Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/9gW6evt-zgrz0i2A0iCqbbbknf0.roa
File: 9gW6evt-zgrz0i2A0iCqbbbknf0.roa (raw, json)
Hash identifier: C4dJBrI1KFTsFDAgqDE7hIueIISHORh4PUFXZjTZJtc=
Subject key identifier: F6:05:BA:7A:FB:7E:CE:0A:F3:D2:2D:80:D2:20:AA:6D:B6:E4:9D:FD
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 050CFE9E
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/9gW6evt-zgrz0i2A0iCqbbbknf0.roa
Signing time: Wed 29 Jun 2022 14:01:02 +0000
ROA not before: Wed 29 Jun 2022 14:01:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206375
IP address blocks: 188.132.132.0/24 maxlen: 24
188.132.139.0/24 maxlen: 24
188.132.138.0/24 maxlen: 24
188.132.136.0/24 maxlen: 24
188.132.137.0/24 maxlen: 24
188.132.133.0/24 maxlen: 24
188.132.145.0/24 maxlen: 24
188.132.143.0/24 maxlen: 24
188.132.144.0/24 maxlen: 24
188.132.140.0/24 maxlen: 24
188.132.236.0/24 maxlen: 24
188.132.238.0/24 maxlen: 24
188.132.237.0/24 maxlen: 24
188.132.247.0/24 maxlen: 24
188.132.248.0/24 maxlen: 24
188.132.160.0/24 maxlen: 24
188.132.162.0/24 maxlen: 24
188.132.161.0/24 maxlen: 24
31.210.43.0/24 maxlen: 24
31.210.42.0/24 maxlen: 24
188.132.186.0/24 maxlen: 24
188.132.185.0/24 maxlen: 24
188.132.188.0/24 maxlen: 24
31.210.55.0/24 maxlen: 24
31.210.54.0/24 maxlen: 24
78.135.97.0/24 maxlen: 24
78.135.94.0/24 maxlen: 24
78.135.96.0/24 maxlen: 24
78.135.95.0/24 maxlen: 24
78.135.93.0/24 maxlen: 24
78.135.92.0/24 maxlen: 24
78.135.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84737694 (0x50cfe9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jun 29 14:01:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f605ba7afb7ece0af3d22d80d220aa6db6e49dfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:c6:51:c3:83:fa:67:b4:17:0d:da:4c:c8:18:
18:f2:80:bf:8a:5a:66:b5:54:d9:b1:0f:22:a8:6d:
4a:81:21:ad:b5:48:bd:47:76:98:52:a0:c4:2e:09:
e0:d0:d5:9a:33:8a:ef:45:11:ee:62:50:1f:79:87:
a8:54:e1:3f:0b:83:23:57:05:9a:af:78:80:e4:5e:
d1:16:0f:5f:14:b5:e6:34:71:0c:c2:41:dd:97:f3:
cb:20:22:1d:28:af:58:3d:1f:3d:b3:75:21:9c:e8:
50:3e:4f:de:69:7c:3a:74:56:fa:cb:aa:20:87:e7:
67:fd:3a:44:63:0d:36:47:7a:3c:e0:89:ac:86:61:
1c:7b:85:9e:38:4c:da:f0:c8:10:b2:96:ce:73:eb:
41:66:9d:85:50:f0:63:18:3c:fd:98:26:67:2b:2f:
1d:27:d5:7e:cb:6c:51:e0:7a:a0:b4:e6:fd:77:2f:
ef:49:40:3c:60:ce:dc:fb:73:ef:24:b5:c9:7c:46:
47:72:d9:35:35:13:20:d5:6d:68:1e:28:14:52:8b:
6d:cf:b0:03:0f:0f:8c:33:01:ee:45:5f:c1:fe:5b:
06:de:45:96:db:f6:37:96:68:fc:fc:d1:d6:06:6e:
fe:33:61:0e:df:7b:85:ef:97:19:9c:ed:12:7c:ae:
07:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:05:BA:7A:FB:7E:CE:0A:F3:D2:2D:80:D2:20:AA:6D:B6:E4:9D:FD
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/9gW6evt-zgrz0i2A0iCqbbbknf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.42.0/23
31.210.54.0/23
78.135.91.0-78.135.97.255
188.132.132.0/23
188.132.136.0-188.132.140.255
188.132.143.0-188.132.145.255
188.132.160.0-188.132.162.255
188.132.185.0-188.132.186.255
188.132.188.0/24
188.132.236.0-188.132.238.255
188.132.247.0-188.132.248.255
Signature Algorithm: sha256WithRSAEncryption
7e:50:83:5e:53:07:57:0b:89:4e:a1:e7:73:67:90:16:ef:a4:
0d:37:17:17:c4:f4:ad:31:d7:35:6a:4e:26:4d:cc:3b:c5:d6:
94:f9:c3:d9:d7:55:53:c1:08:13:d4:45:6f:d7:7e:91:15:61:
98:54:aa:50:ab:c5:6c:e4:cc:29:89:a5:98:03:54:db:a3:87:
4e:20:f9:b7:99:75:21:1b:56:3a:e8:d4:19:c7:2a:51:18:17:
74:48:fc:37:c4:85:72:35:de:71:68:73:23:24:7a:0f:b6:35:
3f:ed:3a:b5:5b:c1:65:51:86:3f:ea:67:93:66:c6:88:33:f8:
78:85:0c:59:1e:7f:5f:a8:c8:3c:82:90:dc:7b:87:85:6d:51:
fc:c1:c4:e1:75:01:8d:18:7d:13:c4:da:52:8a:3c:2f:8e:a5:
37:d7:3f:75:00:2d:1e:aa:0a:3e:0c:49:68:8a:5b:dc:2f:95:
e5:13:6a:a3:f3:c3:22:75:5d:d7:5b:68:99:a1:c9:f2:76:22:
6d:66:c0:a4:7a:3c:b1:a4:af:b1:f3:79:46:8c:80:64:01:b5:
b7:c0:ec:d0:f2:27:51:83:1e:59:c2:a2:6b:98:d1:71:b2:1b:
e3:45:10:5c:d6:5e:09:c7:33:2a:76:8f:96:7a:dd:2b:67:31:
9e:36:a1:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:43 2024 by rpki-client on console-fra.rpki-client.org