Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/v1sMpD_yZJTRna86Aij66MsSlHQ.roa
File: v1sMpD_yZJTRna86Aij66MsSlHQ.roa (raw, json)
Hash identifier: 9Nx6kPP3VoHwkN94LxJK3bi2HXlTg7E+wkCru6zdgzg=
Subject key identifier: BF:5B:0C:A4:3F:F2:64:94:D1:9D:AF:3A:02:28:FA:E8:CB:12:94:74
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 0260CBE4
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/v1sMpD_yZJTRna86Aij66MsSlHQ.roa
Signing time: Mon 02 May 2022 16:54:56 +0000
ROA not before: Mon 02 May 2022 16:54:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 104.249.29.0/24 maxlen: 24
104.249.30.0/23 maxlen: 23
104.249.36.0/24 maxlen: 24
104.239.10.0/23 maxlen: 23
104.239.13.0/24 maxlen: 24
104.249.55.0/24 maxlen: 24
104.239.28.0/24 maxlen: 24
104.239.30.0/23 maxlen: 23
104.249.60.0/23 maxlen: 23
104.167.0.0/24 maxlen: 24
104.167.10.0/24 maxlen: 24
216.173.120.0/24 maxlen: 24
104.238.4.0/24 maxlen: 24
104.238.5.0/24 maxlen: 24
104.238.8.0/24 maxlen: 24
104.238.7.0/24 maxlen: 24
104.238.10.0/24 maxlen: 24
104.238.9.0/24 maxlen: 24
104.238.14.0/24 maxlen: 24
104.238.20.0/24 maxlen: 24
104.238.19.0/24 maxlen: 24
216.173.76.0/24 maxlen: 24
216.173.82.0/24 maxlen: 24
216.173.102.0/24 maxlen: 24
216.173.104.0/24 maxlen: 24
216.173.103.0/24 maxlen: 24
216.173.105.0/24 maxlen: 24
216.173.109.0/24 maxlen: 24
216.173.108.0/24 maxlen: 24
216.173.111.0/24 maxlen: 24
216.173.110.0/24 maxlen: 24
216.173.106.0/24 maxlen: 24
216.173.107.0/24 maxlen: 24
104.239.92.0/23 maxlen: 23
104.239.96.0/23 maxlen: 23
104.239.98.0/24 maxlen: 24
104.239.94.0/24 maxlen: 24
104.239.101.0/24 maxlen: 24
104.239.105.0/24 maxlen: 24
104.239.104.0/24 maxlen: 24
104.239.111.0/24 maxlen: 24
104.239.106.0/24 maxlen: 24
104.239.108.0/24 maxlen: 24
104.239.107.0/24 maxlen: 24
104.239.124.0/23 maxlen: 23
104.239.126.0/24 maxlen: 24
104.239.44.0/24 maxlen: 24
104.239.76.0/23 maxlen: 23
104.239.73.0/24 maxlen: 24
104.239.75.0/24 maxlen: 24
104.239.78.0/24 maxlen: 24
104.239.84.0/23 maxlen: 23
104.239.80.0/23 maxlen: 23
104.239.82.0/24 maxlen: 24
104.239.90.0/23 maxlen: 23
104.239.86.0/24 maxlen: 24
104.239.88.0/24 maxlen: 24
104.233.20.0/24 maxlen: 24
104.233.24.0/23 maxlen: 23
104.233.26.0/24 maxlen: 24
138.128.148.0/24 maxlen: 24
138.128.151.0/24 maxlen: 24
138.128.157.0/24 maxlen: 24
138.128.159.0/24 maxlen: 24
138.128.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39898084 (0x260cbe4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: May 2 16:54:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf5b0ca43ff26494d19daf3a0228fae8cb129474
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:cc:86:86:fd:e7:37:ba:5e:2d:62:f1:06:17:
