Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/MyVu8sg_3Am6khd5aJ0gNC8OXdM.roa
File: MyVu8sg_3Am6khd5aJ0gNC8OXdM.roa (raw, json)
Hash identifier: MP6gpOosvLZ+k2Eb+8l5cCKYlpeXb1pHsGFjQkmuCJg=
Subject key identifier: 33:25:6E:F2:C8:3F:DC:09:BA:92:17:79:68:9D:20:34:2F:0E:5D:D3
Certificate issuer: /CN=0c90c356e2864f43894857443555d8b5c0352819
Certificate serial: 146041BA
Authority key identifier: 0C:90:C3:56:E2:86:4F:43:89:48:57:44:35:55:D8:B5:C0:35:28:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DJDDVuKGT0OJSFdENVXYtcA1KBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/MyVu8sg_3Am6khd5aJ0gNC8OXdM.roa
Signing time: Mon 25 Apr 2022 14:02:08 +0000
ROA not before: Mon 25 Apr 2022 14:02:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44395
IP address blocks: 109.75.40.0/21 maxlen: 24
46.162.192.0/18 maxlen: 24
46.36.112.0/20 maxlen: 24
178.78.160.0/20 maxlen: 24
212.34.224.0/19 maxlen: 24
37.157.212.0/22 maxlen: 24
37.157.209.0/24 maxlen: 24
37.157.210.0/24 maxlen: 24
37.157.208.0/22 maxlen: 24
37.157.208.0/20 maxlen: 24
212.34.232.0/21 maxlen: 24
178.78.176.0/21 maxlen: 24
37.157.216.0/22 maxlen: 24
37.157.216.0/21 maxlen: 24
188.115.192.0/18 maxlen: 24
37.157.220.0/22 maxlen: 24
81.16.0.0/20 maxlen: 24
185.86.193.0/24 maxlen: 24
82.199.192.0/20 maxlen: 24
109.75.36.0/22 maxlen: 24
178.78.128.0/19 maxlen: 24
109.75.34.0/23 maxlen: 24
178.78.128.0/18 maxlen: 24
141.136.64.0/19 maxlen: 24
212.34.240.0/21 maxlen: 24
46.162.240.0/20 maxlen: 24
212.34.240.0/20 maxlen: 24
37.252.64.0/19 maxlen: 24
92.43.136.0/22 maxlen: 24
92.43.136.0/21 maxlen: 24
92.43.140.0/22 maxlen: 24
185.59.68.0/22 maxlen: 24
5.77.128.0/17 maxlen: 24
46.241.128.0/17 maxlen: 24
2a00:cc40::/29 maxlen: 48
2a01:4a00::/32 maxlen: 32
2a03:1080::/32 maxlen: 32
2a00:cc40::/32 maxlen: 32
2a00:cc40::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 341852602 (0x146041ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c90c356e2864f43894857443555d8b5c0352819
Validity
Not Before: Apr 25 14:02:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=33256ef2c83fdc09ba921779689d20342f0e5dd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:2f:80:2e:43:1e:10:93:8e:58:47:09:d4:90:
d3:a1:e8:d6:1f:af:aa:e0:8b:2d:4f:b1:a7:47:5a:
76:1c:19:83:e4:8a:a5:4e:b6:41:3a:da:71:be:ee:
9e:31:44:c3:8d:2f:cd:04:c5:b9:4e:7c:63:cf:69:
16:54:4d:83:a6:5c:49:bc:79:dd:b0:7a:3c:a5:60:
55:78:ac:06:52:a8:b4:05:19:30:e4:5d:ff:25:72:
a6:bd:bb:c8:cc:24:c9:6a:4f:ec:cd:00:6b:5e:6a:
a7:2b:57:0f:bd:5f:e1:37:3a:62:3d:c1:d1:ce:01:
27:2d:61:da:1b:5a:68:50:c0:4b:d9:f9:a5:23:94:
e1:da:61:c0:fb:f9:36:ed:22:c0:f6:99:ca:f9:66:
c5:73:2e:34:ff:7d:cb:36:87:c4:ca:64:93:4f:a4:
eb:1d:f2:63:01:f9:df:66:34:6b:a8:50:9f:1a:72:
41:d4:a5:7d:20:31:be:03:e7:ec:5b:b4:a9:7f:bd:
c2:c4:a4:df:73:94:c6:3b:aa:d4:e1:8f:66:8f:fd:
86:3b:fe:02:24:b3:2d:07:f5:6c:01:7d:e4:cf:0f:
51:90:74:13:e0:8c:7c:ab:01:1c:55:da:53:56:42:
59:7f:c2:97:f1:66:94:03:b4:94:e9:1c:68:e3:37:
52:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:25:6E:F2:C8:3F:DC:09:BA:92:17:79:68:9D:20:34:2F:0E:5D:D3
X509v3 Authority Key Identifier:
keyid:0C:90:C3:56:E2:86:4F:43:89:48:57:44:35:55:D8:B5:C0:35:28:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DJDDVuKGT0OJSFdENVXYtcA1KBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/MyVu8sg_3Am6khd5aJ0gNC8OXdM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/DJDDVuKGT0OJSFdENVXYtcA1KBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.77.128.0/17
37.157.208.0/20
37.252.64.0/19
46.36.112.0/20
46.162.192.0/18
46.241.128.0/17
81.16.0.0/20
82.199.192.0/20
92.43.136.0/21
109.75.34.0-109.75.47.255
141.136.64.0/19
178.78.128.0/18
185.59.68.0/22
185.86.193.0/24
188.115.192.0/18
212.34.224.0/19
IPv6:
2a00:cc40::/29
2a01:4a00::/32
2a03:1080::/32
Signature Algorithm: sha256WithRSAEncryption
4b:26:7d:08:19:d3:c2:3a:9d:ab:b3:11:c6:d7:76:e6:fb:f8:
b9:88:69:c1:59:6d:75:70:1d:2b:d2:68:a3:9c:9d:db:1d:d6:
f3:cc:a1:06:62:d1:90:2f:85:44:7b:49:c9:94:43:0b:84:02:
11:af:b0:72:f5:9a:47:af:75:8a:e6:0b:51:da:dd:20:aa:41:
cd:58:61:03:7a:18:93:c1:2d:97:59:68:b0:8a:d5:fd:04:31:
f3:18:c3:fe:36:4f:97:43:f9:eb:d4:75:d9:47:ae:90:9d:76:
1e:9b:12:b0:cf:26:1f:c3:26:7e:1c:95:39:df:d2:99:5e:4c:
c4:48:af:ba:e4:91:ea:dc:92:3e:94:48:a4:dd:e6:ca:90:9a:
6b:8c:fb:0b:d6:d1:1f:e2:21:de:74:6a:f8:32:d5:f9:a2:ab:
a2:5f:70:a5:2a:fb:a7:64:c5:b9:fc:b3:02:0a:12:e2:6e:6a:
dd:49:6f:1e:0a:19:4d:ba:bf:3b:b8:00:2a:e2:2e:18:62:94:
82:11:8c:fc:4b:ed:be:d5:97:e0:7e:aa:4b:5f:b5:eb:ec:d1:
0c:07:a3:61:df:24:c9:75:a1:ad:eb:6a:a1:d5:7a:ba:27:f0:
cf:4e:ca:d5:34:44:10:08:37:9c:8f:4c:7a:d4:30:39:5f:a0:
01:96:c1:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:53 2023 by rpki-client on console-fra.rpki-client.org