Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/Sr6hk4BxV6x6qQHX6FLIsxEXrlk.roa
File: Sr6hk4BxV6x6qQHX6FLIsxEXrlk.roa (raw, json)
Hash identifier: EmW+fsJ5hvk6mb0erdXzv6sJbelRukr9OjdjjTC0+ws=
Subject key identifier: 4A:BE:A1:93:80:71:57:AC:7A:A9:01:D7:E8:52:C8:B3:11:17:AE:59
Certificate issuer: /CN=4e15df688c3aeae3f685ed44b396c2198395861d
Certificate serial: 018418F87215C9D32881777B9459590D94C9
Authority key identifier: 4E:15:DF:68:8C:3A:EA:E3:F6:85:ED:44:B3:96:C2:19:83:95:86:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ThXfaIw66uP2he1Es5bCGYOVhh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/Sr6hk4BxV6x6qQHX6FLIsxEXrlk.roa
Signing time: Thu 27 Oct 2022 10:24:06 +0000
ROA not before: Thu 27 Oct 2022 10:24:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21021
IP address blocks: 217.172.224.0/19 maxlen: 19
217.75.48.0/20 maxlen: 20
217.70.48.0/20 maxlen: 20
195.93.222.0/23 maxlen: 23
83.68.64.0/19 maxlen: 19
195.93.134.0/23 maxlen: 23
89.230.0.0/16 maxlen: 16
89.17.224.0/19 maxlen: 19
94.78.128.0/18 maxlen: 18
80.245.176.0/20 maxlen: 20
217.144.192.0/19 maxlen: 19
31.42.16.0/20 maxlen: 20
89.229.0.0/16 maxlen: 16
84.38.80.0/20 maxlen: 20
176.107.112.0/21 maxlen: 21
81.190.0.0/16 maxlen: 16
185.31.184.0/22 maxlen: 22
31.6.128.0/18 maxlen: 18
194.116.132.0/23 maxlen: 23
89.231.0.0/16 maxlen: 16
80.244.128.0/19 maxlen: 19
62.141.192.0/18 maxlen: 18
92.42.112.0/21 maxlen: 21
93.94.184.0/21 maxlen: 21
31.6.192.0/19 maxlen: 19
193.200.118.0/23 maxlen: 23
194.149.240.0/24 maxlen: 24
193.43.240.0/22 maxlen: 22
37.131.128.0/19 maxlen: 19
95.129.224.0/21 maxlen: 21
193.106.76.0/22 maxlen: 22
37.190.128.0/17 maxlen: 17
89.228.0.0/16 maxlen: 16
95.174.32.0/19 maxlen: 19
82.115.64.0/19 maxlen: 19
176.221.96.0/19 maxlen: 19
46.186.0.0/17 maxlen: 17
85.117.0.0/19 maxlen: 19
213.136.224.0/19 maxlen: 19
46.231.56.0/21 maxlen: 21
62.61.32.0/19 maxlen: 19
87.116.192.0/18 maxlen: 18
94.251.128.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:18:f8:72:15:c9:d3:28:81:77:7b:94:59:59:0d:94:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e15df688c3aeae3f685ed44b396c2198395861d
Validity
Not Before: Oct 27 10:24:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4abea193807157ac7aa901d7e852c8b31117ae59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:0b:f1:e7:13:29:8a:78:50:b7:b5:5c:86:4c:
40:9f:2c:7f:0e:d1:7b:b4:6f:d8:0d:bb:60:3d:0c:
ed:31:cf:18:34:99:e4:71:7c:0d:13:58:b2:e5:f0:
dd:17:77:ae:1f:2b:6f:8e:7b:de:2e:51:b1:62:50:
68:c9:d3:ee:eb:08:f7:d7:d5:b5:52:60:e1:d4:c0:
