Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/OOFNovGLGPkhdEUGskUYvqDTnus.roa
File: OOFNovGLGPkhdEUGskUYvqDTnus.roa (raw, json)
Hash identifier: FFUNtnhacj7sAPnosrKldYaov2wAbtC58O+56xFMgCc=
Subject key identifier: 38:E1:4D:A2:F1:8B:18:F9:21:74:45:06:B2:45:18:BE:A0:D3:9E:EB
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 045E7AAE
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/OOFNovGLGPkhdEUGskUYvqDTnus.roa
Signing time: Fri 04 Mar 2022 08:23:19 +0000
ROA not before: Fri 04 Mar 2022 08:23:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 5.157.192.0/22 maxlen: 22
5.157.196.0/22 maxlen: 22
5.157.200.0/21 maxlen: 21
5.157.208.0/21 maxlen: 21
5.157.216.0/22 maxlen: 24
5.157.220.0/22 maxlen: 24
178.157.120.0/22 maxlen: 22
5.157.132.0/22 maxlen: 22
5.157.152.0/21 maxlen: 21
5.157.168.0/22 maxlen: 24
5.157.172.0/22 maxlen: 24
5.157.232.0/21 maxlen: 21
5.157.228.0/22 maxlen: 22
5.157.248.0/21 maxlen: 21
188.119.168.0/21 maxlen: 21
188.119.182.0/23 maxlen: 23
188.119.180.0/23 maxlen: 23
178.157.68.0/22 maxlen: 22
178.157.94.0/24 maxlen: 24
178.157.112.0/21 maxlen: 21
185.76.62.0/23 maxlen: 23
185.76.60.0/23 maxlen: 23
188.74.248.0/21 maxlen: 21
37.35.48.0/22 maxlen: 22
37.35.52.0/24 maxlen: 24
188.119.128.0/20 maxlen: 24
188.74.192.0/21 maxlen: 21
188.74.200.0/21 maxlen: 21
62.216.72.0/24 maxlen: 24
62.216.73.0/24 maxlen: 24
62.216.74.0/24 maxlen: 24
62.216.75.0/24 maxlen: 24
188.74.212.0/22 maxlen: 22
62.216.72.0/22 maxlen: 22
62.216.80.0/24 maxlen: 24
62.216.84.0/22 maxlen: 22
62.216.80.0/22 maxlen: 22
62.216.81.0/24 maxlen: 24
62.216.82.0/24 maxlen: 24
62.216.83.0/24 maxlen: 24
62.216.84.0/24 maxlen: 24
62.216.85.0/24 maxlen: 24
188.74.216.0/21 maxlen: 21
188.74.224.0/21 maxlen: 21
62.216.88.0/22 maxlen: 22
62.216.86.0/24 maxlen: 24
62.216.87.0/24 maxlen: 24
62.216.88.0/24 maxlen: 24
62.216.89.0/24 maxlen: 24
62.216.90.0/24 maxlen: 24
62.216.91.0/24 maxlen: 24
188.74.232.0/21 maxlen: 21
62.216.92.0/24 maxlen: 24
62.216.93.0/24 maxlen: 24
62.216.94.0/24 maxlen: 24
62.216.95.0/24 maxlen: 24
188.74.144.0/22 maxlen: 22
188.74.148.0/22 maxlen: 22
188.74.184.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73300654 (0x45e7aae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: Mar 4 08:23:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=38e14da2f18b18f921744506b24518bea0d39eeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:53:3d:e3:c9:90:bf:31:c0:1d:3d:8f:1b:46:
da:87:ec:d1:0e:05:8d:d8:48:9a:61:41:56:a4:d2:
01:86:68:d5:78:af:d6:e0:cb:2d:ab:cf:bb:81:1c:
ad:b6:73:18:dc:01:73:2f:fd:53:c7:86:2a:ac:b6:
92:a6:1b:ae:10:54:c8:82:10:ad:80:12:38:4a:34:
3f:6e:e0:dc:42:5a:8e:a6:e5:60:83:26:5e:35:e5:
84:4e:d2:ff:f8:a1:e6:48:be:51:48:94:b7:94:04:
e4:dc:08:8d:d3:9c:df:84:70:67:2f:40:58:9d:a2:
68:5c:03:2c:a2:d9:c7:d2:e9:1a:af:df:c7:d2:6a:
fd:f3:df:bb:69:79:39:a1:46:a5:d1:b0:9c:cd:6d:
72:c8:3c:c4:1a:fe:df:df:d4:1c:e0:37:62:6c:f3:
0a:6c:cc:b0:71:9a:af:c4:b8:ce:c2:31:4d:b8:a8:
51:0b:12:eb:af:7a:b4:22:a6:75:5e:df:08:70:29:
e4:8d:01:b9:cd:51:a9:2d:ba:0c:1d:9e:a3:79:6e:
a1:c8:34:38:bf:7d:52:9d:31:cd:a1:75:fa:04:89:
34:8a:74:7c:c8:59:4d:11:f4:bc:58:64:b2:4b:79:
1e:37:48:96:44:d7:38:27:37:1e:fe:b2:51:84:f7:
42:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:E1:4D:A2:F1:8B:18:F9:21:74:45:06:B2:45:18:BE:A0:D3:9E:EB
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/OOFNovGLGPkhdEUGskUYvqDTnus.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.157.132.0/22
5.157.152.0/21
5.157.168.0/21
5.157.192.0/19
5.157.228.0-5.157.239.255
5.157.248.0/21
37.35.48.0-37.35.52.255
62.216.72.0/22
62.216.80.0/20
178.157.68.0/22
178.157.94.0/24
178.157.112.0-178.157.123.255
185.76.60.0/22
188.74.144.0/21
188.74.184.0/22
188.74.192.0/20
188.74.212.0-188.74.239.255
188.74.248.0/21
188.119.128.0/20
188.119.168.0/21
188.119.180.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:eb:bf:d3:e2:b5:b1:f4:30:1f:01:27:57:e5:f5:0b:e2:b0:
a8:33:75:3a:d4:01:2c:60:80:c9:0a:dc:e4:0c:c8:ba:3c:3d:
6c:9b:28:fe:8a:b1:ab:ed:42:a7:19:db:c5:bd:dc:9d:ec:14:
5e:c9:10:c8:b1:d3:58:87:dd:75:7c:ef:a9:3d:10:33:d2:86:
eb:65:e5:54:6e:2f:9a:5e:47:fa:77:3a:b8:0b:ee:77:61:2b:
c6:55:fa:06:17:6f:ad:5a:28:8e:de:51:7a:d3:eb:0c:cc:1a:
0a:f6:11:0f:af:5d:01:ef:dd:18:34:4f:24:7b:06:bb:85:3a:
ba:b8:52:c2:3d:8c:c8:21:78:c7:c4:27:73:d5:4f:37:32:07:
5f:43:8e:c0:c9:41:70:16:cb:cd:f2:f3:49:9f:13:7b:ee:20:
3f:24:9e:e5:af:a0:c6:f4:9b:da:15:a8:7e:ee:d4:b4:ce:c6:
2b:04:2d:09:ec:78:94:9f:dc:65:a3:f0:b6:63:0f:76:cb:44:
73:ea:34:3b:f9:5c:61:75:1b:61:b2:a8:a2:12:63:11:9e:a2:
d5:e1:45:3a:e9:9d:90:9c:c5:9e:28:24:05:a0:04:ce:7a:f6:
d9:40:23:9c:e9:51:08:54:44:7c:d2:83:a1:f2:aa:a5:58:97:
ed:ca:c7:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:16 2024 by rpki-client on console-fra.rpki-client.org