Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/9571d6-974f-4327-b9e0-443be63fc123/1/R4Ai3dpsXR0rh074SCgabxg92WE.roa
File: R4Ai3dpsXR0rh074SCgabxg92WE.roa (raw, json)
Hash identifier: PEVOUpCfLG1rnrkI9uNQy732TBldRe0CHzR+AVSx4GY=
Subject key identifier: 47:80:22:DD:DA:6C:5D:1D:2B:87:4E:F8:48:28:1A:6F:18:3D:D9:61
Certificate issuer: /CN=592e7c1f2394c3e3aaa8ccb647fd83671d6098b7
Certificate serial: 158C8756
Authority key identifier: 59:2E:7C:1F:23:94:C3:E3:AA:A8:CC:B6:47:FD:83:67:1D:60:98:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WS58HyOUw-OqqMy2R_2DZx1gmLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/9571d6-974f-4327-b9e0-443be63fc123/1/R4Ai3dpsXR0rh074SCgabxg92WE.roa
Signing time: Sat 01 Jan 2022 06:54:44 +0000
ROA not before: Sat 01 Jan 2022 06:54:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 185.29.122.0/24 maxlen: 24
185.29.123.0/24 maxlen: 24
185.29.120.0/24 maxlen: 24
185.29.121.0/24 maxlen: 24
95.130.168.0/24 maxlen: 24
95.130.170.0/24 maxlen: 24
95.130.171.0/24 maxlen: 24
95.130.169.0/24 maxlen: 24
95.130.172.0/24 maxlen: 24
95.130.175.0/24 maxlen: 24
95.130.173.0/24 maxlen: 24
46.20.0.0/24 maxlen: 24
46.20.3.0/24 maxlen: 24
46.20.1.0/24 maxlen: 24
46.20.2.0/24 maxlen: 24
46.20.4.0/24 maxlen: 24
46.20.6.0/24 maxlen: 24
46.20.7.0/24 maxlen: 24
46.20.5.0/24 maxlen: 24
46.20.8.0/24 maxlen: 24
46.20.9.0/24 maxlen: 24
46.20.11.0/24 maxlen: 24
46.20.14.0/24 maxlen: 24
46.20.15.0/24 maxlen: 24
31.210.152.0/24 maxlen: 24
31.210.153.0/24 maxlen: 24
31.210.154.0/24 maxlen: 24
31.210.157.0/24 maxlen: 24
31.210.155.0/24 maxlen: 24
31.210.158.0/24 maxlen: 24
31.210.159.0/24 maxlen: 24
37.247.97.0/24 maxlen: 24
37.247.98.0/24 maxlen: 24
37.247.96.0/24 maxlen: 24
37.247.100.0/24 maxlen: 24
37.247.99.0/24 maxlen: 24
37.247.104.0/24 maxlen: 24
37.247.105.0/24 maxlen: 24
37.247.102.0/24 maxlen: 24
37.247.103.0/24 maxlen: 24
37.247.107.0/24 maxlen: 24
37.247.108.0/24 maxlen: 24
37.247.106.0/24 maxlen: 24
37.247.111.0/24 maxlen: 24
37.247.109.0/24 maxlen: 24
37.247.110.0/24 maxlen: 24
109.235.255.0/24 maxlen: 24
109.235.254.0/24 maxlen: 24
89.107.224.0/24 maxlen: 24
89.107.225.0/24 maxlen: 24
89.107.226.0/24 maxlen: 24
89.107.231.0/24 maxlen: 24
89.107.229.0/24 maxlen: 24
89.107.230.0/24 maxlen: 24
89.107.227.0/24 maxlen: 24
89.107.228.0/24 maxlen: 24
109.235.248.0/24 maxlen: 24
109.235.249.0/24 maxlen: 24
109.235.252.0/24 maxlen: 24
109.235.250.0/24 maxlen: 24
109.235.251.0/24 maxlen: 24
109.235.253.0/24 maxlen: 24
2a04:4280::/29 maxlen: 48
2a04:4280:10::/48 maxlen: 48
2a04:4280:100::/48 maxlen: 48
2a04:4280:200::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 361531222 (0x158c8756)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=592e7c1f2394c3e3aaa8ccb647fd83671d6098b7
