Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/CYAp8fbmDTTc9DVz7RzchgVC0Ss.roa
File: CYAp8fbmDTTc9DVz7RzchgVC0Ss.roa (raw, json)
Hash identifier: bFvQ8RwHoAbIyxOgDinDP+chcRS0Mg2VhiqeUWr/5so=
Subject key identifier: 09:80:29:F1:F6:E6:0D:34:DC:F4:35:73:ED:1C:DC:86:05:42:D1:2B
Certificate issuer: /CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Certificate serial: 0182B1086DBA1E7A71F4404BBD77C3C1FE56
Authority key identifier: 4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/CYAp8fbmDTTc9DVz7RzchgVC0Ss.roa
Signing time: Thu 18 Aug 2022 12:58:15 +0000
ROA not before: Thu 18 Aug 2022 12:58:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12975
IP address blocks: 103.215.4.0/22 maxlen: 22
43.255.108.0/22 maxlen: 22
103.196.120.0/22 maxlen: 22
103.206.108.0/22 maxlen: 22
45.127.179.0/24 maxlen: 24
45.127.178.0/24 maxlen: 24
45.127.177.0/24 maxlen: 24
45.127.176.0/22 maxlen: 22
45.127.176.0/24 maxlen: 24
103.239.96.0/22 maxlen: 22
213.244.121.0/24 maxlen: 24
139.190.176.0/20 maxlen: 20
213.244.71.0/24 maxlen: 24
213.244.70.0/23 maxlen: 24
213.244.70.0/24 maxlen: 24
83.244.78.0/24 maxlen: 24
213.244.76.0/24 maxlen: 24
83.244.75.0/24 maxlen: 24
83.244.74.0/24 maxlen: 24
83.244.73.0/24 maxlen: 24
213.244.73.0/24 maxlen: 24
213.244.72.0/21 maxlen: 24
213.244.72.0/24 maxlen: 24
83.244.79.0/24 maxlen: 24
24.42.64.0/18 maxlen: 18
103.231.105.0/24 maxlen: 24
103.231.104.0/24 maxlen: 24
103.231.107.0/24 maxlen: 24
103.231.106.0/24 maxlen: 24
103.53.4.0/22 maxlen: 24
103.53.4.0/24 maxlen: 24
103.248.38.0/24 maxlen: 24
103.248.37.0/24 maxlen: 24
43.243.24.0/22 maxlen: 22
103.248.36.0/24 maxlen: 24
103.248.39.0/24 maxlen: 24
103.27.144.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b1:08:6d:ba:1e:7a:71:f4:40:4b:bd:77:c3:c1:fe:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Validity
Not Before: Aug 18 12:58:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=098029f1f6e60d34dcf43573ed1cdc860542d12b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:bf:69:9b:82:db:27:d3:73:02:06:e0:58:7d:
53:23:e2:4e:9a:bc:11:72:e6:3e:43:67:a5:36:b4:
fa:4a:76:07:47:a3:b0:93:c1:d8:b2:0d:39:29:41:
4c:9b:5c:27:ee:81:ad:ae:e0:e7:63:80:b1:f8:3c:
a0:57:41:cd:ee:9d:49:01:68:4e:9f:4d:a3:52:a4:
89:c1:4a:fe:0b:92:c8:89:38:ad:a2:8b:4d:f0:c1:
ab:af:df:23:43:ed:78:bc:c6:71:1e:12:f0:ca:df:
d2:8c:f0:95:e5:92:1f:86:78:42:14:cc:fb:c1:66:
01:35:19:50:3d:0a:e8:83:dc:d8:93:d0:f1:b4:68:
89:b9:da:9e:80:66:ff:e0:ff:02:89:5e:5b:c1:02:
57:a3:af:d7:20:9d:f5:96:02:e3:cd:52:cc:39:95:
3c:d7:84:80:26:c3:58:4a:d5:48:22:51:3f:7a:f5:
89:b4:74:9f:0e:95:c3:c1:02:96:89:c3:4e:f7:16:
18:1f:2e:8e:0c:c7:d3:82:75:a9:33:a8:4c:ea:09:
0a:f2:74:0d:9a:a5:1d:65:3a:03:27:4f:f2:76:ee:
5d:ae:d3:3e:b1:a5:c7:45:eb:51:cf:25:ae:ca:32:
02:d1:24:ce:9a:fe:e4:45:f4:e7:63:cc:a2:7f:bd:
d1:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:80:29:F1:F6:E6:0D:34:DC:F4:35:73:ED:1C:DC:86:05:42:D1:2B
X509v3 Authority Key Identifier:
keyid:4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/CYAp8fbmDTTc9DVz7RzchgVC0Ss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
24.42.64.0/18
43.243.24.0/22
43.255.108.0/22
45.127.176.0/22
83.244.73.0-83.244.75.255
83.244.78.0/23
103.27.144.0/22
103.53.4.0/22
103.196.120.0/22
103.206.108.0/22
103.215.4.0/22
103.231.104.0/22
103.239.96.0/22
103.248.36.0/22
139.190.176.0/20
213.244.70.0-213.244.79.255
213.244.121.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:a7:98:3d:41:81:40:87:e8:96:70:bf:7b:20:35:23:2f:d6:
e6:9d:31:bb:19:0c:dc:db:ea:82:7b:fc:79:55:44:d3:ce:83:
28:66:26:d4:e8:4e:de:f7:34:04:ec:a8:90:17:2a:ea:a4:20:
90:15:9c:84:12:d7:0b:2f:62:92:f7:69:f5:2f:3d:30:ca:af:
99:b3:96:d0:d8:44:cc:fc:dd:0e:e8:c5:bf:00:2d:60:72:78:
8b:4f:31:1d:b9:30:43:6b:74:0e:7f:ca:02:ee:a3:b2:a1:33:
b6:cc:4e:ef:d0:52:2f:a5:4d:54:cb:73:b8:ad:c3:f5:98:f0:
ac:1c:28:8f:1f:33:fa:71:45:df:b6:04:3e:42:df:26:7e:18:
bd:cf:45:72:a6:20:4d:77:40:ac:f2:8e:67:7f:9b:77:82:dd:
1a:2e:b4:53:3d:97:fc:a4:54:c3:2b:2b:27:eb:b9:31:2c:4b:
bf:be:b3:1a:e9:f9:65:f6:1b:8c:10:f5:c3:e3:49:9c:89:1a:
dd:25:dd:8a:37:08:fe:e6:57:79:b5:d4:5e:1e:f9:f7:cc:4b:
ac:10:ad:b0:7d:7b:ef:61:15:5b:a6:26:75:f4:1e:c1:ca:50:
33:f9:56:d1:6f:7e:15:27:8f:68:a3:46:14:b1:b2:31:6e:51:
3b:11:24:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:03 2023 by rpki-client on console-fra.rpki-client.org