Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/f8314e-a3bc-45e9-a9f5-4c98d9a51405/1/JlqWU-8_7Wb5rWCznriwHtxp4to.roa
File: JlqWU-8_7Wb5rWCznriwHtxp4to.roa (raw, json)
Hash identifier: sxEK87sygyM16wSYOyzJx651XkctJRLDYLVeCTWr+pc=
Subject key identifier: 26:5A:96:53:EF:3F:ED:66:F9:AD:60:B3:9E:B8:B0:1E:DC:69:E2:DA
Certificate issuer: /CN=c441738baab988b1d68693bb05e29bfbb4f0f671
Certificate serial: 06468116
Authority key identifier: C4:41:73:8B:AA:B9:88:B1:D6:86:93:BB:05:E2:9B:FB:B4:F0:F6:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xEFzi6q5iLHWhpO7BeKb-7Tw9nE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/f8314e-a3bc-45e9-a9f5-4c98d9a51405/1/JlqWU-8_7Wb5rWCznriwHtxp4to.roa
Signing time: Sat 01 Jan 2022 07:02:32 +0000
ROA not before: Sat 01 Jan 2022 07:02:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39912
IP address blocks: 92.63.208.0/22 maxlen: 22
195.137.238.0/23 maxlen: 23
195.137.238.0/24 maxlen: 24
92.63.212.0/24 maxlen: 24
92.63.218.0/24 maxlen: 24
92.63.217.0/24 maxlen: 24
92.63.214.0/23 maxlen: 23
92.63.216.0/21 maxlen: 21
81.94.48.0/22 maxlen: 22
81.94.56.0/24 maxlen: 24
81.94.56.0/21 maxlen: 21
81.94.52.0/23 maxlen: 24
81.94.54.0/24 maxlen: 24
95.143.80.0/20 maxlen: 20
213.139.252.0/22 maxlen: 22
195.140.136.0/22 maxlen: 22
78.142.96.0/20 maxlen: 24
78.142.112.0/22 maxlen: 22
78.142.116.0/23 maxlen: 23
78.142.122.0/23 maxlen: 23
78.142.124.0/22 maxlen: 22
77.220.112.0/22 maxlen: 22
77.220.111.0/24 maxlen: 24
77.220.120.0/21 maxlen: 21
92.42.16.0/22 maxlen: 22
91.206.224.0/23 maxlen: 23
77.220.96.0/20 maxlen: 20
77.220.105.0/24 maxlen: 24
93.185.128.0/20 maxlen: 20
195.16.224.0/21 maxlen: 21
195.16.232.0/22 maxlen: 24
195.16.236.0/23 maxlen: 23
195.16.238.0/24 maxlen: 24
195.16.246.0/23 maxlen: 23
195.16.245.0/24 maxlen: 24
195.16.242.0/23 maxlen: 23
195.16.241.0/24 maxlen: 24
195.16.251.0/24 maxlen: 24
195.16.253.0/24 maxlen: 24
195.16.254.0/23 maxlen: 23
37.186.4.0/24 maxlen: 24
37.186.0.0/22 maxlen: 22
78.142.64.0/23 maxlen: 23
37.186.6.0/23 maxlen: 23
37.186.8.0/21 maxlen: 21
78.142.68.0/22 maxlen: 22
37.186.16.0/21 maxlen: 21
78.142.72.0/21 maxlen: 21
2a00:eb0::/32 maxlen: 32
2a01:100::/32 maxlen: 48
2a01:f8::/32 maxlen: 32
2a00:e98::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105283862 (0x6468116)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c441738baab988b1d68693bb05e29bfbb4f0f671
Validity
Not Before: Jan 1 07:02:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=265a9653ef3fed66f9ad60b39eb8b01edc69e2da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:3b:f7:52:e2:86:47:e6:63:a8:73:72:3b:f4:
6f:53:1c:9b:1c:9c:b9:cd:4e:cb:d5:70:f5:e5:f3:
11:9b:93:f4:58:91:cf:b8:9c:17:75:ed:91:39:94:
