Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/19c09a-d79a-4de4-8a86-4a685962f3e8/1/NpDWy_qUiWytqb2a9UR2YlLa89U.roa
File: NpDWy_qUiWytqb2a9UR2YlLa89U.roa (raw, json)
Hash identifier: cwoWNMp2ORYwxoLHKulQGkKF5JmAfPzyX9GTmeyiWT4=
Subject key identifier: 36:90:D6:CB:FA:94:89:6C:AD:A9:BD:9A:F5:44:76:62:52:DA:F3:D5
Certificate issuer: /CN=eb500c9002321f03964583710b7baa4597341213
Certificate serial: 0A2C7BF8
Authority key identifier: EB:50:0C:90:02:32:1F:03:96:45:83:71:0B:7B:AA:45:97:34:12:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/61AMkAIyHwOWRYNxC3uqRZc0EhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/19c09a-d79a-4de4-8a86-4a685962f3e8/1/NpDWy_qUiWytqb2a9UR2YlLa89U.roa
Signing time: Sat 01 Jan 2022 04:57:08 +0000
ROA not before: Sat 01 Jan 2022 04:57:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29182
IP address blocks: 92.63.96.0/21 maxlen: 21
92.63.104.0/22 maxlen: 22
92.63.108.0/24 maxlen: 24
92.63.108.0/22 maxlen: 22
92.63.110.0/23 maxlen: 23
92.63.109.0/24 maxlen: 24
149.154.64.0/23 maxlen: 23
149.154.66.0/23 maxlen: 23
149.154.70.0/23 maxlen: 23
149.154.68.0/23 maxlen: 23
185.60.132.0/23 maxlen: 23
185.60.134.0/23 maxlen: 23
188.120.224.0/20 maxlen: 20
188.120.240.0/21 maxlen: 21
188.120.248.0/23 maxlen: 23
188.120.248.0/24 maxlen: 24
188.120.252.0/24 maxlen: 24
188.120.250.0/23 maxlen: 23
188.120.249.0/24 maxlen: 24
188.120.253.0/24 maxlen: 24
92.63.192.0/23 maxlen: 23
188.120.254.0/23 maxlen: 23
92.63.194.0/23 maxlen: 23
217.28.222.0/23 maxlen: 23
217.28.220.0/23 maxlen: 23
94.250.250.0/23 maxlen: 23
94.250.248.0/23 maxlen: 23
94.250.252.0/23 maxlen: 23
94.250.254.0/23 maxlen: 23
79.143.72.0/23 maxlen: 23
83.136.232.0/23 maxlen: 23
83.136.235.0/24 maxlen: 24
79.174.12.0/23 maxlen: 23
79.174.14.0/23 maxlen: 23
62.109.0.0/21 maxlen: 21
62.109.0.0/20 maxlen: 20
62.109.8.0/21 maxlen: 21
78.24.216.0/21 maxlen: 21
62.109.16.0/21 maxlen: 21
82.146.32.0/23 maxlen: 23
82.146.32.0/21 maxlen: 21
82.146.34.0/23 maxlen: 23
62.109.24.0/22 maxlen: 22
82.146.36.0/23 maxlen: 23
82.146.38.0/23 maxlen: 23
62.109.28.0/22 maxlen: 22
82.146.40.0/21 maxlen: 21
82.146.48.0/23 maxlen: 23
178.250.156.0/23 maxlen: 23
82.146.50.0/23 maxlen: 23
178.250.158.0/23 maxlen: 23
82.146.56.0/21 maxlen: 21
82.146.54.0/23 maxlen: 23
37.230.112.0/23 maxlen: 23
82.146.52.0/23 maxlen: 23
37.230.116.0/23 maxlen: 23
37.230.114.0/23 maxlen: 23
37.230.118.0/23 maxlen: 23
2a01:230:2::/48 maxlen: 48
2a01:230:1::/48 maxlen: 48
2a01:230::/48 maxlen: 48
2a09:f900::/48 maxlen: 48
2a01:230:4::/48 maxlen: 48
2a01:230:3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170687480 (0xa2c7bf8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb500c9002321f03964583710b7baa4597341213
Validity
