Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/QbhEnfy-JUiCRUj5_QcLxmiGaTU.roa
File: QbhEnfy-JUiCRUj5_QcLxmiGaTU.roa (raw, json)
Hash identifier: hNf9bhK0yexwcjN0axt9LhVWs0IokpQct5O8ALOgliY=
Subject key identifier: 41:B8:44:9D:FC:BE:25:48:82:45:48:F9:FD:07:0B:C6:68:86:69:35
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 01832B057C555AB5AFDC4744EC98172934A1
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/QbhEnfy-JUiCRUj5_QcLxmiGaTU.roa
Signing time: Sun 11 Sep 2022 05:28:43 +0000
ROA not before: Sun 11 Sep 2022 05:28:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58224
IP address blocks: 212.16.78.0/24 maxlen: 24
212.16.78.0/23 maxlen: 24
212.16.80.0/24 maxlen: 24
212.16.79.0/24 maxlen: 24
212.16.85.0/24 maxlen: 24
212.16.89.0/24 maxlen: 24
212.16.87.0/24 maxlen: 24
212.16.86.0/24 maxlen: 24
212.16.86.0/23 maxlen: 24
212.16.94.0/24 maxlen: 24
212.16.93.0/24 maxlen: 24
212.16.92.0/24 maxlen: 24
212.16.92.0/23 maxlen: 24
185.29.220.0/22 maxlen: 24
212.80.0.0/24 maxlen: 24
212.80.11.0/24 maxlen: 24
212.80.10.0/24 maxlen: 24
212.80.9.0/24 maxlen: 24
212.80.8.0/24 maxlen: 24
212.80.8.0/22 maxlen: 24
212.80.7.0/24 maxlen: 24
212.80.6.0/23 maxlen: 24
212.80.6.0/24 maxlen: 24
212.80.24.0/24 maxlen: 24
212.80.23.0/24 maxlen: 24
212.80.22.0/24 maxlen: 24
212.80.21.0/24 maxlen: 24
212.80.20.0/24 maxlen: 24
212.80.20.0/22 maxlen: 24
212.80.19.0/24 maxlen: 24
212.80.18.0/24 maxlen: 24
212.80.18.0/23 maxlen: 24
212.80.29.0/24 maxlen: 24
185.143.74.0/23 maxlen: 23
185.143.72.0/23 maxlen: 23
185.143.72.0/22 maxlen: 24
185.24.148.0/22 maxlen: 24
46.38.136.0/22 maxlen: 24
46.38.144.0/21 maxlen: 24
46.38.143.0/24 maxlen: 24
46.38.142.0/24 maxlen: 24
46.38.142.0/23 maxlen: 24
46.38.141.0/24 maxlen: 24
46.38.152.0/22 maxlen: 24
46.38.158.0/24 maxlen: 24
46.38.157.0/24 maxlen: 24
46.38.156.0/24 maxlen: 24
46.38.156.0/23 maxlen: 24
46.38.132.0/22 maxlen: 24
46.38.130.0/24 maxlen: 24
46.38.128.0/24 maxlen: 24
109.94.165.0/24 maxlen: 24
109.94.164.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:2b:05:7c:55:5a:b5:af:dc:47:44:ec:98:17:29:34:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Sep 11 05:28:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=41b8449dfcbe2548824548f9fd070bc668866935
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:4c:62:7c:27:ef:db:1a:ad:b1:c8:4b:03:cd:
16:28:b6:60:a4:72:7b:f0:3d:25:81:f8:55:07:a0:
b9:f0:96:d5:05:92:17:2f:24:13:9c:46:98:91:2d:
dd:a9:c3:be:6f:a9:45:82:c9:a9:3d:f6:15:5c:bf:
df:4f:e2:1e:60:8b:0d:5a:58:74:e6:4e:bf:a7:38:
14:25:c8:92:18:5b:8a:fa:30:12:9c:c1:81:42:c7:
a2:0b:6f:7a:38:20:02:22:3b:25:35:e1:2f:fd:8a:
f2:a5:50:19:ed:c8:0f:de:39:b3:30:aa:a1:80:c2:
a8:94:8d:84:1f:49:54:1d:81:c6:7e:8c:62:93:63:
b3:94:be:7d:2e:01:74:47:38:4c:ae:bf:52:eb:80:
9f:99:02:58:60:bc:54:28:82:1a:14:e5:c7:0e:de:
67:47:fd:78:d5:b6:22:e6:bc:37:40:e8:62:60:47:
2f:0e:a5:2f:f1:23:fa:7d:5c:05:02:15:ba:74:29:
5b:9e:4d:bf:f5:20:c4:66:3f:90:6d:73:73:d8:b0:
d9:9f:c1:1d:33:47:2e:2b:f5:f6:78:a6:00:76:bc:
85:a8:81:ce:82:12:e1:58:7e:a3:7e:06:11:e2:a3:
6b:6a:69:e2:df:a9:d4:22:bd:5b:1a:58:e3:d9:ef:
4d:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:B8:44:9D:FC:BE:25:48:82:45:48:F9:FD:07:0B:C6:68:86:69:35
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/QbhEnfy-JUiCRUj5_QcLxmiGaTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.128.0/24
46.38.130.0/24
46.38.132.0-46.38.139.255
46.38.141.0-46.38.158.255
109.94.164.0/23
185.24.148.0/22
185.29.220.0/22
185.143.72.0/22
212.16.78.0-212.16.80.255
212.16.85.0-212.16.87.255
212.16.89.0/24
212.16.92.0-212.16.94.255
212.80.0.0/24
212.80.6.0-212.80.11.255
212.80.18.0-212.80.24.255
212.80.29.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:47:1e:43:c0:80:cc:16:f7:dc:29:14:2a:60:cd:56:d1:5b:
66:d1:2d:62:11:3b:f0:05:37:92:57:73:12:d3:b9:de:a4:ed:
74:e9:e0:c0:25:95:07:c2:ec:46:07:34:9a:ed:03:1b:0b:52:
d0:1d:c7:51:75:b5:3d:12:66:75:d8:d0:2e:e5:da:e9:72:ca:
da:dd:e4:1d:2e:d9:b3:85:e2:0c:9f:65:39:b6:5a:56:2d:bc:
11:42:ba:04:47:b5:ed:b5:f8:7f:e6:f5:68:c3:e3:fe:36:fb:
5c:d3:c0:93:33:6c:d5:30:dd:d6:73:9f:a6:b7:dc:5d:f0:b9:
6e:98:a9:be:b0:c7:cc:79:08:b2:48:a8:c4:0a:7f:23:67:f0:
88:dd:33:79:9a:61:3a:4c:07:75:87:0b:68:43:fa:d2:1d:82:
01:ac:57:6e:61:33:18:d3:ad:5f:a3:e2:3a:8a:67:55:9e:bd:
d1:9b:dc:25:b4:02:a3:29:ec:b5:5c:7c:bd:11:16:dc:0a:f2:
c9:c4:f5:2d:61:c6:7b:af:1f:e9:09:cd:be:51:96:b5:41:f8:
32:36:f2:37:7d:f0:67:67:c2:42:df:2f:6b:08:fb:2a:be:3c:
9d:41:06:a3:78:d4:8b:28:0f:98:f0:ee:12:a9:a4:cd:3b:31:
fc:a5:00:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:40 2023 by rpki-client on console-ams.rpki-client.org