Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/dP7tsntg0gWM3Fq6rjoHbX28WAs.roa
File: dP7tsntg0gWM3Fq6rjoHbX28WAs.roa (raw, json)
Hash identifier: +n2e6NA9NeTNDxRG9p7bAGqwIqyU3Rsnz3ANgNzmU8M=
Subject key identifier: 74:FE:ED:B2:7B:60:D2:05:8C:DC:5A:BA:AE:3A:07:6D:7D:BC:58:0B
Certificate issuer: /CN=f071f4d119d0b74fb66e37a7ef878d449d54ddc8
Certificate serial: 0FC9A3F5
Authority key identifier: F0:71:F4:D1:19:D0:B7:4F:B6:6E:37:A7:EF:87:8D:44:9D:54:DD:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8HH00RnQt0-2bjen74eNRJ1U3cg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/dP7tsntg0gWM3Fq6rjoHbX28WAs.roa
Signing time: Fri 28 Jan 2022 13:56:49 +0000
ROA not before: Fri 28 Jan 2022 13:56:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12874
IP address blocks: 81.208.64.0/18 maxlen: 18
93.60.0.0/15 maxlen: 15
81.208.0.0/18 maxlen: 18
93.43.0.0/16 maxlen: 16
89.97.0.0/16 maxlen: 16
93.33.0.0/16 maxlen: 16
2.232.0.0/13 maxlen: 13
93.40.0.0/13 maxlen: 13
93.37.0.0/17 maxlen: 17
93.40.0.0/15 maxlen: 15
93.40.0.0/14 maxlen: 14
2.224.0.0/13 maxlen: 13
93.32.0.0/13 maxlen: 13
213.140.0.0/20 maxlen: 20
83.103.0.0/18 maxlen: 18
213.140.16.0/20 maxlen: 20
83.103.0.0/17 maxlen: 17
93.39.0.0/16 maxlen: 16
89.96.0.0/16 maxlen: 16
93.32.0.0/15 maxlen: 15
89.96.0.0/15 maxlen: 15
93.32.0.0/14 maxlen: 14
93.36.0.0/15 maxlen: 15
93.36.0.0/14 maxlen: 14
93.32.0.0/12 maxlen: 12
93.56.0.0/14 maxlen: 14
83.103.64.0/18 maxlen: 18
93.46.0.0/15 maxlen: 15
93.48.0.0/13 maxlen: 13
85.18.0.0/17 maxlen: 17
92.223.128.0/17 maxlen: 17
213.156.32.0/20 maxlen: 20
85.18.0.0/16 maxlen: 16
213.156.48.0/20 maxlen: 20
93.38.0.0/15 maxlen: 15
37.186.192.0/18 maxlen: 18
93.42.0.0/16 maxlen: 16
93.42.0.0/15 maxlen: 15
85.18.128.0/17 maxlen: 17
93.62.0.0/15 maxlen: 15
93.44.0.0/15 maxlen: 15
62.101.96.0/19 maxlen: 19
93.44.0.0/14 maxlen: 14
93.40.192.0/18 maxlen: 18
93.34.0.0/15 maxlen: 15
93.40.128.0/18 maxlen: 18
62.101.64.0/19 maxlen: 19
185.7.112.0/22 maxlen: 22
62.101.124.0/22 maxlen: 22
93.37.128.0/17 maxlen: 17
151.0.128.0/17 maxlen: 17
93.41.0.0/16 maxlen: 16
2001:b00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 264872949 (0xfc9a3f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f071f4d119d0b74fb66e37a7ef878d449d54ddc8
Validity
Not Before: Jan 28 13:56:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74feedb27b60d2058cdc5abaae3a076d7dbc580b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:5f:55:54:6e:04:8d:3f:88:da:45:2f:6b:e6:
