Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/397546-dc7b-4660-8a51-bf59fc1cb26d/1/xyMdSWDbrIovkgE3dwtWk3ujk-A.roa
File: xyMdSWDbrIovkgE3dwtWk3ujk-A.roa (raw, json)
Hash identifier: vGLXeJypSk7sqPZbzAieoQ+reclVO609HGzKJbzyvt4=
Subject key identifier: C7:23:1D:49:60:DB:AC:8A:2F:92:01:37:77:0B:56:93:7B:A3:93:E0
Certificate issuer: /CN=24ba4f52ac1be0755d34bc5483c061bdf293447e
Certificate serial: 0AC162F5
Authority key identifier: 24:BA:4F:52:AC:1B:E0:75:5D:34:BC:54:83:C0:61:BD:F2:93:44:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JLpPUqwb4HVdNLxUg8BhvfKTRH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/397546-dc7b-4660-8a51-bf59fc1cb26d/1/xyMdSWDbrIovkgE3dwtWk3ujk-A.roa
Signing time: Tue 15 Feb 2022 05:45:07 +0000
ROA not before: Tue 15 Feb 2022 05:45:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8781
IP address blocks: 78.100.112.0/20 maxlen: 24
78.100.128.0/19 maxlen: 24
37.211.192.0/20 maxlen: 24
78.100.155.0/24 maxlen: 24
37.211.96.0/22 maxlen: 24
78.100.53.0/24 maxlen: 24
78.100.64.0/20 maxlen: 24
37.211.104.0/22 maxlen: 24
37.211.100.0/22 maxlen: 24
78.100.59.0/24 maxlen: 24
185.96.224.0/22 maxlen: 24
37.211.112.0/22 maxlen: 24
37.211.108.0/22 maxlen: 24
37.211.116.0/22 maxlen: 24
37.211.124.0/22 maxlen: 24
37.211.120.0/22 maxlen: 24
78.100.80.0/20 maxlen: 24
176.202.0.0/15 maxlen: 24
37.211.208.0/22 maxlen: 24
37.211.212.0/22 maxlen: 24
37.211.216.0/22 maxlen: 24
37.211.224.0/22 maxlen: 24
37.208.128.0/17 maxlen: 24
37.211.228.0/22 maxlen: 24
37.211.232.0/22 maxlen: 24
37.211.236.0/22 maxlen: 24
37.211.240.0/20 maxlen: 24
78.100.2.0/24 maxlen: 24
78.100.3.0/24 maxlen: 24
86.62.241.0/24 maxlen: 24
78.100.6.0/24 maxlen: 24
89.211.48.0/20 maxlen: 24
78.100.0.0/15 maxlen: 15
213.130.96.0/19 maxlen: 24
213.130.112.0/24 maxlen: 24
213.130.113.0/24 maxlen: 24
78.100.32.0/20 maxlen: 24
78.100.32.0/24 maxlen: 24
213.130.121.0/24 maxlen: 24
213.130.119.0/24 maxlen: 24
78.100.48.0/20 maxlen: 24
78.100.48.0/24 maxlen: 24
86.62.192.0/18 maxlen: 24
89.211.4.0/24 maxlen: 24
89.211.3.0/24 maxlen: 24
89.211.0.0/16 maxlen: 24
89.211.7.0/24 maxlen: 24
89.211.6.0/24 maxlen: 24
89.211.5.0/24 maxlen: 24
89.211.16.0/21 maxlen: 24
89.211.24.0/21 maxlen: 24
89.211.32.0/20 maxlen: 24
37.210.0.0/15 maxlen: 24
212.77.192.0/24 maxlen: 24
212.77.192.0/19 maxlen: 24
212.77.199.0/24 maxlen: 24
212.77.204.0/24 maxlen: 24
212.77.202.0/24 maxlen: 24
212.77.207.0/24 maxlen: 24
212.77.211.0/24 maxlen: 24
212.77.210.0/24 maxlen: 24
212.77.209.0/24 maxlen: 24
212.77.218.0/24 maxlen: 24
212.77.217.0/24 maxlen: 24
212.77.221.0/24 maxlen: 24
212.77.220.0/24 maxlen: 24
82.148.96.0/19 maxlen: 24
82.148.96.0/24 maxlen: 24
178.152.0.0/15 maxlen: 24
2001:1a10::/29 maxlen: 48
2001:1a10:c1::/48 maxlen: 48
2001:1a11::/32 maxlen: 48
2001:1a10:1::/48 maxlen: 48
2001:1a10:cd::/48 maxlen: 64
2001:1a10:4000::/36 maxlen: 36
2001:1a10::/40 maxlen: 48
