24 maxlen: 24
188.255.253.0/24 maxlen: 24
212.69.5.0/24 maxlen: 24
178.253.238.0/24 maxlen: 24
109.233.188.0/24 maxlen: 24
109.233.190.0/24 maxlen: 24
178.253.246.0/24 maxlen: 24
178.253.244.0/24 maxlen: 24
178.253.245.0/24 maxlen: 24
81.18.51.0/24 maxlen: 24
81.18.58.0/24 maxlen: 24
81.18.56.0/24 maxlen: 24
81.18.57.0/24 maxlen: 24
188.255.179.0/24 maxlen: 24
81.18.63.0/24 maxlen: 24
188.255.192.0/23 maxlen: 23
188.255.190.0/24 maxlen: 24
188.255.196.0/22 maxlen: 22
188.255.195.0/24 maxlen: 24
79.175.120.0/24 maxlen: 24
212.69.21.0/24 maxlen: 24
212.69.19.0/24 maxlen: 24
212.69.30.0/24 maxlen: 24
178.219.2.0/24 maxlen: 24
178.219.4.0/22 maxlen: 22
178.219.15.0/24 maxlen: 24
178.219.12.0/23 maxlen: 23
185.47.91.0/24 maxlen: 24
77.105.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163679041 (0x9c18b41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jun 28 17:26:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=366fb6c7153769ae08349149a4e6a2c7bff4c50e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4d:37:77:ea:7c:36:df:60:ca:bd:8d:02:56:
65:3e:21:07:51:a9:a5:75:66:fc:ec:2d:c6:3c:6e:
e4:ff:4c:2d:cc:1c:82:b1:8e:b1:38:6b:95:ac:6c:
aa:21:06:f1:8a:ae:5a:31:d5:ab:86:73:31:e0:42:
0c:59:d6:4e:44:d5:0e:bd:ae:85:a9:c9:0d:4f:63:
98:5c:a2:4d:70:86:fa:03:d6:d9:0e:30:f2:ed:8b:
bc:12:a5:28:b6:20:c4:3e:58:0d:19:1f:77:cf:79:
5a:61:c3:1a:6a:6c:ee:a2:f9:f1:b4:d2:64:ed:29:
37:dc:41:54:63:df:e2:41:31:cc:51:f4:ae:15:2e:
0d:6f:99:6b:50:af:24:c9:4b:f2:b4:91:af:3e:4e:
58:8f:7f:28:3a:f4:82:78:d9:9b:68:41:74:db:96:
03:81:d6:36:99:6a:e7:64:fc:a3:de:43:7b:ea:c1:
76:dc:00:c9:e1:57:7b:7f:3c:af:a3:07:0a:20:a0:
04:41:ec:cf:1b:4b:7b:8b:b6:4b:cb:63:af:54:03:
71:bb:f6:78:cb:92:e8:96:67:2e:8c:39:43:ab:73:
aa:e9:ff:3f:35:a6:e8:0f:c4:fe:aa:9e:24:d1:89:
d7:d9:c2:8a:a7:46:50:b3:0e:70:fd:fe:2e:0e:00:
2e:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:6F:B6:C7:15:37:69:AE:08:34:91:49:A4:E6:A2:C7:BF:F4:C5:0E
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/Nm-2xxU3aa4INJFJpOaix7_0xQ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.22.0/24
79.175.120.0/24
81.18.51.0/24
81.18.56.0-81.18.58.255
81.18.63.0/24
93.186.65.0/24
93.186.77.0/24
109.121.48.0/23
109.121.53.0/24
109.121.55.0/24
109.233.188.0/24
109.233.190.0/24
178.219.2.0/24
178.219.4.0/22
178.219.12.0/23
178.219.15.0/24
178.253.193.0/24
178.253.212.0/24
178.253.216.0-178.253.218.255
178.253.220.0/23
178.253.238.0/24
178.253.244.0-178.253.246.255
185.47.91.0/24
188.255.179.0/24
188.255.190.0/24
188.255.192.0/23
188.255.195.0-188.255.199.255
188.255.205.0-188.255.207.255
188.255.217.0/24
188.255.228.0/24
188.255.230.0/23
188.255.253.0/24
212.69.3.0-212.69.5.255
212.69.19.0/24
212.69.21.0/24
212.69.30.0/24
Signature Algorithm: sha256WithRSAEncryption
82:3c:a2:8e:de:d1:ac:1f:1c:5f:75:17:78:75:21:91:c2:fa:
51:17:c8:5d:70:1d:3e:32:bb:7e:16:80:83:d1:9b:33:7c:5b:
6f:af:36:aa:b0:d0:bf:bf:f8:b9:03:e0:02:5b:13:9f:ff:af:
45:f4:b9:40:78:d9:06:ed:ad:68:26:f7:79:5b:d6:48:06:c6:
cb:60:52:9a:21:7d:07:e7:15:6f:e7:9b:28:ed:5e:f5:82:23:
07:67:0f:48:17:6d:2d:e8:86:ac:64:6a:8d:79:62:33:a5:24:
c6:3f:b7:a8:cb:73:89:89:5a:43:5d:88:4a:10:51:07:ff:bc:
7e:63:49:c6:38:66:9c:3c:d1:9e:fc:7b:2f:38:7e:10:b2:fe:
16:df:dc:bc:be:ab:89:42:87:2e:80:e8:84:0a:a8:c9:ed:f7:
3e:63:bf:77:0c:52:ff:d7:66:0f:5a:08:53:b3:1b:93:2b:32:
e7:c3:11:02:46:c2:2b:6c:cd:b4:5e:1e:95:5c:f3:01:6a:b1:
fc:ce:dc:3a:86:a4:7c:4e:87:57:9f:88:5a:d0:2e:c7:23:93:
28:15:58:76:f4:7f:d6:a8:7a:a8:ac:76:12:66:75:32:8e:fb:
a6:0e:3e:42:57:6e:2e:69:75:d9:c6:ac:29:45:ac:fb:ad:9b:
e6:c6:f7:74
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:19 2023 by rpki-client on console-ams.rpki-client.org