Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/09d137-477b-4efe-a3d3-4b23956fbd86/1/lJPhkHI4k6sHmKCVt2ZTGhlzaaM.roa
File: lJPhkHI4k6sHmKCVt2ZTGhlzaaM.roa (raw, json)
Hash identifier: 2s6g5dG2rTq2lxiCs1stJstUANFFJXPu3BhtPyWz0i8=
Subject key identifier: 94:93:E1:90:72:38:93:AB:07:98:A0:95:B7:66:53:1A:19:73:69:A3
Certificate issuer: /CN=db9d197fbbee2a1dccb4f55722a8210d3105b042
Certificate serial: 0346FB20
Authority key identifier: DB:9D:19:7F:BB:EE:2A:1D:CC:B4:F5:57:22:A8:21:0D:31:05:B0:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/250Zf7vuKh3MtPVXIqghDTEFsEI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/09d137-477b-4efe-a3d3-4b23956fbd86/1/lJPhkHI4k6sHmKCVt2ZTGhlzaaM.roa
Signing time: Tue 15 Mar 2022 07:20:01 +0000
ROA not before: Tue 15 Mar 2022 07:20:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8437
IP address blocks: 62.218.100.0/24 maxlen: 24
178.114.0.0/16 maxlen: 16
81.189.213.0/24 maxlen: 24
81.189.212.0/22 maxlen: 22
81.189.212.0/24 maxlen: 24
81.189.215.0/24 maxlen: 24
81.189.214.0/24 maxlen: 24
91.186.128.0/19 maxlen: 19
77.119.32.0/19 maxlen: 19
178.115.96.0/19 maxlen: 19
188.118.192.0/18 maxlen: 18
212.152.128.0/17 maxlen: 17
62.218.52.0/24 maxlen: 24
78.142.128.0/18 maxlen: 18
62.116.0.0/19 maxlen: 19
62.116.5.0/24 maxlen: 24
213.235.196.0/24 maxlen: 24
213.235.192.0/18 maxlen: 18
62.218.164.0/24 maxlen: 24
62.218.165.0/24 maxlen: 24
77.119.64.0/18 maxlen: 18
62.218.169.0/24 maxlen: 24
62.218.168.0/24 maxlen: 24
62.218.174.0/24 maxlen: 24
62.218.175.0/24 maxlen: 24
46.57.0.0/17 maxlen: 17
62.116.121.0/24 maxlen: 24
212.27.64.0/18 maxlen: 18
81.189.0.0/16 maxlen: 16
195.96.0.0/19 maxlen: 19
46.57.72.0/22 maxlen: 22
86.59.0.0/17 maxlen: 17
62.116.64.0/18 maxlen: 18
62.116.83.0/24 maxlen: 24
62.116.84.0/24 maxlen: 24
195.70.224.0/19 maxlen: 19
77.118.0.0/16 maxlen: 16
213.235.234.0/24 maxlen: 24
213.129.224.0/19 maxlen: 19
213.90.0.0/17 maxlen: 17
62.218.4.0/24 maxlen: 24
62.218.0.0/16 maxlen: 16
195.248.32.0/19 maxlen: 19
2001:858::/32 maxlen: 32
2001:938::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54983456 (0x346fb20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db9d197fbbee2a1dccb4f55722a8210d3105b042
Validity
Not Before: Mar 15 07:20:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9493e190723893ab0798a095b766531a197369a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:4c:08:29:45:91:fb:5b:45:95:35:8c:e8:31:
ae:0b:bb:a4:55:78:a5:5e:f7:b1:f5:a9:0b:54:bf:
e6:09:2b:67:93:46:36:6b:01:31:8e:52:07:48:8e:
