Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/8Khtw0xXaPCOa_n7hs7nCTOgoe0.roa
File: 8Khtw0xXaPCOa_n7hs7nCTOgoe0.roa (raw, json)
Hash identifier: stMxakRFIWg2YR7X6P69457rwm85da3aERHtdjeOHvA=
Subject key identifier: F0:A8:6D:C3:4C:57:68:F0:8E:6B:F9:FB:86:CE:E7:09:33:A0:A1:ED
Certificate issuer: /CN=5336107179715609dca422bc07a098468c529452
Certificate serial: 0184D2DDE5B67B3CA41B21F48C7381956DBF
Authority key identifier: 53:36:10:71:79:71:56:09:DC:A4:22:BC:07:A0:98:46:8C:52:94:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/8Khtw0xXaPCOa_n7hs7nCTOgoe0.roa
Signing time: Fri 02 Dec 2022 12:44:28 +0000
ROA not before: Fri 02 Dec 2022 12:44:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43927
IP address blocks: 77.81.240.0/21 maxlen: 24
185.250.105.0/24 maxlen: 24
185.250.104.0/24 maxlen: 24
185.250.107.0/24 maxlen: 24
185.250.106.0/24 maxlen: 24
93.113.174.0/24 maxlen: 24
185.199.172.0/24 maxlen: 24
185.199.174.0/24 maxlen: 24
185.199.173.0/24 maxlen: 24
185.199.175.0/24 maxlen: 24
188.240.47.0/24 maxlen: 24
92.114.98.0/24 maxlen: 24
46.102.240.0/21 maxlen: 24
91.188.224.0/24 maxlen: 24
91.188.226.0/24 maxlen: 24
91.188.225.0/24 maxlen: 24
91.188.227.0/24 maxlen: 24
89.33.197.0/24 maxlen: 24
185.105.32.0/22 maxlen: 22
185.125.109.0/24 maxlen: 24
185.125.108.0/24 maxlen: 24
185.125.110.0/23 maxlen: 24
89.45.248.0/21 maxlen: 24
89.32.144.0/21 maxlen: 21
188.241.112.0/21 maxlen: 24
2a06:cd40:cafe::/48 maxlen: 48
2a06:cd40:2::/48 maxlen: 48
2a06:cd40:300::/48 maxlen: 64
2a06:cd40:400::/48 maxlen: 48
2a06:cd40:100::/48 maxlen: 48
2a06:cd40:200::/48 maxlen: 48
2a06:cd40:caff::/48 maxlen: 48
2a06:cd40:1::/48 maxlen: 48
2a06:cd40:101::/48 maxlen: 64
2a06:cd40:301::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d2:dd:e5:b6:7b:3c:a4:1b:21:f4:8c:73:81:95:6d:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5336107179715609dca422bc07a098468c529452
Validity
Not Before: Dec 2 12:44:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f0a86dc34c5768f08e6bf9fb86cee70933a0a1ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:69:47:72:fd:ae:17:f3:03:2d:9b:b5:bc:94:
33:e3:ca:49:5c:1d:e4:2d:60:a1:18:c8:b9:54:22:
ff:28:27:ac:af:b0:e8:c8:36:f5:ae:46:ef:ea:bd:
20:c6:1d:7a:0e:73:9e:f7:41:32:ff:f0:5a:66:95:
cd:ef:12:aa:1e:3f:8f:13:32:cc:c3:4b:f0:63:e5:
a2:01:9d:47:e3:16:ed:c2:79:2f:21:44:93:c5:4b:
1e:9e:f5:62:b0:f5:5b:52:c0:a3:06:fa:4c:73:d2:
13:6f:4a:1c:9d:42:d9:4c:3b:7b:bf:71:ed:e8:42:
05:f9:22:1d:c8:6c:63:05:b7:da:68:08:39:e5:1d:
73:b2:b4:96:0b:8b:cb:e6:4f:94:ae:63:10:42:d8:
f2:50:58:9e:17:92:69:63:32:2d:1e:df:7c:c3:78:
a9:32:4b:82:b3:4c:17:10:67:16:02:d4:cc:b4:e6:
cb:ca:6b:5b:58:16:d1:dc:2c:36:89:15:e0:a6:a4:
f7:bf:1e:67:0a:21:37:30:6c:b1:e8:a7:e9:86:c3:
ac:3b:4c:d7:f6:f7:9c:49:84:e2:eb:9e:e1:b9:75:
f7:8a:10:26:b5:5c:a3:63:06:80:38:32:24:54:e9:
48:2b:62:3e:c7:6d:f4:fe:57:37:12:c4:82:46:cf:
8c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:A8:6D:C3:4C:57:68:F0:8E:6B:F9:FB:86:CE:E7:09:33:A0:A1:ED
X509v3 Authority Key Identifier:
keyid:53:36:10:71:79:71:56:09:DC:A4:22:BC:07:A0:98:46:8C:52:94:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/8Khtw0xXaPCOa_n7hs7nCTOgoe0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.240.0/21
77.81.240.0/21
89.32.144.0/21
89.33.197.0/24
89.45.248.0/21
91.188.224.0/22
92.114.98.0/24
93.113.174.0/24
185.105.32.0/22
185.125.108.0/22
185.199.172.0/22
185.250.104.0/22
188.240.47.0/24
188.241.112.0/21
IPv6:
2a06:cd40:1::-2a06:cd40:2:ffff:ffff:ffff:ffff:ffff
2a06:cd40:100::/47
2a06:cd40:200::/48
2a06:cd40:300::/47
2a06:cd40:400::/48
2a06:cd40:cafe::/47
Signature Algorithm: sha256WithRSAEncryption
0b:15:df:72:1e:8e:29:cc:21:91:cc:15:9c:a4:e5:56:05:c4:
31:27:68:6d:16:1d:37:b2:3e:ac:b1:80:3c:9f:d8:89:da:ad:
f8:1d:08:45:04:27:96:57:c7:ea:ca:cb:ef:47:f9:7d:70:07:
65:6f:6a:36:cf:57:19:ef:e2:3b:5d:80:ae:3e:49:30:f3:27:
e0:78:bc:1f:b4:82:52:c7:6b:e5:dd:9f:0c:28:48:05:10:75:
06:aa:01:17:f2:e0:af:9a:d9:93:fe:4d:54:f3:a5:c2:4e:80:
5f:90:36:d8:de:0a:af:59:64:39:72:71:84:b6:27:e9:4d:44:
19:f9:f3:0c:89:3e:6b:fd:91:69:04:32:cd:3a:ae:02:af:72:
d7:8b:54:25:0b:f8:15:ad:a7:2f:2e:a5:aa:d1:9e:2a:df:33:
54:6a:f1:db:42:6a:02:e3:22:10:ea:14:fd:54:77:30:b9:1e:
69:ee:39:1b:2b:1b:df:e0:67:94:03:0e:d1:12:82:9f:2d:b4:
14:bc:cd:22:60:8a:a5:ac:5e:0a:bb:32:6f:a9:98:7c:2d:66:
9b:e1:67:a6:d3:77:f6:6d:b0:5b:b9:0e:ac:f1:89:cf:74:59:
8b:27:42:51:30:f1:f0:d3:ac:30:58:8a:18:b3:db:12:a7:46:
fc:98:af:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:50 2023 by rpki-client on console-fra.rpki-client.org