Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/9CEJ0m-wT_InNvZAA6j_215p5XI.roa
File: 9CEJ0m-wT_InNvZAA6j_215p5XI.roa (raw, json)
Hash identifier: BgH2v9fUtpVcrC/5TfnJfQnojtMLK/2tQAdOMxUyED0=
Subject key identifier: F4:21:09:D2:6F:B0:4F:F2:27:36:F6:40:03:A8:FF:DB:5E:69:E5:72
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 177DD5E8
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/9CEJ0m-wT_InNvZAA6j_215p5XI.roa
Signing time: Tue 01 Mar 2022 22:24:31 +0000
ROA not before: Tue 01 Mar 2022 22:24:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58272
IP address blocks: 37.230.187.0/24 maxlen: 24
188.72.119.0/24 maxlen: 24
178.170.139.0/24 maxlen: 24
178.170.137.0/24 maxlen: 24
178.170.140.0/24 maxlen: 24
217.150.90.0/24 maxlen: 24
217.150.89.0/24 maxlen: 24
217.150.88.0/24 maxlen: 24
217.150.91.0/24 maxlen: 24
217.150.94.0/24 maxlen: 24
217.150.93.0/24 maxlen: 24
178.170.146.0/24 maxlen: 24
217.150.92.0/24 maxlen: 24
217.150.95.0/24 maxlen: 24
46.243.149.0/24 maxlen: 24
185.4.150.0/24 maxlen: 24
37.18.15.0/24 maxlen: 24
185.4.149.0/24 maxlen: 24
185.4.148.0/24 maxlen: 24
185.4.151.0/24 maxlen: 24
141.101.248.0/24 maxlen: 24
141.101.255.0/24 maxlen: 24
46.243.139.0/24 maxlen: 24
46.243.138.0/24 maxlen: 24
37.230.134.0/24 maxlen: 24
188.72.83.0/24 maxlen: 24
188.72.81.0/24 maxlen: 24
188.72.80.0/24 maxlen: 24
188.72.85.0/24 maxlen: 24
188.72.84.0/24 maxlen: 24
188.72.86.0/24 maxlen: 24
188.72.88.0/24 maxlen: 24
188.72.90.0/24 maxlen: 24
37.230.170.0/24 maxlen: 24
37.230.171.0/24 maxlen: 24
37.230.176.0/24 maxlen: 24
37.230.183.0/24 maxlen: 24
37.230.182.0/24 maxlen: 24
46.243.204.0/24 maxlen: 24
46.243.213.0/24 maxlen: 24
46.243.208.0/24 maxlen: 24
46.243.207.0/24 maxlen: 24
46.243.214.0/24 maxlen: 24
46.243.217.0/24 maxlen: 24
46.243.216.0/24 maxlen: 24
46.243.222.0/24 maxlen: 24
46.243.221.0/24 maxlen: 24
46.243.225.0/24 maxlen: 24
46.243.223.0/24 maxlen: 24
46.243.232.0/24 maxlen: 24
46.243.233.0/24 maxlen: 24
37.18.63.0/24 maxlen: 24
46.243.240.0/24 maxlen: 24
46.243.236.0/24 maxlen: 24
46.243.235.0/24 maxlen: 24
46.243.234.0/24 maxlen: 24
46.243.238.0/24 maxlen: 24
46.243.237.0/24 maxlen: 24
46.243.243.0/24 maxlen: 24
46.243.242.0/24 maxlen: 24
46.243.241.0/24 maxlen: 24
46.243.246.0/24 maxlen: 24
37.230.129.0/24 maxlen: 24
46.243.250.0/24 maxlen: 24
37.230.128.0/24 maxlen: 24
46.243.249.0/24 maxlen: 24
46.243.248.0/24 maxlen: 24
46.243.247.0/24 maxlen: 24
37.230.131.0/24 maxlen: 24
46.243.251.0/24 maxlen: 24
128.0.71.0/24 maxlen: 24
141.101.132.0/24 maxlen: 24
141.101.133.0/24 maxlen: 24
141.101.135.0/24 maxlen: 24
141.101.145.0/24 maxlen: 24
141.101.143.0/24 maxlen: 24
141.101.148.0/24 maxlen: 24
141.101.147.0/24 maxlen: 24
141.101.150.0/24 maxlen: 24
141.101.149.0/24 maxlen: 24
141.101.155.0/24 maxlen: 24
141.101.154.0/24 maxlen: 24
141.101.153.0/24 maxlen: 24
141.101.159.0/24 maxlen: 24
141.101.158.0/24 maxlen: 24
141.101.156.0/24 maxlen: 24
141.101.162.0/24 maxlen: 24
141.101.161.0/24 maxlen: 24
141.101.160.0/24 maxlen: 24
141.101.166.0/24 maxlen: 24
141.101.165.0/24 maxlen: 24
141.101.164.0/24 maxlen: 24
141.101.168.0/24 maxlen: 24
