Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/Pg91YbBk8fVzBQ9vdPSdYup3p5c.roa
File: Pg91YbBk8fVzBQ9vdPSdYup3p5c.roa (raw, json)
Hash identifier: EjW2Jsd0FSfBe2N7ebxkWa0tFVaPb9gj5ZlD6C91bFo=
Subject key identifier: 3E:0F:75:61:B0:64:F1:F5:73:05:0F:6F:74:F4:9D:62:EA:77:A7:97
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 18006F45
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/Pg91YbBk8fVzBQ9vdPSdYup3p5c.roa
Signing time: Tue 19 Apr 2022 13:09:04 +0000
ROA not before: Tue 19 Apr 2022 13:09:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58272
IP address blocks: 37.230.187.0/24 maxlen: 24
188.72.119.0/24 maxlen: 24
178.170.231.0/24 maxlen: 24
178.170.139.0/24 maxlen: 24
178.170.137.0/24 maxlen: 24
178.170.140.0/24 maxlen: 24
217.150.90.0/24 maxlen: 24
217.150.89.0/24 maxlen: 24
217.150.88.0/24 maxlen: 24
217.150.91.0/24 maxlen: 24
217.150.94.0/24 maxlen: 24
217.150.93.0/24 maxlen: 24
217.150.92.0/24 maxlen: 24
178.170.146.0/24 maxlen: 24
217.150.95.0/24 maxlen: 24
46.243.149.0/24 maxlen: 24
37.18.0.0/24 maxlen: 24
185.4.150.0/24 maxlen: 24
37.18.15.0/24 maxlen: 24
185.4.149.0/24 maxlen: 24
185.4.148.0/24 maxlen: 24
185.4.151.0/24 maxlen: 24
141.101.248.0/24 maxlen: 24
141.101.255.0/24 maxlen: 24
46.243.139.0/24 maxlen: 24
46.243.138.0/24 maxlen: 24
37.230.134.0/24 maxlen: 24
188.72.83.0/24 maxlen: 24
188.72.81.0/24 maxlen: 24
188.72.80.0/24 maxlen: 24
188.72.85.0/24 maxlen: 24
188.72.84.0/24 maxlen: 24
37.230.163.0/24 maxlen: 24
188.72.86.0/24 maxlen: 24
37.230.170.0/24 maxlen: 24
37.230.171.0/24 maxlen: 24
37.230.176.0/24 maxlen: 24
37.230.183.0/24 maxlen: 24
37.230.182.0/24 maxlen: 24
46.243.204.0/24 maxlen: 24
46.243.213.0/24 maxlen: 24
46.243.208.0/24 maxlen: 24
46.243.207.0/24 maxlen: 24
46.243.214.0/24 maxlen: 24
46.243.217.0/24 maxlen: 24
46.243.216.0/24 maxlen: 24
46.243.222.0/24 maxlen: 24
46.243.221.0/24 maxlen: 24
46.243.225.0/24 maxlen: 24
46.243.223.0/24 maxlen: 24
46.243.232.0/24 maxlen: 24
46.243.233.0/24 maxlen: 24
37.18.63.0/24 maxlen: 24
46.243.240.0/24 maxlen: 24
46.243.236.0/24 maxlen: 24
46.243.235.0/24 maxlen: 24
46.243.234.0/24 maxlen: 24
46.243.238.0/24 maxlen: 24
46.243.237.0/24 maxlen: 24
46.243.243.0/24 maxlen: 24
46.243.242.0/24 maxlen: 24
46.243.241.0/24 maxlen: 24
46.243.246.0/24 maxlen: 24
46.243.250.0/24 maxlen: 24
46.243.249.0/24 maxlen: 24
46.243.248.0/24 maxlen: 24
46.243.247.0/24 maxlen: 24
37.230.131.0/24 maxlen: 24
46.243.251.0/24 maxlen: 24
128.0.71.0/24 maxlen: 24
141.101.191.0/24 maxlen: 24
141.101.132.0/24 maxlen: 24
141.101.133.0/24 maxlen: 24
141.101.135.0/24 maxlen: 24
141.101.145.0/24 maxlen: 24
141.101.143.0/24 maxlen: 24
141.101.148.0/24 maxlen: 24
141.101.147.0/24 maxlen: 24
141.101.150.0/24 maxlen: 24
141.101.149.0/24 maxlen: 24
141.101.155.0/24 maxlen: 24
141.101.154.0/24 maxlen: 24
141.101.153.0/24 maxlen: 24
141.101.159.0/24 maxlen: 24
141.101.158.0/24 maxlen: 24
141.101.156.0/24 maxlen: 24
141.101.162.0/24 maxlen: 24
141.101.161.0/24 maxlen: 24
141.101.160.0/24 maxlen: 24
141.101.166.0/24 maxlen: 24
141.101.165.0/24 maxlen: 24
141.101.164.0/24 maxlen: 24
141.101.168.0/24 maxlen: 24
