Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/p-SXAfCie-SdbLYEp49pAn--ypQ.roa
File: p-SXAfCie-SdbLYEp49pAn--ypQ.roa (raw, json)
Hash identifier: ZqATC3JSLt3XyBsn0y7cpBcfNqufL7AjAm+rpSgukaE=
Subject key identifier: A7:E4:97:01:F0:A2:7B:E4:9D:6C:B6:04:A7:8F:69:02:7F:BE:CA:94
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 01829281EBE996D151D2A537C43F327C65FC
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/p-SXAfCie-SdbLYEp49pAn--ypQ.roa
Signing time: Fri 12 Aug 2022 14:42:44 +0000
ROA not before: Fri 12 Aug 2022 14:42:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52116
IP address blocks: 188.255.130.0/24 maxlen: 24
188.255.213.0/24 maxlen: 24
188.255.208.0/22 maxlen: 24
188.255.216.0/24 maxlen: 24
188.255.219.0/24 maxlen: 24
188.255.236.0/24 maxlen: 24
188.255.238.0/24 maxlen: 24
188.255.239.0/24 maxlen: 24
188.255.246.0/24 maxlen: 24
188.255.244.0/23 maxlen: 23
188.255.248.0/24 maxlen: 24
188.255.252.0/24 maxlen: 24
188.255.247.0/24 maxlen: 24
188.255.250.0/23 maxlen: 23
188.255.190.0/24 maxlen: 24
212.69.12.0/24 maxlen: 24
178.253.207.0/24 maxlen: 24
178.253.210.0/24 maxlen: 24
178.253.213.0/24 maxlen: 24
178.253.219.0/24 maxlen: 24
178.253.214.0/24 maxlen: 24
178.253.222.0/24 maxlen: 24
93.186.64.0/24 maxlen: 24
93.186.67.0/24 maxlen: 24
93.186.71.0/24 maxlen: 24
93.186.72.0/24 maxlen: 24
212.69.6.0/24 maxlen: 24
212.69.7.0/24 maxlen: 24
178.253.236.0/24 maxlen: 24
178.253.240.0/24 maxlen: 24
81.18.49.0/24 maxlen: 24
81.18.50.0/24 maxlen: 24
81.18.55.0/24 maxlen: 24
81.18.52.0/23 maxlen: 23
81.18.61.0/24 maxlen: 24
79.175.103.0/24 maxlen: 24
79.175.116.0/24 maxlen: 24
79.175.118.0/24 maxlen: 24
79.175.115.0/24 maxlen: 24
188.255.254.0/24 maxlen: 24
188.255.255.0/24 maxlen: 24
178.219.11.0/24 maxlen: 24
178.219.8.0/23 maxlen: 23
185.47.88.0/24 maxlen: 24
185.47.89.0/24 maxlen: 24
185.47.90.0/24 maxlen: 24
77.105.18.0/23 maxlen: 23
77.105.31.0/24 maxlen: 24
80.74.173.0/24 maxlen: 24
77.105.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:92:81:eb:e9:96:d1:51:d2:a5:37:c4:3f:32:7c:65:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Aug 12 14:42:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7e49701f0a27be49d6cb604a78f69027fbeca94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:1c:d8:ef:0f:0e:46:da:5b:10:9d:16:ba:59:
7f:4f:4c:10:13:b9:71:7d:36:de:dc:c3:85:3d:a5:
00:b5:67:95:af:60:03:0b:35:8f:6d:64:61:21:8a:
a6:cc:0e:cf:61:08:26:c8:60:16:71:21:b9:28:0c:
