Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/1cba9f-cd6e-4d12-a78d-f98c7fec194e/1/a8jH-29UfvD9CcyVzrvvsFJ6ULc.roa
File: a8jH-29UfvD9CcyVzrvvsFJ6ULc.roa (raw, json)
Hash identifier: qNUNsNwV2howNc1PXzMrjcHikiwDIy39JXc2kneuKwU=
Subject key identifier: 6B:C8:C7:FB:6F:54:7E:F0:FD:09:CC:95:CE:BB:EF:B0:52:7A:50:B7
Certificate issuer: /CN=d055e0b86f3f5125054863cf9264e6346e09bbb7
Certificate serial: 0B4BC6EE
Authority key identifier: D0:55:E0:B8:6F:3F:51:25:05:48:63:CF:92:64:E6:34:6E:09:BB:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0FXguG8_USUFSGPPkmTmNG4Ju7c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/1cba9f-cd6e-4d12-a78d-f98c7fec194e/1/a8jH-29UfvD9CcyVzrvvsFJ6ULc.roa
Signing time: Sat 01 Jan 2022 03:59:07 +0000
ROA not before: Sat 01 Jan 2022 03:59:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203053
IP address blocks: 86.107.43.0/24 maxlen: 24
89.39.209.0/24 maxlen: 24
86.107.78.0/24 maxlen: 24
86.107.79.0/24 maxlen: 24
188.214.214.0/24 maxlen: 24
86.105.228.0/24 maxlen: 24
185.146.85.0/24 maxlen: 24
185.146.84.0/22 maxlen: 22
185.146.87.0/24 maxlen: 24
185.146.86.0/24 maxlen: 24
93.119.122.0/24 maxlen: 24
89.42.13.0/24 maxlen: 24
89.40.33.0/24 maxlen: 24
89.40.32.0/24 maxlen: 24
188.212.127.0/24 maxlen: 24
176.126.172.0/24 maxlen: 24
93.113.55.0/24 maxlen: 24
93.113.54.0/24 maxlen: 24
89.37.29.0/24 maxlen: 24
37.156.181.0/24 maxlen: 24
37.156.180.0/24 maxlen: 24
31.14.56.0/24 maxlen: 24
188.212.252.0/24 maxlen: 24
188.212.255.0/24 maxlen: 24
93.114.248.0/24 maxlen: 24
85.204.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 189515502 (0xb4bc6ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d055e0b86f3f5125054863cf9264e6346e09bbb7
Validity
Not Before: Jan 1 03:59:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6bc8c7fb6f547ef0fd09cc95cebbefb0527a50b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:89:6b:0d:3a:f0:d8:ec:05:b0:0a:79:1b:9d:
bf:56:d0:6c:36:d7:68:2a:d2:73:2b:55:43:f2:f2:
a4:9b:a5:48:7e:d6:d0:69:8b:0e:77:75:7f:e0:14:
00:20:83:98:90:c4:19:b5:51:bc:f6:59:10:c6:2c:
b9:ca:c5:98:99:af:85:ef:8a:5f:6a:57:a8:3a:e4:
18:16:15:ba:ec:25:52:0b:60:4a:15:65:36:9e:77:
30:e8:57:3f:db:e8:02:6a:92:eb:df:02:6f:ae:59:
68:35:29:78:3b:f2:18:7f:91:3d:a0:16:0e:aa:3e:
1e:81:f1:c5:68:2c:5a:68:b9:cd:e2:01:69:4c:c0:
f0:66:96:9a:46:d5:0f:90:8f:7a:4b:bc:1d:40:13:
02:39:ea:20:a8:d7:fb:18:83:54:ac:9d:36:ba:de:
d4:be:91:58:ad:be:14:d2:5d:7a:15:4b:4f:77:15:
b1:b3:66:22:0f:66:59:dc:67:43:06:d2:2e:61:4a:
55:d0:b0:44:e7:82:14:b8:87:e5:7a:cb:0a:9b:6e:
26:9d:03:40:5b:4a:00:49:50:c7:60:38:b5:11:05:
9c:b9:7c:5b:1e:26:18:36:19:b7:73:12:52:cb:95:
b9:1a:cf:4c:65:9d:31:0f:29:07:80:90:08:6d:d6:
42:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:C8:C7:FB:6F:54:7E:F0:FD:09:CC:95:CE:BB:EF:B0:52:7A:50:B7
X509v3 Authority Key Identifier:
keyid:D0:55:E0:B8:6F:3F:51:25:05:48:63:CF:92:64:E6:34:6E:09:BB:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0FXguG8_USUFSGPPkmTmNG4Ju7c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/1cba9f-cd6e-4d12-a78d-f98c7fec194e/1/a8jH-29UfvD9CcyVzrvvsFJ6ULc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/1cba9f-cd6e-4d12-a78d-f98c7fec194e/1/0FXguG8_USUFSGPPkmTmNG4Ju7c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.56.0/24
37.156.180.0/23
85.204.69.0/24
86.105.228.0/24
86.107.43.0/24
86.107.78.0/23
89.37.29.0/24
89.39.209.0/24
89.40.32.0/23
89.42.13.0/24
93.113.54.0/23
93.114.248.0/24
93.119.122.0/24
176.126.172.0/24
185.146.84.0/22
188.212.127.0/24
188.212.252.0/24
188.212.255.0/24
188.214.214.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:8e:0e:c9:ac:41:98:7a:ac:1d:11:e9:ac:d6:06:e6:76:0d:
09:1c:e7:3d:42:a4:2c:84:ac:8c:4c:60:7b:16:d2:01:d9:1c:
b0:aa:ef:07:dd:35:8e:7a:f0:78:b3:24:a8:94:d1:fe:57:80:
a8:84:7e:42:4b:68:38:e1:4b:45:d8:46:ff:7a:66:e1:95:6c:
36:14:d0:25:f4:66:ed:af:2e:8d:9f:f9:aa:be:11:6e:c1:8d:
b7:36:0f:0f:41:79:e4:bf:d8:57:be:83:f4:70:54:a8:14:26:
e1:9f:19:c0:07:fd:a8:90:a7:11:51:f1:d1:9d:bb:5e:ab:4c:
33:e4:d4:f1:6d:a3:1e:2e:42:78:e5:9d:a7:dc:2f:49:1a:22:
5c:2c:3b:f4:de:ac:90:52:6b:c8:d7:d9:94:37:10:56:df:90:
66:0a:09:67:bf:8c:d2:19:d5:45:62:06:51:98:44:f9:aa:04:
ca:d7:81:15:6d:fc:bd:6b:ee:f7:54:77:ef:67:a0:25:7c:3d:
26:ef:ec:ef:2a:6e:fd:c7:83:bb:e0:51:5b:42:65:8e:43:57:
19:93:c3:cd:3c:82:d1:21:e4:af:25:46:b0:4d:c2:7e:91:3d:
25:8d:64:e0:1d:2f:25:50:ea:db:ac:56:4a:80:21:59:82:a3:
95:37:13:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:33 2024 by rpki-client on console-fra.rpki-client.org