bb:76:c9:56:c7:0f:66:b3:d4:7f:76:62:33:b9:a4:
78:79:b0:92:f9:46:c7:28:f5:b7:ca:10:2e:7c:38:
b7:06:b7:3c:f2:ba:ff:81:fa:b2:70:5f:34:ee:4e:
29:23:de:fa:1f:63:b7:ef:72:43:c1:19:d7:e3:a7:
60:a6:bb:16:8d:3a:ad:0f:f2:24:08:d9:4b:a8:f5:
69:d9:ac:b4:9b:b7:b8:d7:44:b9:c4:47:95:c0:9c:
5e:00:7e:90:02:93:a3:0e:86:e0:d7:e7:c2:47:00:
c9:bc:2b:b0:f0:e0:59:f7:b2:34:45:08:52:eb:58:
23:81:74:32:c6:71:9f:22:63:a8:a8:82:4b:cd:4c:
66:d6:74:31:fc:40:7e:90:74:e5:21:df:dc:07:11:
6d:00:6f:34:e2:cd:d3:f6:3f:44:00:fd:bc:75:ec:
3f:71:6e:c2:60:5c:64:f6:24:53:5b:42:52:30:4f:
26:27:ce:af:86:87:76:ca:93:b7:c4:eb:c9:05:98:
65:0b:2d:f2:cf:87:22:fd:a8:de:b6:9f:54:be:75:
88:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:93:E1:90:72:38:93:AB:07:98:A0:95:B7:66:53:1A:19:73:69:A3
X509v3 Authority Key Identifier:
keyid:DB:9D:19:7F:BB:EE:2A:1D:CC:B4:F5:57:22:A8:21:0D:31:05:B0:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/250Zf7vuKh3MtPVXIqghDTEFsEI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/09d137-477b-4efe-a3d3-4b23956fbd86/1/lJPhkHI4k6sHmKCVt2ZTGhlzaaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/09d137-477b-4efe-a3d3-4b23956fbd86/1/250Zf7vuKh3MtPVXIqghDTEFsEI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.57.0.0/17
62.116.0.0/19
62.116.64.0/18
62.218.0.0/16
77.118.0.0/16
77.119.32.0-77.119.127.255
78.142.128.0/18
81.189.0.0/16
86.59.0.0/17
91.186.128.0/19
178.114.0.0/16
178.115.96.0/19
188.118.192.0/18
195.70.224.0/19
195.96.0.0/19
195.248.32.0/19
212.27.64.0/18
212.152.128.0/17
213.90.0.0/17
213.129.224.0/19
213.235.192.0/18
IPv6:
2001:858::/32
2001:938::/32
Signature Algorithm: sha256WithRSAEncryption
1f:36:3b:60:dc:43:ea:d9:dd:e8:6d:02:eb:b5:b4:d8:21:11:
a9:f3:29:ee:82:c8:ad:d4:32:68:4a:a8:28:82:2a:d8:be:14:
27:f5:91:11:48:6a:5e:58:ec:93:ef:3b:cf:9d:87:fc:d8:3c:
a3:ad:17:ec:11:4c:c9:2a:45:ea:72:9e:2e:95:fb:2c:58:26:
43:40:5b:1e:47:9a:8b:3f:40:c6:07:1f:5e:16:34:67:26:fd:
d4:86:fe:0a:51:d4:8e:b4:5e:66:e8:2e:18:7a:32:c9:27:0a:
9d:42:52:ec:cc:69:a3:1a:4b:ab:91:f5:a7:3a:ca:f0:a7:cc:
52:92:0a:19:ef:70:60:74:b0:37:2e:c3:6b:52:c1:be:ac:80:
80:6f:27:68:cc:cb:f6:a9:35:25:f1:aa:33:ac:c1:29:87:f2:
76:28:e7:08:b3:7a:94:03:d8:fa:e6:de:e9:be:c9:bc:05:bf:
1c:bd:9d:6b:36:a6:dd:a9:0d:27:a4:f9:a2:04:7f:c4:7c:d9:
c2:1b:59:78:6a:be:b9:85:e1:35:49:be:e3:31:a8:bb:1c:81:
8c:08:96:7c:51:6d:19:77:b8:7b:65:23:aa:a3:40:95:ff:50:
90:fe:30:c9:76:30:7b:97:12:66:b7:f2:f0:89:d8:82:b0:d2:
d6:a4:39:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:51 2023 by rpki-client on console-fra.rpki-client.org