Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/ycOa91bOlVBiOjH6rB25R9Qla6c.roa
File: ycOa91bOlVBiOjH6rB25R9Qla6c.roa (raw, json)
Hash identifier: mq7U7Q5bnWx6I8GCpObR91kmV53yIrk3rV1DLNJPeno=
Subject key identifier: C9:C3:9A:F7:56:CE:95:50:62:3A:31:FA:AC:1D:B9:47:D4:25:6B:A7
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 111AF47E
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/ycOa91bOlVBiOjH6rB25R9Qla6c.roa
Signing time: Sat 01 Jan 2022 14:04:43 +0000
ROA not before: Sat 01 Jan 2022 14:04:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48309
IP address blocks: 37.191.92.0/22 maxlen: 22
37.191.64.0/22 maxlen: 22
37.191.68.0/22 maxlen: 22
37.191.74.0/24 maxlen: 24
37.191.72.0/22 maxlen: 22
37.191.76.0/22 maxlen: 22
37.191.80.0/21 maxlen: 21
37.191.88.0/22 maxlen: 22
188.136.161.0/24 maxlen: 24
188.136.163.0/24 maxlen: 24
188.136.165.0/24 maxlen: 24
188.136.160.0/24 maxlen: 24
188.136.162.0/24 maxlen: 24
188.136.164.0/24 maxlen: 24
188.136.166.0/24 maxlen: 24
188.136.167.0/24 maxlen: 24
188.136.169.0/24 maxlen: 24
188.136.171.0/24 maxlen: 24
188.136.168.0/24 maxlen: 24
188.136.170.0/24 maxlen: 24
188.136.172.0/24 maxlen: 24
188.136.173.0/24 maxlen: 24
188.136.176.0/21 maxlen: 21
188.136.185.0/24 maxlen: 24
188.136.184.0/24 maxlen: 24
188.136.186.0/24 maxlen: 24
188.136.187.0/24 maxlen: 24
188.136.188.0/24 maxlen: 24
188.136.190.0/24 maxlen: 24
188.136.189.0/24 maxlen: 24
188.136.191.0/24 maxlen: 24
188.136.196.0/24 maxlen: 24
188.136.196.0/22 maxlen: 22
188.136.195.0/24 maxlen: 24
188.136.200.0/24 maxlen: 24
188.136.202.0/24 maxlen: 24
188.136.204.0/24 maxlen: 24
188.136.206.0/24 maxlen: 24
188.136.201.0/24 maxlen: 24
188.136.203.0/24 maxlen: 24
188.136.205.0/24 maxlen: 24
188.136.208.0/24 maxlen: 24
188.136.210.0/24 maxlen: 24
188.136.212.0/24 maxlen: 24
188.136.207.0/24 maxlen: 24
188.136.209.0/24 maxlen: 24
188.136.211.0/24 maxlen: 24
188.136.213.0/24 maxlen: 24
188.136.129.0/24 maxlen: 24
188.136.131.0/24 maxlen: 24
188.136.128.0/24 maxlen: 24
188.136.130.0/24 maxlen: 24
188.136.132.0/24 maxlen: 24
188.136.133.0/24 maxlen: 24
188.136.135.0/24 maxlen: 24
188.136.134.0/24 maxlen: 24
188.136.141.0/24 maxlen: 24
188.136.143.0/24 maxlen: 24
188.136.145.0/24 maxlen: 24
188.136.140.0/24 maxlen: 24
188.136.142.0/24 maxlen: 24
188.136.144.0/24 maxlen: 24
31.25.104.0/22 maxlen: 22
188.136.149.0/24 maxlen: 24
188.136.147.0/24 maxlen: 24
188.136.151.0/24 maxlen: 24
31.25.108.0/24 maxlen: 24
31.25.110.0/23 maxlen: 23
188.136.146.0/24 maxlen: 24
188.136.150.0/24 maxlen: 24
188.136.152.0/24 maxlen: 24
31.25.109.0/24 maxlen: 24
188.136.153.0/24 maxlen: 24
188.136.155.0/24 maxlen: 24
188.136.157.0/24 maxlen: 24
188.136.159.0/24 maxlen: 24
