Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/4shKV5BDhdLPPlkCHmO2i2b7DMQ.roa
File: 4shKV5BDhdLPPlkCHmO2i2b7DMQ.roa (raw, json)
Hash identifier: M5zdyXiPZqszPKveJhSzW0Efr76492pNM2hIpqQ9Hs8=
Subject key identifier: E2:C8:4A:57:90:43:85:D2:CF:3E:59:02:1E:63:B6:8B:66:FB:0C:C4
Certificate issuer: /CN=e4a9308742e7eb66506219d829d86185899a1e34
Certificate serial: 01847568F4F0A6CC33B73A094F6950DFB4B4
Authority key identifier: E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/4shKV5BDhdLPPlkCHmO2i2b7DMQ.roa
Signing time: Mon 14 Nov 2022 09:12:03 +0000
ROA not before: Mon 14 Nov 2022 09:12:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19905
IP address blocks: 31.11.50.0/24 maxlen: 24
31.11.51.0/24 maxlen: 24
31.11.48.0/24 maxlen: 24
31.11.49.0/24 maxlen: 24
31.11.52.0/24 maxlen: 24
31.11.53.0/24 maxlen: 24
31.11.54.0/24 maxlen: 24
31.11.55.0/24 maxlen: 24
37.186.35.0/24 maxlen: 24
37.186.36.0/24 maxlen: 24
37.186.37.0/24 maxlen: 24
37.186.32.0/24 maxlen: 24
37.186.33.0/24 maxlen: 24
37.186.34.0/24 maxlen: 24
37.186.38.0/24 maxlen: 24
37.186.41.0/24 maxlen: 24
37.186.42.0/24 maxlen: 24
37.186.43.0/24 maxlen: 24
37.186.44.0/24 maxlen: 24
37.186.39.0/24 maxlen: 24
37.186.40.0/24 maxlen: 24
37.186.48.0/24 maxlen: 24
37.186.49.0/24 maxlen: 24
37.186.50.0/24 maxlen: 24
37.186.51.0/24 maxlen: 24
37.186.45.0/24 maxlen: 24
37.186.46.0/24 maxlen: 24
37.186.47.0/24 maxlen: 24
37.186.55.0/24 maxlen: 24
37.186.56.0/24 maxlen: 24
37.186.57.0/24 maxlen: 24
37.186.58.0/24 maxlen: 24
37.186.52.0/24 maxlen: 24
37.186.53.0/24 maxlen: 24
37.186.54.0/24 maxlen: 24
37.186.62.0/24 maxlen: 24
37.186.63.0/24 maxlen: 24
37.186.59.0/24 maxlen: 24
37.186.60.0/24 maxlen: 24
37.186.61.0/24 maxlen: 24
185.247.88.0/24 maxlen: 24
185.247.89.0/24 maxlen: 24
185.247.90.0/24 maxlen: 24
185.247.91.0/24 maxlen: 24
103.17.2.0/24 maxlen: 24
103.17.3.0/24 maxlen: 24
103.17.0.0/24 maxlen: 24
103.17.1.0/24 maxlen: 24
103.199.88.0/24 maxlen: 24
103.199.89.0/24 maxlen: 24
103.199.90.0/24 maxlen: 24
103.199.91.0/24 maxlen: 24
80.76.162.0/24 maxlen: 24
80.76.163.0/24 maxlen: 24
80.76.164.0/24 maxlen: 24
80.76.165.0/24 maxlen: 24
80.76.160.0/24 maxlen: 24
80.76.161.0/24 maxlen: 24
80.76.166.0/24 maxlen: 24
80.76.169.0/24 maxlen: 24
80.76.170.0/24 maxlen: 24
80.76.171.0/24 maxlen: 24
80.76.172.0/24 maxlen: 24
80.76.167.0/24 maxlen: 24
80.76.168.0/24 maxlen: 24
80.76.173.0/24 maxlen: 24
80.76.174.0/24 maxlen: 24
80.76.175.0/24 maxlen: 24
103.23.124.0/24 maxlen: 24
103.23.125.0/24 maxlen: 24
103.23.126.0/24 maxlen: 24
103.23.127.0/24 maxlen: 24
103.225.72.0/24 maxlen: 24
103.225.73.0/24 maxlen: 24
103.225.74.0/24 maxlen: 24
103.225.75.0/24 maxlen: 24
212.70.96.0/24 maxlen: 24
212.70.97.0/24 maxlen: 24
212.70.98.0/24 maxlen: 24
212.70.102.0/24 maxlen: 24
212.70.99.0/24 maxlen: 24
212.70.100.0/24 maxlen: 24
212.70.101.0/24 maxlen: 24
212.70.103.0/24 maxlen: 24
212.70.106.0/24 maxlen: 24
212.70.107.0/24 maxlen: 24
212.70.108.0/24 maxlen: 24
212.70.109.0/24 maxlen: 24
212.70.110.0/24 maxlen: 24
212.70.111.0/24 maxlen: 24
212.70.112.0/24 maxlen: 24
