Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/_BbK0_6-phdPgQ74P9UjdexctP0.roa
File: _BbK0_6-phdPgQ74P9UjdexctP0.roa (raw, json)
Hash identifier: 5QKYr87B17oesPSSFpd7uJwGS4c4S5VMLV01a5E7zKg=
Subject key identifier: FC:16:CA:D3:FE:BE:A6:17:4F:81:0E:F8:3F:D5:23:75:EC:5C:B4:FD
Certificate issuer: /CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Certificate serial: 018865FE4D89C3A5217CE1C151EB99131150
Authority key identifier: 08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/_BbK0_6-phdPgQ74P9UjdexctP0.roa
Signing time: Mon 29 May 2023 05:32:24 +0000
ROA not before: Mon 29 May 2023 05:32:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31363
IP address blocks: 86.62.84.0/24 maxlen: 24
86.62.96.0/24 maxlen: 24
86.62.92.0/24 maxlen: 24
86.62.102.0/24 maxlen: 24
86.62.125.0/24 maxlen: 24
195.91.254.0/24 maxlen: 24
195.91.255.0/24 maxlen: 24
195.91.208.0/24 maxlen: 24
195.91.209.0/24 maxlen: 24
195.91.210.0/24 maxlen: 24
195.91.211.0/24 maxlen: 24
195.91.213.0/24 maxlen: 24
195.91.215.0/24 maxlen: 24
195.91.217.0/24 maxlen: 24
195.91.218.0/24 maxlen: 24
195.91.219.0/24 maxlen: 24
195.91.222.0/24 maxlen: 24
195.91.223.0/24 maxlen: 24
195.91.224.0/24 maxlen: 24
195.91.220.0/24 maxlen: 24
195.91.221.0/24 maxlen: 24
195.91.225.0/24 maxlen: 24
195.91.226.0/24 maxlen: 24
195.91.232.0/24 maxlen: 24
195.91.233.0/24 maxlen: 24
195.91.229.0/24 maxlen: 24
195.91.230.0/24 maxlen: 24
195.91.231.0/24 maxlen: 24
195.91.228.0/24 maxlen: 24
195.91.236.0/24 maxlen: 24
195.91.237.0/24 maxlen: 24
195.91.238.0/24 maxlen: 24
195.91.234.0/24 maxlen: 24
195.91.235.0/24 maxlen: 24
195.91.239.0/24 maxlen: 24
195.91.240.0/24 maxlen: 24
195.91.246.0/24 maxlen: 24
195.91.243.0/24 maxlen: 24
195.91.244.0/24 maxlen: 24
195.91.245.0/24 maxlen: 24
195.91.241.0/24 maxlen: 24
195.91.242.0/24 maxlen: 24
195.91.247.0/24 maxlen: 24
86.62.75.0/24 maxlen: 24
195.91.149.0/24 maxlen: 24
195.91.148.0/24 maxlen: 24
195.91.156.0/24 maxlen: 24
195.91.160.0/24 maxlen: 24
195.91.168.0/24 maxlen: 24
195.91.169.0/24 maxlen: 24
195.91.170.0/24 maxlen: 24
195.91.171.0/24 maxlen: 24
195.91.172.0/24 maxlen: 24
195.91.173.0/24 maxlen: 24
195.91.174.0/24 maxlen: 24
195.91.175.0/24 maxlen: 24
195.91.184.0/24 maxlen: 24
195.91.187.0/24 maxlen: 24
195.91.133.0/24 maxlen: 24
2a02:2698:9800::/38 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:65:fe:4d:89:c3:a5:21:7c:e1:c1:51:eb:99:13:11:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Validity
