Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/n_rm7_ufLAP5av2zqiA68UZverM.roa
File: n_rm7_ufLAP5av2zqiA68UZverM.roa (raw, json)
Hash identifier: dfnK2W4SxHfacnpuldPaPKj7DRt2nDVg0WVllq7L338=
Subject key identifier: 9F:FA:E6:EF:FB:9F:2C:03:F9:6A:FD:B3:AA:20:3A:F1:46:6F:7A:B3
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 397EA446
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/n_rm7_ufLAP5av2zqiA68UZverM.roa
Signing time: Mon 28 Feb 2022 13:07:32 +0000
ROA not before: Mon 28 Feb 2022 13:07:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58224
IP address blocks: 212.16.71.0/24 maxlen: 24
212.16.78.0/24 maxlen: 24
212.16.80.0/24 maxlen: 24
212.16.79.0/24 maxlen: 24
212.16.85.0/24 maxlen: 24
212.16.89.0/24 maxlen: 24
212.16.87.0/24 maxlen: 24
212.16.86.0/24 maxlen: 24
212.16.94.0/24 maxlen: 24
212.16.92.0/23 maxlen: 24
185.29.220.0/22 maxlen: 24
212.80.4.0/24 maxlen: 24
212.80.2.0/24 maxlen: 24
212.80.0.0/24 maxlen: 24
212.80.10.0/24 maxlen: 24
212.80.9.0/24 maxlen: 24
212.80.8.0/24 maxlen: 24
212.80.7.0/24 maxlen: 24
212.80.6.0/24 maxlen: 24
212.80.24.0/24 maxlen: 24
212.80.22.0/23 maxlen: 24
212.80.20.0/23 maxlen: 23
212.80.18.0/23 maxlen: 24
212.80.29.0/24 maxlen: 24
185.24.149.0/24 maxlen: 24
185.24.151.0/24 maxlen: 24
185.24.150.0/24 maxlen: 24
46.38.136.0/22 maxlen: 24
46.38.144.0/22 maxlen: 22
46.38.143.0/24 maxlen: 24
46.38.142.0/24 maxlen: 24
46.38.141.0/24 maxlen: 24
46.38.152.0/22 maxlen: 24
46.38.148.0/22 maxlen: 24
46.38.158.0/24 maxlen: 24
46.38.156.0/24 maxlen: 24
46.38.132.0/22 maxlen: 24
46.38.130.0/24 maxlen: 24
46.38.128.0/24 maxlen: 24
109.94.165.0/24 maxlen: 24
109.94.164.0/24 maxlen: 24
185.143.74.0/23 maxlen: 23
185.143.72.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 964600902 (0x397ea446)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Feb 28 13:07:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ffae6effb9f2c03f96afdb3aa203af1466f7ab3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a8:a0:f1:2b:03:f9:6c:b1:fb:35:54:07:a6:
66:e2:6a:87:8a:d8:41:c0:d8:01:87:f4:43:f7:fa:
12:3b:a9:9d:c8:0f:03:4a:d3:56:2b:68:78:45:21:
af:eb:65:32:78:87:25:1e:53:b6:04:78:cf:ac:30:
ac:aa:21:53:49:88:e7:39:da:b7:f9:40:c5:2f:6f:
bf:fb:34:62:c7:61:77:36:fa:71:6f:a9:c7:cd:da:
5f:f8:3e:5f:79:8a:c5:48:f1:37:e0:7b:e3:9a:cd:
a3:70:46:bc:e7:b5:61:b6:4d:cc:96:33:ee:6c:a9:
9b:29:1f:ed:c2:ee:a9:6f:69:44:d3:79:24:a9:e7:
e7:44:7a:c4:7b:d5:a4:52:62:71:c7:f3:54:2c:f7:
f0:01:06:50:43:3f:65:3e:e6:d9:26:42:3f:2e:1a:
6f:24:eb:8c:b4:f9:8c:91:9d:23:c4:b9:46:9d:cd:
2c:a8:6d:2a:0d:91:98:8a:e6:df:c4:db:fb:f1:0e:
1f:50:84:46:04:12:46:fc:6e:0f:9d:08:b6:3c:4d:
30:8c:10:9b:93:8f:79:d7:ed:78:c8:73:17:1a:9d:
1b:6b:a6:07:28:71:3f:1d:b8:61:94:97:d7:f0:50:
be:be:66:f8:6e:c9:c2:9a:e9:14:d2:ad:bf:16:8b:
3b:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:FA:E6:EF:FB:9F:2C:03:F9:6A:FD:B3:AA:20:3A:F1:46:6F:7A:B3
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/n_rm7_ufLAP5av2zqiA68UZverM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.128.0/24
46.38.130.0/24
46.38.132.0-46.38.139.255
46.38.141.0-46.38.156.255
46.38.158.0/24
109.94.164.0/23
185.24.149.0-185.24.151.255
185.29.220.0/22
185.143.72.0/22
212.16.71.0/24
212.16.78.0-212.16.80.255
212.16.85.0-212.16.87.255
212.16.89.0/24
212.16.92.0-212.16.94.255
212.80.0.0/24
212.80.2.0/24
212.80.4.0/24
212.80.6.0-212.80.10.255
212.80.18.0-212.80.24.255
212.80.29.0/24
Signature Algorithm: sha256WithRSAEncryption
63:97:13:de:e8:03:75:5e:9f:8e:12:db:cc:a1:65:00:2d:a8:
60:b0:f4:ce:3e:2d:b0:ce:01:4f:b0:e8:31:f3:e2:39:ee:e9:
8d:76:5a:8b:c9:3c:f3:13:53:50:67:37:0a:8b:22:91:21:01:
dc:90:49:50:99:13:54:7b:eb:13:77:cc:57:be:37:33:f9:5a:
57:cf:66:65:3c:90:b0:fc:14:a7:8e:8b:a1:88:70:ab:37:ca:
bd:9b:c1:64:68:ab:9e:1c:5c:7a:55:0d:2d:7f:de:02:7a:f1:
13:32:1a:3e:85:47:6c:ed:e8:59:55:9b:4e:79:e8:c6:2d:7e:
5d:c1:49:39:a6:21:fc:48:e6:0e:18:00:b8:b9:fa:28:ba:f4:
e1:a9:7b:94:90:9f:64:92:da:54:a1:6b:15:83:76:ce:68:8f:
40:b1:16:ad:d8:d8:45:9a:c8:93:04:a2:db:a2:1b:8b:be:09:
c1:be:77:96:5c:5b:a5:19:e7:32:c7:56:20:d2:09:b0:63:6a:
7e:9d:31:97:96:f1:a4:d9:43:83:ab:f9:32:70:5b:eb:38:e3:
76:f6:1a:f7:94:ff:1f:2c:df:7f:06:15:d1:ae:73:42:f3:fb:
3a:a3:18:42:9d:df:30:11:e1:2e:c3:75:85:c3:96:0b:66:a4:
f8:d5:50:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:58 2023 by rpki-client on console-fra.rpki-client.org