Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/jmr5Xzybk5fbn5s2YTY6xi37glo.roa
File: jmr5Xzybk5fbn5s2YTY6xi37glo.roa (raw, json)
Hash identifier: JP0EkYa+4qhkoZyrisNdt1ZrKsZ2a4OvuxVbhCEZqhs=
Subject key identifier: 8E:6A:F9:5F:3C:9B:93:97:DB:9F:9B:36:61:36:3A:C6:2D:FB:82:5A
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 01847FE5758EF05F6624E4CBC95B267DE82C
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/jmr5Xzybk5fbn5s2YTY6xi37glo.roa
Signing time: Wed 16 Nov 2022 10:04:14 +0000
ROA not before: Wed 16 Nov 2022 10:04:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48309
IP address blocks: 37.191.92.0/22 maxlen: 22
37.191.64.0/22 maxlen: 22
37.191.68.0/22 maxlen: 22
37.191.74.0/24 maxlen: 24
37.191.72.0/22 maxlen: 22
37.191.76.0/22 maxlen: 22
37.191.80.0/21 maxlen: 24
37.191.88.0/22 maxlen: 22
188.136.161.0/24 maxlen: 24
188.136.163.0/24 maxlen: 24
188.136.165.0/24 maxlen: 24
188.136.160.0/24 maxlen: 24
188.136.162.0/24 maxlen: 24
188.136.164.0/24 maxlen: 24
188.136.166.0/24 maxlen: 24
188.136.167.0/24 maxlen: 24
188.136.169.0/24 maxlen: 24
188.136.171.0/24 maxlen: 24
188.136.168.0/24 maxlen: 24
188.136.170.0/24 maxlen: 24
188.136.172.0/24 maxlen: 24
188.136.173.0/24 maxlen: 24
188.136.175.0/24 maxlen: 24
188.136.176.0/21 maxlen: 21
188.136.174.0/24 maxlen: 24
188.136.185.0/24 maxlen: 24
188.136.184.0/24 maxlen: 24
188.136.186.0/24 maxlen: 24
188.136.192.0/23 maxlen: 23
188.136.187.0/24 maxlen: 24
188.136.188.0/24 maxlen: 24
188.136.190.0/24 maxlen: 24
188.136.189.0/24 maxlen: 24
188.136.191.0/24 maxlen: 24
188.136.194.0/24 maxlen: 24
188.136.196.0/24 maxlen: 24
188.136.196.0/22 maxlen: 22
188.136.195.0/24 maxlen: 24
188.136.200.0/24 maxlen: 24
188.136.202.0/24 maxlen: 24
188.136.204.0/24 maxlen: 24
188.136.206.0/24 maxlen: 24
188.136.201.0/24 maxlen: 24
188.136.203.0/24 maxlen: 24
188.136.205.0/24 maxlen: 24
188.136.208.0/24 maxlen: 24
188.136.210.0/24 maxlen: 24
188.136.212.0/24 maxlen: 24
188.136.207.0/24 maxlen: 24
188.136.209.0/24 maxlen: 24
188.136.211.0/24 maxlen: 24
188.136.213.0/24 maxlen: 24
188.136.129.0/24 maxlen: 24
188.136.131.0/24 maxlen: 24
188.136.128.0/24 maxlen: 24
188.136.130.0/24 maxlen: 24
188.136.132.0/24 maxlen: 24
188.136.133.0/24 maxlen: 24
188.136.135.0/24 maxlen: 24
188.136.134.0/24 maxlen: 24
188.136.141.0/24 maxlen: 24
188.136.143.0/24 maxlen: 24
188.136.145.0/24 maxlen: 24
188.136.144.0/22 maxlen: 22
188.136.140.0/24 maxlen: 24
188.136.142.0/24 maxlen: 24
188.136.144.0/24 maxlen: 24
31.25.104.0/22 maxlen: 22
188.136.149.0/24 maxlen: 24
188.136.147.0/24 maxlen: 24
188.136.151.0/24 maxlen: 24
31.25.108.0/24 maxlen: 24
31.25.110.0/23 maxlen: 23
188.136.146.0/24 maxlen: 24
188.136.150.0/24 maxlen: 24
188.136.152.0/24 maxlen: 24
31.25.109.0/24 maxlen: 24
