Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/195f3d-a851-455a-9b0f-d70cd97f4857/1/riJihW4PkSYvHWd_tVEXUa-W0Vs.roa
File: riJihW4PkSYvHWd_tVEXUa-W0Vs.roa (raw, json)
Hash identifier: 6rpt7g1WdORwXOaahKOWZwtD1OyrETmPtp3GNDhfYas=
Subject key identifier: AE:22:62:85:6E:0F:91:26:2F:1D:67:7F:B5:51:17:51:AF:96:D1:5B
Certificate issuer: /CN=65bdcff77bf060d5da12de45e2072e1cff4560a7
Certificate serial: 26347F5A
Authority key identifier: 65:BD:CF:F7:7B:F0:60:D5:DA:12:DE:45:E2:07:2E:1C:FF:45:60:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zb3P93vwYNXaEt5F4gcuHP9FYKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/195f3d-a851-455a-9b0f-d70cd97f4857/1/riJihW4PkSYvHWd_tVEXUa-W0Vs.roa
Signing time: Sat 01 Jan 2022 07:02:52 +0000
ROA not before: Sat 01 Jan 2022 07:02:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50304
IP address blocks: 193.28.1.0/24 maxlen: 24
193.28.4.0/24 maxlen: 24
193.28.7.0/24 maxlen: 24
178.255.144.0/21 maxlen: 32
91.90.40.0/21 maxlen: 24
194.99.40.0/22 maxlen: 24
185.41.240.0/22 maxlen: 24
193.138.6.0/23 maxlen: 24
176.125.232.0/22 maxlen: 22
134.90.144.0/21 maxlen: 32
134.90.148.0/24 maxlen: 24
91.205.184.0/22 maxlen: 22
193.27.45.0/24 maxlen: 24
37.202.56.0/21 maxlen: 24
31.169.48.0/21 maxlen: 32
185.35.200.0/24 maxlen: 24
185.35.200.0/22 maxlen: 24
185.12.56.0/22 maxlen: 24
194.35.228.0/22 maxlen: 24
185.152.32.0/23 maxlen: 23
185.152.32.0/22 maxlen: 24
217.197.164.0/22 maxlen: 24
45.152.48.0/22 maxlen: 22
2a02:ed01::/32 maxlen: 32
2a02:ed00::/32 maxlen: 32
2a02:ed03::/32 maxlen: 32
2a02:ed04:3400::/44 maxlen: 44
2a02:ed04:4400::/44 maxlen: 44
2a02:ed04:4500::/44 maxlen: 44
2a02:ed04:4600::/44 maxlen: 44
2a02:ed04:4700::/44 maxlen: 44
2a02:ed04:100::/44 maxlen: 44
2a02:ed06::/32 maxlen: 32
2a02:20c8::/32 maxlen: 48
2a07:7d80::/29 maxlen: 29
2a04:8d40::/29 maxlen: 32
2a02:ed05::/32 maxlen: 32
2a02:ed00::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 640974682 (0x26347f5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65bdcff77bf060d5da12de45e2072e1cff4560a7
Validity
Not Before: Jan 1 07:02:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae2262856e0f91262f1d677fb5511751af96d15b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:0c:ab:cf:ec:2b:28:10:23:72:f3:4d:80:b9:
2d:27:38:69:18:68:58:7d:dd:99:ae:f4:ac:f2:0e:
63:20:16:75:67:05:c8:ae:5e:8f:81:79:67:64:83:
5a:7e:5c:92:12:eb:80:63:e4:77:ae:91:94:eb:f5:
79:3d:a4:e7:ce:0e:72:4a:7b:3c:85:72:ef:70:f2:
