Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/bnobxZwwbmXD4MnHfr8zr_B-brA.roa
File: bnobxZwwbmXD4MnHfr8zr_B-brA.roa (raw, json)
Hash identifier: S+hgSZSk1yVScWVi/QyIbs89U5MkmibD4SUjtOeDB2k=
Subject key identifier: 6E:7A:1B:C5:9C:30:6E:65:C3:E0:C9:C7:7E:BF:33:AF:F0:7E:6E:B0
Certificate issuer: /CN=e4a9308742e7eb66506219d829d86185899a1e34
Certificate serial: 1019B308
Authority key identifier: E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/bnobxZwwbmXD4MnHfr8zr_B-brA.roa
Signing time: Sat 01 Jan 2022 00:56:56 +0000
ROA not before: Sat 01 Jan 2022 00:56:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48728
IP address blocks: 80.76.160.0/21 maxlen: 21
80.76.162.0/24 maxlen: 24
80.76.160.0/20 maxlen: 20
80.76.165.0/24 maxlen: 24
80.76.164.0/24 maxlen: 24
80.76.171.0/24 maxlen: 24
80.76.168.0/21 maxlen: 21
80.76.170.0/24 maxlen: 24
212.70.96.0/24 maxlen: 24
212.70.96.0/19 maxlen: 19
212.70.102.0/24 maxlen: 24
212.70.110.0/24 maxlen: 24
212.70.112.0/24 maxlen: 24
212.70.111.0/24 maxlen: 24
212.70.114.0/24 maxlen: 24
212.70.113.0/24 maxlen: 24
212.70.116.0/24 maxlen: 24
212.70.115.0/24 maxlen: 24
212.70.117.0/24 maxlen: 24
212.70.118.0/24 maxlen: 24
212.70.121.0/24 maxlen: 24
212.70.127.0/24 maxlen: 24
31.11.48.0/21 maxlen: 21
37.186.38.0/24 maxlen: 24
37.186.32.0/19 maxlen: 19
37.186.37.0/24 maxlen: 24
37.186.32.0/24 maxlen: 24
37.186.34.0/24 maxlen: 24
37.186.33.0/24 maxlen: 24
37.186.36.0/24 maxlen: 24
37.186.35.0/24 maxlen: 24
37.186.39.0/24 maxlen: 24
37.186.41.0/24 maxlen: 24
37.186.40.0/24 maxlen: 24
37.186.43.0/24 maxlen: 24
37.186.42.0/24 maxlen: 24
37.186.44.0/24 maxlen: 24
37.186.51.0/24 maxlen: 24
37.186.50.0/24 maxlen: 24
37.186.46.0/24 maxlen: 24
37.186.45.0/24 maxlen: 24
37.186.48.0/24 maxlen: 24
37.186.47.0/24 maxlen: 24
37.186.49.0/24 maxlen: 24
37.186.58.0/24 maxlen: 24
37.186.57.0/24 maxlen: 24
37.186.53.0/24 maxlen: 24
37.186.52.0/24 maxlen: 24
37.186.56.0/24 maxlen: 24
37.186.60.0/24 maxlen: 24
37.186.59.0/24 maxlen: 24
185.247.88.0/22 maxlen: 22
2a04:7f80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 270119688 (0x1019b308)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9308742e7eb66506219d829d86185899a1e34
Validity
Not Before: Jan 1 00:56:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e7a1bc59c306e65c3e0c9c77ebf33aff07e6eb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:16:3f:03:60:05:01:f3:c6:8c:55:b2:d1:50:
fd:51:bb:37:c3:8d:3b:86:1b:73:d7:90:1a:ee:04:
de:a1:89:5a:21:9b:6a:3c:aa:30:9e:84:5a:a9:89:
e1:90:39:03:4f:40:2f:66:7a:d9:d7:b7:c0:64:31:
54:4d:78:97:51:87:4e:ce:f8:1e:dc:ff:02:73:65:
06:b8:40:b2:94:ac:af:78:47:d8:ee:7b:c6:70:b2:
ab:ee:65:83:79:70:5e:b1:75:ae:59:8b:c4:ac:63:
f6:49:c8:2d:5d:11:c9:14:b3:f6:84:62:bb:ad:40:
ec:e7:05:b1:a5:d9:0f:ae:14:5b:ec:49:fa:78:6a:
ce:e2:fa:24:db:d1:10:aa:bb:59:65:c1:ea:74:45:
b0:d7:d7:4b:ed:d9:04:47:a8:a8:6a:4f:f3:4f:ab:
bc:61:73:1b:a9:e6:72:01:0b:b9:48:6a:c2:06:e4:
46:4a:84:98:f9:08:5e:02:73:6a:7c:94:95:8c:46:
38:73:32:69:0b:e8:40:27:5d:d9:5c:6e:74:fb:52:
be:ac:81:7f:e9:32:b0:11:4d:af:4b:4f:da:79:41:
77:ce:ce:44:53:ab:e0:53:09:97:9f:aa:bb:40:68:
82:ff:7e:88:99:bd:95:50:fd:b4:b9:69:a3:ce:eb:
78:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:7A:1B:C5:9C:30:6E:65:C3:E0:C9:C7:7E:BF:33:AF:F0:7E:6E:B0
X509v3 Authority Key Identifier:
keyid:E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/bnobxZwwbmXD4MnHfr8zr_B-brA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.48.0/21
37.186.32.0/19
80.76.160.0/20
185.247.88.0/22
212.70.96.0/19
IPv6:
2a04:7f80::/29
Signature Algorithm: sha256WithRSAEncryption
1f:00:ef:c7:b2:bd:04:d3:d9:70:4c:d5:90:4a:fb:f8:e8:b1:
d1:18:0c:c1:f5:50:dd:cc:75:54:0e:db:37:71:ef:c1:11:2e:
5c:cf:fb:95:cc:48:ee:52:17:f9:43:64:6b:6b:51:a7:bc:68:
9c:5f:cb:a9:63:50:27:48:fb:83:d8:12:59:0a:25:77:5e:f3:
91:9a:2a:4f:70:8b:e7:e3:0c:60:4d:ec:da:b2:38:7b:d9:e2:
04:a3:30:45:0e:ef:6b:38:32:9b:d0:2c:ae:6e:ed:b9:b4:84:
5f:c8:83:09:f0:36:3d:00:bd:71:ee:97:6a:bf:18:19:e3:d5:
43:78:0d:1c:b1:35:51:6f:5a:af:ab:d4:a3:96:97:f7:e4:39:
6d:9b:30:67:da:c7:34:ac:30:47:85:b0:39:49:13:31:56:61:
ca:1f:b0:22:b3:4f:af:e8:c3:2f:63:c5:f5:5d:47:ed:8d:2c:
ed:a0:2a:48:b6:d9:71:f0:4c:64:c3:df:3e:9e:83:fd:96:ac:
c9:12:bd:81:32:ef:37:86:05:15:c5:ca:c5:98:a9:53:f4:b2:
b2:e7:7c:9c:b3:d6:f9:6d:83:ed:ff:85:66:18:63:51:8f:d6:
3f:2f:fb:a4:7b:1d:d5:1d:5a:12:fd:e5:91:b7:f9:16:5a:ed:
84:2e:c2:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:16 2023 by rpki-client on console.sobornost.net