d7:cd:02:aa:41:84:df:53:a9:fb:34:6c:84:70:c6:
c8:b1:d8:b1:f9:e9:f5:ac:ee:51:12:62:d8:17:27:
3a:9c:1d:1e:7d:92:4e:3a:4c:0f:b1:9c:6c:22:75:
ec:52:03:9c:b7:d0:62:2e:04:1d:dc:55:05:67:dc:
a8:29:d7:63:01:4a:c9:d3:07:20:f4:84:6b:6e:1c:
db:60:ff:af:64:dc:04:34:88:09:1a:b2:d8:7b:b2:
24:53:6f:f1:cb:88:7d:07:27:d0:52:7f:9c:0f:c2:
c4:9d:64:0a:58:f8:00:d6:c0:42:98:fb:a9:14:39:
0b:80:ab:6b:76:47:d2:9b:af:60:56:b6:2e:8b:69:
0c:a1:18:e0:e5:02:e7:5a:67:0e:bb:15:87:15:c5:
ea:bc:bd:26:72:57:a9:40:38:46:bd:09:8c:33:9e:
f4:9f:4d:86:92:62:2b:f2:5e:85:c4:15:8b:ed:29:
45:e7:1f:11:66:8d:73:81:e9:e9:14:94:79:f6:d1:
b9:13:4f:4a:83:ba:01:9c:74:68:fe:e3:21:b8:cd:
36:00:f3:5d:04:e9:b7:67:de:2f:5a:51:5e:07:42:
76:1c:74:8d:eb:67:8e:61:4e:f4:ce:92:f5:38:48:
a3:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:FE:ED:B2:7B:60:D2:05:8C:DC:5A:BA:AE:3A:07:6D:7D:BC:58:0B
X509v3 Authority Key Identifier:
keyid:F0:71:F4:D1:19:D0:B7:4F:B6:6E:37:A7:EF:87:8D:44:9D:54:DD:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8HH00RnQt0-2bjen74eNRJ1U3cg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/dP7tsntg0gWM3Fq6rjoHbX28WAs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/8HH00RnQt0-2bjen74eNRJ1U3cg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.224.0.0/12
37.186.192.0/18
62.101.64.0/18
81.208.0.0/17
83.103.0.0/17
85.18.0.0/16
89.96.0.0/15
92.223.128.0/17
93.32.0.0/11
151.0.128.0/17
185.7.112.0/22
213.140.0.0/19
213.156.32.0/19
IPv6:
2001:b00::/29
Signature Algorithm: sha256WithRSAEncryption
c8:c4:87:ab:a7:1a:33:cc:5e:3b:bb:ea:33:02:1a:12:8c:aa:
96:6a:f1:74:57:d9:e3:e3:90:de:b1:84:14:ab:a4:56:22:72:
3c:54:43:18:38:d1:06:39:7d:00:53:cf:04:83:4f:65:69:95:
21:ed:34:13:32:db:55:0c:63:10:a2:c5:15:73:f9:fa:d7:34:
bc:59:fc:aa:31:9b:b7:1e:c9:5a:a3:c7:fc:99:91:fa:7b:66:
b6:b2:cd:57:53:db:5c:3e:2f:36:61:58:c1:89:4a:17:16:fe:
75:ff:34:a3:e0:17:f1:50:8c:c8:2f:33:da:37:73:f0:fd:9e:
08:8f:6a:f9:7d:4b:8a:3a:ad:b4:91:89:3a:2e:78:ed:84:de:
71:92:01:c7:6a:03:6b:26:3f:fb:7b:db:ea:6b:40:a4:b8:e5:
c4:a7:dc:ec:2f:5b:cb:3f:f5:b1:5c:50:69:bf:fe:28:f0:59:
29:60:6d:05:cb:e7:73:91:b0:d9:55:49:ab:f5:ed:f7:74:e2:
31:ff:d8:bc:25:84:46:8d:a6:03:20:4d:04:46:78:a4:3a:99:
e2:0a:68:d1:07:db:d4:13:38:de:1b:c1:2e:b2:64:2b:8d:69:
ef:95:ad:cc:14:6b:22:57:4b:64:b1:09:1e:94:a4:72:5c:57:
4d:d3:be:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:30 2024 by rpki-client on console-fra.rpki-client.org