Not Before: Jan 1 04:57:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3690d6cbfa94896cada9bd9af544766252daf3d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:25:64:75:e6:f2:28:5e:53:97:b2:67:70:fe:
e8:9a:97:b2:a3:44:b1:d7:23:b4:dd:41:81:42:9c:
8f:86:5a:69:40:b6:4f:b5:dd:eb:4d:ef:fe:d1:9a:
34:2b:b8:33:ac:15:97:3c:98:10:2c:75:18:47:4b:
92:f5:b5:1e:00:4e:1f:8b:53:59:ab:7e:96:62:ca:
61:c8:19:c7:b6:4e:16:fd:52:89:7a:0f:ab:38:3d:
5f:2c:60:ff:88:d5:cc:46:57:88:5e:5b:46:00:e9:
75:ef:30:20:e3:5d:c6:2a:88:f4:72:ee:fa:e7:8b:
51:d5:03:cc:92:63:a4:d0:40:99:7f:a0:66:99:4d:
41:b6:b5:ca:2a:92:03:63:08:36:1c:79:1f:c2:a4:
ca:26:d0:0e:a5:d0:6d:bb:39:50:07:9d:70:f9:86:
bd:f0:7c:b3:b9:32:83:a6:e8:82:34:30:cd:1d:a5:
ee:0b:24:03:f6:be:e1:b0:41:3d:0f:25:c4:b4:bf:
49:30:ae:9d:eb:20:79:a1:15:c9:eb:30:b5:66:ec:
31:ad:91:52:e3:2e:cd:54:c6:2b:84:c2:51:4d:47:
23:02:5a:b9:a2:df:66:b1:c3:de:b8:c5:37:12:bb:
2e:5c:55:67:38:48:92:fe:c3:bc:53:9c:a2:97:05:
8c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:90:D6:CB:FA:94:89:6C:AD:A9:BD:9A:F5:44:76:62:52:DA:F3:D5
X509v3 Authority Key Identifier:
keyid:EB:50:0C:90:02:32:1F:03:96:45:83:71:0B:7B:AA:45:97:34:12:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/61AMkAIyHwOWRYNxC3uqRZc0EhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/19c09a-d79a-4de4-8a86-4a685962f3e8/1/NpDWy_qUiWytqb2a9UR2YlLa89U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/19c09a-d79a-4de4-8a86-4a685962f3e8/1/61AMkAIyHwOWRYNxC3uqRZc0EhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.230.112.0/21
62.109.0.0/19
78.24.216.0/21
79.143.72.0/23
79.174.12.0/22
82.146.32.0/19
83.136.232.0/23
83.136.235.0/24
92.63.96.0/20
92.63.192.0/22
94.250.248.0/21
149.154.64.0/21
178.250.156.0/22
185.60.132.0/22
188.120.224.0/19
217.28.220.0/22
IPv6:
2a01:230::-2a01:230:4:ffff:ffff:ffff:ffff:ffff
2a09:f900::/48
Signature Algorithm: sha256WithRSAEncryption
7a:00:32:4e:f4:4c:2c:06:fb:b6:ea:fc:12:03:ec:03:7f:5b:
45:c7:04:ae:35:74:f8:89:05:b6:59:50:5f:2a:b7:ac:c7:e6:
f7:ff:79:61:18:ab:8a:d7:91:48:a3:60:2e:0e:1b:63:3d:1c:
8c:20:4e:1b:22:95:56:d1:51:8d:a8:81:b5:d2:6b:f4:43:ed:
ed:fe:71:20:87:d2:df:09:6c:f4:bf:8f:b9:a9:48:80:22:f5:
80:97:54:69:00:65:64:db:b7:d0:15:52:1d:5a:6d:32:ee:5e:
f4:ff:cf:9b:5e:a7:b0:d1:6a:5d:2e:eb:3a:fe:21:c2:f0:3b:
3f:5c:be:da:eb:44:ca:f6:49:a2:7b:52:6d:e1:d7:a9:d2:40:
ce:e0:c6:a3:15:36:7d:e9:d3:b8:8d:4a:71:75:36:c9:36:7b:
d2:cb:01:5f:58:30:45:25:a2:09:07:51:c9:30:bc:43:1a:52:
c8:ba:11:a8:64:03:81:11:9b:b2:b5:d1:62:1a:a6:e8:5c:93:
49:0b:5f:73:36:11:1f:c9:31:55:b8:9b:d9:0c:9b:c1:c1:b5:
92:ce:3b:d4:a8:1a:ec:d1:f9:6f:18:82:8f:d2:48:f8:1c:8a:
09:91:24:2b:bf:1b:2d:ae:10:66:8c:52:c7:ef:ab:9e:28:de:
3e:d4:c1:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:25 2023 by rpki-client on console-ams.rpki-client.org