Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/8BjojYtotp3G1mEwVsc6FcKApWo.roa
File: 8BjojYtotp3G1mEwVsc6FcKApWo.roa (raw, json)
Hash identifier: q28hFcmxqunisUtJfYs9MzrRp6ZqG1IOAkZ/2U07sRY=
Subject key identifier: F0:18:E8:8D:8B:68:B6:9D:C6:D6:61:30:56:C7:3A:15:C2:80:A5:6A
Certificate issuer: /CN=297ae7592ca52491dc166a30fe1477d712bd465d
Certificate serial: 1A0412BD
Authority key identifier: 29:7A:E7:59:2C:A5:24:91:DC:16:6A:30:FE:14:77:D7:12:BD:46:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXrnWSylJJHcFmow_hR31xK9Rl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/8BjojYtotp3G1mEwVsc6FcKApWo.roa
Signing time: Sat 01 Jan 2022 07:57:41 +0000
ROA not before: Sat 01 Jan 2022 07:57:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49531
IP address blocks: 91.214.204.0/22 maxlen: 22
185.42.108.0/22 maxlen: 22
94.159.96.0/20 maxlen: 20
94.159.92.0/24 maxlen: 24
94.159.108.0/22 maxlen: 22
94.159.107.0/24 maxlen: 24
94.159.112.0/21 maxlen: 21
94.159.124.0/22 maxlen: 22
94.159.120.0/22 maxlen: 22
93.92.32.0/24 maxlen: 24
93.92.32.0/21 maxlen: 21
93.92.36.0/23 maxlen: 23
93.92.33.0/24 maxlen: 24
93.92.34.0/23 maxlen: 23
93.92.38.0/23 maxlen: 23
94.159.42.0/23 maxlen: 23
94.159.40.0/23 maxlen: 23
94.159.44.0/23 maxlen: 23
94.159.38.0/23 maxlen: 23
94.159.46.0/23 maxlen: 23
94.159.50.0/23 maxlen: 23
94.159.48.0/23 maxlen: 23
94.159.52.0/23 maxlen: 23
94.159.56.0/23 maxlen: 23
94.159.54.0/23 maxlen: 23
94.159.58.0/23 maxlen: 23
94.159.60.0/23 maxlen: 23
93.186.48.0/20 maxlen: 20
93.186.50.0/23 maxlen: 23
94.159.64.0/23 maxlen: 23
93.186.48.0/23 maxlen: 23
94.159.62.0/23 maxlen: 23
94.159.64.0/19 maxlen: 19
94.159.70.0/23 maxlen: 23
94.159.68.0/23 maxlen: 23
93.186.56.0/23 maxlen: 23
93.186.58.0/23 maxlen: 23
93.186.54.0/23 maxlen: 23
93.186.52.0/23 maxlen: 23
94.159.66.0/23 maxlen: 23
93.186.60.0/23 maxlen: 23
94.159.74.0/23 maxlen: 23
94.159.72.0/23 maxlen: 23
94.159.78.0/23 maxlen: 23
93.186.62.0/23 maxlen: 23
94.159.76.0/23 maxlen: 23
94.159.84.0/23 maxlen: 23
94.159.85.0/24 maxlen: 24
94.159.82.0/23 maxlen: 23
94.159.80.0/23 maxlen: 23
94.159.88.0/22 maxlen: 22
94.159.86.0/23 maxlen: 23
94.159.88.0/21 maxlen: 21
94.159.0.0/23 maxlen: 23
94.159.0.0/18 maxlen: 18
94.159.4.0/23 maxlen: 23
94.159.2.0/23 maxlen: 23
94.159.8.0/23 maxlen: 23
94.159.6.0/23 maxlen: 23
94.159.10.0/23 maxlen: 23
94.159.14.0/23 maxlen: 23
94.159.16.0/23 maxlen: 23
94.159.12.0/23 maxlen: 23
94.159.18.0/23 maxlen: 23
94.159.22.0/23 maxlen: 23
94.159.20.0/23 maxlen: 23
94.159.24.0/23 maxlen: 23
94.159.28.0/23 maxlen: 23
94.159.30.0/23 maxlen: 23
94.159.26.0/23 maxlen: 23
94.159.32.0/23 maxlen: 23
94.159.36.0/23 maxlen: 23
94.159.34.0/23 maxlen: 23
