Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/q5Sd6ET_X6PPOh_d5_aU8yM5pfk.roa
File: q5Sd6ET_X6PPOh_d5_aU8yM5pfk.roa (raw, json)
Hash identifier: wf73QuSJv5jJkLiBw/0oPNpCJPWwNZD4pbGblLOurtM=
Subject key identifier: AB:94:9D:E8:44:FF:5F:A3:CF:3A:1F:DD:E7:F6:94:F3:23:39:A5:F9
Certificate issuer: /CN=0526b03c717184c3680817e55e2455f85d73a413
Certificate serial: 01FABC38
Authority key identifier: 05:26:B0:3C:71:71:84:C3:68:08:17:E5:5E:24:55:F8:5D:73:A4:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BSawPHFxhMNoCBflXiRV-F1zpBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/q5Sd6ET_X6PPOh_d5_aU8yM5pfk.roa
Signing time: Tue 22 Feb 2022 23:34:04 +0000
ROA not before: Tue 22 Feb 2022 23:34:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49453
IP address blocks: 134.19.177.0/24 maxlen: 24
134.19.176.0/24 maxlen: 24
134.19.179.0/24 maxlen: 24
134.19.178.0/24 maxlen: 24
134.19.186.0/24 maxlen: 24
134.19.185.0/24 maxlen: 24
134.19.184.0/24 maxlen: 24
134.19.183.0/24 maxlen: 24
134.19.182.0/24 maxlen: 24
134.19.181.0/24 maxlen: 24
134.19.180.0/24 maxlen: 24
134.19.190.0/23 maxlen: 23
134.19.189.0/24 maxlen: 24
134.19.188.0/24 maxlen: 24
134.19.187.0/24 maxlen: 24
37.123.210.0/24 maxlen: 24
45.133.250.0/24 maxlen: 24
213.152.166.0/24 maxlen: 24
213.152.165.0/24 maxlen: 24
213.152.164.0/24 maxlen: 24
213.152.163.0/24 maxlen: 24
213.152.162.0/24 maxlen: 24
213.152.161.0/24 maxlen: 24
213.152.160.0/24 maxlen: 24
213.152.172.0/24 maxlen: 24
213.152.171.0/24 maxlen: 24
213.152.170.0/24 maxlen: 24
213.152.169.0/24 maxlen: 24
213.152.168.0/24 maxlen: 24
213.152.167.0/24 maxlen: 24
213.152.177.0/24 maxlen: 24
213.152.176.0/24 maxlen: 24
213.152.174.0/24 maxlen: 24
213.152.173.0/24 maxlen: 24
213.152.186.0/24 maxlen: 24
213.152.185.0/24 maxlen: 24
213.152.184.0/24 maxlen: 24
213.152.183.0/24 maxlen: 24
213.152.181.0/24 maxlen: 24
213.152.180.0/24 maxlen: 24
213.152.188.0/22 maxlen: 22
213.152.188.0/24 maxlen: 24
213.152.187.0/24 maxlen: 24
188.95.51.0/24 maxlen: 24
188.95.49.0/24 maxlen: 24
188.95.53.0/24 maxlen: 24
188.95.52.0/24 maxlen: 24
185.23.212.0/22 maxlen: 22
109.202.98.0/24 maxlen: 24
185.23.214.0/24 maxlen: 24
109.202.104.0/24 maxlen: 24
109.202.103.0/24 maxlen: 24
109.202.102.0/24 maxlen: 24
109.202.101.0/24 maxlen: 24
109.202.100.0/24 maxlen: 24
109.202.99.0/24 maxlen: 24
109.202.111.0/24 maxlen: 24
109.202.110.0/24 maxlen: 24
109.202.109.0/24 maxlen: 24
109.202.108.0/24 maxlen: 24
109.202.107.0/24 maxlen: 24
109.202.106.0/24 maxlen: 24
109.232.225.0/24 maxlen: 24
109.232.224.0/24 maxlen: 24
109.232.231.0/24 maxlen: 24
109.232.230.0/24 maxlen: 24
109.232.229.0/24 maxlen: 24
109.232.228.0/24 maxlen: 24
109.232.227.0/24 maxlen: 24
2a00:1678:1337::/48 maxlen: 48
2a00:1678:2470::/48 maxlen: 48
2a00:1678:b00b::/48 maxlen: 48
2a00:1678:da7a::/48 maxlen: 48
2a00:1678:baba::/48 maxlen: 48
2a00:1678:3cc0::/48 maxlen: 48