212.70.113.0/24 maxlen: 24
212.70.114.0/24 maxlen: 24
212.70.115.0/24 maxlen: 24
212.70.116.0/24 maxlen: 24
212.70.117.0/24 maxlen: 24
212.70.118.0/24 maxlen: 24
212.70.120.0/24 maxlen: 24
212.70.121.0/24 maxlen: 24
212.70.122.0/24 maxlen: 24
212.70.119.0/24 maxlen: 24
212.70.123.0/24 maxlen: 24
212.70.124.0/24 maxlen: 24
212.70.125.0/24 maxlen: 24
212.70.127.0/24 maxlen: 24
212.70.126.0/24 maxlen: 24
103.14.208.0/24 maxlen: 24
103.14.209.0/24 maxlen: 24
103.14.210.0/24 maxlen: 24
103.14.211.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:75:68:f4:f0:a6:cc:33:b7:3a:09:4f:69:50:df:b4:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9308742e7eb66506219d829d86185899a1e34
Validity
Not Before: Nov 14 09:12:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e2c84a57904385d2cf3e59021e63b68b66fb0cc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d5:06:e8:26:c6:0f:25:7a:59:c8:74:ed:d5:
61:64:0d:04:57:ea:b4:e0:4c:4f:50:8d:16:0c:51:
aa:d5:b2:3e:d4:6d:60:b9:f0:5b:81:8c:09:db:22:
63:65:5b:c9:32:38:83:89:83:80:83:62:75:3b:cd:
11:b3:d1:17:b7:13:b9:b3:95:bb:e7:42:ae:e4:01:
2e:59:e8:77:4d:8f:40:69:99:d2:37:69:9a:d4:39:
63:b2:4e:3d:37:63:d3:b1:49:2c:6f:b1:51:cb:25:
93:10:f0:3e:e3:5b:78:1a:e4:37:aa:52:a6:97:a2:
76:ea:9e:2b:f1:65:22:34:02:43:e2:8c:31:d0:f4:
2b:e4:4a:95:47:af:6c:d7:bb:15:c3:61:47:59:d9:
dd:e3:23:7c:30:fc:db:89:3e:5d:ac:06:90:22:51:
58:a6:b1:77:ae:2e:88:99:da:9f:e3:72:df:7b:54:
70:87:11:35:8a:6b:0c:22:85:7e:ad:d2:cc:69:08:
c5:60:30:6b:d5:bb:0d:7b:73:5a:f0:e4:9f:4c:52:
40:06:33:21:36:c5:26:69:ee:24:3c:1b:07:26:ca:
30:04:e1:33:db:12:0d:03:06:27:36:0f:a7:25:31:
75:d6:5a:0c:55:26:c3:3a:0a:f4:63:d3:86:af:40:
bf:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:C8:4A:57:90:43:85:D2:CF:3E:59:02:1E:63:B6:8B:66:FB:0C:C4
X509v3 Authority Key Identifier:
keyid:E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/4shKV5BDhdLPPlkCHmO2i2b7DMQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.48.0/21
37.186.32.0/19
80.76.160.0/20
103.14.208.0/22
103.17.0.0/22
103.23.124.0/22
103.199.88.0/22
103.225.72.0/22
185.247.88.0/22
212.70.96.0/21
212.70.106.0-212.70.127.255
Signature Algorithm: sha256WithRSAEncryption
8d:2a:1b:25:27:d0:8b:49:5c:56:0d:02:b5:40:71:fc:b0:7d:
ba:15:74:cd:c6:fe:ec:64:0f:99:a1:ed:88:29:f7:05:be:32:
2e:53:03:33:a4:13:5b:b2:13:53:c5:1b:b8:20:ff:6a:4f:34:
2b:74:32:fd:32:02:3c:d1:f5:40:ca:ca:fa:cc:fe:6d:da:61:
e1:9c:2a:74:48:42:99:3d:13:f8:9d:ab:82:e6:1f:7d:8c:02:
b8:bf:87:be:63:47:84:f5:dc:b9:0d:e6:a6:4c:04:1f:61:3a:
5c:aa:fe:db:72:f2:99:c5:ed:a1:52:14:46:5d:af:15:4e:8f:
2f:cd:88:06:bf:a1:fe:09:d5:5f:63:77:06:0c:9c:da:f6:28:
8c:fd:f5:f8:3c:53:d9:7e:c8:93:df:8f:73:12:8b:00:95:14:
6a:48:98:0c:2d:0b:70:15:01:45:e7:98:aa:a8:5c:f6:af:0f:
6c:b5:12:61:ca:a9:c6:f5:e0:94:96:0c:b6:cf:70:69:36:da:
0f:9b:e0:4e:28:0f:3d:e8:e2:a8:f7:5b:09:20:6b:79:c1:70:
b2:47:68:8b:90:6c:d0:be:93:bf:d5:58:11:f2:a7:1f:31:e6:
a5:d0:b8:0f:c4:40:ce:e3:27:a1:30:fa:6a:00:8c:f2:fc:a5:
59:66:9a:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:41 2023 by rpki-client on console-fra.rpki-client.org