2001:1a10:100::/40 maxlen: 40
2001:1a10::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 180445941 (0xac162f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24ba4f52ac1be0755d34bc5483c061bdf293447e
Validity
Not Before: Feb 15 05:45:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c7231d4960dbac8a2f920137770b56937ba393e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a3:35:e6:f5:49:34:e7:27:29:df:fd:1a:41:
3e:e4:a5:3c:96:ee:78:3a:fe:41:82:d3:69:58:fa:
84:d3:e6:65:e5:7f:bb:a7:f3:c9:c4:87:31:37:4d:
e7:99:aa:8e:43:dd:8e:ce:23:c3:43:98:15:21:64:
74:e8:ab:d9:ed:f5:0f:38:af:da:77:64:99:c6:cf:
70:6f:6e:0c:31:8c:eb:f2:cf:57:f4:96:6d:de:b5:
1c:c4:b6:48:c8:c6:31:a9:7f:37:cd:48:6f:3d:7b:
cb:bf:fb:bb:d7:f8:cb:4e:ee:64:3e:ae:96:fc:6c:
51:3f:39:f5:b2:74:1c:2f:49:a6:25:9f:f8:19:4d:
51:3a:d1:9d:a2:66:50:98:87:94:9c:f3:fa:d6:d0:
22:b5:dd:a3:e6:c3:49:d9:15:6d:8c:da:8a:f9:b8:
d1:d5:ea:ae:36:63:11:f0:5f:9e:54:aa:7d:c9:0a:
e9:41:30:ec:65:32:5f:da:65:a8:a8:b8:58:c6:3c:
0b:92:2c:1a:ef:c3:79:c3:f7:04:70:9a:be:2d:8a:
2c:be:48:13:d5:64:52:a5:a7:b9:77:55:ea:1b:92:
87:33:51:0e:03:49:ce:bb:78:f4:28:fd:1e:79:8e:
e3:86:83:de:63:60:45:27:5d:2f:75:7d:11:35:23:
aa:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:23:1D:49:60:DB:AC:8A:2F:92:01:37:77:0B:56:93:7B:A3:93:E0
X509v3 Authority Key Identifier:
keyid:24:BA:4F:52:AC:1B:E0:75:5D:34:BC:54:83:C0:61:BD:F2:93:44:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JLpPUqwb4HVdNLxUg8BhvfKTRH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/397546-dc7b-4660-8a51-bf59fc1cb26d/1/xyMdSWDbrIovkgE3dwtWk3ujk-A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/397546-dc7b-4660-8a51-bf59fc1cb26d/1/JLpPUqwb4HVdNLxUg8BhvfKTRH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.208.128.0/17
37.210.0.0/15
78.100.0.0/15
82.148.96.0/19
86.62.192.0/18
89.211.0.0/16
176.202.0.0/15
178.152.0.0/15
185.96.224.0/22
212.77.192.0/19
213.130.96.0/19
IPv6:
2001:1a10::/29
Signature Algorithm: sha256WithRSAEncryption
28:af:59:0a:e0:a4:0d:07:0c:98:a3:1b:10:dc:ef:74:ad:1a:
98:df:58:e0:a8:59:cd:aa:57:08:0e:5d:4c:7f:3b:a9:6b:cd:
97:97:7f:3b:8f:be:5d:4b:ca:68:55:02:65:8f:4c:03:dd:ca:
9b:18:ab:67:88:22:16:4b:fb:9e:31:9c:2b:e8:10:59:3e:29:
37:aa:fb:03:e2:4b:ec:83:af:55:65:90:14:fc:02:da:49:1b:
92:60:30:15:64:f1:aa:6f:24:6e:a4:5e:cb:27:68:68:09:98:
5e:2b:78:21:c3:39:9e:2b:bf:ca:78:b2:aa:47:5d:28:5b:05:
e9:e5:36:38:1e:99:3e:43:c9:0f:60:94:0f:f0:58:ee:53:c3:
3c:46:05:a1:7f:32:ce:b5:b4:37:45:37:79:8d:b8:9c:4c:3a:
7b:18:43:47:a8:ef:e7:34:d0:bc:67:eb:05:ec:e3:f3:41:12:
2e:88:90:ac:56:5b:00:a5:55:94:ba:e0:d1:ef:80:f9:06:98:
91:52:bc:98:5f:49:aa:bb:e4:48:df:90:06:1d:2c:75:f9:06:
1f:d1:a6:35:8d:64:05:dd:86:84:0c:92:8d:68:80:72:ed:d2:
b0:79:63:9c:1f:f9:43:f4:17:df:1d:c9:6e:76:7d:84:fd:97:
7f:28:25:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:37 2023 by rpki-client on console-fra.rpki-client.org