Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/6de65e-04bd-4346-85b1-a5325d441702/1/sog3Fp8nMrW_pCh2L1LelED9PIg.roa
File: sog3Fp8nMrW_pCh2L1LelED9PIg.roa (raw, json)
Hash identifier: GKk3td04W6VMMJHPe8h3JzFuyDUkq3Y/9l4Y4EwCxrc=
Subject key identifier: B2:88:37:16:9F:27:32:B5:BF:A4:28:76:2F:52:DE:94:40:FD:3C:88
Certificate issuer: /CN=de51c3c5ddc4fb61381c3bea24c1ba4f74998eab
Certificate serial: 0366B345
Authority key identifier: DE:51:C3:C5:DD:C4:FB:61:38:1C:3B:EA:24:C1:BA:4F:74:99:8E:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3lHDxd3E-2E4HDvqJMG6T3SZjqs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/6de65e-04bd-4346-85b1-a5325d441702/1/sog3Fp8nMrW_pCh2L1LelED9PIg.roa
Signing time: Sat 01 Jan 2022 13:55:54 +0000
ROA not before: Sat 01 Jan 2022 13:55:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200773
IP address blocks: 185.71.201.0/24 maxlen: 24
185.71.200.0/24 maxlen: 24
185.71.200.0/22 maxlen: 24
185.71.203.0/24 maxlen: 24
185.71.202.0/24 maxlen: 24
194.38.44.0/24 maxlen: 24
194.38.45.0/24 maxlen: 24
194.38.47.0/24 maxlen: 24
194.38.46.0/24 maxlen: 24
185.242.97.0/24 maxlen: 24
185.242.96.0/24 maxlen: 24
185.242.98.0/24 maxlen: 24
185.242.99.0/24 maxlen: 24
89.38.176.0/24 maxlen: 24
188.247.136.0/21 maxlen: 24
89.38.177.0/24 maxlen: 24
188.247.136.0/24 maxlen: 24
188.247.138.0/24 maxlen: 24
89.38.179.0/24 maxlen: 24
188.247.137.0/24 maxlen: 24
89.38.178.0/24 maxlen: 24
188.247.139.0/24 maxlen: 24
188.247.145.0/24 maxlen: 24
89.38.183.0/24 maxlen: 24
188.247.143.0/24 maxlen: 24
188.247.144.0/24 maxlen: 24
188.247.140.0/24 maxlen: 24
89.38.180.0/24 maxlen: 24
89.38.182.0/24 maxlen: 24
188.247.142.0/24 maxlen: 24
188.247.141.0/24 maxlen: 24
89.38.181.0/24 maxlen: 24
188.247.150.0/24 maxlen: 24
188.247.152.0/24 maxlen: 24
188.247.151.0/24 maxlen: 24
188.247.147.0/24 maxlen: 24
188.247.146.0/24 maxlen: 24
188.247.149.0/24 maxlen: 24
188.247.148.0/24 maxlen: 24
188.247.157.0/24 maxlen: 24
188.247.159.0/24 maxlen: 24
188.247.158.0/24 maxlen: 24
188.247.154.0/24 maxlen: 24
188.247.153.0/24 maxlen: 24
188.247.156.0/24 maxlen: 24
188.247.155.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57062213 (0x366b345)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de51c3c5ddc4fb61381c3bea24c1ba4f74998eab
Validity
Not Before: Jan 1 13:55:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b28837169f2732b5bfa428762f52de9440fd3c88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:3f:4e:bb:4c:5b:cb:5e:b5:ea:4b:a5:a4:b9:
86:74:d9:1d:a3:49:09:07:83:3a:48:37:f6:29:66:
9a:9a:69:cb:c3:c9:67:5c:7f:50:8a:35:cd:61:2f:
9a:37:5b:66:3e:67:dd:be:8e:84:dd:47:47:15:44:
5d:55:fc:71:7a:d2:98:14:e7:f6:e4:97:cf:45:bb:
29:22:d9:8c:0e:8c:b9:40:b0:69:cf:5e:32:80:d1:
91:a2:d6:49:f8:f4:25:20:e3:9f:7a:80:1e:b5:73:
ae:3e:77:1d:ff:f1:28:6c:34:7b:29:67:40:88:d3:
31:78:06:54:94:81:eb:ae:70:d7:78:a8:c1:49:15:
23:6e:b8:5c:53:56:9b:f0:4a:eb:12:40:af:6b:b5:
36:0c:c5:80:7a:88:c1:04:3a:26:7c:a7:7b:a9:88:
97:2d:ff:c2:21:83:af:c3:93:7c:a2:a6:39:97:eb:
e4:47:c7:3b:b7:39:a5:36:9d:55:69:d1:60:0c:24:
fc:ff:e8:24:bd:e1:b0:0b:85:e7:8d:18:45:54:dc:
a6:88:96:24:dd:54:ab:18:7b:01:46:b7:fb:ae:e0:
2c:f7:b3:83:60:31:dc:f0:f7:91:ef:3d:6e:88:67:
08:70:09:96:a0:0c:5f:9d:18:35:73:50:fa:7e:da:
b0:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:88:37:16:9F:27:32:B5:BF:A4:28:76:2F:52:DE:94:40:FD:3C:88
X509v3 Authority Key Identifier:
keyid:DE:51:C3:C5:DD:C4:FB:61:38:1C:3B:EA:24:C1:BA:4F:74:99:8E:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3lHDxd3E-2E4HDvqJMG6T3SZjqs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/6de65e-04bd-4346-85b1-a5325d441702/1/sog3Fp8nMrW_pCh2L1LelED9PIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/6de65e-04bd-4346-85b1-a5325d441702/1/3lHDxd3E-2E4HDvqJMG6T3SZjqs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.38.176.0/21
185.71.200.0/22
185.242.96.0/22
188.247.136.0-188.247.159.255
194.38.44.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:67:81:93:42:d4:45:43:7c:92:5c:f1:8f:83:45:40:20:d5:
16:dc:0c:ba:36:8c:5c:3b:7a:da:fd:64:6b:19:9d:16:a3:8d:
11:fc:82:d4:11:c0:5a:38:1b:0b:fe:70:2f:22:f3:60:1c:a6:
26:ab:ad:60:d8:79:96:46:1e:dc:a7:95:d9:3e:0a:5a:b0:4f:
22:6d:90:f6:4c:25:6c:f8:1c:3d:59:99:1b:d1:86:20:61:ae:
62:fc:f0:4c:74:b3:01:8c:41:aa:18:87:82:7c:2b:82:0d:d8:
fd:90:ac:2c:6c:67:a4:4e:5b:d9:6e:43:eb:51:22:ef:2f:a4:
10:f7:c7:d2:b2:56:89:fa:7b:86:da:36:be:37:8d:84:2a:c1:
11:78:2b:bd:00:13:5a:5d:47:62:9d:82:8d:a6:38:b5:e3:7f:
d9:77:25:7f:47:22:81:34:1c:02:16:f6:15:27:f4:6e:02:1a:
1f:e0:2e:6e:a5:55:6c:ea:e4:83:ac:97:a6:2e:18:ab:2a:ce:
7f:7e:9f:df:33:f3:22:c3:0c:3a:c5:3d:d8:a7:d7:1e:0d:db:
21:ec:93:75:2e:a8:19:4d:fd:cf:49:91:05:a2:5f:52:69:2a:
4e:81:db:cc:67:e7:4e:13:02:5c:ef:5f:94:1f:e5:0e:47:ac:
83:7f:5a:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:07 2023 by rpki-client on console-fra.rpki-client.org