Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/3vvRiOZrVrB_oUNEhX_RcVqFVPo.roa
File: 3vvRiOZrVrB_oUNEhX_RcVqFVPo.roa (raw, json)
Hash identifier: AictL0CeL2syS4P5XLdRiioXXWw6pbzzTunGFDShCFk=
Subject key identifier: DE:FB:D1:88:E6:6B:56:B0:7F:A1:43:44:85:7F:D1:71:5A:85:54:FA
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 0182A5EC2E6D59DDE126552B3A9C82FFC772
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/3vvRiOZrVrB_oUNEhX_RcVqFVPo.roa
Signing time: Tue 16 Aug 2022 09:11:35 +0000
ROA not before: Tue 16 Aug 2022 09:11:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42473
IP address blocks: 185.228.148.0/22 maxlen: 22
37.235.4.0/24 maxlen: 24
37.235.3.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
185.2.176.0/22 maxlen: 32
144.208.192.0/18 maxlen: 32
144.208.205.0/24 maxlen: 24
144.208.206.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
144.208.207.0/24 maxlen: 24
178.255.152.0/21 maxlen: 32
193.33.114.0/23 maxlen: 32
176.123.54.0/23 maxlen: 23
213.227.160.0/19 maxlen: 32
194.1.206.0/24 maxlen: 32
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.96.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
217.146.0.0/19 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.247.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
188.172.192.0/18 maxlen: 32
185.81.209.0/24 maxlen: 24
188.172.208.0/24 maxlen: 24
188.65.72.0/21 maxlen: 32
37.252.226.0/24 maxlen: 24
37.252.224.0/19 maxlen: 32
37.252.243.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
144.208.216.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.224.0/24 maxlen: 24
144.208.225.0/24 maxlen: 24
144.208.223.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
144.208.222.0/24 maxlen: 24
2a00:11c0:66::/48 maxlen: 48
2a00:11c0::/32 maxlen: 128
2a01:aea0:dd1::/48 maxlen: 48
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a01:aea0::/40 maxlen: 40
2a01:aea0::/32 maxlen: 32
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:97::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a00:11c0:de::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a00:11c0:98::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:a5:ec:2e:6d:59:dd:e1:26:55:2b:3a:9c:82:ff:c7:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Aug 16 09:11:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=defbd188e66b56b07fa14344857fd1715a8554fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:e5:77:33:35:4e:e9:ff:4e:96:c7:84:d7:02:
08:82:c5:48:d6:bc:44:cd:49:19:1a:cd:46:59:27:
b0:dd:dd:2a:55:43:3b:d5:8a:63:69:bd:70:6e:ec:
f5:76:e1:57:6a:31:3c:44:af:57:de:16:dc:94:95:
ba:e7:fc:2a:d0:ce:dd:f8:c9:c6:72:27:53:fd:53:
8b:71:61:08:ab:e0:97:0d:45:dc:6b:6c:f6:61:75:
5a:5a:62:7d:65:29:9e:92:5b:49:21:e4:0c:d2:05:
f6:12:ee:99:69:42:92:6d:8a:e6:b0:e9:12:9e:22:
03:da:93:d4:a2:6a:6b:72:af:82:8c:f4:ed:06:38:
35:90:43:04:72:12:8b:a2:24:5b:0d:69:43:21:68:
4b:8b:8d:e5:03:bc:69:7c:8b:d0:32:02:81:e7:a2:
a7:74:73:c2:b4:a0:85:81:ed:46:b5:fd:b6:50:a1:
e2:34:38:18:4b:88:22:f5:6d:b0:2e:97:9f:fc:37:
43:cb:cf:2b:ee:fa:fd:04:b2:26:cf:40:39:df:91:
2f:ae:78:79:af:0b:a4:cb:b2:b6:90:62:fe:07:26:
36:76:63:e9:2f:6e:d2:b9:07:48:3e:5d:d1:25:1e:
c2:07:62:1c:d9:d0:95:7a:a5:e5:83:e1:71:41:e9:
3a:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:FB:D1:88:E6:6B:56:B0:7F:A1:43:44:85:7F:D1:71:5A:85:54:FA
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/3vvRiOZrVrB_oUNEhX_RcVqFVPo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.3.0-37.235.5.255
37.252.224.0/19
45.132.62.0/23
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
Signature Algorithm: sha256WithRSAEncryption
68:04:87:d5:1d:11:3d:39:f9:fa:67:93:d8:5b:f5:c1:a5:21:
4c:5b:28:b6:9c:c2:ab:c9:40:ce:48:13:f0:83:5c:67:90:80:
78:bf:dc:83:7d:db:96:ce:13:5f:f6:77:24:83:e8:db:31:70:
90:be:8c:0c:6a:41:f5:be:e7:c3:36:4e:6d:72:32:ba:34:98:
bf:91:6c:2d:5c:b1:ed:b8:c8:c1:28:84:cf:66:22:dd:dd:04:
24:7a:af:51:15:73:9a:86:a4:6c:06:09:b2:15:b0:eb:6e:55:
52:ac:45:d3:9d:c5:47:a1:1c:90:5e:e3:38:1a:c2:ba:b5:9f:
9a:90:19:f5:d1:2e:4d:97:06:03:62:dc:da:0b:52:c1:47:40:
fd:27:6d:55:53:7b:df:56:4a:07:6a:fa:bf:7a:4a:1a:37:5e:
96:ce:2a:88:88:4f:ed:6b:79:bc:28:c5:9e:dd:74:93:00:81:
9b:95:3c:bc:16:35:3e:ea:22:62:05:a3:1a:ad:f9:6e:e9:2c:
32:3c:4c:0d:d2:9c:80:4e:3e:f9:1b:5b:1f:ea:c6:43:f2:21:
a5:64:22:92:25:7c:54:e0:10:55:76:b9:7d:16:1d:66:b2:8f:
b7:71:11:1a:92:fb:b9:a4:f6:c4:5b:e8:82:42:1c:c8:50:00:
70:7c:22:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:19 2023 by rpki-client on console-ams.rpki-client.org