Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/EdPrj0ckPCLgS9c1n4ZDjkgs4W4.roa
File: EdPrj0ckPCLgS9c1n4ZDjkgs4W4.roa (raw, json)
Hash identifier: /W+UUAtky5ejOXtIpX9hfjJHuonxO6PNH186fBoIm9E=
Subject key identifier: 11:D3:EB:8F:47:24:3C:22:E0:4B:D7:35:9F:86:43:8E:48:2C:E1:6E
Certificate issuer: /CN=e4a9308742e7eb66506219d829d86185899a1e34
Certificate serial: 018269109D5BE80D42319889FDD817DCEA19
Authority key identifier: E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/EdPrj0ckPCLgS9c1n4ZDjkgs4W4.roa
Signing time: Thu 04 Aug 2022 13:34:32 +0000
ROA not before: Thu 04 Aug 2022 13:34:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48728
IP address blocks: 80.76.160.0/21 maxlen: 21
80.76.162.0/24 maxlen: 24
80.76.160.0/20 maxlen: 20
80.76.161.0/24 maxlen: 24
80.76.163.0/24 maxlen: 24
80.76.165.0/24 maxlen: 24
80.76.164.0/24 maxlen: 24
80.76.171.0/24 maxlen: 24
80.76.168.0/21 maxlen: 21
80.76.170.0/24 maxlen: 24
212.70.96.0/24 maxlen: 24
212.70.96.0/19 maxlen: 19
212.70.102.0/24 maxlen: 24
212.70.99.0/24 maxlen: 24
212.70.109.0/24 maxlen: 24
212.70.110.0/24 maxlen: 24
212.70.112.0/24 maxlen: 24
212.70.111.0/24 maxlen: 24
212.70.107.0/24 maxlen: 24
212.70.114.0/24 maxlen: 24
212.70.113.0/24 maxlen: 24
212.70.116.0/24 maxlen: 24
212.70.115.0/24 maxlen: 24
212.70.117.0/24 maxlen: 24
212.70.118.0/24 maxlen: 24
212.70.119.0/24 maxlen: 24
212.70.121.0/24 maxlen: 24
212.70.127.0/24 maxlen: 24
31.11.48.0/21 maxlen: 21
37.186.38.0/24 maxlen: 24
37.186.37.0/24 maxlen: 24
37.186.32.0/24 maxlen: 24
37.186.34.0/24 maxlen: 24
37.186.32.0/19 maxlen: 19
37.186.33.0/24 maxlen: 24
37.186.36.0/24 maxlen: 24
37.186.35.0/24 maxlen: 24
37.186.39.0/24 maxlen: 24
37.186.41.0/24 maxlen: 24
37.186.40.0/24 maxlen: 24
37.186.43.0/24 maxlen: 24
37.186.42.0/24 maxlen: 24
37.186.44.0/24 maxlen: 24
37.186.51.0/24 maxlen: 24
37.186.50.0/24 maxlen: 24
37.186.46.0/24 maxlen: 24
37.186.45.0/24 maxlen: 24
37.186.48.0/24 maxlen: 24
37.186.47.0/24 maxlen: 24
37.186.49.0/24 maxlen: 24
37.186.58.0/24 maxlen: 24
37.186.57.0/24 maxlen: 24
37.186.53.0/24 maxlen: 24
37.186.52.0/24 maxlen: 24
37.186.55.0/24 maxlen: 24
37.186.56.0/24 maxlen: 24
37.186.60.0/24 maxlen: 24
37.186.59.0/24 maxlen: 24
185.247.88.0/22 maxlen: 22
2a04:7f80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:69:10:9d:5b:e8:0d:42:31:98:89:fd:d8:17:dc:ea:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9308742e7eb66506219d829d86185899a1e34
