Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/365c3f-415e-4cd5-9a4b-66d3a89152ac/1/J7aHP321XH_ngycpUZcVbxVWvmk.roa
File: J7aHP321XH_ngycpUZcVbxVWvmk.roa (raw, json)
Hash identifier: uBtxYXlHh4CFXTq2WhevXrPNJB21h1UMynToUK7+6No=
Subject key identifier: 27:B6:87:3F:7D:B5:5C:7F:E7:83:27:29:51:97:15:6F:15:56:BE:69
Certificate issuer: /CN=e74ee1868f96dd37a6b81cb1f6d28d6c2f7e746f
Certificate serial: 3468C750
Authority key identifier: E7:4E:E1:86:8F:96:DD:37:A6:B8:1C:B1:F6:D2:8D:6C:2F:7E:74:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/507hho-W3TemuByx9tKNbC9-dG8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/365c3f-415e-4cd5-9a4b-66d3a89152ac/1/J7aHP321XH_ngycpUZcVbxVWvmk.roa
Signing time: Sat 01 Jan 2022 13:01:02 +0000
ROA not before: Sat 01 Jan 2022 13:01:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31463
IP address blocks: 185.167.231.0/24 maxlen: 24
185.167.230.0/24 maxlen: 24
185.167.229.0/24 maxlen: 24
185.167.228.0/22 maxlen: 24
185.167.228.0/24 maxlen: 24
109.74.21.0/24 maxlen: 24
109.74.20.0/22 maxlen: 22
109.74.22.0/24 maxlen: 24
185.160.165.0/24 maxlen: 24
185.160.164.0/24 maxlen: 24
185.160.164.0/22 maxlen: 22
185.160.167.0/24 maxlen: 24
45.140.139.0/24 maxlen: 24
45.140.137.0/24 maxlen: 24
45.140.136.0/24 maxlen: 24
45.140.136.0/22 maxlen: 22
45.140.138.0/24 maxlen: 24
94.228.36.0/24 maxlen: 24
94.228.35.0/24 maxlen: 24
94.228.38.0/24 maxlen: 24
94.228.37.0/24 maxlen: 24
94.228.32.0/20 maxlen: 24
94.228.32.0/24 maxlen: 24
94.228.34.0/24 maxlen: 24
94.228.33.0/24 maxlen: 24
94.228.39.0/24 maxlen: 24
94.228.41.0/24 maxlen: 24
94.228.40.0/24 maxlen: 24
94.228.43.0/24 maxlen: 24
94.228.42.0/24 maxlen: 24
94.228.44.0/24 maxlen: 24
94.228.46.0/24 maxlen: 24
94.228.45.0/24 maxlen: 24
94.228.47.0/24 maxlen: 24
185.4.130.0/24 maxlen: 24
185.4.129.0/24 maxlen: 24
185.4.131.0/24 maxlen: 24
185.4.128.0/22 maxlen: 24
185.4.128.0/24 maxlen: 24
79.99.64.0/21 maxlen: 24
79.99.64.0/24 maxlen: 24
79.99.69.0/24 maxlen: 24
79.99.71.0/24 maxlen: 24
79.99.70.0/24 maxlen: 24
79.99.66.0/24 maxlen: 24
79.99.65.0/24 maxlen: 24
79.99.68.0/24 maxlen: 24
79.99.67.0/24 maxlen: 24
178.17.35.0/24 maxlen: 24
178.17.37.0/24 maxlen: 24
178.17.36.0/24 maxlen: 24
178.17.32.0/24 maxlen: 24
178.17.34.0/24 maxlen: 24
178.17.33.0/24 maxlen: 24
178.17.32.0/20 maxlen: 24
178.17.38.0/24 maxlen: 24
178.17.42.0/24 maxlen: 24
178.17.44.0/24 maxlen: 24
178.17.43.0/24 maxlen: 24
178.17.39.0/24 maxlen: 24
178.17.41.0/24 maxlen: 24
178.17.40.0/24 maxlen: 24
178.17.46.0/24 maxlen: 24
178.17.45.0/24 maxlen: 24
178.17.47.0/24 maxlen: 24
46.245.249.0/24 maxlen: 24
46.245.248.0/24 maxlen: 24
46.245.248.0/21 maxlen: 24
46.245.251.0/24 maxlen: 24
46.245.250.0/24 maxlen: 24
46.245.253.0/24 maxlen: 24
46.245.252.0/24 maxlen: 24
46.245.255.0/24 maxlen: 24
46.245.254.0/24 maxlen: 24
178.251.34.0/24 maxlen: 24
178.251.32.0/21 maxlen: 21
185.34.209.0/24 maxlen: 24
185.34.208.0/22 maxlen: 22
37.209.213.0/24 maxlen: 24
37.209.212.0/24 maxlen: 24
37.209.209.0/24 maxlen: 24
37.209.208.0/24 maxlen: 24
37.209.208.0/20 maxlen: 24
37.209.211.0/24 maxlen: 24
37.209.210.0/24 maxlen: 24
37.209.219.0/24 maxlen: 24
37.209.216.0/24 maxlen: 24