Validity
Not Before: Jan 1 06:54:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=478022ddda6c5d1d2b874ef848281a6f183dd961
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:7f:3b:77:87:93:e8:42:eb:80:b5:6c:5c:1d:
67:54:71:e5:10:c6:73:55:41:90:3e:46:c7:d6:2d:
83:c2:91:b6:69:24:92:41:da:0b:b0:a2:e8:bf:fd:
84:8f:c5:00:6d:56:dd:02:c1:2d:54:3b:a1:df:c8:
47:b5:7e:c8:fb:b6:38:65:4f:ff:c3:a4:11:10:42:
4c:c5:f9:dd:5c:43:6a:50:72:86:80:7f:6b:fd:29:
1c:61:fd:17:4f:5c:0a:8b:e6:ff:a1:9f:32:06:c8:
4d:84:4d:59:9a:0d:10:8b:52:ff:bf:24:60:7f:66:
1c:c1:a4:e3:31:e7:6c:8f:8b:a6:ac:a3:7d:57:51:
a7:2f:33:8f:c3:c5:02:26:8b:50:5e:6f:a8:7a:4d:
d3:73:90:fa:d0:21:dd:10:22:92:9c:72:b7:65:6c:
7f:aa:4c:60:09:83:75:51:15:bb:d8:65:a5:3d:09:
2c:4f:e6:52:f7:1c:24:5a:51:df:4f:00:f8:7b:aa:
97:53:72:be:ff:98:13:cc:09:c5:b4:56:72:94:05:
69:77:e6:33:0f:eb:f0:41:ab:5c:0b:d4:fd:fb:56:
06:25:21:0a:34:11:9c:b0:40:5a:aa:24:0c:11:8d:
38:fb:43:b2:57:24:74:bb:cd:74:64:16:3d:f4:f5:
e2:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:80:22:DD:DA:6C:5D:1D:2B:87:4E:F8:48:28:1A:6F:18:3D:D9:61
X509v3 Authority Key Identifier:
keyid:59:2E:7C:1F:23:94:C3:E3:AA:A8:CC:B6:47:FD:83:67:1D:60:98:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WS58HyOUw-OqqMy2R_2DZx1gmLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9571d6-974f-4327-b9e0-443be63fc123/1/R4Ai3dpsXR0rh074SCgabxg92WE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9571d6-974f-4327-b9e0-443be63fc123/1/WS58HyOUw-OqqMy2R_2DZx1gmLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.152.0/22
31.210.157.0-31.210.159.255
37.247.96.0-37.247.100.255
37.247.102.0-37.247.111.255
46.20.0.0-46.20.9.255
46.20.11.0/24
46.20.14.0/23
89.107.224.0/21
95.130.168.0-95.130.173.255
95.130.175.0/24
109.235.248.0/21
185.29.120.0/22
IPv6:
2a04:4280::/29
Signature Algorithm: sha256WithRSAEncryption
b8:10:d9:4f:fb:09:95:8b:cc:be:88:d7:ec:ac:8a:a0:00:42:
16:07:e2:ab:d5:70:8d:2b:cb:5f:98:90:15:0d:8b:ee:72:e1:
60:47:30:ce:df:37:07:b1:45:25:1c:34:ca:bf:4b:fe:5e:f8:
47:af:c0:21:1c:d8:45:ae:46:2d:80:55:4d:ca:49:90:1a:98:
fa:c4:b2:21:2d:db:7a:18:73:7e:d0:c6:f6:2b:e7:01:8b:d1:
f0:e3:d4:e3:19:dc:72:80:a1:44:86:c2:e5:08:f9:87:04:e5:
64:4d:f6:2e:bb:ff:6c:8a:31:ed:47:d0:42:7b:4e:12:50:48:
3f:d9:b1:cb:4e:2d:73:b1:f1:dc:f2:18:cf:2e:10:a1:8a:2f:
d5:7c:67:5b:84:b4:11:7e:17:a4:92:ad:49:be:f2:ea:ed:f3:
7e:4d:f9:6a:b6:ed:c7:22:4d:b2:c2:ae:d0:d8:0e:88:ba:c4:
7f:b2:f4:71:0a:d8:0c:1f:1d:d5:ad:1c:53:a7:0b:11:0e:3a:
66:4f:9c:64:68:75:c4:97:61:93:d8:fc:0b:4d:47:15:36:ab:
80:9a:d5:18:31:14:05:54:ba:cc:04:ca:67:9a:ec:35:ed:e4:
55:f3:76:21:f1:cf:91:ea:6f:47:65:13:74:67:35:5e:e7:f9:
f0:eb:ca:a2
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:01 2023 by rpki-client on console.sobornost.net