Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/1eb120-687c-4993-857f-8a03a7c1fe9b/1/6Y1IYURKJ627GdJNri9CrUtLslY.roa
File: 6Y1IYURKJ627GdJNri9CrUtLslY.roa (raw, json)
Hash identifier: MHbVEdVueeoSuhLsZJD+lX9Ch3AaPtZxrMYlncs/nIk=
Subject key identifier: E9:8D:48:61:44:4A:27:AD:BB:19:D2:4D:AE:2F:42:AD:4B:4B:B2:56
Certificate issuer: /CN=24d9da4ffb1bb6d273de1bad5dbbf0d1ff47f0cf
Certificate serial: 0186F8B576C8C525C0164057CB33C3807753
Authority key identifier: 24:D9:DA:4F:FB:1B:B6:D2:73:DE:1B:AD:5D:BB:F0:D1:FF:47:F0:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JNnaT_sbttJz3hutXbvw0f9H8M8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/1eb120-687c-4993-857f-8a03a7c1fe9b/1/6Y1IYURKJ627GdJNri9CrUtLslY.roa
Signing time: Sun 19 Mar 2023 07:11:27 +0000
ROA not before: Sun 19 Mar 2023 07:11:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29256
IP address blocks: 94.252.128.0/22 maxlen: 22
94.252.132.0/22 maxlen: 22
94.252.136.0/21 maxlen: 21
94.252.144.0/20 maxlen: 20
178.52.112.0/20 maxlen: 20
178.52.128.0/20 maxlen: 20
178.52.144.0/20 maxlen: 20
188.139.208.0/20 maxlen: 20
178.52.64.0/20 maxlen: 20
46.213.240.0/20 maxlen: 20
188.139.224.0/20 maxlen: 20
178.52.80.0/20 maxlen: 20
185.136.144.0/22 maxlen: 22
178.52.96.0/20 maxlen: 20
188.139.240.0/20 maxlen: 20
178.52.224.0/20 maxlen: 20
178.52.240.0/20 maxlen: 20
178.52.160.0/20 maxlen: 20
178.52.176.0/20 maxlen: 20
178.52.192.0/20 maxlen: 20
178.52.208.0/20 maxlen: 20
46.213.80.0/20 maxlen: 20
46.213.96.0/20 maxlen: 20
46.213.112.0/20 maxlen: 20
46.213.16.0/20 maxlen: 20
46.213.32.0/20 maxlen: 20
46.213.48.0/20 maxlen: 20
46.213.64.0/20 maxlen: 20
178.52.0.0/20 maxlen: 20
46.213.176.0/20 maxlen: 20
46.213.192.0/20 maxlen: 20
178.52.16.0/20 maxlen: 20
188.139.160.0/20 maxlen: 20
188.139.176.0/20 maxlen: 20
178.52.32.0/20 maxlen: 20
46.213.208.0/20 maxlen: 20
188.139.192.0/20 maxlen: 20
178.52.48.0/20 maxlen: 20
46.213.224.0/20 maxlen: 20
46.213.128.0/20 maxlen: 20
46.213.144.0/20 maxlen: 20
188.139.128.0/20 maxlen: 20
46.213.160.0/20 maxlen: 20
188.139.144.0/20 maxlen: 20
46.57.128.0/20 maxlen: 20
94.252.224.0/20 maxlen: 20
46.57.144.0/20 maxlen: 20
94.252.240.0/21 maxlen: 21
94.252.252.0/22 maxlen: 22
94.252.248.0/22 maxlen: 22
46.57.160.0/20 maxlen: 20
94.252.160.0/20 maxlen: 20
94.252.176.0/22 maxlen: 22
94.252.182.0/24 maxlen: 24
94.252.181.0/24 maxlen: 24
94.252.184.0/24 maxlen: 24
94.252.183.0/24 maxlen: 24
94.252.180.0/24 maxlen: 24
94.252.185.0/24 maxlen: 24
94.252.186.0/24 maxlen: 24
94.252.192.0/20 maxlen: 20
94.252.189.0/24 maxlen: 24
94.252.188.0/24 maxlen: 24
94.252.191.0/24 maxlen: 24
94.252.190.0/24 maxlen: 24
94.252.187.0/24 maxlen: 24
94.252.208.0/20 maxlen: 20
46.57.240.0/20 maxlen: 20
46.213.0.0/20 maxlen: 20
46.57.176.0/20 maxlen: 20
46.57.192.0/20 maxlen: 20
