Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/1c24ad-24b4-4c98-a659-592c0dcdaf79/1/ppb9bCkAEKAzFLlIDj9Nt6IuSP8.roa
File: ppb9bCkAEKAzFLlIDj9Nt6IuSP8.roa (raw, json)
Hash identifier: ln/wYf58k6Xz0/6a9DPKPcDqkaVoBKpNVFfAmSEiDBA=
Subject key identifier: A6:96:FD:6C:29:00:10:A0:33:14:B9:48:0E:3F:4D:B7:A2:2E:48:FF
Certificate issuer: /CN=0283a8c69a2630cd8f6fa70af2a53fe019f2cc07
Certificate serial: 059AEAA6
Authority key identifier: 02:83:A8:C6:9A:26:30:CD:8F:6F:A7:0A:F2:A5:3F:E0:19:F2:CC:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AoOoxpomMM2Pb6cK8qU_4BnyzAc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/1c24ad-24b4-4c98-a659-592c0dcdaf79/1/ppb9bCkAEKAzFLlIDj9Nt6IuSP8.roa
Signing time: Sun 05 Jun 2022 01:32:21 +0000
ROA not before: Sun 05 Jun 2022 01:32:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56402
IP address blocks: 185.120.168.0/24 maxlen: 24
185.120.168.0/23 maxlen: 23
185.120.169.0/24 maxlen: 24
46.225.64.0/19 maxlen: 19
77.77.64.0/18 maxlen: 18
46.225.120.0/23 maxlen: 23
77.77.76.0/23 maxlen: 23
77.77.76.0/24 maxlen: 24
77.77.77.0/24 maxlen: 24
46.225.128.0/19 maxlen: 19
46.225.128.0/20 maxlen: 20
46.225.144.0/20 maxlen: 20
77.77.96.0/19 maxlen: 19
46.225.96.0/19 maxlen: 19
46.225.96.0/24 maxlen: 24
77.77.64.0/19 maxlen: 19
46.225.233.0/24 maxlen: 24
46.224.96.0/19 maxlen: 19
46.224.0.0/19 maxlen: 19
46.224.0.0/24 maxlen: 24
46.224.1.0/24 maxlen: 24
46.224.2.0/24 maxlen: 24
46.224.2.0/23 maxlen: 23
46.224.3.0/24 maxlen: 24
46.224.6.0/24 maxlen: 24
46.224.7.0/24 maxlen: 24
46.224.8.0/24 maxlen: 24
46.224.10.0/24 maxlen: 24
46.224.16.0/20 maxlen: 20
46.224.0.0/15 maxlen: 15
46.224.15.0/24 maxlen: 24
46.225.224.0/19 maxlen: 19
46.224.128.0/19 maxlen: 19
2a02:16c0::/29 maxlen: 29
2a02:16c0::/30 maxlen: 30
2a02:16c4::/30 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94038694 (0x59aeaa6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0283a8c69a2630cd8f6fa70af2a53fe019f2cc07
Validity
Not Before: Jun 5 01:32:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a696fd6c290010a03314b9480e3f4db7a22e48ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c2:dd:f1:9a:df:4f:c8:8e:cd:27:f3:2c:87:
06:a4:ae:5e:01:c0:49:1c:03:25:0e:0d:71:19:77:
b0:5e:10:7d:c6:30:fc:81:15:83:b9:ba:aa:80:0f:
dd:ca:2d:2c:5e:82:48:6a:55:41:65:60:21:8b:1e:
d5:5f:1a:8b:af:1d:e5:db:1d:a1:ab:2f:89:73:7b:
54:e9:f8:14:30:c6:3b:53:6a:0e:fa:2e:b2:c2:ed:
0f:fa:fd:7f:9b:0e:06:58:ac:71:de:fe:41:05:7a:
fb:42:d9:41:20:ee:95:c3:13:a8:5e:ab:ac:4e:ed:
45:64:3e:98:99:0a:82:3b:23:63:9b:d1:b2:a4:7a:
03:6b:bc:7a:38:9c:d9:4d:26:78:b6:b5:a2:4c:a4:
9e:d7:19:d0:87:49:e3:54:a6:dc:ae:0a:a8:57:4b:
93:d5:00:87:42:13:a7:8f:f2:b9:dd:a2:44:de:99:
34:d5:81:61:ae:53:13:c8:9a:91:2a:b9:90:71:e4:
ce:6a:0b:d8:01:b0:42:b9:cd:55:60:9c:ab:87:19:
58:4b:dc:6a:f3:66:47:1e:6a:42:9e:3f:8d:3b:cd:
7f:e5:8a:4b:1a:a4:14:8b:6d:09:f8:ce:7f:43:05:
c5:76:dd:82:95:c7:35:1a:7e:1d:2f:ab:1f:b4:52:
1b:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:96:FD:6C:29:00:10:A0:33:14:B9:48:0E:3F:4D:B7:A2:2E:48:FF
X509v3 Authority Key Identifier:
keyid:02:83:A8:C6:9A:26:30:CD:8F:6F:A7:0A:F2:A5:3F:E0:19:F2:CC:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AoOoxpomMM2Pb6cK8qU_4BnyzAc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/1c24ad-24b4-4c98-a659-592c0dcdaf79/1/ppb9bCkAEKAzFLlIDj9Nt6IuSP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/1c24ad-24b4-4c98-a659-592c0dcdaf79/1/AoOoxpomMM2Pb6cK8qU_4BnyzAc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.224.0.0/15
77.77.64.0/18
185.120.168.0/23
IPv6:
2a02:16c0::/29
Signature Algorithm: sha256WithRSAEncryption
6a:f8:75:02:3c:4d:5c:ca:01:fc:9d:00:8d:ac:75:71:de:e9:
d7:31:75:b1:12:cc:a0:03:6c:31:1e:a2:26:55:d6:63:a7:5f:
2c:e8:ed:64:c9:47:86:13:c5:85:fa:b9:15:c4:51:f3:33:11:
c3:a9:b9:d0:d5:6c:68:bb:0a:17:55:87:67:5c:5c:03:d2:90:
7f:5b:17:5c:6d:4e:08:d7:27:6f:4c:21:4e:d7:c3:03:18:3b:
d2:cb:23:80:05:74:e9:3d:59:fd:f8:72:b4:c5:64:47:cc:08:
aa:73:9c:7c:0d:5c:90:70:b5:ca:7a:df:19:a0:0e:69:ff:0b:
84:41:d5:b1:71:c1:15:43:b4:38:96:fb:ab:c5:88:40:f0:42:
3e:3d:0a:d6:44:60:63:31:da:f7:94:5a:66:32:06:3d:26:0d:
ae:09:0e:8c:f7:84:e5:17:a0:75:7f:0b:d2:6c:dc:18:51:1e:
5b:27:02:24:aa:5c:2b:eb:ff:72:a9:14:e9:ed:50:92:31:cd:
a5:fa:10:64:f3:b9:2a:dd:41:dc:c5:df:a6:78:28:9a:6c:0b:
8e:bc:0b:ed:cf:c3:42:60:cb:e8:39:95:f4:b0:e7:95:de:90:
4b:4c:a4:15:cc:fc:9d:19:fc:75:bd:73:50:78:f6:92:99:17:
27:e6:7c:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:04 2024 by rpki-client on console-ams.rpki-client.org