Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/tceS00XRvq3wm8LhSY044aKHP1Q.roa
File: tceS00XRvq3wm8LhSY044aKHP1Q.roa (raw, json)
Hash identifier: JqqeXw5aLU7nmJAXODnWdc7VDA0zycLa8YAewy+acbI=
Subject key identifier: B5:C7:92:D3:45:D1:BE:AD:F0:9B:C2:E1:49:8D:38:E1:A2:87:3F:54
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 0967F39F
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/tceS00XRvq3wm8LhSY044aKHP1Q.roa
Signing time: Wed 01 Jun 2022 11:03:20 +0000
ROA not before: Wed 01 Jun 2022 11:03:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52116
IP address blocks: 188.255.130.0/24 maxlen: 24
188.255.213.0/24 maxlen: 24
188.255.208.0/22 maxlen: 24
188.255.216.0/24 maxlen: 24
188.255.219.0/24 maxlen: 24
188.255.214.0/23 maxlen: 24
188.255.236.0/24 maxlen: 24
188.255.238.0/24 maxlen: 24
188.255.239.0/24 maxlen: 24
188.255.246.0/24 maxlen: 24
188.255.244.0/23 maxlen: 23
188.255.248.0/24 maxlen: 24
188.255.252.0/24 maxlen: 24
188.255.247.0/24 maxlen: 24
188.255.250.0/23 maxlen: 23
188.255.190.0/24 maxlen: 24
212.69.12.0/24 maxlen: 24
212.69.13.0/24 maxlen: 24
178.253.207.0/24 maxlen: 24
178.253.210.0/24 maxlen: 24
178.253.213.0/24 maxlen: 24
178.253.219.0/24 maxlen: 24
178.253.214.0/24 maxlen: 24
178.253.222.0/24 maxlen: 24
93.186.64.0/24 maxlen: 24
93.186.67.0/24 maxlen: 24
93.186.71.0/24 maxlen: 24
93.186.72.0/24 maxlen: 24
212.69.6.0/24 maxlen: 24
212.69.7.0/24 maxlen: 24
178.253.236.0/24 maxlen: 24
178.253.240.0/24 maxlen: 24
81.18.49.0/24 maxlen: 24
81.18.50.0/24 maxlen: 24
81.18.55.0/24 maxlen: 24
81.18.52.0/23 maxlen: 23
81.18.61.0/24 maxlen: 24
79.175.103.0/24 maxlen: 24
79.175.116.0/24 maxlen: 24
79.175.118.0/24 maxlen: 24
79.175.115.0/24 maxlen: 24
188.255.254.0/24 maxlen: 24
188.255.255.0/24 maxlen: 24
178.219.11.0/24 maxlen: 24
178.219.8.0/23 maxlen: 23
185.47.88.0/24 maxlen: 24
185.47.89.0/24 maxlen: 24
185.47.90.0/24 maxlen: 24
77.105.18.0/23 maxlen: 23
77.105.31.0/24 maxlen: 24
80.74.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157807519 (0x967f39f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jun 1 11:03:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5c792d345d1beadf09bc2e1498d38e1a2873f54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:c1:8b:8a:f1:ca:38:32:9f:6f:33:3b:fd:4d:
13:07:a5:92:50:54:db:f9:3e:02:19:c0:86:87:a0:
25:09:17:1a:ad:56:66:59:6b:65:26:ed:87:38:ab:
6f:16:c7:13:c9:6b:ee:cd:e4:98:6d:d8:e5:b3:f9:
