Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/dEoI5wPN50CxEzAkG29jMsfvolA.roa
File: dEoI5wPN50CxEzAkG29jMsfvolA.roa (raw, json)
Hash identifier: y2uVJdmdLodjcQvaIlqclIwb9IBzF67d/ZBka//ngnQ=
Subject key identifier: 74:4A:08:E7:03:CD:E7:40:B1:13:30:24:1B:6F:63:32:C7:EF:A2:50
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 11B6A123
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/dEoI5wPN50CxEzAkG29jMsfvolA.roa
Signing time: Wed 02 Mar 2022 08:10:20 +0000
ROA not before: Wed 02 Mar 2022 08:10:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48309
IP address blocks: 37.191.92.0/22 maxlen: 22
37.191.64.0/22 maxlen: 22
37.191.68.0/22 maxlen: 22
37.191.74.0/24 maxlen: 24
37.191.72.0/22 maxlen: 22
37.191.76.0/22 maxlen: 22
37.191.80.0/21 maxlen: 21
37.191.88.0/22 maxlen: 22
188.136.161.0/24 maxlen: 24
188.136.163.0/24 maxlen: 24
188.136.165.0/24 maxlen: 24
188.136.160.0/24 maxlen: 24
188.136.162.0/24 maxlen: 24
188.136.164.0/24 maxlen: 24
188.136.166.0/24 maxlen: 24
188.136.167.0/24 maxlen: 24
188.136.169.0/24 maxlen: 24
188.136.171.0/24 maxlen: 24
188.136.168.0/24 maxlen: 24
188.136.170.0/24 maxlen: 24
188.136.172.0/24 maxlen: 24
188.136.173.0/24 maxlen: 24
188.136.175.0/24 maxlen: 24
188.136.176.0/21 maxlen: 21
188.136.185.0/24 maxlen: 24
188.136.184.0/24 maxlen: 24
188.136.186.0/24 maxlen: 24
188.136.192.0/23 maxlen: 23
188.136.187.0/24 maxlen: 24
188.136.188.0/24 maxlen: 24
188.136.190.0/24 maxlen: 24
188.136.189.0/24 maxlen: 24
188.136.191.0/24 maxlen: 24
188.136.194.0/24 maxlen: 24
188.136.196.0/24 maxlen: 24
188.136.196.0/22 maxlen: 22
188.136.195.0/24 maxlen: 24
188.136.200.0/24 maxlen: 24
188.136.202.0/24 maxlen: 24
188.136.204.0/24 maxlen: 24
188.136.206.0/24 maxlen: 24
188.136.201.0/24 maxlen: 24
188.136.203.0/24 maxlen: 24
188.136.205.0/24 maxlen: 24
188.136.208.0/24 maxlen: 24
188.136.210.0/24 maxlen: 24
188.136.212.0/24 maxlen: 24
188.136.207.0/24 maxlen: 24
188.136.209.0/24 maxlen: 24
188.136.211.0/24 maxlen: 24
188.136.213.0/24 maxlen: 24
188.136.129.0/24 maxlen: 24
188.136.131.0/24 maxlen: 24
188.136.128.0/24 maxlen: 24
188.136.130.0/24 maxlen: 24
188.136.132.0/24 maxlen: 24
188.136.133.0/24 maxlen: 24
188.136.135.0/24 maxlen: 24
188.136.134.0/24 maxlen: 24
188.136.141.0/24 maxlen: 24
188.136.143.0/24 maxlen: 24
188.136.145.0/24 maxlen: 24
188.136.144.0/22 maxlen: 22
188.136.140.0/24 maxlen: 24
188.136.142.0/24 maxlen: 24
188.136.144.0/24 maxlen: 24
31.25.104.0/22 maxlen: 22
188.136.149.0/24 maxlen: 24
188.136.147.0/24 maxlen: 24
188.136.151.0/24 maxlen: 24
31.25.108.0/24 maxlen: 24
31.25.110.0/23 maxlen: 23
188.136.146.0/24 maxlen: 24
188.136.150.0/24 maxlen: 24
188.136.152.0/24 maxlen: 24
31.25.109.0/24 maxlen: 24
188.136.153.0/24 maxlen: 24
188.136.155.0/24 maxlen: 24
