Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/v7H7SSUZ2wuxGid5RZX2Mokw8xE.roa
File: v7H7SSUZ2wuxGid5RZX2Mokw8xE.roa (raw, json)
Hash identifier: hPxOfIg5KWrYOw0TXq1+7SiIfFGYjqrntOakV/AthLE=
Subject key identifier: BF:B1:FB:49:25:19:DB:0B:B1:1A:27:79:45:95:F6:32:89:30:F3:11
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 0591B738
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/v7H7SSUZ2wuxGid5RZX2Mokw8xE.roa
Signing time: Sat 12 Mar 2022 06:32:42 +0000
ROA not before: Sat 12 Mar 2022 06:32:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43624
IP address blocks: 217.145.227.0/24 maxlen: 24
45.66.208.0/24 maxlen: 24
185.61.217.0/24 maxlen: 24
185.61.219.0/24 maxlen: 24
185.61.218.0/24 maxlen: 24
147.78.183.0/24 maxlen: 24
147.78.180.0/24 maxlen: 24
147.78.182.0/24 maxlen: 24
147.78.181.0/24 maxlen: 24
185.61.221.0/24 maxlen: 24
185.61.223.0/24 maxlen: 24
185.61.222.0/24 maxlen: 24
217.145.226.0/24 maxlen: 24
217.145.224.0/24 maxlen: 24
194.104.11.0/24 maxlen: 24
185.68.185.0/24 maxlen: 24
45.132.184.0/24 maxlen: 24
5.181.170.0/24 maxlen: 24
213.108.2.0/24 maxlen: 24
45.148.124.0/24 maxlen: 24
45.138.100.0/24 maxlen: 24
77.220.194.0/24 maxlen: 24
77.220.193.0/24 maxlen: 24
185.88.100.0/24 maxlen: 24
45.10.166.0/24 maxlen: 24
93.177.118.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93435704 (0x591b738)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Mar 12 06:32:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bfb1fb492519db0bb11a27794595f6328930f311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f7:9c:21:2d:91:2a:70:84:f8:c1:05:28:4f:
be:f7:6d:9f:61:30:cb:0c:e2:12:d3:39:66:bf:24:
91:e8:4f:06:80:ff:d6:ef:d0:f1:47:34:87:ca:7a:
e5:00:1e:9e:c3:da:c5:2b:e1:d8:c8:a8:b4:72:48:
d9:20:ca:c9:1d:28:74:f0:6f:e5:fa:e3:f4:f9:52:
16:21:2c:0b:cb:b7:87:c6:8d:c2:14:f8:70:da:11:
7c:f0:82:7f:12:a0:c2:7e:f5:f8:5d:8e:6b:9c:ef:
56:73:36:11:b4:89:97:1b:92:86:24:62:71:e0:76:
f0:37:b4:90:9a:55:b9:79:fe:bf:7b:ed:9b:23:33:
e4:77:2c:fa:30:25:f2:64:48:fc:a3:ab:f7:f1:50:
72:6e:d7:a2:ab:6d:69:d6:88:e9:33:ae:1b:d9:9e:
2c:31:d8:6a:9b:f3:db:f5:9e:2f:25:3d:e6:a9:f2:
10:21:2b:22:72:b7:37:69:a5:28:13:36:f5:eb:f9:
fc:60:66:7b:4b:8e:6b:e6:7b:01:ba:36:e2:fe:bc:
9b:1d:28:e2:92:5b:ea:aa:f2:e2:99:ec:92:5d:86:
56:06:8f:5f:a1:30:96:c4:a7:af:ad:85:17:5c:bd:
32:4c:2d:36:a0:eb:2c:b0:31:62:a8:5f:b6:c3:66:
2a:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:B1:FB:49:25:19:DB:0B:B1:1A:27:79:45:95:F6:32:89:30:F3:11
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/v7H7SSUZ2wuxGid5RZX2Mokw8xE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.170.0/24
45.10.166.0/24
45.66.208.0/24
45.132.184.0/24
45.138.100.0/24
45.148.124.0/24
77.220.193.0-77.220.194.255
93.177.118.0/23
147.78.180.0/22
185.61.217.0-185.61.219.255
185.61.221.0-185.61.223.255
185.68.185.0/24
185.88.100.0/24
194.104.11.0/24
213.108.2.0/24
217.145.224.0/24
217.145.226.0/23
Signature Algorithm: sha256WithRSAEncryption
46:99:1c:f7:9d:28:b9:3c:2e:f0:51:4a:08:f4:9e:9d:f5:37:
a3:d2:71:9d:a2:4b:65:ad:0f:21:72:a7:ba:26:a7:86:df:a8:
e7:6c:b4:6f:3b:09:2c:60:57:cc:7b:d8:ca:e7:37:7f:4a:2f:
73:11:ee:da:c0:ed:fd:52:07:56:5d:43:b4:d7:1f:7f:b4:39:
65:55:33:d9:c9:bf:7f:1a:5e:5e:74:6a:2e:fb:52:25:01:ce:
7a:2f:b0:6d:f3:35:00:89:0d:be:86:90:9f:1e:55:e1:e2:f9:
d7:69:9d:c2:b1:83:37:76:9b:16:1c:e3:cf:ed:82:c3:4e:6e:
33:f6:93:2b:d9:ae:9c:e3:10:1f:09:24:28:5d:9d:03:bb:9e:
d3:14:99:50:16:b4:ec:74:96:51:96:f9:43:7c:55:c3:db:89:
af:16:7c:6f:f6:bd:df:6e:25:a4:77:05:bd:7a:a6:f8:b0:c7:
8a:e2:d3:65:87:9e:a9:21:8e:4c:72:fa:14:be:10:ee:41:13:
6c:7a:c8:83:29:01:de:2f:6c:c4:1e:f5:98:ab:a2:9b:63:44:
9f:ef:8e:e6:39:12:dd:23:af:86:37:63:e9:4b:8f:77:b0:01:
81:65:21:f5:5a:01:a5:04:4a:0f:83:81:01:19:af:5b:ad:77:
80:ad:a6:c3
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:17 2024 by rpki-client on console-ams.rpki-client.org