Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/tUSdnivhwj9hV7Cw1XijifZ80ZA.roa
File: tUSdnivhwj9hV7Cw1XijifZ80ZA.roa (raw, json)
Hash identifier: IZVlsHwcCsW80ludtt02Fsl8tfutulgouNUPEbtfc0A=
Subject key identifier: B5:44:9D:9E:2B:E1:C2:3F:61:57:B0:B0:D5:78:A3:89:F6:7C:D1:90
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 018258D191095248CA81D1525CB2ADCE48A0
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/tUSdnivhwj9hV7Cw1XijifZ80ZA.roa
Signing time: Mon 01 Aug 2022 09:51:45 +0000
ROA not before: Mon 01 Aug 2022 09:51:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58272
IP address blocks: 37.230.187.0/24 maxlen: 24
188.72.119.0/24 maxlen: 24
178.170.231.0/24 maxlen: 24
178.170.139.0/24 maxlen: 24
178.170.137.0/24 maxlen: 24
217.150.90.0/24 maxlen: 24
217.150.89.0/24 maxlen: 24
217.150.88.0/24 maxlen: 24
217.150.91.0/24 maxlen: 24
178.170.140.0/24 maxlen: 24
217.150.94.0/24 maxlen: 24
217.150.93.0/24 maxlen: 24
217.150.92.0/24 maxlen: 24
217.150.95.0/24 maxlen: 24
46.243.149.0/24 maxlen: 24
37.18.0.0/24 maxlen: 24
185.4.150.0/24 maxlen: 24
37.18.15.0/24 maxlen: 24
185.4.149.0/24 maxlen: 24
185.4.148.0/24 maxlen: 24
185.4.151.0/24 maxlen: 24
141.101.255.0/24 maxlen: 24
46.243.139.0/24 maxlen: 24
46.243.138.0/24 maxlen: 24
37.230.134.0/24 maxlen: 24
37.230.151.0/24 maxlen: 24
188.72.83.0/24 maxlen: 24
188.72.81.0/24 maxlen: 24
188.72.80.0/24 maxlen: 24
188.72.85.0/24 maxlen: 24
188.72.84.0/24 maxlen: 24
37.230.163.0/24 maxlen: 24
188.72.86.0/24 maxlen: 24
37.230.170.0/24 maxlen: 24
37.230.171.0/24 maxlen: 24
37.230.176.0/24 maxlen: 24
37.230.183.0/24 maxlen: 24
37.230.182.0/24 maxlen: 24
46.243.204.0/24 maxlen: 24
46.243.214.0/24 maxlen: 24
46.243.217.0/24 maxlen: 24
46.243.216.0/24 maxlen: 24
46.243.222.0/24 maxlen: 24
46.243.221.0/24 maxlen: 24
46.243.225.0/24 maxlen: 24
46.243.223.0/24 maxlen: 24
46.243.232.0/24 maxlen: 24
46.243.233.0/24 maxlen: 24
37.18.63.0/24 maxlen: 24
46.243.240.0/24 maxlen: 24
46.243.236.0/24 maxlen: 24
46.243.235.0/24 maxlen: 24
46.243.234.0/24 maxlen: 24
46.243.238.0/24 maxlen: 24
46.243.237.0/24 maxlen: 24
46.243.243.0/24 maxlen: 24
46.243.242.0/24 maxlen: 24
46.243.241.0/24 maxlen: 24
46.243.246.0/24 maxlen: 24
37.18.78.0/24 maxlen: 24
46.243.250.0/24 maxlen: 24
46.243.249.0/24 maxlen: 24
46.243.248.0/24 maxlen: 24
46.243.247.0/24 maxlen: 24
37.230.131.0/24 maxlen: 24
46.243.251.0/24 maxlen: 24
128.0.71.0/24 maxlen: 24
141.101.179.0/24 maxlen: 24
141.101.191.0/24 maxlen: 24
141.101.132.0/24 maxlen: 24
141.101.133.0/24 maxlen: 24
141.101.135.0/24 maxlen: 24
141.101.145.0/24 maxlen: 24
141.101.143.0/24 maxlen: 24
141.101.148.0/24 maxlen: 24
141.101.147.0/24 maxlen: 24
141.101.150.0/24 maxlen: 24
141.101.149.0/24 maxlen: 24
141.101.155.0/24 maxlen: 24
141.101.154.0/24 maxlen: 24
141.101.153.0/24 maxlen: 24
141.101.159.0/24 maxlen: 24
141.101.158.0/24 maxlen: 24
141.101.156.0/24 maxlen: 24
141.101.162.0/24 maxlen: 24
141.101.161.0/24 maxlen: 24
141.101.160.0/24 maxlen: 24
141.101.166.0/24 maxlen: 24
141.101.165.0/24 maxlen: 24
141.101.164.0/24 maxlen: 24
141.101.168.0/24 maxlen: 24
141.101.167.0/24 maxlen: 24