3e:45:3b:44:23:cf:c5:b8:8d:c6:59:4e:20:18:7d:
68:d0:ce:86:19:34:f0:92:fd:7a:2b:9b:7b:3b:bd:
e1:92:89:a5:5a:ae:c5:a9:db:08:df:05:a1:38:91:
27:00:99:5c:97:f0:af:59:f0:a8:a6:5d:4e:07:25:
81:94:d1:ab:c6:20:27:0a:60:93:44:f8:08:1e:5a:
ae:af:65:18:10:74:3e:cf:2d:10:ca:04:22:fc:10:
38:55:55:c1:61:db:f6:30:7a:42:33:0b:6b:d9:94:
c3:34:3e:95:70:f5:1f:3f:c5:c3:ea:2c:96:2c:f7:
fd:0d:f9:b5:1d:90:f2:ba:d2:69:f9:84:e9:24:9c:
de:5d:32:d5:6b:14:a0:22:1d:84:ce:7a:a5:b3:52:
1c:b7:07:dd:27:c3:60:38:99:40:5a:07:4c:7b:45:
bd:52:52:11:c3:4a:ce:a3:f0:35:34:bc:54:7b:35:
03:07:a6:b2:d7:d9:b6:b1:a0:ae:75:98:93:50:3d:
6e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:C7:92:D3:45:D1:BE:AD:F0:9B:C2:E1:49:8D:38:E1:A2:87:3F:54
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/tceS00XRvq3wm8LhSY044aKHP1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.18.0/23
77.105.31.0/24
79.175.103.0/24
79.175.115.0-79.175.116.255
79.175.118.0/24
80.74.173.0/24
81.18.49.0-81.18.50.255
81.18.52.0/23
81.18.55.0/24
81.18.61.0/24
93.186.64.0/24
93.186.67.0/24
93.186.71.0-93.186.72.255
178.219.8.0/23
178.219.11.0/24
178.253.207.0/24
178.253.210.0/24
178.253.213.0-178.253.214.255
178.253.219.0/24
178.253.222.0/24
178.253.236.0/24
178.253.240.0/24
185.47.88.0-185.47.90.255
188.255.130.0/24
188.255.190.0/24
188.255.208.0/22
188.255.213.0-188.255.216.255
188.255.219.0/24
188.255.236.0/24
188.255.238.0/23
188.255.244.0-188.255.248.255
188.255.250.0-188.255.252.255
188.255.254.0/23
212.69.6.0/23
212.69.12.0/23
Signature Algorithm: sha256WithRSAEncryption
8b:3e:6a:f0:3f:af:70:40:3b:95:f4:56:59:01:f1:50:bd:96:
c2:fd:a5:9e:99:2d:e6:cd:9c:d4:b9:15:45:dd:75:0e:2d:c2:
80:dc:89:b5:72:8e:8b:c5:28:d0:42:89:7f:8b:06:5f:12:76:
17:fd:9e:27:61:cd:00:30:e8:79:a0:a6:01:78:9c:2b:bd:16:
0e:3a:ad:81:44:ef:f5:18:11:41:30:47:8c:9a:c1:6b:2b:6c:
25:24:03:50:f5:66:97:ca:96:b1:75:d7:9f:46:01:bd:fa:82:
b3:c7:8f:da:2b:7f:3c:5c:4f:89:65:1f:33:a9:f9:2b:04:7d:
ac:36:d3:61:10:52:b8:07:4d:b1:10:db:ac:48:32:05:e1:08:
b7:93:8a:68:1b:16:e6:5c:ee:e0:65:73:8f:ff:a6:30:b5:ee:
ec:df:40:17:dc:78:ca:4f:f9:81:75:4a:62:92:9e:fb:e0:5c:
e6:fa:07:00:cb:44:71:ca:bc:11:27:10:42:4a:09:01:11:96:
19:40:31:f2:09:92:0a:dd:29:1f:79:2d:d1:71:0f:9a:21:c0:
85:c5:d1:c7:25:74:63:c0:dd:40:70:5e:a0:92:45:f1:46:f8:
1b:11:ef:9a:97:c5:92:3c:42:49:75:c1:9e:e1:e2:86:38:b8:
70:71:ae:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:27 2024 by rpki-client on console-fra.rpki-client.org