aa:d3:a4:b1:3a:f6:9d:7f:39:6e:71:f5:f1:d9:e1:
4d:43:da:7a:56:de:fd:ea:c7:46:d2:07:57:95:a7:
05:56:f8:39:02:08:bb:33:ec:1e:de:db:87:b2:fd:
1c:b1:ca:97:d1:ec:88:d6:c8:ed:6c:a0:3d:38:bd:
c8:f7:1e:fc:53:bb:6e:52:2f:d0:8e:d3:d8:93:f7:
20:fe:0c:fd:82:77:6b:e2:b0:e8:79:39:02:ce:a4:
99:32:4e:81:c4:15:1f:60:c8:87:59:69:b9:d8:ff:
64:87:11:6c:77:15:b4:28:8f:90:5f:38:75:cb:d8:
77:9e:9e:b8:7c:5e:0c:64:2a:78:8c:93:dc:db:70:
af:98:d8:9b:90:2c:00:8e:d1:de:55:9d:7b:41:01:
3e:e4:ec:6f:59:7b:72:6f:ac:e5:c8:84:08:86:98:
94:ae:94:1d:28:f8:50:87:eb:b2:ab:f7:1f:87:a2:
b9:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:22:62:85:6E:0F:91:26:2F:1D:67:7F:B5:51:17:51:AF:96:D1:5B
X509v3 Authority Key Identifier:
keyid:65:BD:CF:F7:7B:F0:60:D5:DA:12:DE:45:E2:07:2E:1C:FF:45:60:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zb3P93vwYNXaEt5F4gcuHP9FYKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/195f3d-a851-455a-9b0f-d70cd97f4857/1/riJihW4PkSYvHWd_tVEXUa-W0Vs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/195f3d-a851-455a-9b0f-d70cd97f4857/1/Zb3P93vwYNXaEt5F4gcuHP9FYKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.169.48.0/21
37.202.56.0/21
45.152.48.0/22
91.90.40.0/21
91.205.184.0/22
134.90.144.0/21
176.125.232.0/22
178.255.144.0/21
185.12.56.0/22
185.35.200.0/22
185.41.240.0/22
185.152.32.0/22
193.27.45.0/24
193.28.1.0/24
193.28.4.0/24
193.28.7.0/24
193.138.6.0/23
194.35.228.0/22
194.99.40.0/22
217.197.164.0/22
IPv6:
2a02:20c8::/32
2a02:ed00::/29
2a04:8d40::/29
2a07:7d80::/29
Signature Algorithm: sha256WithRSAEncryption
3b:9f:3d:89:f1:c7:06:8a:ed:bb:2a:36:5b:ff:39:fb:b3:3f:
2c:c3:75:59:48:da:ab:ba:f2:06:91:00:e2:aa:19:ad:95:11:
fc:f0:78:91:64:90:86:fb:a8:4a:92:34:c8:f9:8a:6d:f4:d9:
00:15:5c:05:da:3a:3a:aa:1a:e9:9d:95:67:8e:88:50:e3:92:
cf:fb:9a:1d:22:ec:77:7e:3b:98:75:13:f6:9a:8a:47:f6:07:
98:32:95:7d:4c:ff:d5:18:2b:56:51:78:96:ee:bc:83:25:19:
1d:64:f8:88:0c:ac:36:1f:a6:3b:68:f8:16:20:dd:16:46:bd:
ef:ec:99:bd:4f:2c:e4:31:0a:b0:46:af:14:8a:bf:b6:a3:c6:
eb:67:76:b6:99:62:13:33:7f:ab:43:7f:69:1f:01:d9:81:e8:
62:c2:54:0c:77:cb:41:18:79:f2:79:ff:ae:3a:97:57:c5:12:
bd:eb:61:60:0e:ab:73:27:e6:10:ea:1b:34:34:e4:0f:df:de:
9d:6f:fc:39:c1:d2:f8:2d:3f:a9:b4:c1:fc:6d:ee:84:81:49:
3e:79:6a:49:2c:8a:91:68:13:73:85:56:9d:dc:fb:1a:6e:0b:
03:f7:61:ed:9c:d0:a2:d7:5c:34:2b:9b:ce:e0:38:e1:14:ad:
62:fd:8b:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:32 2024 by rpki-client on console-fra.rpki-client.org