Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/Rxb7lEmgtKjaorKfmLPZ5CK1d9k.roa
File: Rxb7lEmgtKjaorKfmLPZ5CK1d9k.roa (raw, json)
Hash identifier: 4L+yLYrRcgx1G4UWTFWoY5+jeJ608vXbR5+2CIVAbBk=
Subject key identifier: 47:16:FB:94:49:A0:B4:A8:DA:A2:B2:9F:98:B3:D9:E4:22:B5:77:D9
Certificate issuer: /CN=e4a9308742e7eb66506219d829d86185899a1e34
Certificate serial: 01836008995BA0EDF4BFB44B5B679F0EFE55
Authority key identifier: E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/Rxb7lEmgtKjaorKfmLPZ5CK1d9k.roa
Signing time: Wed 21 Sep 2022 12:31:59 +0000
ROA not before: Wed 21 Sep 2022 12:31:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48728
IP address blocks: 80.76.165.0/24 maxlen: 24
80.76.164.0/24 maxlen: 24
80.76.160.0/21 maxlen: 21
80.76.162.0/24 maxlen: 24
80.76.160.0/20 maxlen: 20
80.76.161.0/24 maxlen: 24
80.76.163.0/24 maxlen: 24
80.76.171.0/24 maxlen: 24
80.76.168.0/21 maxlen: 21
80.76.170.0/24 maxlen: 24
80.76.173.0/24 maxlen: 24
103.23.124.0/22 maxlen: 22
212.70.96.0/24 maxlen: 24
212.70.96.0/19 maxlen: 19
212.70.98.0/24 maxlen: 24
212.70.102.0/24 maxlen: 24
212.70.99.0/24 maxlen: 24
212.70.109.0/24 maxlen: 24
212.70.110.0/24 maxlen: 24
212.70.112.0/24 maxlen: 24
212.70.111.0/24 maxlen: 24
212.70.107.0/24 maxlen: 24
212.70.114.0/24 maxlen: 24
212.70.113.0/24 maxlen: 24
212.70.116.0/24 maxlen: 24
212.70.115.0/24 maxlen: 24
212.70.117.0/24 maxlen: 24
212.70.118.0/24 maxlen: 24
212.70.119.0/24 maxlen: 24
212.70.121.0/24 maxlen: 24
212.70.126.0/24 maxlen: 24
212.70.127.0/24 maxlen: 24
31.11.48.0/21 maxlen: 21
37.186.37.0/24 maxlen: 24
37.186.38.0/24 maxlen: 24
37.186.32.0/24 maxlen: 24
37.186.34.0/24 maxlen: 24
37.186.32.0/19 maxlen: 19
37.186.33.0/24 maxlen: 24
37.186.36.0/24 maxlen: 24
37.186.35.0/24 maxlen: 24
37.186.44.0/24 maxlen: 24
37.186.39.0/24 maxlen: 24
37.186.41.0/24 maxlen: 24
37.186.40.0/24 maxlen: 24
37.186.43.0/24 maxlen: 24
37.186.42.0/24 maxlen: 24
37.186.51.0/24 maxlen: 24
37.186.50.0/24 maxlen: 24
37.186.46.0/24 maxlen: 24
37.186.45.0/24 maxlen: 24
37.186.48.0/24 maxlen: 24
37.186.47.0/24 maxlen: 24
37.186.49.0/24 maxlen: 24
37.186.58.0/24 maxlen: 24
37.186.57.0/24 maxlen: 24
37.186.53.0/24 maxlen: 24
37.186.52.0/24 maxlen: 24
37.186.55.0/24 maxlen: 24
37.186.56.0/24 maxlen: 24
37.186.60.0/24 maxlen: 24
37.186.59.0/24 maxlen: 24
185.247.88.0/22 maxlen: 22
103.17.0.0/22 maxlen: 22
