Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/f8314e-a3bc-45e9-a9f5-4c98d9a51405/1/4Pb6QMx2Q_kuJfYdf9gTRA3fk0s.roa
File: 4Pb6QMx2Q_kuJfYdf9gTRA3fk0s.roa (raw, json)
Hash identifier: 1RP01qCT0VUsV9drUkoqJWIa0fUFaypebFYjUrEXSIU=
Subject key identifier: E0:F6:FA:40:CC:76:43:F9:2E:25:F6:1D:7F:D8:13:44:0D:DF:93:4B
Certificate issuer: /CN=c441738baab988b1d68693bb05e29bfbb4f0f671
Certificate serial: 0181D2B5090E354A51EA982EC49D3F22A787
Authority key identifier: C4:41:73:8B:AA:B9:88:B1:D6:86:93:BB:05:E2:9B:FB:B4:F0:F6:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xEFzi6q5iLHWhpO7BeKb-7Tw9nE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/f8314e-a3bc-45e9-a9f5-4c98d9a51405/1/4Pb6QMx2Q_kuJfYdf9gTRA3fk0s.roa
Signing time: Wed 06 Jul 2022 08:51:28 +0000
ROA not before: Wed 06 Jul 2022 08:51:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39912
IP address blocks: 92.63.208.0/22 maxlen: 24
195.137.238.0/23 maxlen: 23
195.137.238.0/24 maxlen: 24
92.63.212.0/24 maxlen: 24
92.63.218.0/24 maxlen: 24
92.63.217.0/24 maxlen: 24
92.63.214.0/23 maxlen: 23
92.63.216.0/21 maxlen: 21
81.94.48.0/22 maxlen: 22
81.94.56.0/24 maxlen: 24
81.94.56.0/21 maxlen: 21
81.94.52.0/23 maxlen: 24
81.94.54.0/24 maxlen: 24
95.143.80.0/20 maxlen: 20
213.139.252.0/22 maxlen: 22
195.140.136.0/22 maxlen: 22
78.142.96.0/20 maxlen: 24
78.142.112.0/22 maxlen: 22
78.142.116.0/23 maxlen: 23
78.142.122.0/23 maxlen: 23
78.142.124.0/22 maxlen: 22
77.220.112.0/22 maxlen: 22
77.220.111.0/24 maxlen: 24
77.220.120.0/21 maxlen: 21
92.42.16.0/22 maxlen: 22
91.206.224.0/23 maxlen: 23
77.220.96.0/20 maxlen: 20
77.220.105.0/24 maxlen: 24
93.185.128.0/20 maxlen: 20
195.16.224.0/21 maxlen: 21
195.16.232.0/22 maxlen: 24
195.16.236.0/23 maxlen: 23
195.16.238.0/24 maxlen: 24
195.16.246.0/23 maxlen: 23
195.16.245.0/24 maxlen: 24
195.16.242.0/23 maxlen: 23
195.16.241.0/24 maxlen: 24
195.16.251.0/24 maxlen: 24
195.16.253.0/24 maxlen: 24
195.16.254.0/23 maxlen: 23
37.186.4.0/24 maxlen: 24
37.186.0.0/22 maxlen: 22
78.142.64.0/23 maxlen: 23
37.186.6.0/23 maxlen: 23
37.186.8.0/21 maxlen: 21
78.142.68.0/22 maxlen: 22
37.186.16.0/21 maxlen: 21
78.142.72.0/21 maxlen: 21
2a00:eb0::/32 maxlen: 32
2a01:100::/32 maxlen: 48
2a01:f8::/32 maxlen: 32
2a00:e98::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d2:b5:09:0e:35:4a:51:ea:98:2e:c4:9d:3f:22:a7:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c441738baab988b1d68693bb05e29bfbb4f0f671
Validity
Not Before: Jul 6 08:51:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0f6fa40cc7643f92e25f61d7fd813440ddf934b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d2:fc:92:0e:96:25:77:bf:27:c7:77:7a:9b:
a5:ee:41:70:3f:99:56:4a:6d:c2:f2:b7:a9:68:89:
bb:dd:cb:9a:ab:53:a8:57:52:e2:92:c1:c6:aa:f0:
