Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/bd7a93-c9e4-42b6-a5c6-d35c54f14dbe/1/corHjw_l4XbPXnMhK9k3yGrTVmQ.roa
File: corHjw_l4XbPXnMhK9k3yGrTVmQ.roa (raw, json)
Hash identifier: NJ9KzYt2IjD8uDCMYrXzFgXXF32JNJ7BijZFYVVSNyE=
Subject key identifier: 72:8A:C7:8F:0F:E5:E1:76:CF:5E:73:21:2B:D9:37:C8:6A:D3:56:64
Certificate issuer: /CN=26bbed788e29f8406b2bdc8dddeeb7d4ec4b833e
Certificate serial: 055DD30C
Authority key identifier: 26:BB:ED:78:8E:29:F8:40:6B:2B:DC:8D:DD:EE:B7:D4:EC:4B:83:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JrvteI4p-EBrK9yN3e631OxLgz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/bd7a93-c9e4-42b6-a5c6-d35c54f14dbe/1/corHjw_l4XbPXnMhK9k3yGrTVmQ.roa
Signing time: Sat 01 Jan 2022 13:03:51 +0000
ROA not before: Sat 01 Jan 2022 13:03:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43205
IP address blocks: 212.43.32.0/19 maxlen: 19
46.40.64.0/18 maxlen: 18
46.40.75.0/24 maxlen: 24
213.214.64.0/19 maxlen: 19
188.254.128.0/17 maxlen: 17
37.143.192.0/18 maxlen: 18
178.169.128.0/17 maxlen: 17
212.75.0.0/19 maxlen: 19
185.4.80.0/22 maxlen: 22
46.237.64.0/18 maxlen: 18
158.58.192.0/18 maxlen: 18
193.200.14.0/23 maxlen: 23
193.24.240.0/22 maxlen: 22
91.139.128.0/17 maxlen: 17
78.128.56.0/22 maxlen: 22
78.128.52.0/22 maxlen: 22
78.128.74.0/23 maxlen: 23
78.128.84.0/22 maxlen: 22
78.128.82.0/23 maxlen: 23
78.128.88.0/22 maxlen: 22
78.128.90.0/23 maxlen: 24
78.128.96.0/23 maxlen: 23
91.148.150.0/23 maxlen: 23
91.148.149.0/24 maxlen: 24
91.148.152.0/21 maxlen: 21
78.128.100.0/22 maxlen: 22
78.128.104.0/22 maxlen: 22
78.128.2.0/23 maxlen: 23
78.128.10.0/23 maxlen: 23
78.128.12.0/22 maxlen: 22
78.128.16.0/20 maxlen: 20
46.47.64.0/18 maxlen: 18
78.128.36.0/22 maxlen: 22
78.128.40.0/23 maxlen: 23
78.142.30.0/23 maxlen: 23
194.145.160.0/22 maxlen: 22
91.148.166.0/24 maxlen: 24
91.148.162.0/23 maxlen: 23
91.148.164.0/23 maxlen: 23
78.128.115.0/24 maxlen: 24
91.148.169.0/24 maxlen: 24
78.128.116.0/23 maxlen: 23
91.148.170.0/23 maxlen: 23
91.148.172.0/22 maxlen: 22
91.148.176.0/21 maxlen: 21
78.128.120.0/22 maxlen: 22
109.121.192.0/18 maxlen: 18
91.148.186.0/23 maxlen: 23
78.142.10.0/23 maxlen: 23
78.142.9.0/24 maxlen: 24
78.142.12.0/22 maxlen: 22
2a02:6800::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90034956 (0x55dd30c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26bbed788e29f8406b2bdc8dddeeb7d4ec4b833e
Validity
Not Before: Jan 1 13:03:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=728ac78f0fe5e176cf5e73212bd937c86ad35664
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:91:6d:a8:e9:f2:b0:02:e2:3a:d2:4e:e8:6c:
45:65:b5:32:7a:51:ae:45:99:f7:b9:e0:c3:7e:ed:
e7:c4:68:ba:67:85:9b:63:9e:73:a4:ee:7c:9a:d5:
ae:a9:89:b1:ed:d2:9d:b2:59:38:03:48:ce:35:16:
