Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/CCeWvyiPt2W-nM7RgMXMQ9838j0.roa
File: CCeWvyiPt2W-nM7RgMXMQ9838j0.roa (raw, json)
Hash identifier: ALCVw9KZLqLDk7RRfhgfCOZjpQdj8i8DHodfjPgKAYE=
Subject key identifier: 08:27:96:BF:28:8F:B7:65:BE:9C:CE:D1:80:C5:CC:43:DF:37:F2:3D
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 181E8057
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/CCeWvyiPt2W-nM7RgMXMQ9838j0.roa
Signing time: Wed 27 Apr 2022 14:32:13 +0000
ROA not before: Wed 27 Apr 2022 14:32:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58272
IP address blocks: 37.230.187.0/24 maxlen: 24
188.72.119.0/24 maxlen: 24
178.170.231.0/24 maxlen: 24
178.170.139.0/24 maxlen: 24
178.170.137.0/24 maxlen: 24
178.170.140.0/24 maxlen: 24
217.150.90.0/24 maxlen: 24
217.150.89.0/24 maxlen: 24
217.150.88.0/24 maxlen: 24
217.150.91.0/24 maxlen: 24
217.150.94.0/24 maxlen: 24
217.150.93.0/24 maxlen: 24
217.150.92.0/24 maxlen: 24
217.150.95.0/24 maxlen: 24
46.243.149.0/24 maxlen: 24
37.18.0.0/24 maxlen: 24
185.4.150.0/24 maxlen: 24
37.18.15.0/24 maxlen: 24
185.4.149.0/24 maxlen: 24
185.4.148.0/24 maxlen: 24
185.4.151.0/24 maxlen: 24
141.101.248.0/24 maxlen: 24
141.101.255.0/24 maxlen: 24
46.243.139.0/24 maxlen: 24
46.243.138.0/24 maxlen: 24
37.230.134.0/24 maxlen: 24
188.72.83.0/24 maxlen: 24
188.72.81.0/24 maxlen: 24
188.72.80.0/24 maxlen: 24
188.72.85.0/24 maxlen: 24
188.72.84.0/24 maxlen: 24
37.230.163.0/24 maxlen: 24
188.72.86.0/24 maxlen: 24
37.230.170.0/24 maxlen: 24
37.230.171.0/24 maxlen: 24
37.230.176.0/24 maxlen: 24
37.230.183.0/24 maxlen: 24
37.230.182.0/24 maxlen: 24
46.243.204.0/24 maxlen: 24
46.243.213.0/24 maxlen: 24
46.243.208.0/24 maxlen: 24
46.243.207.0/24 maxlen: 24
46.243.214.0/24 maxlen: 24
46.243.217.0/24 maxlen: 24
46.243.216.0/24 maxlen: 24
46.243.222.0/24 maxlen: 24
46.243.221.0/24 maxlen: 24
46.243.225.0/24 maxlen: 24
46.243.223.0/24 maxlen: 24
46.243.232.0/24 maxlen: 24
46.243.233.0/24 maxlen: 24
37.18.63.0/24 maxlen: 24
46.243.240.0/24 maxlen: 24
46.243.236.0/24 maxlen: 24
46.243.235.0/24 maxlen: 24
46.243.234.0/24 maxlen: 24
46.243.238.0/24 maxlen: 24
46.243.237.0/24 maxlen: 24
46.243.243.0/24 maxlen: 24
46.243.242.0/24 maxlen: 24
46.243.241.0/24 maxlen: 24
46.243.246.0/24 maxlen: 24
46.243.250.0/24 maxlen: 24
46.243.249.0/24 maxlen: 24
46.243.248.0/24 maxlen: 24
46.243.247.0/24 maxlen: 24
37.230.131.0/24 maxlen: 24
46.243.251.0/24 maxlen: 24
128.0.71.0/24 maxlen: 24
141.101.191.0/24 maxlen: 24
141.101.132.0/24 maxlen: 24
141.101.133.0/24 maxlen: 24
141.101.135.0/24 maxlen: 24
141.101.145.0/24 maxlen: 24
141.101.143.0/24 maxlen: 24
141.101.148.0/24 maxlen: 24
141.101.147.0/24 maxlen: 24
141.101.150.0/24 maxlen: 24
141.101.149.0/24 maxlen: 24
141.101.155.0/24 maxlen: 24
141.101.154.0/24 maxlen: 24
141.101.153.0/24 maxlen: 24
141.101.159.0/24 maxlen: 24
141.101.158.0/24 maxlen: 24
141.101.156.0/24 maxlen: 24
141.101.162.0/24 maxlen: 24
141.101.161.0/24 maxlen: 24
141.101.160.0/24 maxlen: 24
141.101.166.0/24 maxlen: 24
141.101.165.0/24 maxlen: 24
141.101.164.0/24 maxlen: 24
141.101.168.0/24 maxlen: 24
