Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/sJKg6iRQlPNGZF33GMDzmXRW9NE.roa
File: sJKg6iRQlPNGZF33GMDzmXRW9NE.roa (raw, json)
Hash identifier: QNED8HNm5vwSm3PLGtDdyP+eBnTLyLmyBZ6+pDIZoWw=
Subject key identifier: B0:92:A0:EA:24:50:94:F3:46:64:5D:F7:18:C0:F3:99:74:56:F4:D1
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 3A74E7EC
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/sJKg6iRQlPNGZF33GMDzmXRW9NE.roa
Signing time: Mon 30 May 2022 11:58:14 +0000
ROA not before: Mon 30 May 2022 11:58:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58224
IP address blocks: 212.16.71.0/24 maxlen: 24
212.16.78.0/24 maxlen: 24
212.16.80.0/24 maxlen: 24
212.16.79.0/24 maxlen: 24
212.16.85.0/24 maxlen: 24
212.16.89.0/24 maxlen: 24
212.16.87.0/24 maxlen: 24
212.16.86.0/24 maxlen: 24
212.16.94.0/24 maxlen: 24
212.16.92.0/23 maxlen: 24
185.29.220.0/22 maxlen: 24
212.80.4.0/24 maxlen: 24
212.80.2.0/24 maxlen: 24
212.80.0.0/24 maxlen: 24
212.80.6.0/24 maxlen: 24
212.80.20.0/23 maxlen: 23
185.24.149.0/24 maxlen: 24
185.24.151.0/24 maxlen: 24
185.24.150.0/24 maxlen: 24
46.38.143.0/24 maxlen: 24
46.38.142.0/24 maxlen: 24
46.38.152.0/22 maxlen: 24
46.38.158.0/24 maxlen: 24
46.38.156.0/24 maxlen: 24
46.38.130.0/24 maxlen: 24
46.38.128.0/24 maxlen: 24
109.94.165.0/24 maxlen: 24
109.94.164.0/24 maxlen: 24
185.143.74.0/23 maxlen: 23
185.143.72.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 980740076 (0x3a74e7ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: May 30 11:58:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b092a0ea245094f346645df718c0f3997456f4d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:49:7b:f8:4f:16:d3:ba:91:9d:4d:9f:ba:ce:
fc:34:29:30:f9:3d:46:5a:ed:61:cf:af:c8:e8:cb:
1e:d3:24:ac:5c:11:41:73:b7:70:54:38:75:e4:13:
10:e6:45:07:a3:f6:c6:f8:66:6d:b4:22:c9:ad:c4:
36:26:13:c7:03:7a:23:d9:ed:cc:cf:b7:a4:92:b5:
0b:fa:40:63:13:29:d5:d9:76:1e:0f:94:5b:2c:9a:
d8:b3:11:66:80:49:7c:63:8e:d0:27:13:f4:7e:63:
05:82:db:4a:24:f4:c2:9f:c0:ed:5d:fe:c4:07:65:
8c:49:7c:e8:9e:45:dd:fc:ab:c7:74:5a:ca:e0:14:
50:ae:3f:07:ed:12:d0:cf:c0:7b:5a:1d:23:05:e3:
00:01:8b:10:0b:32:a6:76:e7:97:9a:ed:25:fb:2c:
3a:5a:a5:12:15:94:46:d3:47:d3:86:08:cf:b2:44:
97:c1:93:c8:c9:34:2a:e9:0d:60:9e:df:42:25:af:
4d:df:20:a4:f5:5f:51:45:ab:4c:28:07:bd:f5:92:
89:1a:85:36:d1:d8:8b:ee:c8:f3:fc:d3:cf:1b:4d:
17:bf:db:95:da:df:5b:03:8c:9b:de:77:65:cc:bb:
e2:5e:79:f8:a2:d0:12:40:e6:45:a2:38:61:28:1f:
c1:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:92:A0:EA:24:50:94:F3:46:64:5D:F7:18:C0:F3:99:74:56:F4:D1
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/sJKg6iRQlPNGZF33GMDzmXRW9NE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.128.0/24
46.38.130.0/24
46.38.142.0/23
46.38.152.0-46.38.156.255
46.38.158.0/24
109.94.164.0/23
185.24.149.0-185.24.151.255
185.29.220.0/22
185.143.72.0/22
212.16.71.0/24
212.16.78.0-212.16.80.255
212.16.85.0-212.16.87.255
212.16.89.0/24
212.16.92.0-212.16.94.255
212.80.0.0/24
212.80.2.0/24
212.80.4.0/24
212.80.6.0/24
212.80.20.0/23
Signature Algorithm: sha256WithRSAEncryption
26:89:a2:fb:5b:5a:05:1e:93:0b:92:97:3c:20:51:57:31:25:
d4:15:53:e9:65:26:c3:76:7e:a9:db:e8:c3:f1:6b:18:3a:d8:
d7:fe:f5:0f:c8:10:61:18:5d:04:28:4a:ae:78:e0:6c:f1:13:
e7:a9:aa:0b:53:a1:94:0a:e1:10:d0:9e:1d:23:39:7e:66:8f:
42:24:86:bf:ed:97:38:4a:3e:e2:4b:af:60:fb:a1:7f:06:2e:
b6:d8:19:1f:6d:85:a1:f1:ad:a6:26:aa:5c:d7:66:bc:8c:36:
da:45:9b:e8:59:32:a0:16:49:0a:c8:fa:8c:cc:2b:99:c7:57:
e1:c1:8a:ba:ec:b4:7e:88:7c:84:2d:18:e4:9a:62:0d:c6:e9:
43:7b:11:9d:c2:f3:6e:5d:d6:e1:05:f5:3d:07:66:04:25:65:
02:68:6f:1f:ee:a7:c0:b7:86:c6:a3:9b:35:fb:69:b7:f5:b7:
28:e1:8d:60:8d:3e:77:d0:01:58:1b:8b:64:99:f3:42:5b:33:
fb:08:da:47:fb:68:98:f3:98:83:77:93:53:de:e8:f6:e5:57:
fd:b4:d9:59:5c:bd:43:aa:b4:a9:70:c3:91:ac:97:41:4e:df:
42:b2:21:81:ea:5a:8d:79:52:d8:a2:20:57:03:be:1f:10:b4:
22:c0:b9:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:58 2023 by rpki-client on console-fra.rpki-client.org