19:2d:ee:e5:57:ec:ef:5b:91:7b:17:87:ad:5c:f7:
11:c7:bb:35:fb:77:8e:b9:13:bb:23:3f:24:77:c0:
13:cc:9d:b1:78:ca:cb:c4:c9:03:91:f9:cf:2f:b1:
9a:7f:3b:65:bd:14:df:1d:cd:7b:a7:3e:12:9d:bf:
c8:69:64:58:0b:60:9d:9d:5e:5c:24:f9:f3:cc:8f:
15:4c:24:12:8e:c5:e0:14:fd:a4:e6:1b:98:32:56:
dd:d8:2e:e2:02:16:91:ff:f7:94:58:dd:c1:c6:2a:
11:1a:e9:ba:74:26:0e:66:d5:f4:fa:28:da:81:b9:
ba:44:b8:31:97:d8:bc:b6:9c:f9:00:7c:1c:d3:24:
71:f9:a6:54:7a:69:09:28:31:1b:93:42:5f:a3:93:
a8:00:77:5e:0e:c7:4e:23:10:f9:49:b8:d7:30:d9:
30:33:de:ba:80:15:9b:94:ea:95:f6:2d:9a:9f:57:
09:3c:f9:6a:6f:09:44:fe:c3:71:a7:9c:4f:7c:12:
3f:b9:26:12:22:1d:9b:1d:27:29:6a:d0:bf:65:bc:
69:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:F6:FA:40:CC:76:43:F9:2E:25:F6:1D:7F:D8:13:44:0D:DF:93:4B
X509v3 Authority Key Identifier:
keyid:C4:41:73:8B:AA:B9:88:B1:D6:86:93:BB:05:E2:9B:FB:B4:F0:F6:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xEFzi6q5iLHWhpO7BeKb-7Tw9nE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/f8314e-a3bc-45e9-a9f5-4c98d9a51405/1/4Pb6QMx2Q_kuJfYdf9gTRA3fk0s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/f8314e-a3bc-45e9-a9f5-4c98d9a51405/1/xEFzi6q5iLHWhpO7BeKb-7Tw9nE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.186.0.0-37.186.4.255
37.186.6.0-37.186.23.255
77.220.96.0-77.220.115.255
77.220.120.0/21
78.142.64.0/23
78.142.68.0-78.142.79.255
78.142.96.0-78.142.117.255
78.142.122.0-78.142.127.255
81.94.48.0-81.94.54.255
81.94.56.0/21
91.206.224.0/23
92.42.16.0/22
92.63.208.0-92.63.212.255
92.63.214.0-92.63.223.255
93.185.128.0/20
95.143.80.0/20
195.16.224.0-195.16.238.255
195.16.241.0-195.16.243.255
195.16.245.0-195.16.247.255
195.16.251.0/24
195.16.253.0-195.16.255.255
195.137.238.0/23
195.140.136.0/22
213.139.252.0/22
IPv6:
2a00:e98::/32
2a00:eb0::/32
2a01:f8::/32
2a01:100::/32
Signature Algorithm: sha256WithRSAEncryption
5e:f5:5b:9f:d3:2f:b5:85:54:d0:34:5d:15:e0:0b:81:79:9d:
a7:88:58:ec:5e:81:b4:8d:8c:11:a0:84:a4:9d:29:72:15:5f:
e2:5b:2b:ae:a2:cd:fa:13:b8:33:bb:ed:7a:3e:14:fd:e2:00:
7c:58:31:38:28:39:e4:e5:05:f6:22:19:49:a6:13:95:2b:ad:
04:3c:d7:91:bf:0c:97:8e:36:eb:a2:79:aa:0e:67:b1:b4:0f:
d1:83:58:c8:6e:0e:55:52:ed:e5:b1:dd:36:3b:ac:72:55:11:
5c:d3:58:29:5b:12:12:9b:a7:4a:d0:19:77:4f:0b:3d:37:06:
04:17:e3:67:76:82:16:dd:f8:03:35:07:a3:60:7e:05:12:52:
6e:f0:0c:c1:11:2f:bf:f7:92:51:d1:87:32:0a:79:6e:32:40:
35:9f:33:74:27:07:c5:b9:ce:f6:25:e7:03:19:cb:95:2f:dc:
0a:4d:85:13:31:7f:6e:28:7b:eb:7b:f4:71:ee:93:f9:21:f2:
26:9c:0d:af:ca:7b:87:f3:b3:12:b6:1e:65:bd:85:43:39:b9:
d6:fb:61:8c:6e:e1:b6:72:e6:48:fc:1b:9b:10:2e:45:26:7d:
72:0a:52:0b:9b:2d:fe:0f:ea:94:92:f2:42:aa:0f:cb:8c:7e:
e8:8e:e6:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:38 2024 by rpki-client on console-fra.rpki-client.org