46.57.208.0/20 maxlen: 20
46.57.224.0/20 maxlen: 20
2a00:b800::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:f8:b5:76:c8:c5:25:c0:16:40:57:cb:33:c3:80:77:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24d9da4ffb1bb6d273de1bad5dbbf0d1ff47f0cf
Validity
Not Before: Mar 19 07:11:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e98d4861444a27adbb19d24dae2f42ad4b4bb256
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:35:d1:bb:b2:15:47:60:6d:b5:8d:c4:84:5e:
bd:31:db:0c:7b:97:bf:ca:b5:8f:75:a3:40:46:44:
05:01:18:fc:15:b8:1b:b0:32:93:50:8b:d9:09:58:
72:8f:82:64:c8:0b:5b:07:56:80:6f:c1:d8:81:47:
65:1e:f3:52:34:70:31:1a:62:bd:20:47:a9:ae:5b:
47:8d:e5:74:8b:7a:63:3a:14:60:62:31:ca:6e:b7:
9e:f7:a8:fd:d6:91:50:c6:72:f8:ae:75:ac:8a:d5:
71:ad:a0:f1:05:86:ec:74:8f:58:64:5e:49:2a:44:
d7:eb:d2:71:bf:67:c0:0b:53:3c:27:e5:33:86:64:
9c:a2:2a:25:2c:cf:6d:52:26:73:8d:14:42:24:9d:
cd:ad:9f:9c:24:ea:ac:2f:b6:36:00:d4:19:7e:48:
c1:95:d5:de:54:95:a7:32:60:96:21:5a:56:0f:9d:
38:7d:f4:d8:97:3e:6c:d3:5a:fe:d7:a0:a8:ec:41:
86:7b:fd:f7:02:cc:5a:c8:ad:81:19:6d:96:14:d7:
a2:16:77:22:b4:a7:7f:d6:17:32:8b:ad:b1:51:b8:
b3:4a:7d:a5:87:3c:08:c2:b5:73:f9:78:a0:da:f3:
c4:0c:30:4a:c0:74:4d:9b:c4:fd:27:35:0d:c6:bf:
72:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:8D:48:61:44:4A:27:AD:BB:19:D2:4D:AE:2F:42:AD:4B:4B:B2:56
X509v3 Authority Key Identifier:
keyid:24:D9:DA:4F:FB:1B:B6:D2:73:DE:1B:AD:5D:BB:F0:D1:FF:47:F0:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JNnaT_sbttJz3hutXbvw0f9H8M8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/1eb120-687c-4993-857f-8a03a7c1fe9b/1/6Y1IYURKJ627GdJNri9CrUtLslY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/1eb120-687c-4993-857f-8a03a7c1fe9b/1/JNnaT_sbttJz3hutXbvw0f9H8M8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.57.128.0/17
46.213.0.0/16
94.252.128.0/17
178.52.0.0/16
185.136.144.0/22
188.139.128.0/17
IPv6:
2a00:b800::/32
Signature Algorithm: sha256WithRSAEncryption
1d:c5:9e:0b:b8:05:2c:d4:34:f7:57:92:31:a3:11:bd:29:bc:
a3:4e:3b:5b:96:d8:87:82:17:22:b0:2b:a0:53:02:03:80:58:
8b:2e:70:29:4c:9d:e0:a2:97:70:4b:13:1e:10:68:02:0f:82:
45:55:67:1f:63:e5:c0:2a:2e:02:b0:9d:8a:39:15:2d:8b:5d:
b2:1f:bb:7e:fb:30:1f:99:fe:71:06:3d:8d:14:ce:d5:2b:b4:
7d:be:39:5f:92:96:4f:b5:df:fb:5f:2d:d1:10:c9:73:89:14:
e6:1b:0d:51:48:7e:20:d2:1c:a6:ce:8d:4b:a0:17:c3:22:63:
58:a1:66:16:f3:6d:5c:39:95:1c:d5:66:68:f0:8a:7c:13:9c:
56:da:7a:e4:c1:9a:5e:18:73:f9:1b:45:2d:c6:69:72:81:d2:
84:16:e0:92:74:95:f1:bd:73:06:9b:ae:ed:8c:72:64:27:2b:
8d:a6:6b:9a:dd:d8:39:13:d4:0a:00:51:a1:56:24:05:62:25:
52:e7:2f:23:5a:1b:60:f0:30:ef:37:54:f0:3c:e0:dd:9b:53:
b7:13:b1:5f:eb:7f:93:f8:42:27:99:99:37:3b:ba:6d:91:f9:
09:56:56:91:32:e3:cc:89:7a:aa:ea:b2:50:bb:f3:07:75:74:
2d:26:af:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:33 2025 by rpki-client