2a04:7f80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:60:08:99:5b:a0:ed:f4:bf:b4:4b:5b:67:9f:0e:fe:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9308742e7eb66506219d829d86185899a1e34
Validity
Not Before: Sep 21 12:31:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4716fb9449a0b4a8daa2b29f98b3d9e422b577d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:50:00:de:de:9c:7f:b2:a5:6b:d5:df:3a:f0:
74:c6:a1:29:8c:e5:1a:b5:81:1b:cc:18:8a:3a:e1:
a6:96:15:fa:0b:85:14:92:61:3a:ec:4d:91:96:4b:
23:ea:4c:e7:c3:5e:b3:ce:3c:8d:cd:cf:3a:58:f0:
09:6c:d3:24:7a:89:eb:79:eb:cd:6d:25:ba:ce:7d:
02:8f:3c:e3:62:09:d1:5f:80:40:b2:bf:3c:e9:44:
97:23:a1:f6:e5:a0:3f:a3:b8:71:98:11:fb:39:26:
1c:e1:a2:09:8f:b7:93:18:80:45:bf:99:74:d5:e8:
f3:4d:a4:69:29:be:e6:67:23:b8:b3:db:48:b8:ef:
a9:f0:e6:94:77:d6:43:4c:82:84:0a:36:40:b7:66:
50:a0:35:c9:36:0a:02:60:2b:6a:e7:a3:14:04:7a:
95:eb:d4:89:2d:8c:ce:50:20:34:05:07:ea:e5:94:
30:91:4d:a1:a2:8e:1b:f4:cc:3a:14:db:97:5f:dc:
54:68:53:bd:f3:fb:95:2b:6a:61:1b:c4:0e:d9:f3:
8b:b3:8d:3e:ca:f2:04:a5:3e:3e:4c:0d:8f:ca:b0:
c5:ae:c4:eb:30:fa:87:71:29:62:ed:e1:63:cb:64:
43:a9:fc:a1:50:68:d7:ed:ee:07:39:47:ec:c7:51:
7f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:16:FB:94:49:A0:B4:A8:DA:A2:B2:9F:98:B3:D9:E4:22:B5:77:D9
X509v3 Authority Key Identifier:
keyid:E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/Rxb7lEmgtKjaorKfmLPZ5CK1d9k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.48.0/21
37.186.32.0/19
80.76.160.0/20
103.17.0.0/22
103.23.124.0/22
185.247.88.0/22
212.70.96.0/19
IPv6:
2a04:7f80::/29
Signature Algorithm: sha256WithRSAEncryption
c9:2b:8e:64:cb:e0:1e:51:e7:db:5c:0c:78:25:c2:a4:16:78:
d6:1e:1f:21:cb:6f:61:9b:17:ed:7b:0f:8f:00:95:94:e8:a0:
6b:5a:68:c7:d8:93:ac:3d:00:aa:d9:14:dd:59:c8:06:35:43:
0e:24:0c:3a:6b:ec:01:4f:1c:c7:c7:cd:ee:d9:dd:b7:7f:89:
ec:e3:80:5f:6c:65:76:1f:e4:02:dc:a6:67:32:9e:21:d5:98:
06:24:9e:fd:dd:0b:ae:21:03:a1:a8:45:f8:1d:ef:53:82:41:
57:2d:d5:5a:72:9e:63:9d:69:36:ca:8b:cf:b9:64:5c:df:9a:
44:bb:c7:38:98:01:23:22:68:3f:58:5d:c0:6d:94:d4:0e:e0:
16:09:f3:e8:28:7d:08:51:4d:4d:dd:32:a9:ac:29:4b:5a:c6:
cf:a2:53:c9:44:04:2e:c7:dd:e0:d2:fc:28:9a:8c:4e:0a:11:
7b:a3:94:32:11:bd:fe:e9:d4:8f:15:60:35:96:af:33:c1:f3:
f6:24:36:1c:1d:f1:7b:37:11:43:98:9c:8d:d6:20:7c:74:99:
4e:fb:6b:2b:a3:38:76:2a:25:ca:d4:b2:bb:47:62:0b:22:b2:
cb:65:d0:75:25:81:c8:8c:56:3c:37:3b:ab:b5:35:ca:d4:57:
a7:ef:c4:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:41 2023 by rpki-client on console-fra.rpki-client.org