Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/09d137-477b-4efe-a3d3-4b23956fbd86/1/mhgi6Rk_JLox0X8oKlke2CORXsI.roa
File: mhgi6Rk_JLox0X8oKlke2CORXsI.roa (raw, json)
Hash identifier: I/FU3eaqoIaOteRQ2KwbR4QwNI/VZw6ca2SbSfc3SZk=
Subject key identifier: 9A:18:22:E9:19:3F:24:BA:31:D1:7F:28:2A:59:1E:D8:23:91:5E:C2
Certificate issuer: /CN=db9d197fbbee2a1dccb4f55722a8210d3105b042
Certificate serial: 02A75449
Authority key identifier: DB:9D:19:7F:BB:EE:2A:1D:CC:B4:F5:57:22:A8:21:0D:31:05:B0:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/250Zf7vuKh3MtPVXIqghDTEFsEI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/09d137-477b-4efe-a3d3-4b23956fbd86/1/mhgi6Rk_JLox0X8oKlke2CORXsI.roa
Signing time: Sat 01 Jan 2022 15:57:06 +0000
ROA not before: Sat 01 Jan 2022 15:57:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8437
IP address blocks: 62.218.100.0/24 maxlen: 24
178.114.0.0/16 maxlen: 16
81.189.213.0/24 maxlen: 24
81.189.212.0/22 maxlen: 22
81.189.212.0/24 maxlen: 24
81.189.215.0/24 maxlen: 24
81.189.214.0/24 maxlen: 24
91.186.128.0/19 maxlen: 19
188.118.192.0/18 maxlen: 18
212.152.128.0/17 maxlen: 17
62.218.52.0/24 maxlen: 24
78.142.128.0/18 maxlen: 18
62.116.0.0/19 maxlen: 19
62.116.5.0/24 maxlen: 24
213.235.196.0/24 maxlen: 24
213.235.192.0/18 maxlen: 18
62.218.164.0/24 maxlen: 24
62.218.165.0/24 maxlen: 24
77.119.64.0/18 maxlen: 18
62.218.169.0/24 maxlen: 24
62.218.168.0/24 maxlen: 24
62.218.174.0/24 maxlen: 24
62.218.175.0/24 maxlen: 24
46.57.0.0/17 maxlen: 17
62.116.121.0/24 maxlen: 24
212.27.64.0/18 maxlen: 18
81.189.0.0/16 maxlen: 16
195.96.0.0/19 maxlen: 19
46.57.72.0/22 maxlen: 22
86.59.0.0/17 maxlen: 17
62.116.64.0/18 maxlen: 18
62.116.83.0/24 maxlen: 24
62.116.84.0/24 maxlen: 24
195.70.224.0/19 maxlen: 19
77.118.0.0/16 maxlen: 16
213.235.234.0/24 maxlen: 24
213.129.224.0/19 maxlen: 19
213.90.0.0/17 maxlen: 17
62.218.4.0/24 maxlen: 24
62.218.0.0/16 maxlen: 16
195.248.32.0/19 maxlen: 19
2001:858::/32 maxlen: 32
2001:938::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44520521 (0x2a75449)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db9d197fbbee2a1dccb4f55722a8210d3105b042
Validity
Not Before: Jan 1 15:57:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a1822e9193f24ba31d17f282a591ed823915ec2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b3:3b:32:55:0f:de:5c:b0:39:34:12:da:60:
73:da:c7:cb:04:d4:d2:e8:40:a2:db:fa:7c:c6:6b:
cd:08:8f:87:12:be:0c:6c:e5:af:00:87:cd:36:51:
