Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/K8KgHAVo1X8nashr2vonER2C0zo.roa
File: K8KgHAVo1X8nashr2vonER2C0zo.roa (raw, json)
Hash identifier: gxQeEydO4Jo//Xer4e7WqOVVz0TBu55LiNsWl6w3sXU=
Subject key identifier: 2B:C2:A0:1C:05:68:D5:7F:27:6A:C8:6B:DA:FA:27:11:1D:82:D3:3A
Certificate issuer: /CN=c42708df93954aac601aef1835bd5d69245fb02f
Certificate serial: 42D16A41
Authority key identifier: C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/K8KgHAVo1X8nashr2vonER2C0zo.roa
Signing time: Mon 04 Apr 2022 10:05:57 +0000
ROA not before: Mon 04 Apr 2022 10:05:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 45012
IP address blocks: 193.22.255.0/24 maxlen: 24
185.80.92.0/24 maxlen: 24
185.80.93.0/24 maxlen: 24
185.80.94.0/23 maxlen: 23
91.220.49.0/24 maxlen: 24
185.137.168.0/22 maxlen: 24
128.127.65.0/24 maxlen: 24
128.127.66.0/24 maxlen: 24
194.145.226.0/24 maxlen: 24
91.203.108.0/22 maxlen: 24
178.250.170.0/24 maxlen: 24
93.90.178.0/24 maxlen: 24
178.250.174.0/24 maxlen: 24
37.218.252.0/24 maxlen: 24
37.218.248.0/22 maxlen: 22
37.218.254.0/24 maxlen: 24
178.20.96.0/21 maxlen: 24
192.162.87.0/24 maxlen: 24
185.207.230.0/24 maxlen: 24
185.207.228.0/22 maxlen: 24
185.207.228.0/24 maxlen: 24
31.47.240.0/20 maxlen: 24
81.88.16.0/24 maxlen: 24
89.22.100.0/22 maxlen: 24
89.22.108.0/24 maxlen: 24
89.22.110.0/23 maxlen: 24
89.22.112.0/22 maxlen: 24
89.22.116.0/22 maxlen: 24
89.22.122.0/23 maxlen: 24
89.22.124.0/22 maxlen: 24
5.44.100.0/23 maxlen: 24
5.44.104.0/22 maxlen: 24
2a00:fa40:4000::/36 maxlen: 36
2a00:fa40:3000::/36 maxlen: 36
2a01:64c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1121020481 (0x42d16a41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c42708df93954aac601aef1835bd5d69245fb02f
Validity
Not Before: Apr 4 10:05:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2bc2a01c0568d57f276ac86bdafa27111d82d33a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:89:47:a5:c3:33:a6:0f:5f:e7:f8:ff:fd:fd:
07:0d:48:6a:58:24:70:c3:80:6f:5a:9a:38:0b:1e:
06:a2:d6:f4:23:40:c4:1c:c1:12:52:3b:65:fe:1e:
2a:9f:e6:5a:ad:d4:fa:2e:d1:e5:b0:45:67:14:33:
f3:16:30:b1:81:f0:5b:3d:20:fb:06:1f:1b:32:01:
2c:fb:eb:f9:c7:3a:cc:c9:9d:8c:41:1d:d2:05:b1:
41:aa:dd:bb:26:ca:26:84:28:fa:9e:04:cc:54:00:
7f:9c:2f:d4:45:8a:08:80:84:d5:93:e1:58:a0:13:
12:7a:1d:69:cc:10:a2:06:dd:c5:ab:8a:b0:cf:3e:
9d:e8:66:49:99:50:84:5b:5c:8f:e1:3b:0b:05:b7:
4d:77:26:fb:a4:74:8d:80:87:0a:6c:a5:41:50:3e:
33:83:d0:d8:b0:62:b4:67:f7:04:e5:39:f4:f2:1b:
46:58:ba:b2:66:e9:b6:d3:6a:42:01:67:4f:69:9a:
7c:74:38:f9:47:fa:c8:d5:85:a7:91:1e:b0:10:8e:
19:f2:b9:b7:2a:8a:8e:44:05:f1:6e:66:22:25:9d:
02:21:3d:c1:b2:79:43:fd:40:b0:54:7f:79:1c:e9:
b7:bc:37:6c:f2:60:54:78:7a:6f:72:f6:bf:58:41:
a8:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:C2:A0:1C:05:68:D5:7F:27:6A:C8:6B:DA:FA:27:11:1D:82:D3:3A
X509v3 Authority Key Identifier:
keyid:C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/K8KgHAVo1X8nashr2vonER2C0zo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/xCcI35OVSqxgGu8YNb1daSRfsC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.100.0/23
5.44.104.0/22
31.47.240.0/20
37.218.248.0-37.218.252.255
37.218.254.0/24
81.88.16.0/24
89.22.100.0/22
89.22.108.0/24
89.22.110.0-89.22.119.255
89.22.122.0-89.22.127.255
91.203.108.0/22
91.220.49.0/24
93.90.178.0/24
128.127.65.0-128.127.66.255
178.20.96.0/21
178.250.170.0/24
178.250.174.0/24
185.80.92.0/22
185.137.168.0/22
185.207.228.0/22
192.162.87.0/24
193.22.255.0/24
194.145.226.0/24
IPv6:
2a00:fa40:3000::-2a00:fa40:4fff:ffff:ffff:ffff:ffff:ffff
2a01:64c0::/32
Signature Algorithm: sha256WithRSAEncryption
65:bf:83:47:e0:75:ad:60:f0:fd:f7:e7:e4:38:63:65:8a:8d:
36:af:b2:78:12:a6:f9:14:82:db:2d:a2:ea:68:d4:13:01:ad:
43:26:1b:80:62:6a:ee:22:97:97:17:18:a1:d7:0e:a0:a7:c8:
1f:6d:8f:17:93:a7:18:ff:4f:13:82:f6:60:68:aa:13:ce:1e:
15:02:33:d9:ba:ba:fd:fa:59:1d:2c:cc:f1:ed:3d:13:92:01:
ac:e9:ca:73:e4:de:be:a2:01:4f:2b:b6:5c:7d:7d:2a:dc:5f:
2a:a9:05:97:21:dd:cf:c6:7c:79:88:32:c1:9a:20:05:6e:39:
13:d4:10:e0:46:7c:e4:cf:1d:a2:35:d7:b5:93:d9:14:da:bd:
c5:12:ad:b6:3d:77:47:8d:f2:30:7e:10:c4:de:07:00:21:18:
8e:c4:26:c5:43:a3:c2:7c:c8:cd:cc:1f:e7:9d:28:2d:6e:9d:
b8:f2:f8:2c:16:46:be:6c:a8:17:bc:cf:d0:1a:43:94:43:1d:
de:11:d7:72:9d:04:50:57:36:0c:27:a8:bc:89:44:43:aa:b1:
9b:c8:27:ad:c8:a8:57:85:d3:0d:ca:c1:64:b1:4e:39:91:a6:
6a:d5:62:74:e7:e8:04:af:52:9c:bd:04:25:4e:d8:1b:2a:c2:
02:2a:b4:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:44 2024 by rpki-client on console-fra.rpki-client.org