Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/cd4af6-b742-4cdc-b3a0-67a87d8a3b9b/1/j5Xqp0zDdsxwPkRsr3MfAIAkhgw.roa
File: j5Xqp0zDdsxwPkRsr3MfAIAkhgw.roa (raw, json)
Hash identifier: zMLiYS+V229k/PdLEy7ngwOm82f5lQVzT78j3jyq8wg=
Subject key identifier: 8F:95:EA:A7:4C:C3:76:CC:70:3E:44:6C:AF:73:1F:00:80:24:86:0C
Certificate issuer: /CN=d4fdd596267d56f7ce56ebfaec86a32708fede00
Certificate serial: 01833570885346E3CCD235101768ECBD89B5
Authority key identifier: D4:FD:D5:96:26:7D:56:F7:CE:56:EB:FA:EC:86:A3:27:08:FE:DE:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1P3VliZ9VvfOVuv67IajJwj-3gA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/cd4af6-b742-4cdc-b3a0-67a87d8a3b9b/1/j5Xqp0zDdsxwPkRsr3MfAIAkhgw.roa
Signing time: Tue 13 Sep 2022 06:01:50 +0000
ROA not before: Tue 13 Sep 2022 06:01:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206206
IP address blocks: 213.32.252.0/23 maxlen: 24
213.32.254.0/23 maxlen: 24
185.187.77.0/24 maxlen: 24
185.187.76.0/22 maxlen: 24
185.187.76.0/24 maxlen: 24
185.187.78.0/24 maxlen: 24
185.187.79.0/24 maxlen: 24
185.244.152.0/22 maxlen: 24
185.244.152.0/24 maxlen: 24
185.244.152.0/23 maxlen: 24
185.244.155.0/24 maxlen: 24
185.244.154.0/23 maxlen: 24
185.244.154.0/24 maxlen: 24
185.244.153.0/24 maxlen: 24
212.237.120.0/23 maxlen: 24
212.237.122.0/23 maxlen: 24
212.237.122.0/24 maxlen: 24
212.237.121.0/24 maxlen: 24
212.237.120.0/22 maxlen: 24
212.237.120.0/24 maxlen: 24
212.237.119.0/24 maxlen: 24
212.237.125.0/24 maxlen: 24
185.106.30.0/23 maxlen: 24
212.237.123.0/24 maxlen: 24
185.106.28.0/23 maxlen: 24
212.237.124.0/22 maxlen: 24
212.237.124.0/24 maxlen: 24
212.237.127.0/24 maxlen: 24
212.237.126.0/24 maxlen: 24
185.136.150.0/24 maxlen: 24
185.136.150.0/23 maxlen: 24
185.136.149.0/24 maxlen: 24
185.136.148.0/23 maxlen: 24
185.136.148.0/24 maxlen: 24
185.136.151.0/24 maxlen: 24
37.156.107.0/24 maxlen: 24
37.156.106.0/24 maxlen: 24
212.237.112.0/24 maxlen: 24
212.237.112.0/23 maxlen: 24
212.237.113.0/24 maxlen: 24
212.237.118.0/24 maxlen: 24
212.237.118.0/23 maxlen: 24
212.237.112.0/21 maxlen: 24
212.237.117.0/24 maxlen: 24
212.237.116.0/24 maxlen: 24
212.237.116.0/23 maxlen: 24
212.237.115.0/24 maxlen: 24
212.237.114.0/24 maxlen: 24
212.237.114.0/23 maxlen: 24
37.156.105.0/24 maxlen: 24
37.156.104.0/24 maxlen: 24
37.156.104.0/22 maxlen: 24
185.24.60.0/23 maxlen: 24
185.24.60.0/22 maxlen: 24
185.24.60.0/24 maxlen: 24
185.24.63.0/24 maxlen: 24
185.24.62.0/23 maxlen: 24
185.24.62.0/24 maxlen: 24
185.24.61.0/24 maxlen: 24
2a06:fd80::/48 maxlen: 48
2a06:fd80::/64 maxlen: 64
2a06:fd80:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:35:70:88:53:46:e3:cc:d2:35:10:17:68:ec:bd:89:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4fdd596267d56f7ce56ebfaec86a32708fede00