188.136.153.0/24 maxlen: 24
188.136.155.0/24 maxlen: 24
188.136.157.0/24 maxlen: 24
188.136.159.0/24 maxlen: 24
188.136.154.0/24 maxlen: 24
188.136.156.0/24 maxlen: 24
188.136.158.0/24 maxlen: 24
188.136.214.0/24 maxlen: 24
188.136.216.0/22 maxlen: 22
188.136.215.0/24 maxlen: 24
188.136.220.0/24 maxlen: 24
188.136.222.0/24 maxlen: 24
188.136.223.0/24 maxlen: 24
185.85.68.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7f:e5:75:8e:f0:5f:66:24:e4:cb:c9:5b:26:7d:e8:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Nov 16 10:04:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e6af95f3c9b9397db9f9b3661363ac62dfb825a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:7f:f2:0d:7b:95:75:ea:61:f7:0c:fe:f7:22:
95:c2:6e:61:e8:05:74:e3:f3:c9:a0:af:15:97:9e:
6d:ea:90:ac:97:a6:d6:2f:f4:13:9e:95:6d:c6:05:
d1:38:77:bd:9c:8c:36:4a:b9:e1:a7:c6:f4:be:8c:
66:bc:99:4f:83:bb:12:c1:91:f0:ab:64:cf:ca:ae:
53:c8:29:39:c1:9c:f4:ef:20:07:23:94:a4:ef:f6:
1d:eb:a7:1d:08:57:43:88:05:20:8f:ba:b8:5a:4c:
83:21:fd:ef:26:a2:f6:3d:46:17:0b:e9:c3:55:ad:
56:c3:cf:4a:0c:43:fa:5c:c1:f1:30:ef:6c:95:20:
54:69:80:19:82:71:1f:1c:62:98:fc:d6:bb:83:63:
11:b0:7e:8a:d8:51:8f:3e:b0:96:ed:77:1d:31:ed:
b7:f7:d8:9b:d4:2b:ca:a4:f8:92:57:a8:5b:09:3e:
c2:50:77:7b:61:5d:0c:83:02:f6:e0:69:4a:18:da:
a2:e2:a3:f0:6b:8d:60:5a:7d:ad:66:a0:12:a9:09:
a7:c8:cf:d9:18:28:4a:99:7e:1c:58:15:85:66:75:
dd:02:a3:07:4f:49:1f:c9:1e:74:3b:96:eb:f7:9e:
d3:78:6a:fe:0d:78:d4:39:02:06:58:c2:50:c6:5f:
45:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:6A:F9:5F:3C:9B:93:97:DB:9F:9B:36:61:36:3A:C6:2D:FB:82:5A
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/jmr5Xzybk5fbn5s2YTY6xi37glo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.104.0/21
37.191.64.0/19
185.85.68.0/22
188.136.128.0/21
188.136.140.0-188.136.147.255
188.136.149.0-188.136.220.255
188.136.222.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:b1:a3:55:9e:8e:69:0b:7f:c1:4b:aa:d7:e8:a3:70:3c:3c:
3a:bf:2e:19:9a:f3:e4:61:4f:a5:77:87:02:08:97:50:37:e3:
fe:ff:d5:7f:f5:52:d2:07:08:cc:0d:95:05:f9:82:f1:cd:aa:
4d:0a:11:5d:22:cd:51:fc:84:a4:4f:28:9c:40:64:d0:66:8a:
25:8d:70:9e:eb:cb:6c:c2:f7:58:a1:43:76:33:c8:a7:d4:78:
eb:5b:51:cf:d4:46:f1:64:a2:f3:9d:34:fd:5a:d2:58:d7:54:
1d:b0:76:58:8b:ec:4f:e9:8a:e7:36:c0:4e:21:30:ba:f0:35:
a0:0f:98:f1:73:91:9a:13:78:24:5e:ac:0f:19:51:ad:70:34:
d6:37:29:2c:12:a3:c9:8d:45:ea:82:df:f6:33:fc:4e:e0:44:
7d:e3:2d:de:b8:9d:c8:0f:af:76:be:38:27:bf:6d:ae:c1:e3:
34:03:80:5c:2b:3e:76:38:f3:78:1f:02:7f:c2:da:b9:d8:39:
ab:f2:f5:32:3c:69:3d:50:bb:b4:6c:5a:7e:9f:8e:b1:44:36:
27:a6:c8:96:b9:f8:2c:b4:e2:d9:1f:18:19:bd:63:07:e2:39:
7e:f5:1a:75:5e:fc:66:47:11:8b:53:e7:e4:24:08:1a:b5:c2:
5a:87:6f:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:02 2024 by rpki-client on console-fra.rpki-client.org