Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/A9CquQutKjVtYU3NI4l8BFHsmmc.roa
File: A9CquQutKjVtYU3NI4l8BFHsmmc.roa (raw, json)
Hash identifier: H3UNN4jeLU+6D/XhE/9LnZCR/K+wc0p2sgmVRINapvw=
Subject key identifier: 03:D0:AA:B9:0B:AD:2A:35:6D:61:4D:CD:23:89:7C:04:51:EC:9A:67
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 185D6E09
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/A9CquQutKjVtYU3NI4l8BFHsmmc.roa
Signing time: Wed 25 May 2022 11:39:13 +0000
ROA not before: Wed 25 May 2022 11:39:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58272
IP address blocks: 37.230.187.0/24 maxlen: 24
188.72.119.0/24 maxlen: 24
178.170.231.0/24 maxlen: 24
178.170.139.0/24 maxlen: 24
178.170.137.0/24 maxlen: 24
178.170.140.0/24 maxlen: 24
217.150.90.0/24 maxlen: 24
217.150.89.0/24 maxlen: 24
217.150.88.0/24 maxlen: 24
217.150.91.0/24 maxlen: 24
217.150.94.0/24 maxlen: 24
217.150.93.0/24 maxlen: 24
217.150.92.0/24 maxlen: 24
217.150.95.0/24 maxlen: 24
46.243.149.0/24 maxlen: 24
37.18.0.0/24 maxlen: 24
185.4.150.0/24 maxlen: 24
37.18.15.0/24 maxlen: 24
185.4.149.0/24 maxlen: 24
185.4.148.0/24 maxlen: 24
185.4.151.0/24 maxlen: 24
141.101.248.0/24 maxlen: 24
141.101.255.0/24 maxlen: 24
46.243.139.0/24 maxlen: 24
46.243.138.0/24 maxlen: 24
37.230.134.0/24 maxlen: 24
188.72.73.0/24 maxlen: 24
188.72.83.0/24 maxlen: 24
188.72.81.0/24 maxlen: 24
188.72.80.0/24 maxlen: 24
188.72.85.0/24 maxlen: 24
188.72.84.0/24 maxlen: 24
37.230.163.0/24 maxlen: 24
188.72.86.0/24 maxlen: 24
37.230.170.0/24 maxlen: 24
37.230.171.0/24 maxlen: 24
37.230.176.0/24 maxlen: 24
37.230.183.0/24 maxlen: 24
37.230.182.0/24 maxlen: 24
46.243.204.0/24 maxlen: 24
46.243.208.0/24 maxlen: 24
46.243.207.0/24 maxlen: 24
46.243.214.0/24 maxlen: 24
46.243.217.0/24 maxlen: 24
46.243.216.0/24 maxlen: 24
46.243.222.0/24 maxlen: 24
46.243.221.0/24 maxlen: 24
46.243.225.0/24 maxlen: 24
46.243.223.0/24 maxlen: 24
46.243.232.0/24 maxlen: 24
46.243.233.0/24 maxlen: 24
37.18.63.0/24 maxlen: 24
46.243.240.0/24 maxlen: 24
46.243.236.0/24 maxlen: 24
46.243.235.0/24 maxlen: 24
46.243.234.0/24 maxlen: 24
46.243.238.0/24 maxlen: 24
46.243.237.0/24 maxlen: 24
46.243.243.0/24 maxlen: 24
46.243.242.0/24 maxlen: 24
46.243.241.0/24 maxlen: 24
46.243.246.0/24 maxlen: 24
46.243.250.0/24 maxlen: 24
46.243.249.0/24 maxlen: 24
46.243.248.0/24 maxlen: 24
46.243.247.0/24 maxlen: 24
37.230.131.0/24 maxlen: 24
46.243.251.0/24 maxlen: 24
128.0.71.0/24 maxlen: 24
141.101.191.0/24 maxlen: 24
141.101.132.0/24 maxlen: 24
141.101.133.0/24 maxlen: 24
141.101.135.0/24 maxlen: 24
141.101.145.0/24 maxlen: 24
141.101.143.0/24 maxlen: 24
141.101.148.0/24 maxlen: 24
141.101.147.0/24 maxlen: 24
141.101.150.0/24 maxlen: 24
141.101.149.0/24 maxlen: 24
141.101.155.0/24 maxlen: 24
141.101.154.0/24 maxlen: 24
141.101.153.0/24 maxlen: 24
141.101.159.0/24 maxlen: 24
141.101.158.0/24 maxlen: 24
141.101.156.0/24 maxlen: 24
141.101.162.0/24 maxlen: 24
141.101.161.0/24 maxlen: 24
141.101.160.0/24 maxlen: 24
141.101.166.0/24 maxlen: 24
141.101.165.0/24 maxlen: 24
141.101.164.0/24 maxlen: 24
141.101.168.0/24 maxlen: 24
141.101.167.0/24 maxlen: 24
