Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/yxyEmXogpetoGy8z87q1aWqpkrw.roa
File: yxyEmXogpetoGy8z87q1aWqpkrw.roa (raw, json)
Hash identifier: gBdCV7rzsNzru5yi9myH2Fsy0RM58Y9N+ZE3qZ/Ha/4=
Subject key identifier: CB:1C:84:99:7A:20:A5:EB:68:1B:2F:33:F3:BA:B5:69:6A:A9:92:BC
Certificate issuer: /CN=e4a9308742e7eb66506219d829d86185899a1e34
Certificate serial: 1099471A
Authority key identifier: E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/yxyEmXogpetoGy8z87q1aWqpkrw.roa
Signing time: Thu 24 Feb 2022 12:17:35 +0000
ROA not before: Thu 24 Feb 2022 12:17:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48728
IP address blocks: 80.76.160.0/21 maxlen: 21
80.76.162.0/24 maxlen: 24
80.76.160.0/20 maxlen: 20
80.76.165.0/24 maxlen: 24
80.76.164.0/24 maxlen: 24
80.76.171.0/24 maxlen: 24
80.76.168.0/21 maxlen: 21
80.76.170.0/24 maxlen: 24
212.70.96.0/24 maxlen: 24
212.70.96.0/19 maxlen: 19
212.70.102.0/24 maxlen: 24
212.70.110.0/24 maxlen: 24
212.70.112.0/24 maxlen: 24
212.70.111.0/24 maxlen: 24
212.70.107.0/24 maxlen: 24
212.70.114.0/24 maxlen: 24
212.70.113.0/24 maxlen: 24
212.70.116.0/24 maxlen: 24
212.70.115.0/24 maxlen: 24
212.70.117.0/24 maxlen: 24
212.70.118.0/24 maxlen: 24
212.70.121.0/24 maxlen: 24
212.70.127.0/24 maxlen: 24
31.11.48.0/21 maxlen: 21
37.186.38.0/24 maxlen: 24
37.186.32.0/19 maxlen: 19
37.186.37.0/24 maxlen: 24
37.186.32.0/24 maxlen: 24
37.186.34.0/24 maxlen: 24
37.186.33.0/24 maxlen: 24
37.186.36.0/24 maxlen: 24
37.186.35.0/24 maxlen: 24
37.186.39.0/24 maxlen: 24
37.186.41.0/24 maxlen: 24
37.186.40.0/24 maxlen: 24
37.186.43.0/24 maxlen: 24
37.186.42.0/24 maxlen: 24
37.186.44.0/24 maxlen: 24
37.186.51.0/24 maxlen: 24
37.186.50.0/24 maxlen: 24
37.186.46.0/24 maxlen: 24
37.186.45.0/24 maxlen: 24
37.186.48.0/24 maxlen: 24
37.186.47.0/24 maxlen: 24
37.186.49.0/24 maxlen: 24
37.186.58.0/24 maxlen: 24
37.186.57.0/24 maxlen: 24
37.186.53.0/24 maxlen: 24
37.186.52.0/24 maxlen: 24
37.186.55.0/24 maxlen: 24
37.186.56.0/24 maxlen: 24
37.186.60.0/24 maxlen: 24
37.186.59.0/24 maxlen: 24
185.247.88.0/22 maxlen: 22
2a04:7f80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 278480666 (0x1099471a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9308742e7eb66506219d829d86185899a1e34
Validity
Not Before: Feb 24 12:17:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb1c84997a20a5eb681b2f33f3bab5696aa992bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:8d:92:22:03:37:b0:54:6f:83:8c:f6:d9:90:
be:72:bc:03:35:bf:fa:44:47:17:9a:1a:33:d8:aa:
9f:b9:3b:d2:13:43:02:38:21:52:b1:88:d5:3e:50:
c1:80:b3:26:66:ec:da:2e:4f:ae:71:4a:c4:59:5b:
f4:d5:22:cc:a5:77:c4:71:3f:5a:33:cd:e6:af:a3:
89:2b:5f:84:b0:35:1e:46:64:fe:6b:03:d0:a9:68:
ff:46:97:b6:87:fd:de:86:d8:ad:b4:62:bc:d0:22:
87:27:10:5c:77:c6:e0:b7:d3:1f:6a:f4:9e:c6:f5:
36:81:df:a0:44:5c:c3:42:e7:6f:9e:94:f0:3f:e7:
bc:db:e8:9e:99:0b:a4:49:40:96:cc:15:4c:f8:b0:
3a:3a:07:a0:19:38:6a:30:66:39:67:e6:6c:af:32:
71:c4:1d:2e:86:44:5b:2e:8c:95:12:94:e9:c8:c5:
5e:fa:11:d8:80:f8:cb:56:54:b5:f6:16:30:12:e2:
58:9a:ae:26:15:84:bc:d4:ba:5c:e4:57:e1:4e:3c:
ec:5c:5f:9e:87:a1:68:48:01:28:31:95:df:40:37:
6c:5e:44:7b:8a:e2:fd:ca:b8:29:c3:b1:5a:a1:db:
4c:dd:ef:0d:3b:df:de:3a:e5:ed:5e:13:3a:a2:ec:
8b:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:1C:84:99:7A:20:A5:EB:68:1B:2F:33:F3:BA:B5:69:6A:A9:92:BC
X509v3 Authority Key Identifier:
keyid:E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/yxyEmXogpetoGy8z87q1aWqpkrw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.48.0/21
37.186.32.0/19
80.76.160.0/20
185.247.88.0/22
212.70.96.0/19
IPv6:
2a04:7f80::/29
Signature Algorithm: sha256WithRSAEncryption
4f:0d:d6:5a:fd:3a:50:6c:d1:a3:60:85:ff:34:b2:86:4a:70:
12:f2:62:ef:f9:d0:ed:4e:77:d1:3f:1a:e9:8b:ba:86:9f:82:
65:34:a2:aa:30:7d:74:3b:4b:da:f6:c3:d8:f4:1e:f0:2b:91:
b7:68:af:be:9d:b7:80:b9:0b:2b:10:27:5e:7d:5b:4e:14:08:
1b:dc:fa:51:fa:33:ba:77:83:79:6c:23:9b:85:29:20:87:96:
4f:e6:a7:91:11:5b:69:0f:28:1e:a9:c4:3c:e8:f5:5f:31:6c:
7c:eb:0e:6a:bd:2a:fe:36:43:b0:f9:9c:f7:eb:13:3d:5a:10:
ef:84:a6:59:5c:8b:d5:ad:77:fb:cd:2c:f4:12:5f:d1:9b:b1:
33:d5:6c:d4:33:ab:85:83:f3:7d:5e:12:c9:da:f5:f6:0c:e2:
a4:3a:dd:a0:c2:18:6f:72:78:b6:55:a7:bf:4e:03:9b:d6:79:
d4:dc:65:4f:56:fc:07:f8:3e:bf:e5:9f:e4:c1:67:48:cc:56:
e1:2c:1d:af:e3:c5:72:a5:85:aa:0b:5b:43:6c:3c:80:3b:19:
58:ce:9b:a9:09:55:e2:5d:ba:dc:26:e2:17:d4:92:e3:bb:98:
8f:2a:21:bc:df:1c:76:6f:0c:4a:98:ed:b8:44:c9:d9:31:55:
c9:84:9d:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:41 2023 by rpki-client on console-fra.rpki-client.org