Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/RlO7lkTXT7yQQ_G63eXzM0ENcW4.roa
File: RlO7lkTXT7yQQ_G63eXzM0ENcW4.roa (raw, json)
Hash identifier: gGRTBcVMkLFL7OdL/cLxxFXK0hR0J6FPpA/TM08fca8=
Subject key identifier: 46:53:BB:96:44:D7:4F:BC:90:43:F1:BA:DD:E5:F3:33:41:0D:71:6E
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 09CAB601
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/RlO7lkTXT7yQQ_G63eXzM0ENcW4.roa
Signing time: Thu 30 Jun 2022 14:56:02 +0000
ROA not before: Thu 30 Jun 2022 14:56:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28964
IP address blocks: 178.253.193.0/24 maxlen: 24
178.253.212.0/24 maxlen: 24
178.253.218.0/24 maxlen: 24
178.253.216.0/24 maxlen: 24
178.253.217.0/24 maxlen: 24
178.253.220.0/23 maxlen: 23
93.186.65.0/24 maxlen: 24
93.186.77.0/24 maxlen: 24
188.255.206.0/23 maxlen: 23
188.255.205.0/24 maxlen: 24
188.255.217.0/24 maxlen: 24
188.255.228.0/24 maxlen: 24
188.255.230.0/23 maxlen: 23
109.121.48.0/24 maxlen: 24
109.121.49.0/24 maxlen: 24
109.121.53.0/24 maxlen: 24
109.121.55.0/24 maxlen: 24
212.69.3.0/24 maxlen: 24
212.69.4.0/24 maxlen: 24
188.255.253.0/24 maxlen: 24
212.69.5.0/24 maxlen: 24
178.253.238.0/24 maxlen: 24
109.233.188.0/24 maxlen: 24
109.233.190.0/24 maxlen: 24
178.253.246.0/24 maxlen: 24
178.253.244.0/24 maxlen: 24
178.253.245.0/24 maxlen: 24
81.18.51.0/24 maxlen: 24
81.18.58.0/24 maxlen: 24
81.18.56.0/24 maxlen: 24
81.18.57.0/24 maxlen: 24
188.255.179.0/24 maxlen: 24
81.18.63.0/24 maxlen: 24
188.255.192.0/23 maxlen: 23
188.255.190.0/24 maxlen: 24
188.255.196.0/22 maxlen: 22
188.255.195.0/24 maxlen: 24
79.175.120.0/24 maxlen: 24
212.69.21.0/24 maxlen: 24
212.69.19.0/24 maxlen: 24
212.69.30.0/24 maxlen: 24
178.219.2.0/24 maxlen: 24
178.219.4.0/22 maxlen: 22
178.219.15.0/24 maxlen: 24
178.219.12.0/23 maxlen: 23
185.47.91.0/24 maxlen: 24
77.105.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164279809 (0x9cab601)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jun 30 14:56:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4653bb9644d74fbc9043f1badde5f333410d716e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:05:f1:b2:cb:36:b1:3a:74:dc:dd:cc:94:8e:
0c:9c:f4:58:f2:a2:17:87:13:1a:e4:0d:f2:50:99:
a1:32:d8:18:eb:8c:5c:2e:e3:64:d5:10:e5:e2:7a:
54:34:54:e1:58:85:8f:ba:3e:d2:d7:0e:9c:d1:46:
f7:22:4c:45:43:83:35:d9:43:62:99:4b:9e:17:0b:
b3:f2:e9:7b:90:c4:53:e9:a9:2d:b5:2e:e0:db:c5:
5d:a5:02:2b:1e:15:b8:32:67:ae:b0:8b:f1:8b:6b:
2c:bf:6d:82:89:61:ea:43:39:4b:18:79:65:b1:78:
91:f7:86:0a:30:3d:25:ab:31:13:52:31:62:9e:37:
aa:19:7a:d5:24:28:38:8f:cf:48:a5:ce:80:36:23:
97:2b:68:3b:86:29:99:90:9a:50:71:3a:70:3f:8c:
23:45:09:e3:b4:27:b3:be:5a:c7:c6:61:b1:7a:d7:
81:62:4c:14:45:bd:93:38:19:20:41:b3:ee:93:75:
cd:c0:4a:b1:cf:89:97:7f:db:f4:ac:9d:fe:26:6f:
cf:a5:79:66:61:b1:d0:19:b8:ef:e4:32:11:d4:b6:
78:14:21:50:c3:61:27:21:85:4a:56:b9:7b:81:f4:
28:ea:13:38:88:fc:8d:12:19:f8:2e:d1:41:ba:f9:
4e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:53:BB:96:44:D7:4F:BC:90:43:F1:BA:DD:E5:F3:33:41:0D:71:6E
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/RlO7lkTXT7yQQ_G63eXzM0ENcW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.39.0/24
79.175.120.0/24
81.18.51.0/24
81.18.56.0-81.18.58.255
81.18.63.0/24
93.186.65.0/24
93.186.77.0/24
109.121.48.0/23
109.121.53.0/24
109.121.55.0/24
109.233.188.0/24
109.233.190.0/24
178.219.2.0/24
178.219.4.0/22
178.219.12.0/23
178.219.15.0/24
178.253.193.0/24
178.253.212.0/24
178.253.216.0-178.253.218.255
178.253.220.0/23
178.253.238.0/24
178.253.244.0-178.253.246.255
185.47.91.0/24
188.255.179.0/24
188.255.190.0/24
188.255.192.0/23
188.255.195.0-188.255.199.255
188.255.205.0-188.255.207.255
188.255.217.0/24
188.255.228.0/24
188.255.230.0/23
188.255.253.0/24
212.69.3.0-212.69.5.255
212.69.19.0/24
212.69.21.0/24
212.69.30.0/24
Signature Algorithm: sha256WithRSAEncryption
85:d2:df:cf:37:dc:a9:90:5a:97:3d:9d:68:8c:a7:25:53:d4:
88:95:70:03:29:d5:b0:66:2f:c8:ed:fc:fe:e8:09:e7:bc:36:
59:48:d0:0b:b5:49:e9:10:13:c7:47:00:e4:a1:30:7b:09:67:
9c:af:4c:7a:17:36:ed:81:29:d1:36:c1:cb:1f:75:63:bc:f2:
ae:29:8e:fe:04:f5:7b:82:57:c4:d4:92:1e:08:0e:95:78:f9:
eb:40:d6:f5:50:cf:73:a5:fd:d7:51:a2:ae:66:1d:cc:17:49:
71:e2:cf:e1:97:b0:6f:78:d5:3f:e1:59:1c:05:ad:85:49:27:
06:18:8f:90:f6:90:7f:e4:c8:06:3e:33:5e:33:ca:21:df:7c:
d7:8f:8b:ba:fd:20:4d:b4:3c:96:97:ff:0f:42:40:91:e9:c6:
4f:75:8b:2c:37:1f:3d:2a:96:45:12:7e:5e:d5:6c:a9:39:ef:
e5:00:89:b0:fe:a6:75:59:8b:b9:41:f4:92:12:36:48:c1:9b:
c8:c2:24:ff:48:ac:96:66:af:12:19:42:81:e9:d9:19:24:ea:
11:6c:0a:a6:71:05:04:79:97:44:29:bf:5e:cf:16:ac:a2:b4:
b7:b3:38:ac:a5:54:03:01:57:8f:28:e9:f1:a5:32:d8:14:f3:
4d:40:eb:f7
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:19 2023 by rpki-client on console-ams.rpki-client.org