Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/790cee-d54e-4598-8bc1-2170c5c1d3ed/1/oDvD3Bl92IY3W2i9VH4lQ_k_9VY.roa
File: oDvD3Bl92IY3W2i9VH4lQ_k_9VY.roa (raw, json)
Hash identifier: 87rzFxmgeaMpPGyDSVV4fMV8d+WqPXLQYiQ6SlC+reg=
Subject key identifier: A0:3B:C3:DC:19:7D:D8:86:37:5B:68:BD:54:7E:25:43:F9:3F:F5:56
Certificate issuer: /CN=4ddb3dcdf5e6bee09825c37bf3b8bdf28b6fb593
Certificate serial: 18BB2C43
Authority key identifier: 4D:DB:3D:CD:F5:E6:BE:E0:98:25:C3:7B:F3:B8:BD:F2:8B:6F:B5:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tds9zfXmvuCYJcN787i98otvtZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/790cee-d54e-4598-8bc1-2170c5c1d3ed/1/oDvD3Bl92IY3W2i9VH4lQ_k_9VY.roa
Signing time: Fri 25 Feb 2022 11:26:47 +0000
ROA not before: Fri 25 Feb 2022 11:26:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31200
IP address blocks: 178.49.248.0/22 maxlen: 22
178.49.200.0/22 maxlen: 22
5.129.0.0/17 maxlen: 17
37.193.0.0/16 maxlen: 16
5.129.128.0/19 maxlen: 19
37.195.0.0/16 maxlen: 16
5.131.0.0/16 maxlen: 16
178.49.12.0/22 maxlen: 22
5.130.0.0/16 maxlen: 16
37.194.0.0/16 maxlen: 16
178.49.56.0/22 maxlen: 22
37.192.0.0/16 maxlen: 16
5.128.0.0/16 maxlen: 16
5.129.186.0/24 maxlen: 24
5.129.181.0/24 maxlen: 24
5.129.184.0/23 maxlen: 23
37.192.0.0/14 maxlen: 14
178.49.0.0/17 maxlen: 17
178.49.0.0/16 maxlen: 24
178.49.132.0/24 maxlen: 24
178.49.128.0/17 maxlen: 24
178.49.133.0/24 maxlen: 24
178.49.145.0/24 maxlen: 24
178.49.144.0/24 maxlen: 24
178.49.142.0/24 maxlen: 24
178.49.141.0/24 maxlen: 24
178.49.146.0/24 maxlen: 24
178.49.148.0/24 maxlen: 24
178.49.147.0/24 maxlen: 24
178.49.152.0/23 maxlen: 23
178.49.152.0/24 maxlen: 24
178.49.152.0/22 maxlen: 22
178.49.150.0/23 maxlen: 23
178.49.159.0/24 maxlen: 24
178.49.158.0/24 maxlen: 24
178.49.156.0/23 maxlen: 23
178.49.154.0/24 maxlen: 24
178.49.154.0/23 maxlen: 23
5.128.119.0/24 maxlen: 24
5.131.240.0/20 maxlen: 20
5.131.251.0/24 maxlen: 24
2a00:7700::/32 maxlen: 32
2a00:7700:8a02::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 414919747 (0x18bb2c43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ddb3dcdf5e6bee09825c37bf3b8bdf28b6fb593
Validity
Not Before: Feb 25 11:26:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a03bc3dc197dd886375b68bd547e2543f93ff556
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:1f:46:78:3f:1a:70:81:04:1e:29:4d:32:71:
d9:3a:66:78:a5:05:d2:4a:34:2f:49:1a:4d:56:b2:
50:1e:b3:ba:6d:08:1b:fb:86:74:7a:9b:d2:1b:3e:
dc:12:45:b6:ae:09:a1:7c:30:b3:2e:d1:46:d3:b6:
d0:aa:6c:78:06:50:bd:b9:d3:8c:dd:e6:60:f4:98:
ad:43:03:c6:8a:2e:57:7b:8a:c7:ea:42:c1:fb:05:
29:02:b1:19:df:97:2b:15:6a:8e:cb:a0:fa:ca:16:
88:74:4c:4a:dd:54:2b:f4:92:05:10:09:6c:61:72:
00:31:dc:f0:89:0f:e6:e4:7d:82:7b:9a:e5:e9:7f:
ad:8e:a6:04:7e:0c:e0:c6:dd:56:53:57:ab:bd:b1:
1f:51:71:e3:04:82:b9:fb:f3:fe:c1:3a:ef:74:28:
e5:d1:e1:10:f2:39:ac:ac:94:50:45:bc:f8:68:a5:
ff:81:19:85:be:16:13:63:58:2d:55:2e:f8:a9:8a:
07:6e:ba:87:56:85:6a:05:b4:ae:0b:07:9e:58:88:
97:3f:4b:47:73:cf:fa:6d:5c:e3:26:05:13:60:4e:
39:21:a5:62:42:79:c9:0c:3c:43:b0:b3:3c:a1:74:
4d:54:9b:39:bb:0b:cd:4f:fe:cf:78:e9:31:d0:4c:
b1:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:3B:C3:DC:19:7D:D8:86:37:5B:68:BD:54:7E:25:43:F9:3F:F5:56
X509v3 Authority Key Identifier:
keyid:4D:DB:3D:CD:F5:E6:BE:E0:98:25:C3:7B:F3:B8:BD:F2:8B:6F:B5:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tds9zfXmvuCYJcN787i98otvtZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/790cee-d54e-4598-8bc1-2170c5c1d3ed/1/oDvD3Bl92IY3W2i9VH4lQ_k_9VY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/790cee-d54e-4598-8bc1-2170c5c1d3ed/1/Tds9zfXmvuCYJcN787i98otvtZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.128.0.0-5.129.159.255
5.129.181.0/24
5.129.184.0-5.129.186.255
5.130.0.0/15
37.192.0.0/14
178.49.0.0/16
IPv6:
2a00:7700::/32
Signature Algorithm: sha256WithRSAEncryption
a4:d7:88:c0:9b:21:f0:8b:73:cb:21:1d:92:86:97:d5:62:f2:
e6:0f:3c:0e:df:05:2d:99:24:e8:7b:b3:84:df:f5:ca:24:83:
ad:6e:1f:41:e6:21:43:48:16:bb:25:d2:76:83:1d:6e:46:0d:
b1:08:4a:2e:cc:89:97:b6:1e:c6:e3:92:c6:54:27:c8:39:fc:
96:3a:1c:dd:25:be:5a:81:01:13:84:53:b5:11:45:7d:93:96:
1d:9b:51:9c:b9:3a:20:ef:b5:d0:48:04:17:9b:42:3f:9a:80:
64:b5:44:34:29:e3:66:ce:f6:b7:1c:b8:b1:ab:1a:43:90:de:
a8:53:aa:8a:7c:14:93:79:85:50:d6:4f:4b:03:af:e3:6f:e6:
ca:46:9f:50:6f:02:c3:97:25:22:78:d5:ec:b8:40:85:47:d3:
54:6d:df:a7:b5:34:60:4c:99:7b:09:68:90:0e:82:d9:69:4f:
28:5e:08:cf:01:c5:bd:ec:4d:70:83:f6:81:17:10:52:89:ba:
9b:ef:70:ed:28:55:33:b1:bb:2e:dd:60:f6:43:af:b9:87:4b:
a2:5f:71:f8:ae:4a:f0:98:02:d4:43:64:f5:2d:5a:fa:4c:9c:
1a:ff:7b:36:f5:d8:62:f4:32:6b:74:85:a9:08:60:54:29:8f:
eb:bb:5f:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org