43:6b:59:d2:36:37:3e:2c:d7:36:d3:e9:95:8a:00:
53:e5:46:70:98:63:2e:d3:ac:72:23:4a:3d:8b:cc:
59:f8:15:69:82:32:3e:00:1b:88:f1:69:7a:d4:c9:
ab:16:be:50:89:7c:3a:d1:65:a1:9d:06:c3:c1:06:
f5:f5:cf:86:f6:30:84:c7:a8:57:b6:57:a2:17:94:
0c:ac:00:a0:29:96:33:4d:61:b9:56:81:ec:39:f1:
68:da:f8:c7:05:81:f9:72:e6:55:a7:07:fd:12:d7:
8f:fe:f9:b1:e7:96:f8:d5:30:9a:67:e3:bd:c3:ef:
75:a1:94:e2:12:24:16:e3:c9:18:bb:0c:e3:31:fa:
92:71:4d:34:56:18:a0:75:ad:49:87:bb:f4:59:bf:
03:75:2b:8a:bb:d1:bd:6a:99:67:62:2d:2d:1e:36:
34:47:f2:71:27:20:85:c4:b5:fb:5f:d4:bd:8d:47:
cb:08:aa:29:ce:ec:51:7f:ee:75:ab:10:5b:28:00:
de:b5:5a:48:f0:a8:86:fc:6d:3d:d9:3b:aa:f9:4b:
3f:bf:cf:cd:2a:31:52:42:f6:da:2b:eb:70:e3:89:
6c:bd:86:d2:24:07:3e:59:76:02:5f:c5:da:51:30:
21:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:5B:0C:A4:3F:F2:64:94:D1:9D:AF:3A:02:28:FA:E8:CB:12:94:74
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/v1sMpD_yZJTRna86Aij66MsSlHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
104.167.0.0/24
104.167.10.0/24
104.233.20.0/24
104.233.24.0-104.233.26.255
104.238.4.0/23
104.238.7.0-104.238.10.255
104.238.14.0/24
104.238.19.0-104.238.20.255
104.239.10.0/23
104.239.13.0/24
104.239.28.0/24
104.239.30.0/23
104.239.44.0/24
104.239.73.0/24
104.239.75.0-104.239.78.255
104.239.80.0-104.239.82.255
104.239.84.0-104.239.86.255
104.239.88.0/24
104.239.90.0-104.239.94.255
104.239.96.0-104.239.98.255
104.239.101.0/24
104.239.104.0-104.239.108.255
104.239.111.0/24
104.239.124.0-104.239.126.255
104.249.29.0-104.249.31.255
104.249.36.0/24
104.249.55.0/24
104.249.60.0/23
138.128.148.0/24
138.128.151.0/24
138.128.153.0/24
138.128.157.0/24
138.128.159.0/24
216.173.76.0/24
216.173.82.0/24
216.173.102.0-216.173.111.255
216.173.120.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:3e:56:c5:7b:ff:a7:f0:aa:03:04:ed:ed:ac:a1:1e:f2:6a:
bb:f7:76:48:7b:2b:c3:8f:82:5b:ad:b0:52:76:4a:2a:24:54:
dd:4a:b4:c2:e2:ea:08:91:36:51:ca:91:03:14:f2:b9:85:25:
90:fb:26:06:ed:26:73:6c:d2:04:20:f0:59:fd:d6:19:cd:44:
df:3d:be:6b:5c:ef:f3:59:f2:75:95:27:ad:a1:5c:5a:de:25:
41:40:dc:c8:e1:4f:24:9f:d0:19:32:ae:54:6e:6c:6b:d8:aa:
b5:5b:cf:39:aa:c2:7d:2d:c7:40:39:9d:ca:89:db:3c:fe:58:
51:86:16:d3:20:53:58:2c:4e:8c:51:8e:43:2c:d7:14:7c:24:
a9:67:c4:c3:10:87:33:5f:ca:9d:ac:b0:01:30:67:56:e5:59:
bb:02:0f:4c:25:ec:4a:10:72:ed:51:73:29:ae:0c:29:3e:73:
af:53:68:90:ac:dd:5b:74:27:2a:d1:37:1b:c5:8d:76:17:fe:
97:8d:24:f3:14:8d:7c:3a:d8:81:20:79:4b:75:0b:85:e7:c0:
5e:0a:89:e9:01:e9:08:71:ca:4e:51:1a:9a:0b:30:14:61:86:
94:ff:64:b2:97:14:ac:96:56:b1:7e:64:fa:ec:88:f7:e4:9a:
fe:52:61:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:03 2024 by rpki-client on console-fra.rpki-client.org