Validity
Not Before: Sep 13 06:01:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f95eaa74cc376cc703e446caf731f008024860c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c5:c2:96:45:b5:bc:ad:0d:44:2f:ab:69:64:
be:03:33:db:d9:4e:cc:97:f1:af:2a:8a:c7:68:74:
64:20:d8:44:77:54:1e:e6:01:47:6e:00:6b:97:13:
c8:ca:15:8b:79:06:eb:44:bb:da:d3:e4:45:fb:52:
3a:88:67:26:8d:a6:0e:d3:a7:aa:2b:67:e3:53:35:
ec:3d:92:71:e1:f8:4e:b5:96:8a:4a:75:d3:a8:ff:
3a:07:6f:77:67:59:3d:a7:e5:9e:49:45:e6:58:e1:
96:f0:bd:21:40:bf:e8:a2:5d:b7:a5:41:ea:72:9e:
ff:08:fe:9d:cb:39:90:9d:db:a8:f7:94:c3:27:70:
8e:37:70:fc:33:08:91:ba:d0:e3:34:3c:05:9c:de:
41:ce:1c:7f:44:08:bc:cb:2a:76:f5:4e:e8:5b:4c:
c2:8a:94:d3:d7:b6:07:74:fa:df:b3:71:51:97:e2:
30:1b:ee:4b:75:b9:e5:96:f2:fc:a1:7c:13:77:f9:
c9:7d:57:d9:63:07:b9:e7:c9:4d:85:90:0c:1f:7b:
80:16:46:a2:de:b4:50:c3:77:fc:b3:ef:5d:21:9c:
85:ee:23:81:f7:9c:72:56:00:8b:bb:37:97:3f:60:
fd:c6:20:16:09:23:29:44:48:7a:c4:c2:d8:a5:4f:
4e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:95:EA:A7:4C:C3:76:CC:70:3E:44:6C:AF:73:1F:00:80:24:86:0C
X509v3 Authority Key Identifier:
keyid:D4:FD:D5:96:26:7D:56:F7:CE:56:EB:FA:EC:86:A3:27:08:FE:DE:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1P3VliZ9VvfOVuv67IajJwj-3gA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/cd4af6-b742-4cdc-b3a0-67a87d8a3b9b/1/j5Xqp0zDdsxwPkRsr3MfAIAkhgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/cd4af6-b742-4cdc-b3a0-67a87d8a3b9b/1/1P3VliZ9VvfOVuv67IajJwj-3gA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.156.104.0/22
185.24.60.0/22
185.106.28.0/22
185.136.148.0/22
185.187.76.0/22
185.244.152.0/22
212.237.112.0/20
213.32.252.0/22
IPv6:
2a06:fd80::/47
Signature Algorithm: sha256WithRSAEncryption
8b:e1:8b:72:d1:bb:53:f3:b7:b2:73:30:7d:78:72:98:62:94:
30:12:84:a3:df:e7:4f:e1:fc:5b:75:7b:f0:49:e1:c9:6e:82:
5e:c3:e5:98:c8:f3:57:f3:6e:72:d1:f0:c7:06:43:8a:47:c1:
d6:f8:01:60:19:c9:1b:c4:97:d8:10:fa:b5:15:ba:ea:d3:8f:
88:6d:5e:e5:52:19:09:9f:02:82:14:af:07:47:17:84:b2:b1:
98:aa:1c:fd:04:b2:6d:23:ba:e5:6b:9b:27:e3:e4:dd:2a:21:
8d:cb:a9:07:70:1d:32:8a:ef:25:2d:e9:2f:73:41:00:5a:39:
37:68:7d:72:1c:07:0e:d7:ab:ad:04:92:fb:e9:f2:27:eb:e6:
45:4d:d4:c5:05:61:c7:e9:1c:0a:d1:f8:e0:c8:58:e8:2c:20:
f2:b5:b9:69:ed:b1:ba:54:53:e6:7e:95:8d:59:43:75:c2:fd:
a3:70:92:b2:be:c7:2f:31:f4:68:29:82:61:74:3a:69:4e:ed:
10:71:11:50:46:c3:68:c3:27:2b:c2:91:e6:3c:df:f7:34:bb:
0b:1b:e2:2c:17:ee:c3:c7:19:8e:c8:03:9b:fe:76:cd:7c:7d:
53:aa:9e:a4:35:8e:b4:18:66:61:62:bb:22:42:1b:5c:63:b1:
c0:72:3a:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:02 2023 by rpki-client on console-ams.rpki-client.org