Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/d9b397-e105-4ac9-8537-0085a365a25f/1/9ldDd96wFoGp3uiBVdp743W9LB8.roa
File: 9ldDd96wFoGp3uiBVdp743W9LB8.roa (raw, json)
Hash identifier: 2CM6Fpe9eUgQLZV/sv5xNWtlxL9jytTuRzuIE8sCkCU=
Subject key identifier: F6:57:43:77:DE:B0:16:81:A9:DE:E8:81:55:DA:7B:E3:75:BD:2C:1F
Certificate issuer: /CN=92192e8d785581f72b18644224bd8c3fa8a2d11b
Certificate serial: 0182531B
Authority key identifier: 92:19:2E:8D:78:55:81:F7:2B:18:64:42:24:BD:8C:3F:A8:A2:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khkujXhVgfcrGGRCJL2MP6ii0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/d9b397-e105-4ac9-8537-0085a365a25f/1/9ldDd96wFoGp3uiBVdp743W9LB8.roa
Signing time: Sat 01 Jan 2022 12:54:52 +0000
ROA not before: Sat 01 Jan 2022 12:54:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59588
IP address blocks: 151.236.161.0/24 maxlen: 24
151.236.162.0/23 maxlen: 23
151.236.162.0/24 maxlen: 24
151.236.163.0/24 maxlen: 24
151.236.160.0/24 maxlen: 24
151.236.164.0/24 maxlen: 24
151.236.165.0/24 maxlen: 24
151.236.166.0/24 maxlen: 24
151.236.172.0/23 maxlen: 23
151.236.171.0/24 maxlen: 24
151.236.172.0/24 maxlen: 24
151.236.168.0/23 maxlen: 23
151.236.168.0/24 maxlen: 24
151.236.169.0/24 maxlen: 24
151.236.170.0/24 maxlen: 24
151.236.170.0/23 maxlen: 23
151.236.166.0/23 maxlen: 23
151.236.167.0/24 maxlen: 24
151.236.173.0/24 maxlen: 24
151.236.176.0/23 maxlen: 23
151.236.175.0/24 maxlen: 24
151.236.176.0/24 maxlen: 24
151.236.177.0/24 maxlen: 24
151.236.174.0/23 maxlen: 23
151.236.174.0/24 maxlen: 24
151.236.178.0/23 maxlen: 23
151.236.178.0/24 maxlen: 24
151.236.179.0/24 maxlen: 24
151.236.182.0/24 maxlen: 24
151.236.180.0/24 maxlen: 24
151.236.180.0/23 maxlen: 23
151.236.181.0/24 maxlen: 24
151.236.189.0/24 maxlen: 24
151.236.190.0/24 maxlen: 24
151.236.191.0/24 maxlen: 24
151.236.188.0/23 maxlen: 23
151.236.188.0/24 maxlen: 24
45.153.119.0/24 maxlen: 24
45.153.116.0/24 maxlen: 24
45.153.117.0/24 maxlen: 24
45.153.118.0/24 maxlen: 24
2a10:2200:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25318171 (0x182531b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92192e8d785581f72b18644224bd8c3fa8a2d11b
Validity
Not Before: Jan 1 12:54:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f6574377deb01681a9dee88155da7be375bd2c1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:3e:5d:24:1e:99:bb:73:0d:86:49:33:a9:e0:
01:bb:3b:ac:b5:0b:93:13:78:82:e1:95:3b:47:0d:
b7:97:83:0c:6c:35:fc:8b:0b:3e:c5:be:35:aa:a0:
8a:7a:82:0e:03:01:b7:94:4d:03:37:96:a9:69:27:
09:97:7b:c0:24:59:30:ea:f2:4c:f4:f6:2b:63:40:
11:13:d4:cf:e6:31:79:61:e4:bd:ab:32:a6:7d:6c:
86:26:65:77:5d:39:57:c0:1a:90:9d:9a:bb:bc:0e:
0d:71:d2:8f:0b:f6:29:c5:62:43:f9:8c:3c:95:e0:
ba:9e:ec:39:95:db:db:01:9d:34:41:3b:db:66:c9:
cb:1a:7d:c1:75:4f:d1:b4:fc:ae:3b:57:ea:c1:d2:
56:9c:45:0e:a6:1e:09:85:c5:a9:32:db:bd:92:96:
8f:3e:49:cd:48:01:f1:35:ed:c8:42:b8:2f:4b:b7:
69:d8:88:57:9d:55:cc:80:fc:14:b5:ce:fc:d3:0b:
85:24:70:b3:11:61:3b:d3:e3:1c:6e:83:a2:d4:a1:
31:1d:ee:9e:93:2a:76:a8:01:bc:4f:1c:60:ec:9d:
ad:52:55:13:b5:58:7e:b7:68:ab:25:11:0c:31:a8:
04:6f:6d:b7:30:b2:68:ce:7c:32:94:ea:68:d8:e2:
c6:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:57:43:77:DE:B0:16:81:A9:DE:E8:81:55:DA:7B:E3:75:BD:2C:1F
