Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/KAuY2grsnHO3UAj0MfnW5mdSJA8.roa
File: KAuY2grsnHO3UAj0MfnW5mdSJA8.roa (raw, json)
Hash identifier: o05fYKFODZkXZyjNTrABaCeanX+HMz3fOsZtkroW02I=
Subject key identifier: 28:0B:98:DA:0A:EC:9C:73:B7:50:08:F4:31:F9:D6:E6:67:52:24:0F
Certificate issuer: /CN=e4a9308742e7eb66506219d829d86185899a1e34
Certificate serial: 1096DF8F
Authority key identifier: E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/KAuY2grsnHO3UAj0MfnW5mdSJA8.roa
Signing time: Thu 24 Feb 2022 07:32:04 +0000
ROA not before: Thu 24 Feb 2022 07:32:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48728
IP address blocks: 80.76.160.0/21 maxlen: 21
80.76.162.0/24 maxlen: 24
80.76.160.0/20 maxlen: 20
80.76.165.0/24 maxlen: 24
80.76.164.0/24 maxlen: 24
80.76.171.0/24 maxlen: 24
80.76.168.0/21 maxlen: 21
80.76.170.0/24 maxlen: 24
212.70.96.0/24 maxlen: 24
212.70.96.0/19 maxlen: 19
212.70.102.0/24 maxlen: 24
212.70.110.0/24 maxlen: 24
212.70.112.0/24 maxlen: 24
212.70.111.0/24 maxlen: 24
212.70.107.0/24 maxlen: 24
212.70.114.0/24 maxlen: 24
212.70.113.0/24 maxlen: 24
212.70.116.0/24 maxlen: 24
212.70.115.0/24 maxlen: 24
212.70.117.0/24 maxlen: 24
212.70.118.0/24 maxlen: 24
212.70.121.0/24 maxlen: 24
212.70.127.0/24 maxlen: 24
31.11.48.0/21 maxlen: 21
37.186.38.0/24 maxlen: 24
37.186.32.0/19 maxlen: 19
37.186.37.0/24 maxlen: 24
37.186.32.0/24 maxlen: 24
37.186.34.0/24 maxlen: 24
37.186.33.0/24 maxlen: 24
37.186.36.0/24 maxlen: 24
37.186.35.0/24 maxlen: 24
37.186.39.0/24 maxlen: 24
37.186.41.0/24 maxlen: 24
37.186.40.0/24 maxlen: 24
37.186.43.0/24 maxlen: 24
37.186.42.0/24 maxlen: 24
37.186.44.0/24 maxlen: 24
37.186.51.0/24 maxlen: 24
37.186.50.0/24 maxlen: 24
37.186.46.0/24 maxlen: 24
37.186.45.0/24 maxlen: 24
37.186.48.0/24 maxlen: 24
37.186.47.0/24 maxlen: 24
37.186.49.0/24 maxlen: 24
37.186.58.0/24 maxlen: 24
37.186.57.0/24 maxlen: 24
37.186.53.0/24 maxlen: 24
37.186.52.0/24 maxlen: 24
37.186.56.0/24 maxlen: 24
37.186.60.0/24 maxlen: 24
37.186.59.0/24 maxlen: 24
185.247.88.0/22 maxlen: 22
2a04:7f80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 278323087 (0x1096df8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9308742e7eb66506219d829d86185899a1e34
Validity
Not Before: Feb 24 07:32:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=280b98da0aec9c73b75008f431f9d6e66752240f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:37:61:2f:c6:6c:22:ac:31:1c:d2:78:47:c8:
ea:d0:f1:5e:3d:4a:77:e7:5a:26:a0:d0:a4:d7:15:
53:47:20:1f:0c:8b:40:e5:57:c3:3f:ae:e5:30:3c:
3e:4e:f2:40:14:3a:bb:2f:6b:9c:52:9b:78:bd:3b:
99:7a:db:40:84:67:7a:ca:25:2b:24:a8:5e:ba:98:
1e:11:38:ad:c9:51:5c:7f:7d:5b:81:7b:05:dc:46:
f5:69:b8:d4:15:2d:be:f9:bb:7f:53:60:85:10:c3:
3c:28:b4:d5:74:0e:2f:49:14:bd:06:f1:89:16:08:
39:c7:8f:2d:7b:86:3a:c4:bb:88:11:82:90:b6:e9:
29:67:ad:ca:6e:fe:08:3f:d2:03:aa:aa:8e:80:e9:
d2:ed:09:f5:4f:65:6c:aa:2a:70:aa:4a:a6:29:1d:
34:79:2b:bf:c3:33:75:0d:f2:f2:1c:b4:20:ff:bd:
7c:a3:25:b3:38:7f:c5:94:19:c2:3a:c9:31:51:51:
2f:6a:21:e0:60:c8:22:e2:0d:8c:0f:50:34:99:0e:
5f:98:cd:75:e9:ff:09:74:4c:43:07:e5:53:ee:ba:
04:8d:44:d6:5d:0f:2f:74:85:e4:fd:8c:9d:3a:b8:
13:bb:2c:73:33:63:3d:7c:5a:7f:d5:82:f0:a8:61:
3e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:0B:98:DA:0A:EC:9C:73:B7:50:08:F4:31:F9:D6:E6:67:52:24:0F
X509v3 Authority Key Identifier:
keyid:E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/KAuY2grsnHO3UAj0MfnW5mdSJA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.48.0/21
37.186.32.0/19
80.76.160.0/20
185.247.88.0/22
212.70.96.0/19
IPv6:
2a04:7f80::/29
Signature Algorithm: sha256WithRSAEncryption
72:43:4d:6d:2f:cc:78:5a:09:2d:21:06:9b:69:5a:32:c2:3f:
d7:11:21:86:e1:53:d7:36:26:56:e8:04:9d:22:28:84:9e:79:
e0:c8:3d:b3:c4:74:59:23:a2:a6:c8:6f:9c:5a:35:3a:40:1a:
d8:79:85:19:8c:a7:e0:08:98:08:8b:19:8b:04:50:51:0f:a5:
79:d6:ad:2d:80:69:9a:a3:ef:a5:a5:02:c3:87:10:87:fc:ea:
01:39:b5:93:44:8a:85:db:89:d0:2c:17:15:4c:8a:82:8a:a8:
8c:d7:02:8f:1d:b6:cb:f1:e2:e7:f8:47:fe:47:3e:65:bd:12:
58:4f:5c:55:c8:4e:cf:93:30:8c:8a:73:a4:05:d5:12:40:f4:
ef:6c:a7:f2:49:05:a6:62:08:17:7f:1a:70:e5:12:1a:62:ab:
79:6c:20:27:78:dc:2e:2f:f5:9b:51:cc:2e:1e:8e:3e:f4:ed:
fb:66:62:dd:bf:20:af:f7:e0:8f:2d:5b:14:bc:d6:49:49:cf:
22:05:72:90:57:24:3e:81:fe:e9:5a:e7:97:2b:ed:22:e7:29:
a5:6b:7b:ed:a7:da:54:42:ba:e4:07:59:9e:67:10:15:6b:ab:
eb:0d:2d:74:b8:33:6c:3c:40:b6:af:74:ba:e3:d0:67:02:d9:
1a:60:bd:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:41 2023 by rpki-client on console-fra.rpki-client.org