Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/2b5e7c-67b1-477d-895f-8f5fc92125db/1/6Jy38AEIMQzWfq4Xjs_kdOGT3oA.roa
File: 6Jy38AEIMQzWfq4Xjs_kdOGT3oA.roa (raw, json)
Hash identifier: v+PhIiYXuopMio0eB2hZzCkDt7wNn8Zf1uPPF97jhYk=
Subject key identifier: E8:9C:B7:F0:01:08:31:0C:D6:7E:AE:17:8E:CF:E4:74:E1:93:DE:80
Certificate issuer: /CN=66d337d330ba44efcfef555355132a6a2c69783c
Certificate serial: 0525EAFA
Authority key identifier: 66:D3:37:D3:30:BA:44:EF:CF:EF:55:53:55:13:2A:6A:2C:69:78:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZtM30zC6RO_P71VTVRMqaixpeDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/2b5e7c-67b1-477d-895f-8f5fc92125db/1/6Jy38AEIMQzWfq4Xjs_kdOGT3oA.roa
Signing time: Sat 01 Jan 2022 06:01:36 +0000
ROA not before: Sat 01 Jan 2022 06:01:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51130
IP address blocks: 78.31.232.0/24 maxlen: 24
78.31.233.0/24 maxlen: 24
78.31.232.0/22 maxlen: 22
78.31.235.0/24 maxlen: 24
78.31.234.0/24 maxlen: 24
212.86.64.0/24 maxlen: 24
185.119.240.0/24 maxlen: 24
212.86.64.0/19 maxlen: 19
185.119.240.0/22 maxlen: 22
212.86.67.0/24 maxlen: 24
185.119.242.0/24 maxlen: 24
185.119.243.0/24 maxlen: 24
212.86.68.0/24 maxlen: 24
212.86.65.0/24 maxlen: 24
212.86.66.0/24 maxlen: 24
185.119.241.0/24 maxlen: 24
212.86.71.0/24 maxlen: 24
212.86.69.0/24 maxlen: 24
212.86.70.0/24 maxlen: 24
212.86.74.0/24 maxlen: 24
212.86.75.0/24 maxlen: 24
212.86.72.0/24 maxlen: 24
212.86.73.0/24 maxlen: 24
212.86.78.0/24 maxlen: 24
212.86.76.0/24 maxlen: 24
212.86.77.0/24 maxlen: 24
212.86.81.0/24 maxlen: 24
212.86.82.0/24 maxlen: 24
212.86.79.0/24 maxlen: 24
212.86.80.0/24 maxlen: 24
212.86.85.0/24 maxlen: 24
212.86.83.0/24 maxlen: 24
212.86.84.0/24 maxlen: 24
212.86.88.0/24 maxlen: 24
212.86.89.0/24 maxlen: 24
212.86.86.0/24 maxlen: 24
212.86.87.0/24 maxlen: 24
212.86.91.0/24 maxlen: 24
212.86.90.0/24 maxlen: 24
212.86.92.0/24 maxlen: 24
212.86.95.0/24 maxlen: 24
212.86.93.0/24 maxlen: 24
212.86.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86371066 (0x525eafa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66d337d330ba44efcfef555355132a6a2c69783c
Validity
Not Before: Jan 1 06:01:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e89cb7f00108310cd67eae178ecfe474e193de80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:41:fd:0b:89:8c:5a:65:f7:ba:c8:c3:17:57:
d4:cd:4f:83:b2:68:8e:be:bc:cf:75:09:05:2f:15:
40:7c:d5:3d:0b:c6:cc:36:ed:a9:07:be:83:5e:83:
7b:81:2d:92:97:6b:09:94:90:f2:81:88:f5:d7:3c:
36:df:51:e9:06:7a:ff:4c:f7:1f:ce:da:6b:34:d7:
5c:71:45:42:f2:5c:af:0d:fb:2b:d2:12:05:45:e4:
7a:8c:99:c0:a9:bf:33:de:b4:2a:97:cb:45:7d:1d:
14:80:cc:d8:56:6e:1f:0a:7a:cc:0a:e4:1e:a8:cb:
d6:f7:1d:71:d9:7c:db:76:c4:20:a1:9e:3b:2e:27:
5c:1d:e3:87:9e:7e:54:2a:7b:78:0f:30:06:fb:98:
6c:12:52:76:07:cf:e9:9f:0e:9f:65:cb:cd:47:21:
b7:1e:c6:63:46:1a:af:31:e7:4d:6b:5c:47:72:cb:
b7:c7:5e:86:a8:24:80:07:b8:38:46:09:4e:34:ee:
df:1c:87:44:70:6c:51:95:fa:9a:44:db:30:b9:43:
5b:57:a5:89:8c:30:c7:a7:6d:fc:7d:2a:f4:5a:0a:
27:97:6d:4e:bd:43:47:eb:8f:1f:77:74:2e:83:36:
5c:3a:9b:0d:7d:b6:7e:d9:09:68:db:99:a7:bf:77:
5f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:9C:B7:F0:01:08:31:0C:D6:7E:AE:17:8E:CF:E4:74:E1:93:DE:80
X509v3 Authority Key Identifier:
keyid:66:D3:37:D3:30:BA:44:EF:CF:EF:55:53:55:13:2A:6A:2C:69:78:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZtM30zC6RO_P71VTVRMqaixpeDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/2b5e7c-67b1-477d-895f-8f5fc92125db/1/6Jy38AEIMQzWfq4Xjs_kdOGT3oA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/2b5e7c-67b1-477d-895f-8f5fc92125db/1/ZtM30zC6RO_P71VTVRMqaixpeDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.31.232.0/22
185.119.240.0/22
212.86.64.0/19
Signature Algorithm: sha256WithRSAEncryption
49:07:55:5e:bd:9d:b8:49:59:c6:16:b8:55:aa:51:5d:62:e3:
ad:f1:af:9f:e3:38:9e:e2:7e:49:9b:4d:2e:e3:a5:18:a5:3a:
e7:3c:b6:22:be:54:ef:d8:5b:51:83:95:60:9f:76:b7:78:b6:
d1:67:29:7b:4b:db:e9:c9:72:2d:5f:d6:5d:46:0b:07:ea:29:
77:e1:ec:01:92:bd:48:53:9b:56:be:2c:d7:b3:54:93:c8:0f:
32:c7:0a:67:92:d4:de:97:c5:21:4a:2c:9a:1c:e7:94:ff:d8:
78:91:0a:6d:9f:e7:06:be:6a:04:e9:58:85:8b:93:c8:8d:1f:
45:ab:3c:46:e2:50:a6:85:0f:a2:e0:c4:54:f4:43:7a:2b:62:
cb:3d:22:31:8f:4c:20:ef:64:81:3d:ed:22:ff:6c:65:d9:e5:
95:04:86:27:61:e8:0d:33:f5:bf:f0:8d:cf:a9:e1:a1:eb:21:
68:0b:8e:4a:8f:e5:cb:7e:46:0a:54:09:60:60:7a:04:f5:21:
78:f3:2f:91:f5:fe:29:00:11:be:1e:73:ea:39:e4:62:82:31:
cb:73:7d:44:fd:e9:65:06:a2:9b:8f:d5:84:28:f2:12:51:78:
5d:b7:9c:fd:b0:d5:39:f5:86:5e:b5:3c:0e:47:79:ff:1a:66:
e7:3d:b6:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:17 2024 by rpki-client on console-ams.rpki-client.org