4c:86:f9:ef:a8:2c:3b:e6:3e:01:76:a9:73:1a:64:
77:d6:04:f3:bc:68:e4:5b:50:fb:dd:3a:58:93:fd:
17:61:65:87:13:60:2f:89:52:e4:75:65:92:63:fc:
db:6e:2d:2c:42:b5:bb:39:23:90:28:ab:42:f7:88:
1f:6f:2b:89:04:92:a3:84:76:8f:88:3d:41:0c:ea:
06:77:8f:75:1c:a8:3e:0f:20:c2:30:49:4a:ce:31:
94:f8:92:fa:19:7f:a3:9c:6f:6e:da:78:16:94:b0:
a6:1c:05:d5:09:72:c2:58:c5:46:72:36:02:f4:16:
90:a6:07:e9:f6:cd:a3:9c:a3:b4:1b:0a:21:cd:bd:
64:db:f6:12:82:1d:0e:63:57:f0:b5:8a:91:39:a8:
d2:11:0a:ec:7b:bf:81:aa:1e:53:28:cc:f4:51:ad:
c9:6f:be:cc:ad:83:47:29:db:7f:bb:26:3a:83:5a:
0c:0f:aa:c0:40:f1:43:7b:87:5c:aa:71:1b:28:88:
23:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:E4:97:01:F0:A2:7B:E4:9D:6C:B6:04:A7:8F:69:02:7F:BE:CA:94
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/p-SXAfCie-SdbLYEp49pAn--ypQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.11.0/24
77.105.18.0/23
77.105.31.0/24
79.175.103.0/24
79.175.115.0-79.175.116.255
79.175.118.0/24
80.74.173.0/24
81.18.49.0-81.18.50.255
81.18.52.0/23
81.18.55.0/24
81.18.61.0/24
93.186.64.0/24
93.186.67.0/24
93.186.71.0-93.186.72.255
178.219.8.0/23
178.219.11.0/24
178.253.207.0/24
178.253.210.0/24
178.253.213.0-178.253.214.255
178.253.219.0/24
178.253.222.0/24
178.253.236.0/24
178.253.240.0/24
185.47.88.0-185.47.90.255
188.255.130.0/24
188.255.190.0/24
188.255.208.0/22
188.255.213.0/24
188.255.216.0/24
188.255.219.0/24
188.255.236.0/24
188.255.238.0/23
188.255.244.0-188.255.248.255
188.255.250.0-188.255.252.255
188.255.254.0/23
212.69.6.0/23
212.69.12.0/24
Signature Algorithm: sha256WithRSAEncryption
19:3c:eb:d4:0e:00:e9:ee:78:0b:c7:3b:55:ba:59:01:c3:1c:
9c:95:b8:45:5c:27:05:dc:d3:22:4e:25:7e:32:b6:ad:34:94:
bb:f0:ca:27:13:03:32:7b:b8:8c:15:79:0d:12:54:82:7d:96:
01:3f:92:4a:b5:16:be:9d:24:53:cc:b2:59:df:ec:cb:12:be:
eb:79:9a:a0:36:ab:19:e1:d1:c9:2c:34:63:a2:1b:2d:ea:88:
cb:8a:a5:f0:5c:8b:93:d9:79:6b:4a:1e:9c:37:45:13:71:34:
c2:08:81:b0:34:70:1c:1c:73:46:74:14:c4:1d:19:32:01:0b:
3f:f0:0a:c4:3d:31:9f:84:95:2c:c6:19:57:78:5f:58:8b:7e:
31:c1:58:97:6e:09:e6:cf:7a:ab:79:3e:f6:e2:fa:61:15:9a:
28:80:3b:a4:45:5b:06:e0:21:a0:34:66:51:09:27:c0:58:e3:
3c:86:26:a2:fb:d9:31:2f:70:ee:65:67:36:d8:59:83:0d:6f:
96:09:a1:f8:04:62:77:96:8a:0c:4a:28:23:52:4e:33:ca:99:
4c:30:13:2d:0f:c4:3d:92:8f:64:04:4e:32:45:e5:09:b4:dc:
80:10:18:33:a8:53:2e:d4:7c:1d:f8:01:95:c2:82:ef:33:8f:
cf:1d:ce:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:05 2024 by rpki-client on console-ams.rpki-client.org