3d:84:10:4a:18:46:a2:f5:7f:27:df:3a:2d:dc:40:
67:db:dd:e3:21:1a:00:e0:4b:6d:27:67:97:d3:59:
c9:1f:3a:10:98:89:ca:09:ac:01:0a:eb:b3:bd:41:
77:93:5b:7b:92:3a:6a:12:8c:63:c0:09:fb:2f:10:
ad:0f:4b:37:c3:50:29:14:24:fa:cb:83:0c:90:94:
ef:a8:6e:22:e2:e5:16:98:33:05:e6:bd:81:52:92:
9b:5c:28:09:c6:03:1e:9f:97:36:8b:84:6c:b6:2e:
0a:93:16:c7:7e:5f:18:da:7d:0d:c1:2e:3b:5d:74:
b8:71:01:36:dc:5f:9b:71:b6:ef:31:86:c8:e2:0f:
e8:56:49:6d:e9:e1:0a:8b:71:8a:85:f5:ef:eb:9b:
f4:e4:e1:22:e8:8b:e4:28:85:91:66:6e:a7:22:e5:
64:17:a7:5c:cb:0d:87:41:84:c1:1a:fa:db:64:a8:
91:2e:b4:99:06:64:d1:af:39:b9:e5:cb:ef:6b:d6:
b2:53:b5:7c:27:fe:81:77:37:47:40:29:21:68:37:
da:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:18:22:E9:19:3F:24:BA:31:D1:7F:28:2A:59:1E:D8:23:91:5E:C2
X509v3 Authority Key Identifier:
keyid:DB:9D:19:7F:BB:EE:2A:1D:CC:B4:F5:57:22:A8:21:0D:31:05:B0:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/250Zf7vuKh3MtPVXIqghDTEFsEI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/09d137-477b-4efe-a3d3-4b23956fbd86/1/mhgi6Rk_JLox0X8oKlke2CORXsI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/09d137-477b-4efe-a3d3-4b23956fbd86/1/250Zf7vuKh3MtPVXIqghDTEFsEI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.57.0.0/17
62.116.0.0/19
62.116.64.0/18
62.218.0.0/16
77.118.0.0/16
77.119.64.0/18
78.142.128.0/18
81.189.0.0/16
86.59.0.0/17
91.186.128.0/19
178.114.0.0/16
188.118.192.0/18
195.70.224.0/19
195.96.0.0/19
195.248.32.0/19
212.27.64.0/18
212.152.128.0/17
213.90.0.0/17
213.129.224.0/19
213.235.192.0/18
IPv6:
2001:858::/32
2001:938::/32
Signature Algorithm: sha256WithRSAEncryption
0b:2a:48:e2:de:4c:d0:ae:56:b4:a9:98:6c:7f:36:56:45:65:
3b:18:19:c2:10:98:9a:65:02:b5:ed:36:d0:23:b6:b0:5d:04:
49:e1:b6:7d:56:71:07:2a:9f:a7:c9:a7:15:09:c2:31:83:ac:
ca:82:b2:61:dc:19:e2:0f:14:f7:a1:60:80:44:a7:90:fc:3a:
25:10:76:94:9b:a0:41:08:9c:a8:4c:32:7e:3c:d1:da:a1:1a:
12:3c:e3:e2:ab:ae:e7:ec:76:aa:0f:39:40:ba:4c:0f:f2:2c:
05:d4:79:f8:15:91:2f:cb:1a:d1:c4:fe:6a:56:8d:22:d8:56:
24:b4:55:77:d3:5e:68:43:7b:d9:e9:74:83:c7:43:a1:fa:73:
16:ad:3c:dc:1b:23:e1:d8:c9:ae:21:05:fb:e2:1c:ec:a3:a8:
70:74:a0:30:2b:4c:eb:33:35:d3:a7:92:a0:b8:f1:f8:3a:8f:
1d:88:52:0b:59:8a:b3:b8:fb:3f:b0:be:81:9f:48:42:e4:a7:
fd:63:3a:02:e4:e5:c9:8b:da:78:b2:38:67:29:c2:ba:7c:9d:
e9:b4:21:09:bc:7d:ce:2a:e1:14:b9:cf:46:2a:e8:c1:64:50:
21:6d:69:06:f5:47:8b:95:bf:fc:ba:a5:d4:3e:42:53:88:90:
ef:76:fb:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:42 2023 by rpki-client on console-ams.rpki-client.org