2a04:8f00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 436474557 (0x1a0412bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297ae7592ca52491dc166a30fe1477d712bd465d
Validity
Not Before: Jan 1 07:57:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f018e88d8b68b69dc6d6613056c73a15c280a56a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ca:f1:0b:59:69:47:45:fb:77:c2:0a:67:58:
c3:02:ce:80:e2:1c:b5:3f:35:ef:51:f7:ff:6f:8c:
39:87:24:19:a4:51:c9:30:07:94:5d:f9:0d:ec:5b:
10:f2:06:37:41:c3:46:6e:eb:57:f8:34:01:bb:a6:
6a:36:26:9b:94:d0:ed:57:e8:69:5f:ef:c7:be:8c:
aa:da:9f:66:eb:66:bf:ae:99:a0:b6:20:46:88:a5:
95:b5:9b:af:ba:19:0c:81:34:91:60:97:92:fa:da:
37:aa:ea:fc:b1:0b:59:ba:fe:ed:aa:eb:1b:56:20:
f3:81:d3:05:aa:55:a4:c6:fa:63:d5:bc:0f:5e:e0:
5f:b4:ed:49:a8:47:ad:bf:32:fe:fd:f0:51:9f:3e:
4d:83:6e:86:44:4e:cc:eb:2f:16:c5:98:b1:f5:6f:
d5:36:de:a2:21:09:0d:df:a7:1a:fe:54:dc:2d:04:
f2:cc:44:c0:d8:9d:51:a2:c6:4a:dc:10:82:9c:c5:
43:14:b9:79:57:7a:85:84:e9:82:61:50:9a:bc:3b:
69:39:fd:bd:fd:eb:99:d7:39:4d:a2:7a:4d:56:db:
d6:ca:9c:50:bc:f4:31:55:f8:ba:36:62:07:36:ae:
d5:ac:79:a8:6e:e8:e1:13:71:2a:3d:3c:0d:30:24:
7c:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:18:E8:8D:8B:68:B6:9D:C6:D6:61:30:56:C7:3A:15:C2:80:A5:6A
X509v3 Authority Key Identifier:
keyid:29:7A:E7:59:2C:A5:24:91:DC:16:6A:30:FE:14:77:D7:12:BD:46:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXrnWSylJJHcFmow_hR31xK9Rl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/8BjojYtotp3G1mEwVsc6FcKApWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/KXrnWSylJJHcFmow_hR31xK9Rl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.214.204.0/22
93.92.32.0/21
93.186.48.0/20
94.159.0.0/17
185.42.108.0/22
IPv6:
2a04:8f00::/29
Signature Algorithm: sha256WithRSAEncryption
d6:8f:f8:c4:b1:64:75:43:ea:90:cd:6f:20:10:21:8f:06:0f:
9f:ee:59:d9:fd:0e:9f:5c:92:f3:b3:28:01:90:a2:2d:53:ec:
62:a4:67:53:a6:fd:c3:45:8f:c4:b7:7b:4a:71:63:a7:9e:4a:
b4:db:ef:d6:20:4a:d6:47:86:7a:1a:fe:fd:6d:af:d1:64:f1:
0b:ea:6a:df:63:48:ab:7b:94:66:f2:81:ef:17:4c:e7:60:bd:
fa:1b:7b:15:20:93:ce:8d:2a:07:28:47:64:40:e1:94:72:60:
b5:2e:d0:57:c2:0b:c8:0d:7f:fc:79:c9:49:f7:27:f9:c4:78:
50:92:57:d4:cf:62:35:e8:55:31:fd:4e:85:13:8a:5c:e8:02:
b8:5e:3d:32:f6:9b:07:7c:f4:d8:9b:7a:cc:6f:ee:5a:f3:25:
d1:6d:3f:91:b9:c5:21:00:dc:d7:95:30:b7:a3:94:1d:5c:d2:
f0:d7:13:e9:19:4b:86:a5:60:ec:25:0a:87:9a:85:c8:f6:ee:
8b:72:07:ca:80:63:98:aa:af:17:36:53:59:18:5a:93:1e:63:
ff:2e:99:36:61:12:b3:31:ee:26:53:11:53:a4:f9:9c:26:f8:
0a:7c:fc:a1:d8:22:93:1e:70:7d:4e:c8:cf:d6:71:80:37:36:
0c:50:59:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:25 2024 by rpki-client on console-fra.rpki-client.org