Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/dh0wawpDf-0-TgcNVDD8F0b4b0Q.roa
File: dh0wawpDf-0-TgcNVDD8F0b4b0Q.roa (raw, json)
Hash identifier: BWHCZE1Q2JiQzk1jb06bC7ozXSFoIcqL2p34qEkvLiA=
Subject key identifier: 76:1D:30:6B:0A:43:7F:ED:3E:4E:07:0D:54:30:FC:17:46:F8:6F:44
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 08140672
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/dh0wawpDf-0-TgcNVDD8F0b4b0Q.roa
Signing time: Wed 09 Feb 2022 15:31:42 +0000
ROA not before: Wed 09 Feb 2022 15:31:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28964
IP address blocks: 188.255.135.0/24 maxlen: 24
188.255.206.0/23 maxlen: 23
188.255.200.0/24 maxlen: 24
188.255.205.0/24 maxlen: 24
188.255.217.0/24 maxlen: 24
188.255.228.0/24 maxlen: 24
188.255.230.0/23 maxlen: 23
109.121.48.0/24 maxlen: 24
109.121.49.0/24 maxlen: 24
109.121.53.0/24 maxlen: 24
109.121.55.0/24 maxlen: 24
188.255.253.0/24 maxlen: 24
188.255.179.0/24 maxlen: 24
188.255.192.0/23 maxlen: 23
188.255.190.0/24 maxlen: 24
188.255.196.0/22 maxlen: 22
188.255.195.0/24 maxlen: 24
212.69.21.0/24 maxlen: 24
212.69.19.0/24 maxlen: 24
212.69.30.0/24 maxlen: 24
178.253.193.0/24 maxlen: 24
178.253.212.0/24 maxlen: 24
178.253.218.0/24 maxlen: 24
178.253.215.0/24 maxlen: 24
178.253.216.0/24 maxlen: 24
178.253.217.0/24 maxlen: 24
178.253.220.0/23 maxlen: 23
93.186.65.0/24 maxlen: 24
93.186.77.0/24 maxlen: 24
212.69.3.0/24 maxlen: 24
212.69.4.0/24 maxlen: 24
212.69.0.0/23 maxlen: 23
212.69.5.0/24 maxlen: 24
212.69.10.0/23 maxlen: 23
178.253.238.0/24 maxlen: 24
178.253.235.0/24 maxlen: 24
109.233.188.0/24 maxlen: 24
109.233.190.0/24 maxlen: 24
178.253.246.0/24 maxlen: 24
178.253.244.0/24 maxlen: 24
178.253.245.0/24 maxlen: 24
81.18.51.0/24 maxlen: 24
81.18.58.0/24 maxlen: 24
81.18.56.0/24 maxlen: 24
81.18.57.0/24 maxlen: 24
81.18.63.0/24 maxlen: 24
178.219.2.0/24 maxlen: 24
178.219.4.0/22 maxlen: 22
178.219.15.0/24 maxlen: 24
178.219.12.0/23 maxlen: 23
185.47.91.0/24 maxlen: 24
77.105.16.0/24 maxlen: 24
77.105.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135530098 (0x8140672)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Feb 9 15:31:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=761d306b0a437fed3e4e070d5430fc1746f86f44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:a5:35:5f:c8:01:84:c7:d7:1e:ff:94:09:7f:
ca:db:d4:00:e2:81:2e:41:31:e9:6e:57:98:49:bc:
41:8f:52:d7:01:dc:dd:7a:11:fe:08:81:fd:5d:62:
9e:e5:ab:35:61:b8:43:93:e9:fc:3c:12:81:2d:67:
