Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/FdvglLWbsNi3Kg6B_3R_GRTk-JE.roa
File: FdvglLWbsNi3Kg6B_3R_GRTk-JE.roa (raw, json)
Hash identifier: J5zxujIPgp3I6UyEPJIhSSJaCSx6SYDjxN6fZkphD+U=
Subject key identifier: 15:DB:E0:94:B5:9B:B0:D8:B7:2A:0E:81:FF:74:7F:19:14:E4:F8:91
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 018379E0F0D13C0C1D1A43D84453915FCC18
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/FdvglLWbsNi3Kg6B_3R_GRTk-JE.roa
Signing time: Mon 26 Sep 2022 12:58:48 +0000
ROA not before: Mon 26 Sep 2022 12:58:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42473
IP address blocks: 185.228.148.0/22 maxlen: 22
37.235.4.0/24 maxlen: 24
37.235.3.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
185.2.176.0/22 maxlen: 32
144.208.192.0/18 maxlen: 32
144.208.205.0/24 maxlen: 24
144.208.206.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
144.208.207.0/24 maxlen: 24
178.255.152.0/21 maxlen: 32
193.33.114.0/23 maxlen: 32
176.123.54.0/23 maxlen: 23
213.227.160.0/19 maxlen: 32
194.1.206.0/24 maxlen: 32
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.96.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
217.146.0.0/19 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.247.0/24 maxlen: 24
188.172.254.0/24 maxlen: 24
45.132.61.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
188.172.192.0/18 maxlen: 32
185.81.209.0/24 maxlen: 24
188.172.208.0/24 maxlen: 24
188.65.72.0/21 maxlen: 32
37.252.226.0/24 maxlen: 24
37.252.224.0/19 maxlen: 32
37.252.234.0/24 maxlen: 24
37.252.243.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
144.208.216.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.226.0/24 maxlen: 24
144.208.224.0/24 maxlen: 24
144.208.225.0/24 maxlen: 24
144.208.223.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
144.208.222.0/24 maxlen: 24
2a00:11c0:66::/48 maxlen: 48
2a00:11c0::/32 maxlen: 128
2a01:aea0:dd1::/48 maxlen: 48
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a00:11c0:96::/48 maxlen: 48
2a00:11c0:9a::/48 maxlen: 48
2a01:aea0::/40 maxlen: 40
2a01:aea0::/32 maxlen: 32
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:83::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:97::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a00:11c0:de::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a00:11c0:98::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:79:e0:f0:d1:3c:0c:1d:1a:43:d8:44:53:91:5f:cc:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Sep 26 12:58:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=15dbe094b59bb0d8b72a0e81ff747f1914e4f891
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:e5:fe:7e:ee:e2:c0:c1:f7:60:39:49:08:34:
6a:2e:58:cf:17:8e:b5:79:33:53:ba:ad:4e:65:ad:
fc:0b:fc:fe:14:b6:d5:72:02:44:91:9f:55:d4:e8:
89:6f:6a:18:10:4a:74:b7:46:af:71:96:0e:e3:17:
ad:72:d8:f0:3d:b0:ba:73:80:5a:8d:0f:08:9a:b7:
19:37:4a:1f:ed:ca:d0:6b:9c:58:c2:42:ac:48:e6:
ad:e0:e3:a3:fb:0b:4a:a6:11:72:e4:67:54:6c:c9:
70:d5:1a:f4:24:0e:ba:a2:a3:eb:8d:f5:c0:7e:31:
cc:34:4a:15:cd:b8:5b:be:1a:11:30:82:25:d9:f7:
61:6e:a7:cf:38:8c:a7:33:56:a0:10:50:55:66:4b:
bb:87:07:a5:aa:b2:fc:71:24:c8:23:39:96:ed:7f:
74:0d:f8:00:12:d7:9f:f3:b1:d4:32:fe:cf:14:f1:
d4:d2:21:bf:6e:17:cf:5d:90:48:1f:21:01:28:7d:
69:ff:29:62:aa:5b:00:04:78:e6:33:1e:d9:68:12:
94:61:cb:e4:f3:ec:ce:8c:c2:72:71:d2:da:c2:9f:
67:48:93:99:1f:c8:e5:f2:cd:92:c5:e9:62:01:67:
3d:33:f5:ac:7f:b1:2a:3b:59:69:d2:95:62:9e:61:
b4:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:DB:E0:94:B5:9B:B0:D8:B7:2A:0E:81:FF:74:7F:19:14:E4:F8:91
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/FdvglLWbsNi3Kg6B_3R_GRTk-JE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.3.0-37.235.5.255
37.252.224.0/19
45.132.61.0-45.132.63.255
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
Signature Algorithm: sha256WithRSAEncryption
90:7c:f3:5d:b5:a2:5d:84:bd:25:2b:22:a0:e3:b6:7b:b6:7f:
61:de:c9:73:7b:34:03:74:c6:67:a3:06:c7:09:73:fb:0d:ea:
55:50:28:f4:63:af:cc:dd:7f:7e:41:fc:d2:74:a0:94:3d:4f:
15:56:ef:46:28:a5:bc:7c:34:bd:6d:49:46:76:ba:a9:25:c0:
16:1b:99:fb:39:da:a9:51:57:9a:7a:5e:ec:87:4d:42:25:26:
23:80:53:30:a7:01:94:30:66:d6:53:45:68:a8:bc:d8:43:58:
28:64:10:c8:e9:80:cd:dd:54:10:b0:a7:13:6e:8f:4f:e8:a5:
dd:17:dc:6b:34:9d:84:18:0f:67:28:ec:43:7a:74:79:0d:c2:
be:25:fe:d3:4c:5f:ea:3d:cc:ea:17:16:64:59:e0:a1:ad:38:
b2:83:b4:36:36:80:6c:8c:16:c3:de:c9:22:2d:df:40:6b:36:
41:47:05:31:4b:d1:ca:f8:ff:43:6f:d9:12:78:a4:ad:73:da:
5e:21:f1:4d:c0:f2:66:7f:8c:5a:8e:cd:66:ea:f4:f2:d8:cc:
09:be:c0:ca:6f:7f:a1:fd:b2:ae:47:77:4d:c6:87:c1:50:a8:
d5:ff:38:8f:2c:7b:b5:f5:bc:67:76:7a:16:d7:78:f3:e6:d3:
82:bb:52:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:50 2024 by rpki-client on console-ams.rpki-client.org