141.101.167.0/24 maxlen: 24
141.101.171.0/24 maxlen: 24
141.101.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 394122728 (0x177dd5e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Mar 1 22:24:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f42109d26fb04ff22736f64003a8ffdb5e69e572
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:7b:c4:52:8f:d5:bc:cd:c5:ea:8c:84:4e:2e:
d1:a5:46:e6:03:53:e3:e7:48:d9:0c:17:62:1d:3c:
5c:84:6d:82:68:09:8e:00:4d:5e:8b:01:6e:18:9f:
ce:1c:e6:be:41:11:e9:73:ed:bf:f8:be:03:7c:20:
1e:ec:e2:8e:f1:ad:c1:d3:a3:34:ae:dc:c4:12:3c:
29:84:c5:a4:95:3b:fa:1c:00:e2:ca:57:22:a0:53:
61:da:39:99:00:8a:3b:66:e9:5c:ff:ea:d4:7b:49:
e8:b2:e4:58:cc:38:e9:a4:63:cf:a7:9f:25:47:fa:
8f:0a:a0:2b:51:e1:a1:88:44:a8:f1:74:8f:52:67:
7c:e3:c9:21:4a:39:77:6c:7a:8b:a5:e2:2a:5d:fb:
62:d0:7b:17:44:1e:d4:8a:42:f0:fe:98:0d:2e:47:
8d:4f:d6:a4:dc:71:d9:a8:51:ab:ec:a2:2c:cf:c2:
87:0e:03:87:f3:4d:f8:3f:dc:7f:f5:ff:52:c1:73:
77:17:83:d4:d9:4e:c3:7b:4b:79:74:56:67:ea:0c:
bd:a9:ce:f4:5f:09:a4:b1:15:d2:4d:71:cf:b7:b9:
e9:cc:67:ad:29:5c:d2:21:cf:26:79:94:47:a0:2e:
25:ec:bc:15:01:de:1a:58:61:11:66:00:8d:4e:4c:
85:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:21:09:D2:6F:B0:4F:F2:27:36:F6:40:03:A8:FF:DB:5E:69:E5:72
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/9CEJ0m-wT_InNvZAA6j_215p5XI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.15.0/24
37.18.63.0/24
37.230.128.0/23
37.230.131.0/24
37.230.134.0/24
37.230.170.0/23
37.230.176.0/24
37.230.182.0/23
37.230.187.0/24
46.243.138.0/23
46.243.149.0/24
46.243.204.0/24
46.243.207.0-46.243.208.255
46.243.213.0-46.243.214.255
46.243.216.0/23
46.243.221.0-46.243.223.255
46.243.225.0/24
46.243.232.0-46.243.238.255
46.243.240.0/22
46.243.246.0-46.243.251.255
128.0.71.0/24
141.101.132.0/23
141.101.135.0/24
141.101.143.0/24
141.101.145.0/24
141.101.147.0-141.101.150.255
141.101.153.0-141.101.156.255
141.101.158.0-141.101.162.255
141.101.164.0-141.101.168.255
141.101.170.0/23
141.101.248.0/24
141.101.255.0/24
178.170.137.0/24
178.170.139.0-178.170.140.255
178.170.146.0/24
185.4.148.0/22
188.72.80.0/23
188.72.83.0-188.72.86.255
188.72.88.0/24
188.72.90.0/24
188.72.119.0/24
217.150.88.0/21
Signature Algorithm: sha256WithRSAEncryption
8d:53:f2:7c:14:76:1e:20:af:6a:b1:1c:92:96:5f:d9:16:33:
85:3d:ad:f4:9a:6d:89:da:b5:75:20:fd:08:c9:57:5d:de:99:
e9:be:b4:e6:83:7e:3e:5e:09:ca:f0:6c:ed:01:c2:37:61:6b:
94:12:ae:b1:49:7c:6d:e4:20:60:d8:30:aa:b4:e6:f4:4d:11:
c7:3c:e0:37:57:8f:42:c7:cf:a8:d1:43:b4:8c:3a:3a:08:4b:
1f:ab:44:bd:a7:b5:55:09:9d:fe:d5:0c:55:e6:be:2f:43:e1:
ba:84:52:f3:5a:ce:d5:e6:a0:ca:24:59:29:f9:84:24:68:68:
7d:e4:8f:d1:09:f0:e2:f3:10:b0:af:85:84:5c:fc:a8:82:14:
ae:ab:8e:99:e6:ad:a0:34:a4:d0:5e:2e:29:b9:5d:bf:60:7b:
41:8f:92:61:41:b5:14:02:90:17:9e:5c:db:1a:6e:8c:02:e0:
5c:db:e3:0d:aa:3f:26:9e:9d:6d:79:bf:2d:a3:36:b7:ae:6a:
f1:fa:99:89:24:a0:df:d9:c1:f4:e5:ea:2a:56:10:b6:2d:ea:
4d:d6:19:51:18:44:90:1b:aa:50:c4:d6:39:2e:a6:0c:03:7a:
d4:47:32:67:87:89:95:fc:c7:b0:78:0f:d9:72:84:f2:80:4e:
60:89:5e:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:38 2024 by rpki-client on console-fra.rpki-client.org