Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/dOJfIZHnNqp2c03O4qcBdDaoUEg.roa
File: dOJfIZHnNqp2c03O4qcBdDaoUEg.roa (raw, json)
Hash identifier: bckF788SmD5Fi3UjC9dvrhTSnycY9B9/RIyZ0VLkR5k=
Subject key identifier: 74:E2:5F:21:91:E7:36:AA:76:73:4D:CE:E2:A7:01:74:36:A8:50:48
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 3B2A489C
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/dOJfIZHnNqp2c03O4qcBdDaoUEg.roa
Signing time: Mon 14 Mar 2022 15:44:59 +0000
ROA not before: Mon 14 Mar 2022 15:44:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42473
IP address blocks: 185.228.148.0/22 maxlen: 22
37.235.4.0/24 maxlen: 24
37.235.3.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
185.2.176.0/22 maxlen: 32
144.208.192.0/18 maxlen: 32
144.208.205.0/24 maxlen: 24
144.208.206.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
144.208.207.0/24 maxlen: 24
178.255.152.0/21 maxlen: 32
193.33.114.0/23 maxlen: 32
176.123.54.0/23 maxlen: 23
213.227.160.0/19 maxlen: 32
194.1.206.0/24 maxlen: 32
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.96.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
217.146.0.0/19 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.247.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
188.172.192.0/18 maxlen: 32
185.81.209.0/24 maxlen: 24
188.172.208.0/24 maxlen: 24
188.65.72.0/21 maxlen: 32
37.252.226.0/24 maxlen: 24
37.252.224.0/19 maxlen: 32
37.252.243.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
144.208.216.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
2a00:11c0:66::/48 maxlen: 48
2a00:11c0::/32 maxlen: 128
2a01:aea0:dd1::/48 maxlen: 48
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a01:aea0::/40 maxlen: 40
2a01:aea0::/32 maxlen: 32
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a00:11c0:de::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 992626844 (0x3b2a489c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Mar 14 15:44:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74e25f2191e736aa76734dcee2a7017436a85048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f6:3e:70:5b:36:32:df:fb:b5:f3:a6:2e:96:
fd:dd:88:bb:31:b2:d5:ec:92:21:fc:53:5f:4e:13:
d5:7e:1f:2d:94:f9:2d:1e:1d:58:ce:aa:43:e0:6f:
32:73:b6:9b:f7:99:84:82:b8:b9:cc:31:65:13:cb:
d3:f9:bf:2b:43:82:96:06:0b:27:3e:3f:20:fb:cc:
99:aa:52:94:ea:80:05:6c:7e:26:8e:c5:07:67:1a:
a1:dd:91:41:35:a5:bb:4d:60:14:f5:c0:48:1b:54:
7d:16:ce:e5:35:54:b0:8d:94:d5:49:d5:46:c0:6d:
47:8d:67:a8:fd:ff:1e:52:65:9e:3b:a9:89:e4:56:
bb:44:17:c2:6d:7b:0d:2c:39:06:d6:db:86:92:4a:
ab:a7:21:09:fc:4a:57:1b:5f:e5:5e:6e:f5:b9:c8:
b0:50:87:43:b5:8a:d8:d7:28:a6:0b:9e:91:45:ca:
e6:cc:6f:98:89:eb:5a:65:3f:9a:27:82:d0:dc:e5:
f3:a0:e9:8f:c5:05:6f:88:af:a7:2a:ec:ef:ec:8b:
02:ed:49:0c:89:9a:b0:9b:51:aa:02:ea:a3:14:34:
d2:70:29:3b:1b:85:d0:c2:d4:63:10:80:2b:98:e4:
6d:0c:bd:97:0f:cf:e8:70:52:6d:98:66:2b:a1:7b:
2f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:E2:5F:21:91:E7:36:AA:76:73:4D:CE:E2:A7:01:74:36:A8:50:48
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/dOJfIZHnNqp2c03O4qcBdDaoUEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.3.0-37.235.5.255
37.252.224.0/19
45.132.62.0/23
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
Signature Algorithm: sha256WithRSAEncryption
13:2f:98:4a:0b:83:98:02:3f:08:8a:4a:f6:0a:57:d1:86:da:
c4:4e:bf:3b:c7:02:93:45:1b:f3:88:e5:f5:f1:5f:74:45:04:
1d:9e:c6:6d:a4:0c:83:a0:9c:3b:d6:a1:2e:87:a3:39:c3:30:
54:63:30:e6:e9:d5:82:b8:03:81:49:63:87:44:be:6c:d9:f6:
a2:c9:58:ff:51:f4:ba:d5:2d:7f:e3:41:15:39:19:3c:3a:8d:
0f:b0:21:d5:0d:0d:4b:1b:81:20:af:1b:a8:57:35:57:91:41:
92:09:80:5a:de:e4:7e:95:c9:3b:b2:91:73:95:5e:32:56:e6:
fd:e9:e8:e0:4b:36:ae:6f:30:d2:e0:60:0e:79:ba:a9:e0:49:
e6:7d:ca:7c:e0:27:46:4f:cb:37:df:30:ba:0d:21:07:8f:52:
27:94:0e:cd:73:08:a6:17:76:a7:a2:61:5d:af:4c:07:f1:22:
ab:28:1e:0c:ee:19:8e:a5:68:e0:2c:ed:14:bc:80:20:6e:19:
5a:e9:1c:7b:9a:b3:99:08:e1:d1:e0:99:a8:b9:0e:0e:a6:44:
96:13:ea:f0:47:8b:8c:55:12:2d:ed:d7:8c:ba:76:0a:d8:4c:
9d:64:17:06:6c:d6:76:68:6b:c4:80:98:bd:2f:55:a3:42:9b:
1f:6e:d3:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:14 2024 by rpki-client on console-fra.rpki-client.org