Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/upOHggXWBAdXwnkjgmLXkNBi9fA.roa
File: upOHggXWBAdXwnkjgmLXkNBi9fA.roa (raw, json)
Hash identifier: RnNrW14hbJ5CtuGwovx1OvvuhPEkDrz2wNw8YgrsSHk=
Subject key identifier: BA:93:87:82:05:D6:04:07:57:C2:79:23:82:62:D7:90:D0:62:F5:F0
Certificate issuer: /CN=e4a9308742e7eb66506219d829d86185899a1e34
Certificate serial: 018382B1B8320816B82778563D101984E05D
Authority key identifier: E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/upOHggXWBAdXwnkjgmLXkNBi9fA.roa
Signing time: Wed 28 Sep 2022 06:03:48 +0000
ROA not before: Wed 28 Sep 2022 06:03:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48728
IP address blocks: 80.76.165.0/24 maxlen: 24
80.76.164.0/24 maxlen: 24
80.76.160.0/21 maxlen: 21
80.76.162.0/24 maxlen: 24
80.76.160.0/20 maxlen: 20
80.76.161.0/24 maxlen: 24
80.76.163.0/24 maxlen: 24
80.76.171.0/24 maxlen: 24
80.76.168.0/21 maxlen: 21
80.76.170.0/24 maxlen: 24
80.76.174.0/24 maxlen: 24
80.76.173.0/24 maxlen: 24
103.23.124.0/22 maxlen: 22
212.70.96.0/24 maxlen: 24
212.70.96.0/19 maxlen: 19
212.70.98.0/24 maxlen: 24
212.70.102.0/24 maxlen: 24
212.70.99.0/24 maxlen: 24
212.70.109.0/24 maxlen: 24
212.70.108.0/24 maxlen: 24
212.70.110.0/24 maxlen: 24
212.70.112.0/24 maxlen: 24
212.70.111.0/24 maxlen: 24
212.70.107.0/24 maxlen: 24
212.70.114.0/24 maxlen: 24
212.70.113.0/24 maxlen: 24
212.70.116.0/24 maxlen: 24
212.70.115.0/24 maxlen: 24
212.70.117.0/24 maxlen: 24
212.70.118.0/24 maxlen: 24
212.70.119.0/24 maxlen: 24
212.70.121.0/24 maxlen: 24
212.70.126.0/24 maxlen: 24
212.70.127.0/24 maxlen: 24
31.11.48.0/21 maxlen: 21
37.186.37.0/24 maxlen: 24
37.186.38.0/24 maxlen: 24
37.186.32.0/24 maxlen: 24
37.186.34.0/24 maxlen: 24
37.186.32.0/19 maxlen: 19
37.186.33.0/24 maxlen: 24
37.186.36.0/24 maxlen: 24
37.186.35.0/24 maxlen: 24
37.186.44.0/24 maxlen: 24
37.186.39.0/24 maxlen: 24
37.186.41.0/24 maxlen: 24
37.186.40.0/24 maxlen: 24
37.186.43.0/24 maxlen: 24
37.186.42.0/24 maxlen: 24
37.186.51.0/24 maxlen: 24
37.186.50.0/24 maxlen: 24
37.186.46.0/24 maxlen: 24
37.186.45.0/24 maxlen: 24
37.186.48.0/24 maxlen: 24
37.186.47.0/24 maxlen: 24
37.186.49.0/24 maxlen: 24
37.186.58.0/24 maxlen: 24
37.186.57.0/24 maxlen: 24
37.186.53.0/24 maxlen: 24
37.186.52.0/24 maxlen: 24
37.186.55.0/24 maxlen: 24
37.186.56.0/24 maxlen: 24
37.186.60.0/24 maxlen: 24
37.186.59.0/24 maxlen: 24
185.247.88.0/22 maxlen: 22
103.17.1.0/24 maxlen: 24
103.17.0.0/22 maxlen: 22
103.17.0.0/24 maxlen: 24
103.17.2.0/24 maxlen: 24