2a00:1678:dea1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33209400 (0x1fabc38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0526b03c717184c3680817e55e2455f85d73a413
Validity
Not Before: Feb 22 23:34:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab949de844ff5fa3cf3a1fdde7f694f32339a5f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:6e:91:4d:15:cd:4e:8f:1d:8d:0b:dc:10:09:
17:9f:17:a4:26:5a:5c:d9:8e:25:28:67:06:ee:9f:
15:a1:c2:d2:18:eb:31:61:2b:f0:2c:26:81:5e:bf:
51:50:ef:78:6b:91:54:e7:b6:0f:e7:e0:69:76:58:
4a:40:80:ae:29:38:17:7d:4b:f5:06:40:d6:09:d1:
ad:c1:19:62:9c:99:2f:e0:42:64:53:0b:42:99:8f:
29:31:db:8a:25:2c:60:63:a2:01:af:b0:1c:9c:68:
74:f1:e8:9d:9f:9f:fe:10:eb:6c:ab:b4:fb:cc:27:
69:7b:c9:eb:f6:6d:17:88:7f:43:bc:e3:5b:24:88:
c8:2f:d2:ff:90:61:9a:a4:94:4f:dd:04:5f:50:d9:
6a:1b:59:82:c1:5f:d8:a2:60:97:f2:48:30:8c:72:
58:01:3e:bd:2a:2e:40:91:e8:cd:3d:9b:a6:79:f8:
74:a9:de:5a:af:78:47:f0:34:2e:b1:a1:5d:a2:68:
82:4c:42:36:1a:eb:ec:d5:3b:5c:3a:a9:47:17:85:
56:9e:f6:69:62:24:d2:cc:85:4b:e7:99:86:e3:a0:
ee:ff:37:ad:7a:34:0c:45:47:72:f4:09:f3:b5:46:
4e:ff:ef:ae:f8:fe:f2:be:f1:e5:72:5f:84:72:f1:
c8:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:94:9D:E8:44:FF:5F:A3:CF:3A:1F:DD:E7:F6:94:F3:23:39:A5:F9
X509v3 Authority Key Identifier:
keyid:05:26:B0:3C:71:71:84:C3:68:08:17:E5:5E:24:55:F8:5D:73:A4:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BSawPHFxhMNoCBflXiRV-F1zpBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/q5Sd6ET_X6PPOh_d5_aU8yM5pfk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/BSawPHFxhMNoCBflXiRV-F1zpBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.123.210.0/24
45.133.250.0/24
109.202.98.0-109.202.104.255
109.202.106.0-109.202.111.255
109.232.224.0/23
109.232.227.0-109.232.231.255
134.19.176.0/20
185.23.212.0/22
188.95.49.0/24
188.95.51.0-188.95.53.255
213.152.160.0-213.152.174.255
213.152.176.0/23
213.152.180.0/23
213.152.183.0-213.152.191.255
IPv6:
2a00:1678:1337::/48
2a00:1678:2470::/48
2a00:1678:3cc0::/48
2a00:1678:b00b::/48
2a00:1678:baba::/48
2a00:1678:da7a::/48
2a00:1678:dea1::/48
Signature Algorithm: sha256WithRSAEncryption
3e:42:8c:95:80:89:ae:90:21:ba:e7:a9:f4:98:ee:2f:ea:38:
07:b8:c6:45:8f:a4:0a:13:07:6b:85:9b:23:9a:4f:94:28:18:
43:0a:22:9f:64:8e:8d:62:f1:cd:68:3a:1a:31:a0:d7:9d:1c:
0b:26:e8:34:5d:5f:d8:bc:f3:7d:27:b8:1e:fb:9f:d2:48:0b:
c3:6e:04:7f:f8:ca:0a:c1:f6:78:ad:05:c6:47:d0:f6:7e:fb:
fa:d8:9e:90:1a:d4:b8:c2:89:1f:64:a4:ad:fb:e5:21:c2:d9:
e3:e0:7d:b2:88:68:e4:4c:2c:c3:52:13:30:fa:e5:52:98:09:
7c:e7:4b:f0:0f:aa:27:c1:30:6b:0f:bd:5a:1e:ac:ab:b4:ed:
54:c9:b8:4b:8a:d7:b1:8a:1a:06:79:b6:ae:6d:cf:15:fe:78:
d2:1c:1d:a9:d0:32:76:ac:84:9c:ba:8d:29:1e:99:3e:13:ae:
47:39:3d:c3:db:6f:48:94:a9:13:91:0a:02:39:68:51:f7:d8:
a9:61:75:e5:d3:12:35:67:76:b5:8c:ad:b2:f6:1a:9d:71:ae:
a6:b1:6e:27:3f:c9:6f:3a:77:d8:23:27:50:95:6c:9f:d6:d7:
ac:9e:a1:fb:9c:ce:a6:d7:7e:97:3e:c1:75:b9:06:2e:88:45:
f1:25:fb:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:47 2024 by rpki-client on console-ams.rpki-client.org