88:21:30:94:1a:26:dc:36:ef:7d:b0:5f:dd:f3:41:
ab:4b:88:4c:6e:a5:68:5f:a9:12:21:31:60:bc:a0:
f0:45:a6:bf:02:21:1a:3a:4d:84:9d:d1:21:57:e5:
ff:33:b0:34:94:23:7e:4f:ca:b9:b1:81:1f:1c:ce:
94:a6:34:7d:1c:10:ff:3f:45:e7:a6:42:b8:5a:7a:
a0:6c:3a:70:93:9c:bd:ad:04:e3:8e:48:51:8f:9e:
dd:8b:a8:aa:74:28:fa:ee:d2:92:f9:06:c8:9c:04:
1f:2d:15:d8:43:0b:98:f3:c5:da:3b:da:24:23:9c:
c1:9d:fa:07:6b:5e:a5:6d:73:ff:48:f4:28:77:d6:
1e:a1:64:d9:0d:35:8e:72:05:6a:b8:63:d2:64:d6:
47:94:2d:6d:a1:c6:61:66:44:76:c1:23:a8:b9:c6:
3c:3c:f4:2b:e9:11:f1:ba:82:78:7f:fe:25:96:d8:
3e:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:BE:A1:93:80:71:57:AC:7A:A9:01:D7:E8:52:C8:B3:11:17:AE:59
X509v3 Authority Key Identifier:
keyid:4E:15:DF:68:8C:3A:EA:E3:F6:85:ED:44:B3:96:C2:19:83:95:86:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ThXfaIw66uP2he1Es5bCGYOVhh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/Sr6hk4BxV6x6qQHX6FLIsxEXrlk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.128.0-31.6.223.255
31.42.16.0/20
37.131.128.0/19
37.190.128.0/17
46.186.0.0/17
46.231.56.0/21
62.61.32.0/19
62.141.192.0/18
80.244.128.0/19
80.245.176.0/20
81.190.0.0/16
82.115.64.0/19
83.68.64.0/19
84.38.80.0/20
85.117.0.0/19
87.116.192.0/18
89.17.224.0/19
89.228.0.0/14
92.42.112.0/21
93.94.184.0/21
94.78.128.0/18
94.251.128.0/17
95.129.224.0/21
95.174.32.0/19
176.107.112.0/21
176.221.96.0/19
185.31.184.0/22
193.43.240.0/22
193.106.76.0/22
193.200.118.0/23
194.116.132.0/23
194.149.240.0/24
195.93.134.0/23
195.93.222.0/23
213.136.224.0/19
217.70.48.0/20
217.75.48.0/20
217.144.192.0/19
217.172.224.0/19
Signature Algorithm: sha256WithRSAEncryption
3a:18:4b:86:fd:c4:a2:e9:81:74:dd:d4:99:9e:61:f9:7b:be:
9c:e2:c9:96:5c:95:71:8a:ec:29:7d:0a:cb:91:de:60:24:33:
68:37:00:32:07:ac:73:d2:a3:77:b6:ff:37:dd:8a:b4:f8:31:
38:0e:0e:e3:f2:1e:e1:82:18:85:17:9b:98:13:17:59:92:b3:
fb:44:5e:a5:9f:5d:8f:a9:f4:c6:f0:91:0d:1f:d9:cc:47:b8:
1c:b4:49:5f:ab:ff:e3:a0:fb:90:1a:00:e6:42:6f:69:1a:41:
c9:35:36:3c:9d:49:a5:cc:b8:5e:33:5b:c2:4c:50:aa:64:7e:
f2:e2:a7:2d:8c:17:0a:fe:46:0a:b8:60:1a:50:04:8c:a4:ab:
78:4b:c1:cb:3e:2c:43:12:ae:7e:65:85:94:de:7f:a3:85:23:
79:1a:03:27:5c:06:5a:4e:24:c4:9e:42:27:66:34:a4:73:78:
99:31:3f:dd:b7:55:e3:df:79:a6:8e:9d:48:28:d3:ae:f3:5d:
18:a6:07:09:79:c9:21:d5:3b:17:26:63:d0:57:89:bc:42:f3:
36:3c:97:0e:6e:37:5c:93:50:ce:a6:58:ca:61:68:1d:b6:95:
c9:ca:3d:05:f6:6f:46:d7:49:46:74:e0:dd:10:ab:0d:f4:3c:
e3:75:e8:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:18 2024 by rpki-client on console-ams.rpki-client.org