188.136.157.0/24 maxlen: 24
188.136.159.0/24 maxlen: 24
188.136.154.0/24 maxlen: 24
188.136.156.0/24 maxlen: 24
188.136.158.0/24 maxlen: 24
188.136.214.0/24 maxlen: 24
188.136.216.0/22 maxlen: 22
188.136.215.0/24 maxlen: 24
188.136.220.0/24 maxlen: 24
188.136.222.0/24 maxlen: 24
188.136.221.0/24 maxlen: 24
188.136.223.0/24 maxlen: 24
185.85.68.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 297181475 (0x11b6a123)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Mar 2 08:10:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=744a08e703cde740b11330241b6f6332c7efa250
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:cf:13:3a:be:85:c7:4e:4e:f5:47:59:36:d0:
df:9e:af:16:4a:28:7a:d6:98:7a:33:9d:77:96:f7:
27:0a:ab:89:18:df:63:3e:9d:8c:d7:c6:c2:b6:07:
10:08:00:41:37:a5:92:c8:67:f9:50:16:2c:4c:4b:
8d:63:6b:80:7f:d2:47:ff:c9:87:e2:c0:49:a2:eb:
81:55:7d:35:59:2e:59:ad:80:fb:f9:e4:2d:54:b2:
8f:10:b8:1f:5d:f5:7e:c9:df:af:db:8f:b1:7e:aa:
60:f7:5c:2f:a4:9d:2b:72:9d:4a:29:68:3f:54:11:
a3:22:c7:33:85:0e:f6:b2:ec:98:36:eb:33:9f:8c:
cd:fe:76:96:11:78:c3:2e:6e:cb:62:42:6b:55:5a:
90:16:83:e6:c9:a8:37:fd:c8:31:9b:1e:16:bf:96:
1d:e7:c3:15:28:59:04:55:50:fa:48:8e:2a:c2:e3:
ac:4c:61:ff:ff:07:53:af:03:2f:78:fc:4d:10:0b:
7c:2a:45:77:a0:52:9f:4d:ba:6e:0e:1b:6c:8a:9b:
aa:da:bb:53:7c:23:9d:60:f3:70:5b:c3:4b:1a:12:
95:7c:b5:9b:dc:7a:bf:6b:d8:fd:7e:e8:ca:6c:a5:
d2:1b:42:56:2a:d4:ba:d7:6f:6f:22:bc:92:c2:8c:
da:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:4A:08:E7:03:CD:E7:40:B1:13:30:24:1B:6F:63:32:C7:EF:A2:50
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/dEoI5wPN50CxEzAkG29jMsfvolA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.104.0/21
37.191.64.0/19
185.85.68.0/22
188.136.128.0/21
188.136.140.0-188.136.147.255
188.136.149.0-188.136.173.255
188.136.175.0-188.136.223.255
Signature Algorithm: sha256WithRSAEncryption
5f:70:ef:b4:37:65:83:19:d4:52:99:2a:6f:f1:84:38:ce:f6:
1b:83:50:35:06:f9:73:9d:f1:47:01:61:df:90:87:bc:6b:fc:
55:52:dd:fe:d1:21:60:fd:a8:87:f3:3a:d7:e1:d0:da:1b:4e:
e4:6f:3e:73:e8:5d:0f:af:57:64:e9:ef:2c:42:ab:82:c9:b6:
fe:dd:29:bf:ef:ea:28:67:34:ff:af:bf:2c:f7:57:71:0c:cb:
ce:79:55:e8:df:3f:93:ea:03:93:3d:e2:b6:8b:a6:81:9b:55:
fa:5f:15:0f:bf:2c:7c:1a:a0:0d:2e:cd:34:26:40:1b:5e:2c:
99:ed:e6:60:58:56:9b:ad:a7:6a:12:f0:35:fc:74:10:99:a7:
b8:d8:40:3c:96:cc:1f:59:73:52:bf:1e:c6:f9:7d:24:a9:03:
80:6f:bf:fc:ac:41:d7:11:4c:34:08:c3:7d:58:da:0e:fb:5e:
20:20:29:e5:09:5e:0a:68:43:d4:aa:4f:4f:68:85:76:39:51:
85:7c:e5:24:4b:97:5a:73:79:94:a8:5e:64:d2:82:0c:a6:8b:
7f:9a:7d:34:d2:12:cc:ac:e4:66:7b:99:e2:c8:35:e8:ea:b0:
a9:e7:bf:a9:be:c1:fc:98:2c:c9:10:59:a6:39:e5:68:41:c0:
ca:eb:4e:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:02 2024 by rpki-client on console-fra.rpki-client.org