Validity
Not Before: Aug 4 13:34:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=11d3eb8f47243c22e04bd7359f86438e482ce16e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:15:df:63:ef:96:37:fe:9f:41:0c:d6:9d:1b:
a6:41:e6:b1:e9:e4:f6:e8:d6:1b:f4:14:47:62:15:
3c:7b:b8:96:04:d7:e3:37:b7:ed:bf:32:a2:63:e6:
74:4f:78:1d:19:2c:3c:8b:dc:c1:ce:01:cd:f8:08:
af:e9:d8:8f:07:7a:db:b6:91:67:13:61:46:63:c4:
78:0d:b3:97:1d:e5:ac:02:bc:d5:62:c8:79:e8:04:
93:d1:66:d5:82:80:75:78:99:85:2a:13:4f:6b:96:
d7:9b:97:52:c7:12:2e:b3:19:64:15:bd:cd:ab:f3:
69:3e:bf:f8:84:f5:39:62:37:f4:86:df:8e:4c:bc:
49:d4:14:cc:ee:aa:b2:b0:d2:36:92:a3:ae:32:48:
cc:aa:68:da:78:3d:20:21:f1:92:b8:63:73:52:d7:
55:6d:7e:89:c3:60:b4:95:51:d3:cc:ae:c5:8f:31:
ba:50:0a:6f:b3:37:da:e8:28:75:77:72:60:4b:95:
6f:d6:86:7f:f9:e7:fa:9d:fd:73:22:ff:66:dd:ea:
46:4f:c0:ca:72:22:c2:26:4f:9b:87:2c:c8:8b:bc:
c1:c5:c7:46:ca:72:33:cd:80:cc:33:0c:b8:e9:1c:
c2:c2:95:70:02:80:cb:7d:45:c3:36:bd:b7:92:c7:
e4:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:D3:EB:8F:47:24:3C:22:E0:4B:D7:35:9F:86:43:8E:48:2C:E1:6E
X509v3 Authority Key Identifier:
keyid:E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/EdPrj0ckPCLgS9c1n4ZDjkgs4W4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.48.0/21
37.186.32.0/19
80.76.160.0/20
185.247.88.0/22
212.70.96.0/19
IPv6:
2a04:7f80::/29
Signature Algorithm: sha256WithRSAEncryption
6e:e3:a3:cd:9d:e2:1d:73:e0:b2:b8:bf:e8:da:8c:37:9f:d2:
52:e1:c2:64:31:9d:a3:5e:4f:7e:a4:98:f4:03:be:5d:ff:4b:
2b:9e:85:b0:63:fd:94:d7:d5:2f:b4:81:82:26:48:77:65:e7:
f4:f0:a6:96:36:7a:9f:8f:fe:a6:b5:1d:b8:c6:3f:ad:6d:58:
fb:93:42:61:6d:f8:a9:32:ce:da:e1:fd:c9:5d:3a:1d:78:0a:
c2:a2:79:b9:a8:8b:a9:34:8b:8b:90:cb:f2:a5:8d:a5:12:b3:
e3:4e:c2:61:0e:22:5b:f1:12:0e:47:ad:80:ef:18:b7:70:ac:
5f:c4:27:31:41:10:b3:dd:9a:ac:56:3f:d8:d0:45:02:40:c1:
ca:67:9d:20:30:74:af:e7:d6:c7:49:13:8a:aa:08:c8:ec:2f:
30:ed:2a:47:02:da:bb:db:c0:e9:5b:ab:eb:e0:80:93:f2:4a:
94:de:b2:46:ad:5c:df:5b:e6:3f:3f:01:d4:7e:b9:c1:0e:b6:
af:19:23:20:4b:7e:c9:6a:b4:fc:b5:eb:3a:cb:9d:0e:ba:6a:
d1:a2:02:81:b6:18:4f:d1:a8:a6:11:44:74:7e:15:d4:0b:cf:
41:a0:ff:af:74:f9:91:f7:2f:06:9f:76:00:02:dd:d3:a9:4c:
1d:80:8f:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:35 2023 by rpki-client on console-ams.rpki-client.org