X509v3 Authority Key Identifier:
keyid:92:19:2E:8D:78:55:81:F7:2B:18:64:42:24:BD:8C:3F:A8:A2:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khkujXhVgfcrGGRCJL2MP6ii0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/d9b397-e105-4ac9-8537-0085a365a25f/1/9ldDd96wFoGp3uiBVdp743W9LB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/d9b397-e105-4ac9-8537-0085a365a25f/1/khkujXhVgfcrGGRCJL2MP6ii0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.116.0/22
151.236.160.0-151.236.182.255
151.236.188.0/22
IPv6:
2a10:2200:2::/48
Signature Algorithm: sha256WithRSAEncryption
61:a1:25:78:22:80:7b:73:81:69:5a:cc:94:ef:d2:d5:f4:16:
af:3d:00:e9:f3:9d:69:81:03:3c:cf:2a:37:02:ef:cc:99:b8:
5f:c7:f6:c3:0f:d0:a5:5d:ca:bc:83:44:a2:67:55:ad:a8:94:
fb:df:7f:6a:2c:0d:61:45:c3:45:df:45:95:1c:fc:73:53:6c:
bb:9f:68:00:6c:3a:c6:c7:e2:5e:2d:30:3a:0c:41:51:00:38:
b4:c2:38:99:8d:7e:92:f3:7d:47:a1:e6:55:f8:85:f2:ab:a1:
31:ea:0f:e4:d8:30:d1:9f:f8:9d:9e:66:90:46:59:cb:a3:91:
1b:c7:3a:c7:3b:ef:b0:fb:23:80:49:9c:1d:50:94:7d:f5:ae:
54:36:41:f1:58:83:1f:82:cf:88:98:f1:97:e6:c1:96:db:33:
99:44:ca:5c:73:49:fb:e1:68:26:ea:8d:8b:e1:b3:8c:a3:9e:
fd:32:a7:d1:12:32:75:f4:7e:48:15:fe:ee:4c:0c:08:d3:d4:
03:19:f6:be:de:50:0a:eb:d8:23:93:33:bb:2f:63:61:0f:9a:
59:22:1c:b3:ed:16:90:ce:e5:40:dd:2b:f3:46:d4:55:1f:39:
26:18:ec:ae:74:6c:59:36:65:30:d5:eb:1c:70:61:ea:29:3f:
5c:d1:dc:12
-----BEGIN CERTIFICATE-----
MIIFFDCCA/ygAwIBAgIEAYJTGzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MjE5MmU4ZDc4NTU4MWY3MmIxODY0NDIyNGJkOGMzZmE4YTJkMTFiMB4XDTIyMDEw
MTEyNTQ1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjY1NzQzNzdkZWIw
MTY4MWE5ZGVlODgxNTVkYTdiZTM3NWJkMmMxZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALY+XSQembtzDYZJM6ngAbs7rLULkxN4guGVO0cNt5eDDGw1
/IsLPsW+NaqginqCDgMBt5RNAzeWqWknCZd7wCRZMOryTPT2K2NAERPUz+YxeWHk
vasypn1shiZld105V8AakJ2au7wODXHSjwv2KcViQ/mMPJXgup7sOZXb2wGdNEE7
22bJyxp9wXVP0bT8rjtX6sHSVpxFDqYeCYXFqTLbvZKWjz5JzUgB8TXtyEK4L0u3
adiIV51VzID8FLXO/NMLhSRwsxFhO9PjHG6DotShMR3unpMqdqgBvE8cYOydrVJV
E7VYfrdoqyURDDGoBG9ttzCyaM58MpTqaNjixtMCAwEAAaOCAi4wggIqMB0GA1Ud
DgQWBBT2V0N33rAWgane6IFV2nvjdb0sHzAfBgNVHSMEGDAWgBSSGS6NeFWB9ysY
ZEIkvYw/qKLRGzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2toa3VqWGhWZ2ZjckdHUkNKTDJNUDZpaTBScy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2YvZDliMzk3LWUxMDUtNGFjOS04NTM3LTAwODVhMzY1YTI1Zi8x
LzlsZERkOTZ3Rm9HcDN1aUJWZHA3NDNXOUxCOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Yv
ZDliMzk3LWUxMDUtNGFjOS04NTM3LTAwODVhMzY1YTI1Zi8xL2toa3VqWGhWZ2Zj
ckdHUkNKTDJNUDZpaTBScy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBE
BggrBgEFBQcBBwEB/wQ1MDMwIAQCAAEwGgMEAi2ZdDAMAwQFl+ygAwQAl+y2AwQC
l+y8MA8EAgACMAkDBwAqECIAAAIwDQYJKoZIhvcNAQELBQADggEBAGGhJXgigHtz
gWlazJTv0tX0Fq89AOnznWmBAzzPKjcC78yZuF/H9sMP0KVdyryDRKJnVa2olPvf
f2osDWFFw0XfRZUc/HNTbLufaABsOsbH4l4tMDoMQVEAOLTCOJmNfpLzfUeh5lX4
hfKroTHqD+TYMNGf+J2eZpBGWcujkRvHOsc777D7I4BJnB1QlH31rlQ2QfFYgx+C
z4iY8ZfmwZbbM5lEylxzSfvhaCbqjYvhs4yjnv0yp9ESMnX0fkgV/u5MDAjT1AMZ
9r7eUArr2COTM7svY2EPmlkiHLPtFpDO5UDdK/NG1FUfOSYY7K50bFk2ZTDV6xxw
YeopP1zR3BI=
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:58:18 2025 by rpki-client