37.209.215.0/24 maxlen: 24
37.209.218.0/24 maxlen: 24
37.209.217.0/24 maxlen: 24
37.209.214.0/24 maxlen: 24
37.209.223.0/24 maxlen: 24
37.209.222.0/24 maxlen: 24
37.209.220.0/24 maxlen: 24
37.209.221.0/24 maxlen: 24
2a00:1c18::/32 maxlen: 48
2a00:1c18::/29 maxlen: 48
2a0d:4140::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 879282000 (0x3468c750)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e74ee1868f96dd37a6b81cb1f6d28d6c2f7e746f
Validity
Not Before: Jan 1 13:01:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27b6873f7db55c7fe78327295197156f1556be69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:0f:da:83:1f:c6:fe:73:4c:df:d4:28:30:a8:
7e:2c:c4:7b:d8:34:e1:ba:6d:e6:00:1f:10:d2:9e:
8e:13:b7:e3:df:10:f0:f9:84:87:a9:37:ae:8b:8b:
1f:44:26:95:2d:9d:db:7e:be:ee:3c:4a:6e:d0:24:
c3:a3:fc:7c:21:79:95:94:09:74:75:37:f8:3c:54:
4e:17:81:39:77:1f:de:4f:73:34:cb:bc:04:a3:26:
a0:8d:88:59:6d:8b:f3:26:59:ea:da:cb:e7:41:d8:
25:8d:81:c6:fe:43:d4:bf:e0:8a:2a:a1:6b:25:43:
69:21:ca:cd:57:48:c4:6b:f1:70:78:08:a2:57:1f:
28:89:d6:5a:82:f4:3c:16:a2:79:d7:19:3d:4d:29:
3d:d6:4f:48:aa:7c:ff:c3:6a:ab:90:84:8b:e4:3b:
ba:82:10:38:44:d0:3f:d1:55:ad:e0:1f:29:ee:8f:
ab:98:de:6a:d5:6a:b0:4f:7a:f8:3b:dc:a9:2c:e0:
de:fa:39:94:ed:ea:8e:e6:5a:88:44:eb:93:d2:3b:
17:3f:b6:f9:0b:a8:17:55:6a:4a:c8:6a:6b:ca:8b:
39:a1:8c:a0:05:10:de:06:d4:83:54:a4:60:40:45:
fa:7f:21:1c:55:75:cd:0b:9c:ff:7c:45:7f:ee:08:
7d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:B6:87:3F:7D:B5:5C:7F:E7:83:27:29:51:97:15:6F:15:56:BE:69
X509v3 Authority Key Identifier:
keyid:E7:4E:E1:86:8F:96:DD:37:A6:B8:1C:B1:F6:D2:8D:6C:2F:7E:74:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/507hho-W3TemuByx9tKNbC9-dG8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/365c3f-415e-4cd5-9a4b-66d3a89152ac/1/J7aHP321XH_ngycpUZcVbxVWvmk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/365c3f-415e-4cd5-9a4b-66d3a89152ac/1/507hho-W3TemuByx9tKNbC9-dG8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.209.208.0/20
45.140.136.0/22
46.245.248.0/21
79.99.64.0/21
94.228.32.0/20
109.74.20.0/22
178.17.32.0/20
178.251.32.0/21
185.4.128.0/22
185.34.208.0/22
185.160.164.0/22
185.167.228.0/22
IPv6:
2a00:1c18::/29
2a0d:4140::/32
Signature Algorithm: sha256WithRSAEncryption
1b:0e:9e:66:d2:5c:88:23:7d:7a:2a:26:28:d2:39:e2:85:f7:
1b:a9:1b:9e:f6:b4:fa:66:13:2b:a9:f6:06:f0:d7:88:2e:2b:
44:68:3e:a1:36:e5:0b:e4:42:00:c5:32:ad:89:aa:a7:da:23:
79:97:97:5b:c2:8e:69:12:a2:e2:c9:5f:40:df:36:45:cf:a2:
15:37:1a:3b:21:a8:0b:1c:65:40:c4:4f:ab:d6:bc:44:1b:c0:
67:86:65:e0:8a:2e:5f:7a:15:4c:59:e2:da:18:29:57:a8:06:
94:86:49:10:72:12:7b:88:a5:e2:c5:d9:d5:e7:f9:4c:d0:95:
59:f5:00:21:1f:94:49:56:f3:92:aa:5b:72:3d:01:be:f9:33:
31:8e:24:29:c7:87:b4:fa:b3:2d:ea:b7:04:9f:a5:7e:d3:16:
cd:ba:56:e3:11:42:96:c0:87:b7:74:d0:7f:7e:85:70:a3:6b:
68:48:ae:87:96:17:7a:62:8a:00:83:9a:35:bd:8a:a0:96:5f:
07:37:d5:c9:49:da:87:46:23:a5:30:93:8b:9c:2b:26:b5:3b:
45:ec:7a:f1:c6:e8:cf:4c:b4:13:7a:c1:fe:e6:fd:d9:fb:bb:
bc:ce:cf:a4:cf:fb:dd:c4:54:fb:82:a3:b8:ec:13:b3:01:73:
1b:5b:e8:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:00 2023 by rpki-client on console-ams.rpki-client.org