2a04:7f80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:82:b1:b8:32:08:16:b8:27:78:56:3d:10:19:84:e0:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9308742e7eb66506219d829d86185899a1e34
Validity
Not Before: Sep 28 06:03:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba93878205d6040757c279238262d790d062f5f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:67:e1:92:6d:7c:6a:2b:e0:01:fc:a9:35:5e:
44:55:d6:f2:97:4e:6c:51:e9:bb:0d:84:47:df:7c:
b1:c3:b7:97:0c:a3:a3:e5:b5:7c:99:85:69:e9:8b:
28:f1:51:74:7a:1b:46:39:cd:c7:a0:12:c7:24:0d:
04:17:71:91:ae:03:52:79:10:d3:a0:57:0b:55:5f:
c7:0d:91:78:a4:4b:06:37:2f:ec:58:e0:74:12:fd:
f0:63:cc:91:be:dd:c9:f0:13:a7:0c:0a:22:57:40:
7d:80:07:85:bd:a7:e7:e9:71:bd:72:f7:e1:67:7f:
ee:e6:7a:56:33:33:76:f8:6b:7f:f0:d5:15:e1:53:
7a:a9:fa:e6:b5:98:4c:93:2c:ec:41:3b:4d:c8:a2:
6b:a0:46:b5:44:13:04:e2:09:1a:f6:59:09:21:04:
e0:14:b0:f6:3a:84:5e:05:e0:e5:b5:66:fd:9f:2a:
67:7e:59:3a:03:15:4e:5c:1f:72:3e:83:97:eb:8a:
c2:5c:d8:61:1c:60:5b:74:34:42:0b:62:ac:88:1a:
a2:96:1c:a5:32:d0:5b:59:28:ba:b3:44:37:47:aa:
da:31:5c:5c:a0:90:51:cb:f9:45:66:d4:64:06:9a:
ad:5c:0d:b3:a7:f9:2d:57:6a:f5:c5:bd:65:33:88:
bc:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:93:87:82:05:D6:04:07:57:C2:79:23:82:62:D7:90:D0:62:F5:F0
X509v3 Authority Key Identifier:
keyid:E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/upOHggXWBAdXwnkjgmLXkNBi9fA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.48.0/21
37.186.32.0/19
80.76.160.0/20
103.17.0.0/22
103.23.124.0/22
185.247.88.0/22
212.70.96.0/19
IPv6:
2a04:7f80::/29
Signature Algorithm: sha256WithRSAEncryption
46:8c:2f:5b:ab:07:e9:a9:68:06:d2:4d:ce:c0:43:de:95:a4:
27:be:e2:63:93:de:aa:a3:80:ac:8f:ab:9d:f4:8b:f9:fc:1f:
55:06:09:fa:82:dc:37:27:50:8d:0c:83:2d:c1:37:46:e7:ea:
46:a9:10:44:c9:d5:c6:17:20:e1:c2:94:d3:8d:70:2c:0c:33:
9b:15:ca:89:80:9a:27:57:98:5e:97:97:3c:87:6e:66:cd:38:
86:0a:ff:b6:fa:81:5d:0f:1c:d9:13:47:e0:20:69:e1:1a:df:
06:d0:26:c3:01:97:8d:ec:c6:16:81:74:2b:02:2b:24:74:5d:
85:eb:06:3b:a9:ab:55:c7:71:36:97:f2:7d:b8:5f:dc:a6:ac:
45:56:bc:91:da:00:6c:04:50:47:69:c3:0d:7e:ae:75:a8:75:
cc:33:a1:78:11:5b:19:5d:c1:f1:03:14:e8:61:aa:10:f6:36:
58:5b:8d:86:1d:06:e9:1c:b3:e4:bd:8b:e8:8d:72:10:53:a1:
79:95:02:b2:6c:ad:f4:24:4c:5e:a8:0e:14:5c:b6:d4:7d:08:
2b:3e:8b:db:3b:99:32:b6:9a:8c:5b:0a:99:7a:07:ec:e3:8a:
66:1f:e5:73:e5:ee:df:05:70:59:65:59:30:05:78:c9:43:5e:
ae:4f:17:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:41 2023 by rpki-client on console-fra.rpki-client.org