Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/4ZHWwp_dklS-1jKHhBi88ujJj-Q.roa
File: 4ZHWwp_dklS-1jKHhBi88ujJj-Q.roa (raw, json)
Hash identifier: Oeb7J1EXOd1lZIN9qT5bnVNEoc9hhgofu59McRMwe8U=
Subject key identifier: E1:91:D6:C2:9F:DD:92:54:BE:D6:32:87:84:18:BC:F2:E8:C9:8F:E4
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 182F9601
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/4ZHWwp_dklS-1jKHhBi88ujJj-Q.roa
Signing time: Thu 13 Jan 2022 06:05:40 +0000
ROA not before: Thu 13 Jan 2022 06:05:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 77.83.157.0/24 maxlen: 32
91.189.184.0/24 maxlen: 24
77.83.158.0/24 maxlen: 32
91.189.185.0/24 maxlen: 24
77.83.156.0/24 maxlen: 32
85.209.253.0/24 maxlen: 24
185.144.103.0/24 maxlen: 32
77.243.95.0/24 maxlen: 32
77.243.93.0/24 maxlen: 32
193.16.9.0/24 maxlen: 32
193.16.10.0/24 maxlen: 32
185.117.20.0/23 maxlen: 32
5.253.138.0/24 maxlen: 32
194.36.101.0/24 maxlen: 24
185.238.242.0/24 maxlen: 24
185.238.241.0/24 maxlen: 24
147.78.221.0/24 maxlen: 32
185.238.240.0/24 maxlen: 24
185.133.75.0/24 maxlen: 32
185.141.205.0/24 maxlen: 24
185.214.70.0/24 maxlen: 24
45.153.168.0/24 maxlen: 32
213.232.107.0/24 maxlen: 32
45.151.172.0/23 maxlen: 32
185.166.237.0/24 maxlen: 24
185.211.49.0/24 maxlen: 24
45.14.44.0/24 maxlen: 32
45.14.45.0/24 maxlen: 32
185.207.178.0/24 maxlen: 24
185.227.240.0/24 maxlen: 24
79.174.21.0/24 maxlen: 24
79.174.22.0/24 maxlen: 24
79.174.22.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 405771777 (0x182f9601)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 13 06:05:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e191d6c29fdd9254bed632878418bcf2e8c98fe4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:05:68:75:d0:22:96:de:8c:f4:82:a2:7d:95:
00:ea:06:07:05:b5:11:74:68:a4:0e:e4:2f:da:c6:
2d:f4:0d:fe:9d:b1:01:d2:8a:35:1b:fb:a7:65:c0:
67:43:37:66:5e:bb:38:3b:d3:26:4a:b6:e5:6d:da:
d3:d1:10:0f:57:ab:84:5b:8c:bf:1a:fd:0c:11:3f:
72:9a:a9:c4:68:10:68:17:46:ce:34:38:71:25:01:
7e:0e:8a:56:61:df:2a:46:78:d3:22:84:4c:62:9f:
dc:3b:be:44:77:f1:6d:62:a0:77:c1:30:10:af:1f:
b6:f5:53:4c:d1:5b:54:93:38:78:d1:73:be:3f:5f:
ff:6c:4e:a2:2e:44:06:b1:fa:4f:96:2f:a9:8a:a9:
c3:a5:96:87:6f:84:b8:64:0e:e3:2f:e6:80:43:a3:
e6:46:e9:80:ec:47:f3:45:ee:cf:7d:a0:80:1a:2a:
53:5a:a1:9a:53:68:8e:03:f6:44:22:ca:6b:1b:07:
60:e7:c5:e7:e1:c8:41:39:1c:c8:95:7d:27:ff:d6:
54:36:15:b4:ef:8a:85:ab:3e:ea:0c:b3:89:96:70:
4a:ef:bc:7c:f8:c3:4a:f8:e4:2d:5d:1a:b8:9c:f7:
15:c4:74:38:16:d6:42:d7:71:1f:3b:c7:78:b7:9f:
e2:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:91:D6:C2:9F:DD:92:54:BE:D6:32:87:84:18:BC:F2:E8:C9:8F:E4
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/4ZHWwp_dklS-1jKHhBi88ujJj-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.138.0/24
45.14.44.0/23
45.151.172.0/23
45.153.168.0/24
77.83.156.0-77.83.158.255
77.243.93.0/24
77.243.95.0/24
79.174.21.0-79.174.23.255
85.209.253.0/24
91.189.184.0/23
147.78.221.0/24
185.117.20.0/23
185.133.75.0/24
185.141.205.0/24
185.144.103.0/24
185.166.237.0/24
185.207.178.0/24
185.211.49.0/24
185.214.70.0/24
185.227.240.0/24
185.238.240.0-185.238.242.255
193.16.9.0-193.16.10.255
194.36.101.0/24
213.232.107.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:c2:97:d1:2c:c6:c3:ea:c4:dd:10:3f:fe:c6:23:60:e4:40:
0b:84:bc:6e:31:a7:fe:f8:18:a9:86:69:fe:5e:b6:9e:34:99:
04:f1:ba:d8:3a:86:56:29:86:eb:fa:fb:ac:eb:89:a3:d9:6f:
d2:04:ce:86:6c:0e:70:c7:12:c2:f5:df:92:d0:5d:22:a3:7e:
2e:07:e6:e4:66:f4:94:a5:dd:06:97:cf:6f:02:80:ba:31:e1:
70:32:7f:99:a6:f1:b3:0c:f8:94:62:cc:40:08:45:80:d1:72:
db:a3:4b:93:42:a9:dd:c4:ff:2a:54:4d:56:0e:2c:87:94:bd:
67:f0:f6:45:3d:e2:de:13:b1:94:e5:77:b3:b9:f5:38:21:39:
20:12:8c:7a:b0:14:a0:a0:23:1a:2b:ef:2a:12:f7:e2:26:22:
75:bd:79:ff:07:f7:ff:6c:46:4e:78:1c:e5:4a:e4:7a:e3:06:
91:8a:3b:e2:e4:b9:af:0f:0c:a5:38:a4:c8:1d:39:6f:fd:b1:
c1:a6:07:b0:88:5e:73:df:27:61:b7:31:3c:ee:a4:9e:72:e0:
eb:9c:12:33:b0:c9:2c:0b:5f:83:de:92:72:75:a2:32:f1:8f:
bc:18:12:43:ff:7a:e5:ab:fa:de:0c:40:42:58:43:7c:56:d0:
2f:25:25:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:17 2023 by rpki-client on console-fra.rpki-client.org