Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/158450-dd43-4b82-ab2b-095e7188d0a0/1/akx4NmRCC1peSdY-NBsQztDXuS0.roa
File: akx4NmRCC1peSdY-NBsQztDXuS0.roa (raw, json)
Hash identifier: 8U6+xz7q8RIGXXKekci0BcBNhD+quYQB+mpm5qGeVqE=
Subject key identifier: 6A:4C:78:36:64:42:0B:5A:5E:49:D6:3E:34:1B:10:CE:D0:D7:B9:2D
Certificate issuer: /CN=a41d4e978810e9789a76e687a7ddd97526b0d9bc
Certificate serial: 064A127F
Authority key identifier: A4:1D:4E:97:88:10:E9:78:9A:76:E6:87:A7:DD:D9:75:26:B0:D9:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pB1Ol4gQ6XiaduaHp93ZdSaw2bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/158450-dd43-4b82-ab2b-095e7188d0a0/1/akx4NmRCC1peSdY-NBsQztDXuS0.roa
Signing time: Sat 01 Jan 2022 10:00:38 +0000
ROA not before: Sat 01 Jan 2022 10:00:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44327
IP address blocks: 93.188.11.0/24 maxlen: 24
93.188.8.0/21 maxlen: 21
93.188.8.0/24 maxlen: 24
93.188.8.0/22 maxlen: 22
93.188.12.0/22 maxlen: 22
93.188.14.0/24 maxlen: 24
92.51.96.0/20 maxlen: 20
92.51.96.0/21 maxlen: 21
92.51.92.0/24 maxlen: 24
92.51.104.0/21 maxlen: 21
92.51.99.0/24 maxlen: 24
92.51.112.0/24 maxlen: 24
92.51.112.0/22 maxlen: 22
92.51.116.0/22 maxlen: 22
92.51.112.0/21 maxlen: 21
92.51.112.0/20 maxlen: 20
92.51.113.0/24 maxlen: 24
92.51.121.0/24 maxlen: 24
92.51.124.0/22 maxlen: 22
92.51.120.0/22 maxlen: 22
92.51.120.0/21 maxlen: 21
92.51.126.0/24 maxlen: 24
109.234.112.0/22 maxlen: 22
109.234.112.0/24 maxlen: 24
109.234.116.0/22 maxlen: 22
109.234.112.0/21 maxlen: 21
92.51.64.0/20 maxlen: 20
92.51.64.0/21 maxlen: 21
92.51.64.0/24 maxlen: 24
92.51.64.0/18 maxlen: 18
92.51.66.0/24 maxlen: 24
92.51.65.0/24 maxlen: 24
92.51.69.0/24 maxlen: 24
92.51.75.0/24 maxlen: 24
92.51.72.0/21 maxlen: 21
92.51.80.0/24 maxlen: 24
92.51.80.0/20 maxlen: 20
92.51.80.0/21 maxlen: 21
92.51.82.0/24 maxlen: 24
92.51.87.0/24 maxlen: 24
92.51.88.0/21 maxlen: 21
92.51.86.0/24 maxlen: 24
37.131.226.0/24 maxlen: 24
37.131.224.0/21 maxlen: 21
37.131.224.0/22 maxlen: 22
37.131.228.0/22 maxlen: 22
37.131.227.0/24 maxlen: 24
37.131.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105517695 (0x64a127f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a41d4e978810e9789a76e687a7ddd97526b0d9bc
Validity
Not Before: Jan 1 10:00:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6a4c783664420b5a5e49d63e341b10ced0d7b92d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:1e:78:6f:eb:69:16:de:e5:75:a9:68:23:7b:
