Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/YnOpB8BZeEQ5vAZbH2_6ZfWSsPc.roa
File: YnOpB8BZeEQ5vAZbH2_6ZfWSsPc.roa (raw, json)
Hash identifier: p88sxvqJ0hoCL0cpsLvyXtxZwpI3kDMrr5czQTHe0HM=
Subject key identifier: 62:73:A9:07:C0:59:78:44:39:BC:06:5B:1F:6F:FA:65:F5:92:B0:F7
Certificate issuer: /CN=e4a9308742e7eb66506219d829d86185899a1e34
Certificate serial: 10E75F2A
Authority key identifier: E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/YnOpB8BZeEQ5vAZbH2_6ZfWSsPc.roa
Signing time: Tue 29 Mar 2022 12:17:02 +0000
ROA not before: Tue 29 Mar 2022 12:17:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48728
IP address blocks: 80.76.160.0/21 maxlen: 21
80.76.162.0/24 maxlen: 24
80.76.160.0/20 maxlen: 20
80.76.165.0/24 maxlen: 24
80.76.164.0/24 maxlen: 24
80.76.171.0/24 maxlen: 24
80.76.168.0/21 maxlen: 21
80.76.170.0/24 maxlen: 24
212.70.96.0/24 maxlen: 24
212.70.96.0/19 maxlen: 19
212.70.102.0/24 maxlen: 24
212.70.99.0/24 maxlen: 24
212.70.109.0/24 maxlen: 24
212.70.110.0/24 maxlen: 24
212.70.112.0/24 maxlen: 24
212.70.111.0/24 maxlen: 24
212.70.107.0/24 maxlen: 24
212.70.114.0/24 maxlen: 24
212.70.113.0/24 maxlen: 24
212.70.116.0/24 maxlen: 24
212.70.115.0/24 maxlen: 24
212.70.117.0/24 maxlen: 24
212.70.118.0/24 maxlen: 24
212.70.119.0/24 maxlen: 24
212.70.121.0/24 maxlen: 24
212.70.127.0/24 maxlen: 24
31.11.48.0/21 maxlen: 21
37.186.38.0/24 maxlen: 24
37.186.37.0/24 maxlen: 24
37.186.32.0/24 maxlen: 24
37.186.34.0/24 maxlen: 24
37.186.32.0/19 maxlen: 19
37.186.33.0/24 maxlen: 24
37.186.36.0/24 maxlen: 24
37.186.35.0/24 maxlen: 24
37.186.39.0/24 maxlen: 24
37.186.41.0/24 maxlen: 24
37.186.40.0/24 maxlen: 24
37.186.43.0/24 maxlen: 24
37.186.42.0/24 maxlen: 24
37.186.44.0/24 maxlen: 24
37.186.51.0/24 maxlen: 24
37.186.50.0/24 maxlen: 24
37.186.46.0/24 maxlen: 24
37.186.45.0/24 maxlen: 24
37.186.48.0/24 maxlen: 24
37.186.47.0/24 maxlen: 24
37.186.49.0/24 maxlen: 24
37.186.58.0/24 maxlen: 24
37.186.57.0/24 maxlen: 24
37.186.53.0/24 maxlen: 24
37.186.52.0/24 maxlen: 24
37.186.55.0/24 maxlen: 24
37.186.56.0/24 maxlen: 24
37.186.60.0/24 maxlen: 24
37.186.59.0/24 maxlen: 24
185.247.88.0/22 maxlen: 22
2a04:7f80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 283598634 (0x10e75f2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9308742e7eb66506219d829d86185899a1e34
Validity
Not Before: Mar 29 12:17:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6273a907c059784439bc065b1f6ffa65f592b0f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:29:c1:82:0c:e4:d8:0b:fd:84:53:1c:fd:fe:
5b:7b:f9:55:4a:cb:41:d6:63:e2:ee:82:ec:e8:a1:
d8:af:eb:66:37:c1:11:e5:3f:a2:f9:b9:6f:19:c6:
3e:14:fa:1e:0b:fa:5d:74:b9:35:0f:9f:14:6e:3b:
80:b0:df:b6:b8:69:b1:dd:8a:de:5a:b4:21:c1:77:
f0:13:34:4a:5f:34:6f:fe:71:e8:b2:cf:e4:b7:57:
c5:a9:c5:11:40:86:09:8e:2b:c2:8d:c0:b7:b2:53:
8d:9e:26:93:21:dd:13:7a:83:9c:33:55:b0:51:9f:
95:22:69:71:76:f4:6a:70:5e:c6:10:7b:5d:73:28:
6c:30:db:0d:8a:8b:ab:e4:1b:85:b5:ba:c0:f2:f7:
28:1f:b7:d2:c0:85:44:8d:8f:41:35:42:6b:60:2a:
ae:00:fe:44:9e:65:4b:76:cc:8b:f2:bc:50:03:36:
ec:9d:64:a1:31:0c:ae:1a:f0:8b:48:d2:4d:7b:67:
35:7f:e5:df:ee:8f:f4:3f:47:0f:98:5b:33:a6:23:
43:7e:96:21:1e:ae:b0:c9:2b:49:7d:4e:da:85:82:
4b:58:01:a5:89:9b:d8:0c:46:cc:53:9d:91:71:7b:
2d:e5:26:87:a4:85:2b:f3:ab:03:a9:d2:8c:f9:4a:
5c:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:73:A9:07:C0:59:78:44:39:BC:06:5B:1F:6F:FA:65:F5:92:B0:F7
X509v3 Authority Key Identifier:
keyid:E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/YnOpB8BZeEQ5vAZbH2_6ZfWSsPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.48.0/21
37.186.32.0/19
80.76.160.0/20
185.247.88.0/22
212.70.96.0/19
IPv6:
2a04:7f80::/29
Signature Algorithm: sha256WithRSAEncryption
73:d5:c1:92:26:63:ea:1e:91:4d:ff:37:87:99:0a:6c:1d:6e:
c2:a6:d3:af:71:46:40:4b:09:09:46:94:41:5e:21:05:c6:ff:
d7:89:da:43:65:16:4e:94:11:b9:f8:eb:64:e8:4f:55:ec:eb:
fb:cf:2f:67:1a:6d:8d:44:52:49:7b:00:53:f6:d0:24:b6:4a:
6d:f9:aa:c5:01:77:01:59:25:76:47:70:1d:01:d3:72:c9:f8:
30:ed:91:88:11:3d:99:1e:63:2c:91:a9:83:ad:28:df:07:02:
0a:7c:1f:9f:c2:cd:a0:43:fe:1a:cb:3a:b7:01:50:89:88:a9:
e0:b8:ba:c5:85:42:3a:8f:53:5b:e9:19:48:cf:1b:a3:40:fd:
a3:f8:b1:3c:60:28:f2:ff:22:4d:f9:da:f0:78:44:32:5b:75:
7d:bd:6e:5c:4e:9f:e1:5c:0f:45:56:32:fa:6f:dd:bb:3b:b9:
09:01:16:54:e7:b4:15:80:7d:82:d8:23:dc:91:5e:c3:04:3f:
9f:c9:f5:73:6d:a1:36:dd:8e:c0:ca:e0:73:54:03:a7:2a:56:
e7:3f:0c:92:fe:69:6a:b0:41:8b:a7:10:0c:76:2c:31:d6:86:
fb:c5:c7:e0:8c:b3:84:b9:13:8b:20:67:92:81:79:51:11:e0:
4e:d1:d4:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:35 2023 by rpki-client on console-ams.rpki-client.org