141.101.167.0/24 maxlen: 24
141.101.171.0/24 maxlen: 24
141.101.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 404652119 (0x181e8057)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Apr 27 14:32:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=082796bf288fb765be9cced180c5cc43df37f23d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:50:c4:87:f4:c5:58:fc:8f:94:c4:92:be:e4:
97:81:88:40:ae:98:52:da:a8:12:c7:0e:52:36:c2:
b1:e1:10:b5:ce:cb:48:2f:e8:80:b6:50:08:10:52:
78:14:fc:d7:f8:af:8b:92:2b:57:b5:c6:bf:4f:4f:
05:26:67:8b:79:fb:33:37:7c:d8:85:59:a5:82:47:
ff:26:28:4c:4e:69:64:60:0b:b2:4e:44:c3:8a:f5:
c4:53:5b:b7:51:0f:4d:ac:b3:12:0a:b1:7c:9f:04:
44:f6:bc:1c:70:98:b7:cc:68:14:32:07:17:51:f9:
7d:fc:fa:84:4b:c0:60:52:af:63:08:57:78:2d:b8:
5c:2f:38:e1:eb:63:71:17:2c:5b:d7:ab:24:0d:ef:
70:a2:04:71:05:8a:1a:4d:61:01:9f:7f:4b:6c:c3:
81:9b:61:bb:0c:1e:b3:3d:ca:f9:c4:ed:79:84:2c:
c6:f8:6b:f9:67:16:e3:0c:1f:fa:ec:3d:09:5a:08:
ec:4e:1a:0d:c2:d6:79:a0:90:11:42:de:02:5a:b0:
57:4d:61:cb:15:a6:82:e0:d0:32:48:9b:75:9d:e0:
c5:c7:ee:bc:d3:97:19:cd:65:49:87:f7:50:3e:7a:
c7:63:51:91:90:ef:7c:ca:fb:46:2a:f1:5a:f4:d7:
4f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:27:96:BF:28:8F:B7:65:BE:9C:CE:D1:80:C5:CC:43:DF:37:F2:3D
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/CCeWvyiPt2W-nM7RgMXMQ9838j0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.0.0/24
37.18.15.0/24
37.18.63.0/24
37.230.131.0/24
37.230.134.0/24
37.230.163.0/24
37.230.170.0/23
37.230.176.0/24
37.230.182.0/23
37.230.187.0/24
46.243.138.0/23
46.243.149.0/24
46.243.204.0/24
46.243.207.0-46.243.208.255
46.243.213.0-46.243.214.255
46.243.216.0/23
46.243.221.0-46.243.223.255
46.243.225.0/24
46.243.232.0-46.243.238.255
46.243.240.0/22
46.243.246.0-46.243.251.255
128.0.71.0/24
141.101.132.0/23
141.101.135.0/24
141.101.143.0/24
141.101.145.0/24
141.101.147.0-141.101.150.255
141.101.153.0-141.101.156.255
141.101.158.0-141.101.162.255
141.101.164.0-141.101.168.255
141.101.170.0/23
141.101.191.0/24
141.101.248.0/24
141.101.255.0/24
178.170.137.0/24
178.170.139.0-178.170.140.255
178.170.231.0/24
185.4.148.0/22
188.72.80.0/23
188.72.83.0-188.72.86.255
188.72.119.0/24
217.150.88.0/21
Signature Algorithm: sha256WithRSAEncryption
4e:b9:98:ca:9e:3d:bb:68:e9:8c:34:5f:c1:66:b2:ee:c5:22:
c3:3f:9d:80:80:8d:39:17:42:f3:ac:35:97:bb:2f:93:d2:d2:
65:55:8d:45:5f:d6:3a:c8:a4:d5:73:aa:d7:d7:cd:e6:39:1b:
d4:7f:49:f7:27:18:24:0a:3f:fe:76:ea:4e:56:7c:c6:07:92:
ff:23:2f:59:f5:7b:4c:b9:9f:81:22:54:d3:68:ed:55:aa:b2:
6a:1a:f5:2f:2c:e3:c0:dc:11:bd:46:78:26:97:ce:8f:68:46:
26:f5:58:4d:82:9d:b8:fd:b5:8d:f7:3e:6b:13:5f:8c:c0:6f:
f5:e3:c6:7d:31:15:88:d4:40:7b:f5:15:b0:7c:03:9c:d6:c7:
c7:a2:80:e5:50:a6:4d:98:1a:61:13:54:3a:c5:e7:99:34:a3:
41:f0:ca:75:18:ac:c0:1b:d3:b3:68:c5:88:52:d4:85:a8:96:
8b:b4:8d:1c:43:bb:00:e6:8d:ae:78:34:7e:16:d5:a2:4c:6e:
67:17:98:ff:e5:a7:fb:dc:7a:c4:d0:ab:14:fb:2b:e9:da:0e:
78:de:55:b1:d4:b4:33:6d:b0:47:2a:eb:58:42:9a:71:2f:82:
5a:c4:dc:f7:42:02:6e:83:09:f9:80:5a:30:37:9b:c9:34:9e:
59:fe:e5:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:33 2024 by rpki-client on console-ams.rpki-client.org