Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/aJNBHuvA8jGoE5cSr01SThOHfWs.roa
File: aJNBHuvA8jGoE5cSr01SThOHfWs.roa (raw, json)
Hash identifier: DFvE6sxFMm5Y9u+cFWb+DzXs5+ElKqc+ke7FW9g94RE=
Subject key identifier: 68:93:41:1E:EB:C0:F2:31:A8:13:97:12:AF:4D:52:4E:13:87:7D:6B
Certificate issuer: /CN=adf491488a7cd8448a420945871c0b99672dc66e
Certificate serial: 3824555D
Authority key identifier: AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/aJNBHuvA8jGoE5cSr01SThOHfWs.roa
Signing time: Sun 27 Feb 2022 12:29:12 +0000
ROA not before: Sun 27 Feb 2022 12:29:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43395
IP address blocks: 151.238.136.0/21 maxlen: 21
151.238.144.0/23 maxlen: 23
31.58.238.0/24 maxlen: 24
31.58.240.0/24 maxlen: 24
31.58.236.0/24 maxlen: 24
31.58.239.0/24 maxlen: 24
31.58.237.0/24 maxlen: 24
151.247.232.0/22 maxlen: 22
151.247.228.0/22 maxlen: 22
151.247.236.0/22 maxlen: 22
151.247.240.0/24 maxlen: 24
151.247.241.0/24 maxlen: 24
31.58.246.0/24 maxlen: 24
31.58.242.0/24 maxlen: 24
31.58.244.0/24 maxlen: 24
31.58.245.0/24 maxlen: 24
31.58.241.0/24 maxlen: 24
31.58.243.0/24 maxlen: 24
31.58.252.0/24 maxlen: 24
31.58.248.0/24 maxlen: 24
31.58.250.0/24 maxlen: 24
31.58.247.0/24 maxlen: 24
31.58.253.0/24 maxlen: 24
31.58.249.0/24 maxlen: 24
31.58.251.0/24 maxlen: 24
31.59.3.0/24 maxlen: 24
31.58.255.0/24 maxlen: 24
31.59.0.0/23 maxlen: 23
31.58.254.0/24 maxlen: 24
31.59.4.0/24 maxlen: 24
31.59.5.0/24 maxlen: 24
31.59.9.0/24 maxlen: 24
31.59.8.0/24 maxlen: 24
31.59.13.0/24 maxlen: 24
31.59.15.0/24 maxlen: 24
31.59.14.0/24 maxlen: 24
31.59.12.0/24 maxlen: 24
31.59.12.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 941905245 (0x3824555d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf491488a7cd8448a420945871c0b99672dc66e
Validity
Not Before: Feb 27 12:29:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6893411eebc0f231a8139712af4d524e13877d6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:98:00:08:22:d9:fb:55:0a:24:2d:96:7d:9d:
76:87:bd:49:82:39:64:8a:c9:f7:c4:3f:ea:d4:c4:
0c:36:ed:5a:82:ca:e9:94:ac:cf:4a:82:44:36:55:
29:5e:fb:52:f1:5d:3f:0d:60:45:4b:b6:9d:d2:01:
df:21:6f:93:61:c7:19:f6:72:0a:89:b3:86:50:8c:
51:51:e9:2a:36:ea:8f:85:36:14:12:8d:13:f7:80:
07:c1:e5:1d:0a:e6:35:d0:fa:22:ac:21:63:1e:ea:
2a:e5:e5:19:10:27:6d:75:93:b0:4c:b5:ad:2e:50:
05:1a:d8:ed:a4:d3:43:d1:55:c5:d1:19:89:dc:84:
a7:73:e8:ea:52:e0:66:23:11:38:5a:b4:86:76:2c:
f2:09:0f:2a:55:3d:88:ef:ec:35:83:44:c3:de:74:
8f:6f:6e:16:5b:7d:b1:ea:68:ea:c3:77:6b:7c:4b:
6a:0b:3e:7f:99:90:5a:1f:29:08:d5:a3:51:12:6c:
be:10:87:ad:4c:05:1c:c8:fd:de:f4:5f:57:26:47:
76:9d:1f:93:be:dc:b8:e7:4f:b5:4f:71:f1:88:6b:
1b:82:94:cf:d9:0d:35:28:2e:ce:42:be:51:0b:72:
a3:cf:c8:d5:dc:2d:cc:bc:24:5c:10:01:1f:8c:0f:
79:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:93:41:1E:EB:C0:F2:31:A8:13:97:12:AF:4D:52:4E:13:87:7D:6B
X509v3 Authority Key Identifier:
keyid:AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/aJNBHuvA8jGoE5cSr01SThOHfWs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/rfSRSIp82ESKQglFhxwLmWctxm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.58.236.0-31.59.1.255
31.59.3.0-31.59.5.255
31.59.8.0/23
31.59.12.0/22
151.238.136.0-151.238.145.255
151.247.228.0-151.247.241.255
Signature Algorithm: sha256WithRSAEncryption
65:fd:2d:a1:45:b4:3c:8e:c8:37:4d:00:75:37:63:7c:70:f7:
33:72:b1:c5:3b:f1:d8:f3:e7:08:97:c1:52:11:63:24:9c:95:
73:3b:f8:21:82:a9:48:3e:0c:6a:65:d2:8b:d6:44:eb:89:9b:
95:8f:db:be:15:7d:53:ea:46:42:cf:24:d4:29:f1:81:26:16:
ac:d8:6c:21:f7:b5:4f:34:ae:13:e4:47:a3:76:94:77:59:08:
a2:1c:0f:1a:b8:eb:cc:63:56:53:ad:d9:75:bc:87:7d:24:b3:
f4:3d:ec:67:d3:2e:fb:9b:85:df:c5:c6:ec:fc:d7:28:6a:cd:
5f:37:61:b1:a7:9a:f7:ab:a5:96:0a:1c:f2:af:2e:7b:18:4a:
f7:3b:89:20:91:11:69:96:c2:e0:4f:12:d8:30:32:c4:1e:8a:
28:82:3f:5a:a5:5e:3c:03:bf:4b:9a:aa:39:cb:9a:49:80:94:
81:58:af:b2:dc:cc:30:67:1a:e5:6d:bf:0c:73:50:dc:d3:6d:
12:c3:8a:3d:ee:82:23:97:3e:fb:6c:69:03:6e:20:84:79:8e:
68:87:6d:60:16:75:dc:87:17:34:23:ba:31:71:11:9c:01:30:
36:40:28:df:33:b3:56:06:d8:5e:70:6c:a9:a8:86:0e:99:83:
8b:66:9c:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:36 2023 by rpki-client on console.sobornost.net