Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/jz_tXratrqXwkeko7oeDwyPP1qE.roa
File: jz_tXratrqXwkeko7oeDwyPP1qE.roa (raw, json)
Hash identifier: GoZutuPfCDbR66aEi/ufRyQooVCeHEyynyWdfnLcH0E=
Subject key identifier: 8F:3F:ED:5E:B6:AD:AE:A5:F0:91:E9:28:EE:87:83:C3:23:CF:D6:A1
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 3A80EDA5
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/jz_tXratrqXwkeko7oeDwyPP1qE.roa
Signing time: Sat 01 Jan 2022 05:59:59 +0000
ROA not before: Sat 01 Jan 2022 05:59:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42473
IP address blocks: 185.228.148.0/22 maxlen: 22
37.235.4.0/24 maxlen: 24
37.235.3.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
185.2.176.0/22 maxlen: 32
144.208.192.0/18 maxlen: 32
144.208.205.0/24 maxlen: 24
144.208.206.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
144.208.207.0/24 maxlen: 24
178.255.152.0/21 maxlen: 32
193.33.114.0/23 maxlen: 32
176.123.54.0/23 maxlen: 23
213.227.160.0/19 maxlen: 32
194.1.206.0/24 maxlen: 32
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.96.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
217.146.0.0/19 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.247.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
188.172.192.0/18 maxlen: 32
185.81.209.0/24 maxlen: 24
188.172.208.0/24 maxlen: 24
188.65.72.0/21 maxlen: 32
37.252.224.0/19 maxlen: 32
37.252.243.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
144.208.216.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
2a00:11c0:66::/48 maxlen: 48
2a00:11c0::/32 maxlen: 128
2a01:aea0:dd1::/48 maxlen: 48
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a01:aea0::/40 maxlen: 40
2a01:aea0::/32 maxlen: 32
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 981527973 (0x3a80eda5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Jan 1 05:59:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f3fed5eb6adaea5f091e928ee8783c323cfd6a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:a6:92:60:7a:b8:24:8f:c6:f1:01:c5:ae:6c:
c4:69:98:c4:96:93:e4:18:e6:ae:ee:ba:56:a4:7e:
62:b1:09:4f:5a:58:7a:d9:e0:a1:36:61:0e:f6:86:
8b:1e:f8:a4:c5:35:e7:87:18:ba:b3:66:30:1c:61:
58:66:4d:2c:db:12:da:4c:53:5a:14:b2:e3:79:8e:
42:99:ed:d0:b8:e0:c9:58:fc:fa:32:20:79:73:70:
d7:8f:e7:cf:58:25:cb:d5:fb:a3:4d:ad:b2:36:c8:
f6:c1:47:8b:33:02:e5:b5:d0:13:3e:06:29:32:6c:
c7:20:41:56:e4:7f:14:04:8a:d0:e8:47:ff:27:18:
d6:03:14:d0:9d:89:fa:90:97:c8:8c:07:d5:44:96:
19:ce:99:b1:be:bf:13:83:fa:f0:aa:a7:29:70:4e:
b9:e8:a7:77:ed:38:8b:b2:11:1f:4e:9c:f6:59:62:
29:81:1a:8e:e4:9e:45:21:58:f3:af:67:b8:96:01:
84:74:ab:0f:e6:c3:d0:06:10:4e:51:dd:83:e8:62:
89:c4:c7:76:08:00:55:1f:d8:7f:3f:ef:98:e2:8d:
3f:94:29:15:13:f0:eb:c5:78:2d:cf:5d:db:b6:90:
e6:43:cf:77:e9:3b:d3:dd:88:49:fa:0e:ea:b1:fb:
35:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:3F:ED:5E:B6:AD:AE:A5:F0:91:E9:28:EE:87:83:C3:23:CF:D6:A1
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/jz_tXratrqXwkeko7oeDwyPP1qE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.3.0-37.235.5.255
37.252.224.0/19
45.132.62.0/23
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
Signature Algorithm: sha256WithRSAEncryption
76:1b:88:20:4b:e7:02:c9:20:ee:d7:43:ce:e3:05:02:75:a0:
76:01:72:6c:0e:cb:1a:65:32:fa:9e:af:15:3b:04:d3:97:9f:
a8:c3:1a:33:ca:0e:3f:b5:f7:d1:fa:19:b7:26:29:65:a7:0c:
9d:15:56:22:c4:d6:e4:f3:68:58:08:bc:06:02:aa:a8:4f:c3:
9f:10:16:0f:97:9d:7e:74:e9:7e:0a:59:36:d4:71:bd:ef:8e:
8c:19:c7:e4:a9:8b:33:0a:05:70:5d:f2:1c:49:f1:4f:81:64:
a1:19:4f:38:7e:fe:86:e5:c6:6f:28:04:ee:7d:01:b6:45:4f:
f8:c7:e9:7a:3f:b3:45:f0:50:56:08:ee:39:91:f8:1e:18:7b:
0e:4a:d4:e6:22:bf:78:95:d6:ad:c0:d3:a0:60:ee:e6:b4:6b:
fb:1a:e4:e2:20:39:6f:83:04:49:07:58:e3:b4:11:75:59:28:
f0:5f:80:cb:60:e9:35:ad:2e:cb:79:81:92:35:74:dc:4e:33:
d5:eb:f1:ed:82:cd:b6:f1:d8:7a:ea:4a:e6:49:bb:90:a3:ef:
06:a2:95:8a:9f:69:d8:6f:47:5d:5a:b0:02:21:48:43:21:be:
d6:c0:59:b2:11:a4:01:a7:83:8d:8b:d1:c5:c8:32:5a:d2:84:
51:22:ad:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:51 2024 by rpki-client on console-ams.rpki-client.org