Not Before: May 29 05:32:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc16cad3febea6174f810ef83fd52375ec5cb4fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:54:84:bf:1f:40:0f:80:21:39:4e:36:d7:a7:
7a:53:85:fb:4d:f0:38:a3:32:1c:90:85:4d:00:fb:
fc:62:b2:ff:60:17:13:c7:fe:7b:09:50:0c:00:cd:
0f:39:e1:34:ca:6c:3b:ce:e8:6d:66:5e:46:c5:9b:
18:45:f7:f6:07:7d:05:a2:7e:25:6b:b0:89:e1:6f:
96:99:55:03:50:f6:65:70:10:87:26:16:d6:44:96:
e8:22:ec:ec:fe:e5:cd:18:bc:e2:9f:3a:04:ad:2f:
ee:fd:84:ce:52:0b:43:c6:69:f8:6f:61:e3:d8:64:
25:22:09:0f:1d:98:d9:08:7b:d5:f7:ab:4f:d8:61:
fc:16:7e:80:b3:1d:9c:bf:68:c1:68:b2:42:86:d4:
39:ef:0b:64:e8:ed:d3:c8:87:3d:f3:26:a6:52:96:
34:ed:90:05:ce:ec:f5:29:4c:31:e0:e3:72:c1:b8:
ad:95:55:d4:2c:ef:62:2e:ab:97:f9:83:df:fc:3f:
4a:59:a8:b1:3e:a0:1f:7a:e3:be:ae:6f:90:df:d5:
e3:45:1b:9d:ad:ac:ee:9e:41:de:9a:18:b1:77:46:
0f:e8:76:2e:7e:a0:44:19:f5:35:df:41:12:1f:22:
ef:ec:ab:96:d0:e2:6b:f8:c3:9a:92:d2:dd:2e:fe:
87:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:16:CA:D3:FE:BE:A6:17:4F:81:0E:F8:3F:D5:23:75:EC:5C:B4:FD
X509v3 Authority Key Identifier:
keyid:08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/_BbK0_6-phdPgQ74P9UjdexctP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.62.75.0/24
86.62.84.0/24
86.62.92.0/24
86.62.96.0/24
86.62.102.0/24
86.62.125.0/24
195.91.133.0/24
195.91.148.0/23
195.91.156.0/24
195.91.160.0/24
195.91.168.0/21
195.91.184.0/24
195.91.187.0/24
195.91.208.0/22
195.91.213.0/24
195.91.215.0/24
195.91.217.0-195.91.226.255
195.91.228.0-195.91.247.255
195.91.254.0/23
IPv6:
2a02:2698:9800::/38
Signature Algorithm: sha256WithRSAEncryption
a1:7c:e0:b5:d6:e1:3f:bf:8d:62:30:f6:31:4e:16:07:23:c6:
11:21:0f:b4:48:f3:14:99:b3:fe:e7:53:31:5e:e3:c2:6d:97:
d0:95:99:0a:9b:5f:28:58:92:8e:e1:d9:75:35:03:40:56:06:
2a:ee:73:06:73:ea:64:0d:47:38:25:7e:58:66:51:ec:59:0a:
82:7b:76:b3:fa:01:46:3d:0a:01:ab:30:08:ae:0d:a3:ad:dd:
17:50:3c:5b:2f:2e:ff:82:fc:3a:0e:97:41:72:41:17:ff:5a:
b5:02:be:dd:3f:e4:3f:80:ee:5b:e1:1f:ea:1e:06:89:34:3f:
a0:08:5a:6e:b6:f9:74:52:c2:3c:cd:c6:fd:b1:52:09:ba:50:
cc:54:8b:71:80:28:67:f1:fd:61:8a:f1:b1:cd:6c:b7:14:5a:
44:ae:55:17:e5:c6:0d:14:5a:74:5f:97:ff:9d:4f:15:a2:ae:
66:d8:8f:36:b6:0d:8b:83:ae:0d:e6:b5:72:fc:12:be:49:9f:
a7:37:ee:6e:d3:bb:0d:42:fa:66:7b:2f:88:10:cb:c2:3d:13:
35:d7:47:37:9f:5b:4c:57:30:67:fe:d1:12:18:9d:6a:11:8e:
8a:df:3c:8d:bc:c8:a7:59:c0:d3:34:31:cd:60:bd:4d:3f:b1:
1d:e7:3c:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:39:45 2025 by rpki-client