Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/sFHJHYJsVCMFR6oYFbGftuacjv8.roa
File: sFHJHYJsVCMFR6oYFbGftuacjv8.roa (raw, json)
Hash identifier: XDew8WktTIDe+tct3yE+5UQiPgVqbCWFprTXB/kOwec=
Subject key identifier: B0:51:C9:1D:82:6C:54:23:05:47:AA:18:15:B1:9F:B6:E6:9C:8E:FF
Certificate issuer: /CN=e4a9308742e7eb66506219d829d86185899a1e34
Certificate serial: 10C52064
Authority key identifier: E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/sFHJHYJsVCMFR6oYFbGftuacjv8.roa
Signing time: Mon 14 Mar 2022 06:31:45 +0000
ROA not before: Mon 14 Mar 2022 06:31:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48728
IP address blocks: 80.76.160.0/21 maxlen: 21
80.76.162.0/24 maxlen: 24
80.76.160.0/20 maxlen: 20
80.76.165.0/24 maxlen: 24
80.76.164.0/24 maxlen: 24
80.76.171.0/24 maxlen: 24
80.76.168.0/21 maxlen: 21
80.76.170.0/24 maxlen: 24
212.70.96.0/24 maxlen: 24
212.70.96.0/19 maxlen: 19
212.70.102.0/24 maxlen: 24
212.70.109.0/24 maxlen: 24
212.70.110.0/24 maxlen: 24
212.70.112.0/24 maxlen: 24
212.70.111.0/24 maxlen: 24
212.70.107.0/24 maxlen: 24
212.70.114.0/24 maxlen: 24
212.70.113.0/24 maxlen: 24
212.70.116.0/24 maxlen: 24
212.70.115.0/24 maxlen: 24
212.70.117.0/24 maxlen: 24
212.70.118.0/24 maxlen: 24
212.70.119.0/24 maxlen: 24
212.70.121.0/24 maxlen: 24
212.70.127.0/24 maxlen: 24
31.11.48.0/21 maxlen: 21
37.186.38.0/24 maxlen: 24
37.186.32.0/19 maxlen: 19
37.186.37.0/24 maxlen: 24
37.186.32.0/24 maxlen: 24
37.186.34.0/24 maxlen: 24
37.186.33.0/24 maxlen: 24
37.186.36.0/24 maxlen: 24
37.186.35.0/24 maxlen: 24
37.186.39.0/24 maxlen: 24
37.186.41.0/24 maxlen: 24
37.186.40.0/24 maxlen: 24
37.186.43.0/24 maxlen: 24
37.186.42.0/24 maxlen: 24
37.186.44.0/24 maxlen: 24
37.186.51.0/24 maxlen: 24
37.186.50.0/24 maxlen: 24
37.186.46.0/24 maxlen: 24
37.186.45.0/24 maxlen: 24
37.186.48.0/24 maxlen: 24
37.186.47.0/24 maxlen: 24
37.186.49.0/24 maxlen: 24
37.186.58.0/24 maxlen: 24
37.186.57.0/24 maxlen: 24
37.186.53.0/24 maxlen: 24
37.186.52.0/24 maxlen: 24
37.186.55.0/24 maxlen: 24
37.186.56.0/24 maxlen: 24
37.186.60.0/24 maxlen: 24
37.186.59.0/24 maxlen: 24
185.247.88.0/22 maxlen: 22
2a04:7f80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 281354340 (0x10c52064)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9308742e7eb66506219d829d86185899a1e34
Validity
Not Before: Mar 14 06:31:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b051c91d826c54230547aa1815b19fb6e69c8eff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:36:f5:c3:1f:43:a8:03:2c:52:77:02:23:00:
03:72:79:e5:4b:38:c7:9f:b3:38:95:b4:9b:b0:61:
9e:2e:e7:a0:8b:40:24:01:06:8c:84:a9:ee:32:ee:
81:61:36:c4:06:f8:70:a6:68:1c:04:64:7e:80:8b:
31:14:e2:10:7f:7a:44:de:a4:62:4b:d3:86:20:3c:
b7:76:e5:55:18:c9:8e:4e:d7:45:b4:3f:04:01:29:
0e:10:a7:be:31:90:6c:42:2f:39:96:f1:12:af:c1:
c8:ce:4e:cf:3d:a9:f1:b6:91:92:e6:67:e9:f7:af:
04:88:e1:7d:bd:6f:94:da:f3:9e:2a:d5:ff:f2:36:
4b:d0:31:8a:08:93:e0:38:ae:5e:bc:90:8b:90:84:
41:cc:20:90:f2:56:ef:0f:bc:7d:2a:61:ac:4c:20:
9e:1c:09:71:69:69:8f:fe:cb:68:f6:3d:8c:f1:78:
5d:a9:9d:95:c1:1d:69:73:69:9a:6f:d1:32:bb:d4:
76:74:78:33:c9:a4:04:e9:dc:4e:18:f2:91:a5:2d:
6b:cd:30:f1:14:4c:8e:57:bf:5b:46:3e:f9:9c:59:
54:51:59:0c:65:ca:be:73:26:e7:db:44:e7:c5:7c:
1f:32:b2:44:3b:7d:7d:e5:17:0c:ac:72:a9:c3:3c:
e0:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:51:C9:1D:82:6C:54:23:05:47:AA:18:15:B1:9F:B6:E6:9C:8E:FF
X509v3 Authority Key Identifier:
keyid:E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/sFHJHYJsVCMFR6oYFbGftuacjv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.48.0/21
37.186.32.0/19
80.76.160.0/20
185.247.88.0/22
212.70.96.0/19
IPv6:
2a04:7f80::/29
Signature Algorithm: sha256WithRSAEncryption
96:76:23:c4:ff:e3:c5:bb:11:ad:c1:4f:aa:d1:d2:13:13:3f:
a9:0b:a6:e3:b5:fb:0c:4a:21:d0:3f:f4:ba:eb:b2:73:a2:e2:
12:5d:a3:0f:ea:e0:34:9d:da:40:53:1d:ec:6c:5e:53:99:78:
d8:52:5e:50:5e:8e:bb:fd:82:b2:db:fa:d6:14:7a:a2:b1:d8:
35:56:68:14:5d:0c:ec:13:04:61:a6:28:63:3e:b7:59:6b:f6:
28:d3:88:87:50:7b:8d:f1:64:2e:15:fa:dd:c1:52:97:4a:ae:
30:20:37:d3:21:b0:d2:64:47:95:83:24:14:2c:13:9c:27:98:
a8:45:2b:b6:8a:bd:e8:b3:63:fb:1e:09:cd:c7:a9:0a:9b:bf:
10:a0:78:bf:7d:15:75:48:df:fa:b1:e8:06:97:a3:1f:2e:5b:
8d:56:be:2b:d1:d8:e9:8e:dc:39:4e:4a:93:50:1f:7e:a9:e2:
ed:13:8a:07:3a:d1:d9:11:f3:e0:a1:4f:7f:d2:60:47:31:11:
bd:a8:62:68:1b:31:06:0b:bf:75:3f:52:5a:2d:61:78:dd:f3:
41:0b:01:18:8c:9e:68:85:f9:e6:eb:3b:85:01:4b:da:71:05:
70:8d:fa:78:73:85:54:26:f2:a9:1e:ff:d0:73:53:2e:d1:9b:
2d:4a:ff:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:41 2023 by rpki-client on console-fra.rpki-client.org