141.101.171.0/24 maxlen: 24
141.101.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 408776201 (0x185d6e09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: May 25 11:39:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=03d0aab90bad2a356d614dcd23897c0451ec9a67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:ed:70:33:96:01:ee:23:e8:25:21:ca:99:a4:
f9:47:77:dd:02:79:d0:34:29:90:1b:be:bf:f7:f4:
07:8e:36:34:cd:51:2c:d3:0a:18:cc:7f:f3:fb:6c:
68:b6:52:13:ed:3a:2d:8e:8c:98:ac:e8:b5:c7:a5:
3a:23:4b:1f:c3:6b:59:ea:f1:06:ea:ce:06:62:a6:
57:36:cd:99:cd:f4:44:e3:6a:8f:ff:bc:f9:4d:89:
fa:b3:f4:27:8c:08:9f:ea:72:39:4d:83:31:ab:ba:
42:58:ed:e6:ea:98:b0:d0:40:fb:5d:87:32:d3:21:
79:cb:73:2f:e9:26:d2:5d:6a:0a:d4:15:ee:05:89:
a0:e5:01:ab:c4:8e:86:df:e8:66:65:d7:46:65:a9:
2a:78:5b:88:8f:5e:38:15:62:f4:e3:e0:17:b2:3e:
d6:82:4c:5f:23:c8:00:1b:a4:88:5c:63:8f:48:0b:
38:53:80:0b:5d:f8:c5:34:b0:79:10:32:ff:b0:b0:
e4:8e:9d:2c:4a:b9:e9:c5:6f:ca:8c:c0:1f:c2:03:
18:f8:f5:71:70:22:76:fd:cc:81:c6:b0:91:d9:90:
17:7c:0d:39:ae:4f:78:93:46:c0:fe:cf:87:b4:c1:
1b:15:fe:9f:e2:4a:e4:48:93:ee:22:ae:e3:6f:3b:
dd:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:D0:AA:B9:0B:AD:2A:35:6D:61:4D:CD:23:89:7C:04:51:EC:9A:67
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/A9CquQutKjVtYU3NI4l8BFHsmmc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.0.0/24
37.18.15.0/24
37.18.63.0/24
37.230.131.0/24
37.230.134.0/24
37.230.163.0/24
37.230.170.0/23
37.230.176.0/24
37.230.182.0/23
37.230.187.0/24
46.243.138.0/23
46.243.149.0/24
46.243.204.0/24
46.243.207.0-46.243.208.255
46.243.214.0/24
46.243.216.0/23
46.243.221.0-46.243.223.255
46.243.225.0/24
46.243.232.0-46.243.238.255
46.243.240.0/22
46.243.246.0-46.243.251.255
128.0.71.0/24
141.101.132.0/23
141.101.135.0/24
141.101.143.0/24
141.101.145.0/24
141.101.147.0-141.101.150.255
141.101.153.0-141.101.156.255
141.101.158.0-141.101.162.255
141.101.164.0-141.101.168.255
141.101.170.0/23
141.101.191.0/24
141.101.248.0/24
141.101.255.0/24
178.170.137.0/24
178.170.139.0-178.170.140.255
178.170.231.0/24
185.4.148.0/22
188.72.73.0/24
188.72.80.0/23
188.72.83.0-188.72.86.255
188.72.119.0/24
217.150.88.0/21
Signature Algorithm: sha256WithRSAEncryption
28:ad:55:12:cd:6b:fe:a3:30:17:f0:1b:13:ff:f2:26:13:c0:
16:a2:5f:52:72:3f:f5:b2:e0:5b:35:4a:12:33:ac:4e:78:e5:
8b:2d:3b:75:be:4f:c5:7c:cc:07:1c:d5:91:01:c2:22:28:79:
94:91:85:ab:cd:20:b9:ab:e9:98:fc:72:a3:59:59:01:7c:6a:
6c:10:63:61:be:f0:8b:46:7a:16:44:5c:16:5f:5b:02:03:88:
7a:c6:8f:64:d3:f3:b4:a6:3e:44:92:99:b7:a7:62:97:99:c1:
16:45:12:4b:e0:b8:92:c3:a9:be:33:4c:47:eb:9b:a4:5a:29:
59:a7:c5:84:05:0a:bb:24:f7:37:b2:99:49:67:e0:1e:02:4e:
f1:20:35:9b:7c:45:f7:c3:1d:58:d9:a8:42:59:75:f4:ff:79:
c9:43:43:ec:7d:d9:de:d2:43:f4:30:e8:34:fd:ec:1d:27:a7:
96:13:c5:ca:68:13:20:8c:2d:c7:d2:b2:a1:96:35:43:52:73:
b9:ef:f4:a2:c7:60:7a:0b:1e:62:ad:8d:e0:25:85:64:d3:2a:
88:eb:74:e6:b3:1e:4f:0a:19:e0:19:0f:f6:93:a8:e5:ad:e8:
af:9b:53:80:37:49:f1:04:b6:7d:a8:e6:fe:ce:85:1b:82:59:
fb:2e:63:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:38 2024 by rpki-client on console-fra.rpki-client.org