141.101.171.0/24 maxlen: 24
141.101.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:58:d1:91:09:52:48:ca:81:d1:52:5c:b2:ad:ce:48:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Aug 1 09:51:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5449d9e2be1c23f6157b0b0d578a389f67cd190
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ef:79:91:84:94:34:e5:82:48:9b:30:6c:0d:
df:d5:5c:27:66:f1:6a:8b:47:af:ac:18:66:f2:fe:
a4:6a:8d:ff:77:f1:75:11:d1:8b:1d:0d:2d:6b:1b:
d8:13:15:b2:a6:34:6e:11:8e:ec:29:d8:49:4e:53:
be:de:79:9b:11:ac:36:0d:02:4d:c1:5e:94:29:58:
80:0c:cf:21:4a:fe:7d:52:6a:31:8b:1c:c7:64:4e:
6e:5c:c7:73:10:9a:4c:25:8f:24:98:02:e5:d2:33:
7f:22:cd:2b:f0:1d:4e:c0:46:18:c7:7a:b6:05:7a:
27:59:c0:d9:ae:4a:67:cc:e8:2a:e4:84:88:1d:1a:
67:7d:74:d6:2d:95:5f:63:5f:62:7f:36:c8:fc:d1:
16:89:08:fa:13:75:ea:d3:75:c5:27:23:fb:3f:fe:
f3:bd:cb:42:6e:08:e6:47:04:29:ae:5c:01:44:51:
19:c2:dc:ef:c9:92:a1:c3:f1:9c:b5:58:df:04:ed:
6a:72:70:79:49:2f:7f:97:54:99:ff:be:0b:0a:48:
da:b6:44:6e:b0:ea:9c:ff:d1:7c:3b:70:b3:e7:03:
b6:26:de:ce:09:82:31:4b:cd:70:fe:1e:f5:cf:1d:
ab:94:30:87:ed:12:cc:dc:97:34:40:ad:db:14:56:
6c:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:44:9D:9E:2B:E1:C2:3F:61:57:B0:B0:D5:78:A3:89:F6:7C:D1:90
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/tUSdnivhwj9hV7Cw1XijifZ80ZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.0.0/24
37.18.15.0/24
37.18.63.0/24
37.18.78.0/24
37.230.131.0/24
37.230.134.0/24
37.230.151.0/24
37.230.163.0/24
37.230.170.0/23
37.230.176.0/24
37.230.182.0/23
37.230.187.0/24
46.243.138.0/23
46.243.149.0/24
46.243.204.0/24
46.243.214.0/24
46.243.216.0/23
46.243.221.0-46.243.223.255
46.243.225.0/24
46.243.232.0-46.243.238.255
46.243.240.0/22
46.243.246.0-46.243.251.255
128.0.71.0/24
141.101.132.0/23
141.101.135.0/24
141.101.143.0/24
141.101.145.0/24
141.101.147.0-141.101.150.255
141.101.153.0-141.101.156.255
141.101.158.0-141.101.162.255
141.101.164.0-141.101.168.255
141.101.170.0/23
141.101.179.0/24
141.101.191.0/24
141.101.255.0/24
178.170.137.0/24
178.170.139.0-178.170.140.255
178.170.231.0/24
185.4.148.0/22
188.72.80.0/23
188.72.83.0-188.72.86.255
188.72.119.0/24
217.150.88.0/21
Signature Algorithm: sha256WithRSAEncryption
45:95:cf:5d:ee:ff:88:c2:77:09:7c:16:f4:b4:9e:86:ed:10:
ba:94:c7:4c:d5:eb:cc:c8:f3:8c:22:f5:8f:41:53:0e:68:1e:
3f:65:6d:0c:8b:70:6a:3b:3f:a4:20:9f:0f:70:f9:cc:ed:4b:
8a:2d:87:b5:4a:35:db:9c:3c:96:be:e5:64:fb:e5:54:34:ed:
64:66:89:92:a9:37:40:5c:81:c6:b3:72:61:da:e4:98:39:6f:
87:de:73:de:57:c6:d9:b8:dd:84:32:56:70:66:fe:90:30:59:
07:75:95:16:10:f1:2f:c7:23:89:90:56:74:55:73:73:a3:18:
be:1b:6f:e7:98:fc:ec:d1:23:38:44:5e:19:ba:26:90:13:ab:
30:e0:09:eb:aa:c8:42:cb:2d:82:22:18:28:51:0b:e9:c7:6f:
24:39:23:f6:1b:ec:00:f2:f0:4b:d3:15:b8:f0:02:37:16:7e:
d4:f5:0d:1a:62:eb:bc:85:6e:bc:2c:70:43:82:55:0c:8f:dc:
7e:36:89:48:13:ab:c6:97:fb:85:17:a2:91:89:af:6c:a6:80:
2e:a0:5d:02:fe:23:bd:e1:a4:06:a6:03:b2:b1:90:bc:da:55:
65:42:c0:af:92:4b:8a:b4:b5:a9:cd:0b:31:06:bb:37:02:d2:
4a:01:39:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:38 2024 by rpki-client on console-fra.rpki-client.org