188.136.154.0/24 maxlen: 24
188.136.156.0/24 maxlen: 24
188.136.158.0/24 maxlen: 24
188.136.214.0/24 maxlen: 24
188.136.216.0/22 maxlen: 22
188.136.215.0/24 maxlen: 24
188.136.220.0/24 maxlen: 24
188.136.222.0/24 maxlen: 24
188.136.221.0/24 maxlen: 24
188.136.223.0/24 maxlen: 24
185.85.68.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 286979198 (0x111af47e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Jan 1 14:04:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c9c39af756ce9550623a31faac1db947d4256ba7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:32:8f:19:a4:76:d8:e0:96:a9:5f:48:c2:eb:
4f:8a:f3:ee:bd:43:8f:fe:1f:fa:19:e0:0c:f2:de:
73:93:50:c8:be:de:7c:39:b1:14:23:54:00:59:ce:
ee:01:00:89:6d:97:50:92:22:d7:23:3f:cd:e6:ac:
35:53:51:0f:9e:ec:9b:e6:05:6c:bf:41:56:31:32:
3b:8e:a1:f1:51:4c:0a:65:02:fe:a5:c3:f4:cc:e4:
67:76:11:2c:52:fd:8c:9b:e3:15:3c:5d:99:aa:9e:
c9:3d:5d:de:60:7c:0e:ea:e1:96:d1:9c:90:4c:eb:
35:29:cb:f3:b8:c9:34:81:44:29:48:97:62:30:25:
32:dd:c6:b7:04:df:85:08:f9:15:b1:9b:bb:6a:9c:
1f:96:78:70:38:e2:d7:14:a7:eb:7d:39:56:fc:a5:
d7:b3:d2:18:66:17:b2:3e:57:8b:cd:1b:a3:29:2e:
0b:fb:54:27:43:95:9b:4e:56:9e:17:87:ed:d7:21:
38:e9:9c:06:79:de:46:3f:32:19:f1:bd:ba:aa:52:
79:73:d3:15:e2:63:04:40:0c:a2:93:3e:df:d8:05:
03:c4:cb:f9:e2:ad:dc:8f:a4:45:86:46:63:32:dd:
65:1a:8d:d1:ce:f9:8b:64:df:01:f1:99:d2:76:6c:
22:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:C3:9A:F7:56:CE:95:50:62:3A:31:FA:AC:1D:B9:47:D4:25:6B:A7
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/ycOa91bOlVBiOjH6rB25R9Qla6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.104.0/21
37.191.64.0/19
185.85.68.0/22
188.136.128.0/21
188.136.140.0-188.136.147.255
188.136.149.0-188.136.173.255
188.136.176.0/20
188.136.195.0-188.136.223.255
Signature Algorithm: sha256WithRSAEncryption
89:ec:43:78:ac:f0:57:4f:93:8a:e9:9c:84:51:7f:fb:83:38:
f8:e3:ef:ae:46:a8:7d:73:f1:df:16:46:e3:9e:e3:a6:83:c2:
84:f9:39:a6:f4:b9:9d:80:78:78:e0:30:f2:e2:35:f2:03:9a:
e3:6a:13:ff:f6:41:33:61:6b:f9:29:5a:9c:36:bf:a4:c5:41:
c6:6b:de:d3:1b:d8:0e:b7:35:43:a4:b1:f9:97:55:45:18:9a:
14:e6:43:94:f4:15:8b:f9:16:1c:ee:d4:f3:d1:5a:1d:80:af:
9f:79:87:95:41:cd:82:6e:67:7a:23:45:5c:47:f6:69:c0:5e:
26:b1:d9:5a:90:5b:89:be:40:6b:2a:1f:e4:5a:d0:1c:21:61:
4d:a6:fb:94:c4:3f:11:30:c6:dc:70:59:d0:bd:c7:63:10:9a:
a9:b2:93:ec:2d:c2:36:6d:8b:c1:f6:0c:99:4d:4b:c3:99:2c:
cb:26:2b:cd:df:a4:e7:a2:76:22:a2:73:36:00:cc:1b:15:b9:
b3:97:58:01:8c:5a:04:43:ba:a9:8e:54:11:3a:e9:03:30:b5:
4a:07:7c:55:30:fc:11:56:88:09:2a:be:c2:90:db:45:46:17:
17:79:a2:d5:26:02:04:78:07:93:ca:ed:be:d1:bd:80:0d:47:
ed:26:c3:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:06 2024 by rpki-client on console-ams.rpki-client.org