3b:41:7d:22:3c:2e:c6:1d:52:71:26:dc:e7:6e:0a:
36:b4:11:5f:8c:8d:e9:00:57:b3:cd:ab:eb:22:00:
24:00:ba:7b:bc:5e:ec:23:5f:ed:cb:7c:ab:2d:f0:
85:08:9f:b9:1d:53:69:aa:62:a9:5f:1d:2d:74:3a:
1a:af:5d:27:6d:fb:ed:af:36:01:82:b5:8f:de:50:
9d:ef:58:fd:4f:1f:cb:54:b9:8b:ae:19:0a:33:f6:
ef:3e:51:46:ba:a4:db:af:dd:f2:46:7b:1e:97:a6:
c4:9f:c0:0f:ea:9d:e7:49:2b:9c:9a:a4:3b:43:2b:
3c:4b:18:6e:74:86:b7:97:00:1a:21:cf:2c:d1:4b:
6c:4a:a8:03:78:51:ea:4b:c4:d4:32:81:54:e0:ca:
10:aa:14:d9:a4:82:75:52:29:32:5c:2d:1c:66:73:
4d:a2:c6:86:4a:32:8a:20:be:73:15:3d:c6:5d:4c:
96:03:a9:a7:50:15:32:96:f6:3f:fa:8e:fe:5e:2a:
af:f0:c8:2f:34:17:57:3c:71:02:a5:40:ad:a6:bf:
bc:e8:dc:df:4a:7d:36:03:0d:49:08:15:c0:88:c9:
25:1e:a7:21:74:00:32:a9:96:87:f0:70:0e:5f:67:
28:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:4C:78:36:64:42:0B:5A:5E:49:D6:3E:34:1B:10:CE:D0:D7:B9:2D
X509v3 Authority Key Identifier:
keyid:A4:1D:4E:97:88:10:E9:78:9A:76:E6:87:A7:DD:D9:75:26:B0:D9:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pB1Ol4gQ6XiaduaHp93ZdSaw2bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/158450-dd43-4b82-ab2b-095e7188d0a0/1/akx4NmRCC1peSdY-NBsQztDXuS0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/158450-dd43-4b82-ab2b-095e7188d0a0/1/pB1Ol4gQ6XiaduaHp93ZdSaw2bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.131.224.0/21
92.51.64.0/18
93.188.8.0/21
109.234.112.0/21
Signature Algorithm: sha256WithRSAEncryption
28:9d:74:c0:14:41:22:04:79:03:c1:9a:11:68:b3:12:2e:c7:
2d:3b:ee:da:e7:6c:9d:b7:99:89:a5:97:7c:f4:2a:81:36:56:
bf:ec:fd:8d:dd:f6:65:f2:dd:eb:bf:89:2c:0f:29:9a:2c:ab:
23:ba:af:da:52:f6:34:69:60:de:0e:b2:b6:52:70:b9:a1:9e:
52:c9:0f:b9:9b:6e:1c:4f:ee:ba:12:9b:6f:34:d6:2e:8a:8a:
74:5f:9d:15:02:62:b0:25:b0:5d:72:b2:0e:55:60:00:ba:3b:
78:ab:63:b1:06:c9:ad:f4:74:11:d0:0b:37:f4:da:35:83:48:
8d:c1:b0:12:25:ef:09:b4:94:2b:24:0c:8f:9f:95:74:74:e1:
6c:66:a4:cf:11:ec:6d:db:ac:53:3d:d1:0c:59:cc:8b:bd:f0:
76:19:d4:8e:2e:31:55:8f:c8:d1:b1:12:d4:39:8f:9e:7c:60:
76:88:e7:49:44:bb:25:40:a2:bb:e6:ab:38:fb:c9:09:ee:14:
83:06:ec:75:b8:a3:47:bc:02:22:58:07:a4:62:d9:f6:5d:d5:
eb:73:b8:df:ea:45:c3:78:2f:63:11:68:62:3b:ca:01:bd:9b:
72:78:60:81:8c:c1:e6:ff:b0:4a:3d:6e:12:b4:a4:0a:79:da:
e5:9c:52:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:29 2023 by rpki-client on console-ams.rpki-client.org