72:7a:19:3f:3d:3a:07:5d:1a:b6:df:32:62:ea:e6:
98:18:18:9a:89:d5:7c:7d:06:a3:a5:78:66:d6:e7:
79:b0:89:bc:a7:7a:fc:73:06:06:20:5b:f0:f8:91:
27:a9:4c:41:a3:ed:3f:60:0a:ef:2e:db:9f:ce:64:
40:38:9c:a7:69:c1:67:4b:ce:ab:1c:1d:65:ef:a6:
1d:b4:0e:06:bf:a8:79:76:f6:78:3e:72:77:32:d1:
85:91:19:db:36:ad:34:24:12:c0:59:e4:b8:75:12:
ba:4e:b3:a7:c2:55:e1:d1:15:2e:60:c9:59:24:c3:
05:03:bb:64:71:c7:0a:5c:22:37:6e:05:2d:5f:d2:
ff:2b:ec:4c:00:62:85:af:f2:4b:f5:5c:56:db:00:
87:b1:d8:2a:9b:49:db:4e:8e:1f:68:0d:6f:38:65:
47:89:7e:28:e5:a1:73:18:7b:9a:9e:14:a4:7f:13:
2f:44:8b:35:de:21:17:fa:e4:33:ee:22:31:b4:7c:
d3:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:8A:C7:8F:0F:E5:E1:76:CF:5E:73:21:2B:D9:37:C8:6A:D3:56:64
X509v3 Authority Key Identifier:
keyid:26:BB:ED:78:8E:29:F8:40:6B:2B:DC:8D:DD:EE:B7:D4:EC:4B:83:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JrvteI4p-EBrK9yN3e631OxLgz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/bd7a93-c9e4-42b6-a5c6-d35c54f14dbe/1/corHjw_l4XbPXnMhK9k3yGrTVmQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/bd7a93-c9e4-42b6-a5c6-d35c54f14dbe/1/JrvteI4p-EBrK9yN3e631OxLgz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.143.192.0/18
46.40.64.0/18
46.47.64.0/18
46.237.64.0/18
78.128.2.0/23
78.128.10.0-78.128.31.255
78.128.36.0-78.128.41.255
78.128.52.0-78.128.59.255
78.128.74.0/23
78.128.82.0-78.128.91.255
78.128.96.0/23
78.128.100.0-78.128.107.255
78.128.115.0-78.128.117.255
78.128.120.0/22
78.142.9.0-78.142.15.255
78.142.30.0/23
91.139.128.0/17
91.148.149.0-91.148.159.255
91.148.162.0-91.148.166.255
91.148.169.0-91.148.183.255
91.148.186.0/23
109.121.192.0/18
158.58.192.0/18
178.169.128.0/17
185.4.80.0/22
188.254.128.0/17
193.24.240.0/22
193.200.14.0/23
194.145.160.0/22
212.43.32.0/19
212.75.0.0/19
213.214.64.0/19
IPv6:
2a02:6800::/32
Signature Algorithm: sha256WithRSAEncryption
55:60:27:f8:41:a1:e3:77:b2:14:c7:aa:ae:61:cf:b6:12:48:
e2:da:39:f5:4c:eb:e1:2b:b8:8d:4b:9c:76:93:40:2f:4a:ea:
3e:f9:1b:6d:0f:ca:d1:fb:1b:6b:38:1b:08:04:3b:8c:d1:d7:
1d:f1:2e:4d:d0:69:89:ce:b2:85:10:18:f0:cc:4d:9e:e8:c6:
7a:6e:65:3e:c5:5b:7a:83:de:7a:29:86:77:12:e9:db:35:da:
52:92:8a:20:0d:19:f8:f3:32:fd:08:17:8e:b9:42:70:07:11:
66:82:08:27:01:06:d4:a4:30:da:b3:31:17:b0:ac:0a:5e:0b:
28:d7:33:80:31:ca:00:ce:52:96:f9:40:87:95:05:fe:47:c6:
ee:ab:46:f1:e8:e7:05:ca:23:13:b6:69:70:9c:2b:0b:51:b7:
95:91:1d:ed:1e:46:6c:d1:cd:50:51:03:31:6d:60:4b:55:85:
fc:aa:b6:65:68:6d:2b:04:ba:ec:8a:df:a3:97:78:1d:44:e3:
6c:af:77:21:73:ae:ec:ff:18:38:67:24:d4:d3:8f:46:52:d1:
6f:13:a1:bb:3d:09:65:dc:df:95:c6:c8:94:28:40:32:d8:c0:
ea:3b:e6:2e:74:71:6c:18:61:0e:1a:41:1a:35:00:75:a1:92:
f8:c5:fa:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:39 2024 by rpki-client on console-fra.rpki-client.org