Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/22DHTsAfMhzSRMYCfciUMBIKhLM.roa
File: 22DHTsAfMhzSRMYCfciUMBIKhLM.roa (raw, json)
Hash identifier: zxoNO1h1nV7NFfOvOb/YVWXa033j6q46Ie7lScoBsVM=
Subject key identifier: DB:60:C7:4E:C0:1F:32:1C:D2:44:C6:02:7D:C8:94:30:12:0A:84:B3
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 01830DAEFCCE8AEB36B6865AFE18244DE32E
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/22DHTsAfMhzSRMYCfciUMBIKhLM.roa
Signing time: Mon 05 Sep 2022 12:45:15 +0000
ROA not before: Mon 05 Sep 2022 12:45:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42473
IP address blocks: 185.228.148.0/22 maxlen: 22
37.235.4.0/24 maxlen: 24
37.235.3.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
185.2.176.0/22 maxlen: 32
144.208.192.0/18 maxlen: 32
144.208.205.0/24 maxlen: 24
144.208.206.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
144.208.207.0/24 maxlen: 24
178.255.152.0/21 maxlen: 32
193.33.114.0/23 maxlen: 32
176.123.54.0/23 maxlen: 23
213.227.160.0/19 maxlen: 32
194.1.206.0/24 maxlen: 32
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.96.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
217.146.0.0/19 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.247.0/24 maxlen: 24
188.172.254.0/24 maxlen: 24
45.132.61.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
188.172.192.0/18 maxlen: 32
185.81.209.0/24 maxlen: 24
188.172.208.0/24 maxlen: 24
188.65.72.0/21 maxlen: 32
37.252.226.0/24 maxlen: 24
37.252.224.0/19 maxlen: 32
37.252.243.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
144.208.216.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.226.0/24 maxlen: 24
144.208.224.0/24 maxlen: 24
144.208.225.0/24 maxlen: 24
144.208.223.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
144.208.222.0/24 maxlen: 24
2a00:11c0:66::/48 maxlen: 48
2a00:11c0::/32 maxlen: 128
2a01:aea0:dd1::/48 maxlen: 48
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a01:aea0::/40 maxlen: 40
2a01:aea0::/32 maxlen: 32
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:83::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:97::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a00:11c0:de::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a00:11c0:98::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:0d:ae:fc:ce:8a:eb:36:b6:86:5a:fe:18:24:4d:e3:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Sep 5 12:45:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db60c74ec01f321cd244c6027dc89430120a84b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:26:68:34:d0:5a:4a:12:ae:26:3b:44:7e:e5:
10:da:39:d9:95:80:01:f7:91:7c:99:0e:36:c0:93:
7a:69:49:99:8e:a9:f5:18:5e:7d:6d:82:94:4f:e5:
b4:d1:b8:26:3f:a0:a6:8d:f3:6e:11:65:fb:80:03:
3c:f8:d5:c9:57:65:d0:a0:61:57:84:be:dc:5d:ec:
6f:be:6e:fe:be:1d:c9:9a:ad:70:18:d0:85:1a:bd:
7c:ec:d5:51:5f:c3:e2:93:bf:6a:9f:03:36:ab:46:
f2:e3:cf:7e:79:22:37:cc:52:e4:21:a7:ba:09:ad:
40:08:a8:cc:4b:cf:70:7d:50:21:04:f0:ef:40:b3:
98:03:a2:86:5b:89:e7:c6:a0:d4:25:57:41:9b:28:
f2:6a:e9:21:9e:3c:ce:2d:e9:ef:ae:53:42:48:4e:
a3:6e:c7:75:f2:1b:5e:5d:e5:57:1a:7e:d8:0c:ee:
f5:1c:a7:49:ee:7f:30:77:bd:37:78:96:47:e7:7b:
8e:4e:c1:5e:09:7c:03:b4:4a:23:78:db:a3:47:92:
59:eb:14:d5:08:c8:56:a9:10:17:51:74:10:70:e0:
70:c0:7e:11:cd:00:c7:d7:38:10:44:e4:9d:c1:89:
f9:40:a1:e4:6a:e3:aa:2d:93:f3:77:d5:e1:d4:67:
a0:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:60:C7:4E:C0:1F:32:1C:D2:44:C6:02:7D:C8:94:30:12:0A:84:B3
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/22DHTsAfMhzSRMYCfciUMBIKhLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.3.0-37.235.5.255
37.252.224.0/19
45.132.61.0-45.132.63.255
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
Signature Algorithm: sha256WithRSAEncryption
57:5d:b3:94:ea:a5:3e:2a:24:54:19:7f:b8:3d:ac:62:ea:7a:
87:7d:e6:a5:4a:de:02:8e:e4:72:92:b5:6d:27:b5:61:65:6c:
7b:bc:e9:af:dc:7b:25:88:90:7f:5a:84:d2:b1:f5:c9:7d:7b:
6a:ea:71:f9:ed:c2:07:a1:a7:93:0e:39:b7:48:af:28:1a:1c:
94:6e:32:36:f7:11:8d:ef:60:dd:88:ce:9d:28:3c:61:70:cd:
83:27:93:6e:dd:40:53:d3:07:5c:0e:a5:53:21:9b:2f:82:3b:
7e:23:a6:eb:5f:87:76:11:e0:ae:39:00:e3:a0:4a:4d:25:e0:
df:df:b1:b9:ba:ee:ea:6e:a6:29:c7:32:12:77:53:4e:fc:d4:
87:8d:97:03:ab:0b:c0:cb:4b:c9:b4:7f:46:92:1b:f6:52:fa:
f0:0e:ac:68:8a:c1:ac:63:4e:81:89:a2:15:20:20:fc:78:f7:
e6:4f:68:f1:85:d7:b7:d9:50:05:0c:98:36:0a:6b:08:a3:88:
e8:f1:88:4b:7d:09:9c:bf:71:29:28:e7:06:6a:50:4f:1e:8d:
f0:18:a2:10:bd:08:d5:04:b6:ee:23:73:26:c8:04:23:13:3f:
fb:31:1f:2b:00:6c:fe:a0:f8:9a:11:8e:a4:85:47:00:08:f5:
f1:59:02:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:14 2024 by rpki-client on console-fra.rpki-client.org