141.101.167.0/24 maxlen: 24
141.101.171.0/24 maxlen: 24
141.101.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 402681669 (0x18006f45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Apr 19 13:09:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e0f7561b064f1f573050f6f74f49d62ea77a797
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ae:02:33:51:a3:97:a4:07:d4:db:5e:74:40:
4d:69:a6:36:8f:12:0b:8d:c2:5b:2d:91:f3:e9:21:
b0:80:bf:94:24:c2:c3:88:c9:dc:ed:b2:42:04:7a:
d6:9c:3c:ab:78:ee:bc:e4:f6:80:28:e8:24:6c:5b:
0d:78:d1:2a:4b:21:ba:0c:95:c8:9e:85:c2:39:19:
2c:ff:50:53:14:a5:96:2d:20:2d:77:42:4e:13:29:
5d:51:8d:82:c6:c6:7f:60:2b:dd:3b:ac:59:c1:aa:
25:f3:fd:23:44:be:d9:6f:09:3d:f5:76:6d:b8:14:
8c:40:d3:9c:fe:71:13:f3:5d:cc:0d:21:70:96:5e:
df:5f:d5:3a:b9:60:19:f1:b8:19:34:39:f3:91:a4:
31:fe:87:73:31:3b:0a:42:2a:4b:ab:cd:11:dd:48:
e5:38:77:0d:f0:d3:81:04:78:14:a0:df:05:cf:d4:
32:75:d3:56:f2:e8:8b:3c:0d:90:64:f1:e0:53:c0:
8a:9d:d9:4d:66:e2:af:dc:ad:14:4a:14:c8:be:bc:
56:96:2e:4c:2a:29:0e:ae:db:6a:1f:17:45:e5:82:
e6:17:ee:fc:d7:45:d6:9c:88:64:df:55:af:03:9b:
4a:a1:2c:47:64:4a:e4:22:4f:b3:f0:2a:f4:1c:6f:
2b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:0F:75:61:B0:64:F1:F5:73:05:0F:6F:74:F4:9D:62:EA:77:A7:97
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/Pg91YbBk8fVzBQ9vdPSdYup3p5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.0.0/24
37.18.15.0/24
37.18.63.0/24
37.230.131.0/24
37.230.134.0/24
37.230.163.0/24
37.230.170.0/23
37.230.176.0/24
37.230.182.0/23
37.230.187.0/24
46.243.138.0/23
46.243.149.0/24
46.243.204.0/24
46.243.207.0-46.243.208.255
46.243.213.0-46.243.214.255
46.243.216.0/23
46.243.221.0-46.243.223.255
46.243.225.0/24
46.243.232.0-46.243.238.255
46.243.240.0/22
46.243.246.0-46.243.251.255
128.0.71.0/24
141.101.132.0/23
141.101.135.0/24
141.101.143.0/24
141.101.145.0/24
141.101.147.0-141.101.150.255
141.101.153.0-141.101.156.255
141.101.158.0-141.101.162.255
141.101.164.0-141.101.168.255
141.101.170.0/23
141.101.191.0/24
141.101.248.0/24
141.101.255.0/24
178.170.137.0/24
178.170.139.0-178.170.140.255
178.170.146.0/24
178.170.231.0/24
185.4.148.0/22
188.72.80.0/23
188.72.83.0-188.72.86.255
188.72.119.0/24
217.150.88.0/21
Signature Algorithm: sha256WithRSAEncryption
7d:89:2f:ff:45:a8:31:df:eb:ed:b9:1c:35:bc:c5:4b:cf:88:
7c:b5:1d:dc:7e:b2:be:2d:de:60:01:14:40:2a:3a:05:3a:64:
6f:6b:1c:9c:8f:b1:20:b7:0d:bd:e0:23:80:fc:80:53:7c:d8:
93:db:5e:f5:9c:83:b2:58:36:13:bf:bd:a6:82:e5:4e:1a:db:
73:90:36:0c:48:b1:0a:2b:4c:6a:c6:25:b2:46:b7:d7:42:4e:
1c:1b:69:fc:aa:b9:dc:11:9c:1d:d0:bb:b1:96:a9:58:cd:87:
a1:1b:13:f7:66:7a:72:a2:08:7b:6b:42:78:1a:68:9c:31:df:
9b:e6:1e:c4:f1:9a:2d:02:6d:c2:7b:78:43:43:68:79:a9:30:
b7:22:77:2f:ed:26:31:25:d2:03:eb:75:7d:71:20:58:63:54:
9b:b6:99:53:4e:5b:77:24:be:80:e0:79:45:b5:c9:68:54:a2:
f5:13:73:20:67:05:54:17:9b:0a:13:88:b2:fa:80:53:23:b6:
a2:18:be:55:e0:7d:a7:d1:45:a8:81:32:ca:c5:38:fa:a6:8a:
a4:c0:48:28:38:75:cc:e4:2f:c0:b0:4a:0e:c5:c0:05:19:bb:
06:6e:9c:76:d8:15:4d:2d:6d:15:d4:46:0b:15:14:b5:e8:6f:
76:43:9d:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:33 2024 by rpki-client on console-ams.rpki-client.org