6f:21:f5:61:26:d8:e1:4e:92:35:56:37:03:ad:cd:
40:e0:88:69:1d:58:8b:19:c2:ee:72:45:a9:6e:33:
42:48:59:18:a7:bb:a1:90:23:65:26:ad:f2:e7:ab:
2b:ea:b3:f1:60:fa:72:a2:95:09:70:43:9b:e5:76:
a9:b6:8c:0e:d5:3f:4f:6e:43:a6:b5:3f:73:3a:8b:
aa:75:aa:d4:08:e4:05:a9:7b:20:4a:81:a6:97:2e:
c0:75:1e:c9:61:ee:cb:9f:4a:60:31:91:71:5b:76:
49:93:d4:e6:b9:7c:32:70:66:fd:8e:82:a8:d9:a4:
7d:01:9f:aa:ed:a6:36:38:ad:14:df:be:ae:9f:7b:
b5:9c:30:ae:a1:51:9d:98:aa:12:8b:2c:b9:7c:3c:
f8:cd:58:5a:cf:ab:77:73:23:3b:8b:04:56:bd:e5:
c1:37:f6:e9:b5:7d:a4:57:2b:5f:aa:ce:e6:dd:bd:
61:42:f6:99:cb:d7:a3:9b:3a:01:05:e3:d3:89:16:
93:2d:5f:1b:8e:e7:b3:b0:71:2d:c7:4f:80:ca:25:
85:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:5A:96:53:EF:3F:ED:66:F9:AD:60:B3:9E:B8:B0:1E:DC:69:E2:DA
X509v3 Authority Key Identifier:
keyid:C4:41:73:8B:AA:B9:88:B1:D6:86:93:BB:05:E2:9B:FB:B4:F0:F6:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xEFzi6q5iLHWhpO7BeKb-7Tw9nE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/f8314e-a3bc-45e9-a9f5-4c98d9a51405/1/JlqWU-8_7Wb5rWCznriwHtxp4to.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/f8314e-a3bc-45e9-a9f5-4c98d9a51405/1/xEFzi6q5iLHWhpO7BeKb-7Tw9nE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.186.0.0-37.186.4.255
37.186.6.0-37.186.23.255
77.220.96.0-77.220.115.255
77.220.120.0/21
78.142.64.0/23
78.142.68.0-78.142.79.255
78.142.96.0-78.142.117.255
78.142.122.0-78.142.127.255
81.94.48.0-81.94.54.255
81.94.56.0/21
91.206.224.0/23
92.42.16.0/22
92.63.208.0-92.63.212.255
92.63.214.0-92.63.223.255
93.185.128.0/20
95.143.80.0/20
195.16.224.0-195.16.238.255
195.16.241.0-195.16.243.255
195.16.245.0-195.16.247.255
195.16.251.0/24
195.16.253.0-195.16.255.255
195.137.238.0/23
195.140.136.0/22
213.139.252.0/22
IPv6:
2a00:e98::/32
2a00:eb0::/32
2a01:f8::/32
2a01:100::/32
Signature Algorithm: sha256WithRSAEncryption
8c:2a:d2:f7:bf:cf:b8:5c:a3:de:08:81:2c:03:6c:bf:21:96:
e7:a4:87:eb:d4:39:ff:8e:e1:cd:bf:f8:f5:c7:f1:d1:50:f5:
54:b9:f2:cd:75:0f:7f:b0:17:25:97:77:60:b8:30:41:d0:5e:
09:e7:7e:d9:6e:5c:d0:a7:05:f7:8b:45:97:fd:ac:03:78:58:
55:b1:fa:9d:3d:34:44:e0:a9:47:0b:81:47:dc:91:25:70:03:
9f:56:68:f1:4e:51:84:0d:ba:8a:4f:4c:71:0a:cb:ec:36:17:
34:3b:bd:43:4e:9a:a4:07:01:93:f8:90:d9:54:3a:ee:97:0d:
25:58:e1:c9:74:96:c2:fb:95:70:d9:8e:9f:58:34:ea:20:c2:
c5:07:d9:c4:a8:5b:67:f2:48:cb:eb:e3:eb:95:37:7d:c8:c0:
fd:da:65:4a:20:96:2e:6f:35:33:9a:f7:64:38:ee:dc:43:87:
89:55:0a:87:a8:15:84:be:d3:4e:b6:29:c9:0b:04:4f:9d:e1:
29:02:3b:a4:73:ca:7c:e4:09:5c:d9:7b:45:c6:01:91:98:0d:
26:b3:68:8e:d2:b2:55:27:b4:74:d9:c1:a4:0b:b3:96:e2:59:
ba:6e:6b:5a:ed:31:f2:2d:ff:10:5d:52:0d:58:f2:bf:cf:ec:
66:e9:ca:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:38 2024 by rpki-client on console-fra.rpki-client.org