93:38:2c:17:a2:24:98:2c:45:fd:8e:1c:35:26:a6:
c9:61:39:91:66:07:dc:fb:3e:73:0d:97:3a:89:b5:
d7:33:56:8f:0d:be:24:a9:c1:86:5f:54:6c:f8:3a:
3a:58:7d:71:0e:de:3a:bd:3d:02:d5:67:03:a0:86:
0c:5f:79:32:84:cf:6e:59:ac:0c:23:dd:db:30:e4:
00:d0:b6:a3:f7:5e:ad:12:c4:b6:53:7f:46:d5:8e:
ca:dc:4a:1f:cf:c7:ec:ad:75:52:11:94:9c:e4:f1:
ac:04:d7:6e:91:f4:47:c7:11:a1:de:de:62:75:38:
89:b5:d0:98:98:f5:ec:62:2c:22:14:63:5a:20:6e:
63:b5:93:ae:27:ad:06:6d:a6:ba:21:e9:7a:a8:19:
bc:05:18:a1:89:02:8d:a1:73:76:3f:47:d5:f9:cf:
a2:65:66:ef:42:e0:93:84:c5:15:d9:f4:e0:bf:54:
e4:29:81:c2:5a:8e:f6:06:bf:3e:7f:1d:11:b1:37:
ab:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:1D:30:6B:0A:43:7F:ED:3E:4E:07:0D:54:30:FC:17:46:F8:6F:44
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/dh0wawpDf-0-TgcNVDD8F0b4b0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.16.0/24
77.105.22.0/24
81.18.51.0/24
81.18.56.0-81.18.58.255
81.18.63.0/24
93.186.65.0/24
93.186.77.0/24
109.121.48.0/23
109.121.53.0/24
109.121.55.0/24
109.233.188.0/24
109.233.190.0/24
178.219.2.0/24
178.219.4.0/22
178.219.12.0/23
178.219.15.0/24
178.253.193.0/24
178.253.212.0/24
178.253.215.0-178.253.218.255
178.253.220.0/23
178.253.235.0/24
178.253.238.0/24
178.253.244.0-178.253.246.255
185.47.91.0/24
188.255.135.0/24
188.255.179.0/24
188.255.190.0/24
188.255.192.0/23
188.255.195.0-188.255.200.255
188.255.205.0-188.255.207.255
188.255.217.0/24
188.255.228.0/24
188.255.230.0/23
188.255.253.0/24
212.69.0.0/23
212.69.3.0-212.69.5.255
212.69.10.0/23
212.69.19.0/24
212.69.21.0/24
212.69.30.0/24
Signature Algorithm: sha256WithRSAEncryption
19:3b:fe:f8:eb:9c:87:ba:fa:a1:60:28:1e:c8:fd:78:41:5f:
9c:7b:40:b1:63:60:24:68:ed:26:bd:5a:b1:4e:3f:c2:4e:8e:
2d:40:ea:b7:02:8a:16:78:23:3e:b8:e8:9a:c1:10:2b:aa:d8:
7c:41:0a:97:35:2b:46:00:1c:30:9c:6f:5b:86:45:74:d0:24:
38:b8:02:1f:9a:a9:0b:24:75:ab:21:33:5d:c6:08:85:41:b5:
be:fd:86:07:ab:d2:9f:31:71:5e:1c:9a:44:a0:45:b3:c9:41:
ae:2e:6e:f3:d0:02:62:a8:6c:1e:cd:a1:2f:af:c3:03:c6:11:
8a:75:e8:5a:e7:02:c6:73:f3:3f:fa:ad:dc:fe:3b:6f:c2:b1:
a8:78:0d:c4:7b:64:ae:40:7d:e9:66:0c:89:c2:18:1e:5a:c6:
2c:b1:fc:a5:c3:d2:87:6b:f9:b3:9a:8b:41:71:b4:19:22:f9:
93:82:15:0f:de:ca:6e:4d:a1:96:85:b5:90:39:82:36:b3:a0:
e6:cc:13:f6:5e:51:8b:c1:cd:ff:40:e2:1c:62:46:3b:dd:09:
3a:4e:5e:6b:9a:97:ea:11:30:1e:b8:5c:23:40:83:ba:60:0d:
c0:e1:63:61:57:1e:b9:b9:49:a8:e7:88:5d:2b:c1:2f:a1:aa:
6d:13:7f:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:20 2023 by rpki-client on console-ams.rpki-client.org