Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/1b60e9-b6e0-4890-9de1-13b431342ab8/1/BoiTKy6fihsMvAdGlla2DojA50g.roa
File: BoiTKy6fihsMvAdGlla2DojA50g.roa (raw, json)
Hash identifier: YvU0lo2rQE80jXHEI2jyCO+P0cziNIdgXXq3nsfb+bU=
Subject key identifier: 06:88:93:2B:2E:9F:8A:1B:0C:BC:07:46:96:56:B6:0E:88:C0:E7:48
Certificate issuer: /CN=96cbcf2e957ca8d942472a7b0044285b26db6b22
Certificate serial: 0185261DA536B0764E90B6D3E0D229708F36
Authority key identifier: 96:CB:CF:2E:95:7C:A8:D9:42:47:2A:7B:00:44:28:5B:26:DB:6B:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lsvPLpV8qNlCRyp7AEQoWybbayI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/1b60e9-b6e0-4890-9de1-13b431342ab8/1/BoiTKy6fihsMvAdGlla2DojA50g.roa
Signing time: Sun 18 Dec 2022 16:42:34 +0000
ROA not before: Sun 18 Dec 2022 16:42:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58256
IP address blocks: 185.83.184.0/24 maxlen: 24
185.83.186.0/24 maxlen: 24
185.83.185.0/24 maxlen: 24
185.83.187.0/24 maxlen: 24
37.143.145.0/24 maxlen: 24
37.143.144.0/24 maxlen: 24
185.42.213.0/24 maxlen: 24
185.42.212.0/24 maxlen: 24
185.42.215.0/24 maxlen: 24
185.42.214.0/24 maxlen: 24
37.143.151.0/24 maxlen: 24
37.143.150.0/24 maxlen: 24
37.143.149.0/24 maxlen: 24
37.143.148.0/24 maxlen: 24
37.143.147.0/24 maxlen: 24
37.143.146.0/24 maxlen: 24
185.83.31.0/24 maxlen: 24
185.83.30.0/24 maxlen: 24
185.83.29.0/24 maxlen: 24
91.108.132.0/24 maxlen: 24
91.108.131.0/24 maxlen: 24
91.108.130.0/24 maxlen: 24
91.108.129.0/24 maxlen: 24
91.108.128.0/24 maxlen: 24
91.108.139.0/24 maxlen: 24
91.108.133.0/24 maxlen: 24
91.108.138.0/24 maxlen: 24
91.108.137.0/24 maxlen: 24
91.108.136.0/24 maxlen: 24
91.108.135.0/24 maxlen: 24
91.108.134.0/24 maxlen: 24
91.108.140.0/24 maxlen: 24
91.108.145.0/24 maxlen: 24
91.108.144.0/24 maxlen: 24
91.108.143.0/24 maxlen: 24
91.108.142.0/24 maxlen: 24
91.108.141.0/24 maxlen: 24
91.108.152.0/24 maxlen: 24
91.108.151.0/24 maxlen: 24
91.108.150.0/24 maxlen: 24
91.108.149.0/24 maxlen: 24
91.108.148.0/24 maxlen: 24
91.108.147.0/24 maxlen: 24
91.108.146.0/24 maxlen: 24
91.108.154.0/24 maxlen: 24
91.108.153.0/24 maxlen: 24
91.108.159.0/24 maxlen: 24
91.108.158.0/24 maxlen: 24
91.108.157.0/24 maxlen: 24
91.108.156.0/24 maxlen: 24
91.108.155.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:26:1d:a5:36:b0:76:4e:90:b6:d3:e0:d2:29:70:8f:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96cbcf2e957ca8d942472a7b0044285b26db6b22
Validity
Not Before: Dec 18 16:42:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0688932b2e9f8a1b0cbc07469656b60e88c0e748
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:d9:c4:b1:23:51:3b:7f:53:4c:6e:72:78:c8:
33:3a:1e:3c:41:79:e3:4c:f6:42:cd:6e:3a:0a:a1:
1d:4e:4e:ef:36:54:d0:30:61:e9:bf:b8:b1:9e:b2:
9a:72:02:5d:3e:1f:d9:ee:46:b5:d8:ab:90:be:bb:
60:e7:4f:9c:56:28:35:8b:09:ec:8a:06:40:e2:36:
b1:31:c8:ea:cf:14:57:57:a1:89:d6:8b:6e:40:42:
76:f1:f3:e1:be:52:94:89:03:48:b4:67:42:78:2f:
25:58:33:05:9b:4b:6d:42:f3:e7:02:8b:58:d5:6e:
79:b9:6e:42:7a:85:ac:fc:5f:5d:69:55:cb:43:07:
4a:88:55:90:23:94:56:b0:e2:d1:a6:55:e0:d6:2e:
42:d7:e7:e0:98:2d:97:65:ab:7a:6a:37:a1:ef:ca:
e3:07:34:7e:c1:63:9a:3f:11:e5:1b:81:11:6f:81:
78:c0:b8:76:be:14:6c:d6:0c:f1:d1:63:8c:59:c7:
f3:ee:dc:ab:03:60:18:37:7d:aa:00:55:cd:d5:7d:
95:2d:60:7e:d5:91:67:29:6e:c1:00:cf:e1:69:94:
60:85:38:d3:98:db:6a:45:e1:5e:19:cf:09:10:01:
67:37:76:43:12:80:b9:5b:24:0b:1b:97:3b:1b:6b:
d6:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:88:93:2B:2E:9F:8A:1B:0C:BC:07:46:96:56:B6:0E:88:C0:E7:48
X509v3 Authority Key Identifier:
keyid:96:CB:CF:2E:95:7C:A8:D9:42:47:2A:7B:00:44:28:5B:26:DB:6B:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lsvPLpV8qNlCRyp7AEQoWybbayI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/1b60e9-b6e0-4890-9de1-13b431342ab8/1/BoiTKy6fihsMvAdGlla2DojA50g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/1b60e9-b6e0-4890-9de1-13b431342ab8/1/lsvPLpV8qNlCRyp7AEQoWybbayI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.143.144.0/21
91.108.128.0/19
185.42.212.0/22
185.83.29.0-185.83.31.255
185.83.184.0/22
Signature Algorithm: sha256WithRSAEncryption
47:84:5b:59:a6:46:97:3a:c2:ef:15:31:e9:53:f2:6d:3c:c0:
94:b7:eb:1e:8b:2a:2b:65:b1:3c:11:cd:f0:25:f7:55:d0:52:
a7:89:97:90:d5:49:8b:97:5e:9f:8d:c1:84:04:3c:61:56:ca:
cf:00:5b:b6:62:66:98:61:8c:a0:7a:0b:97:4a:db:db:cc:1b:
4e:4f:5c:fe:da:75:8c:1f:3a:e0:cb:e6:2a:be:db:c8:af:3d:
08:65:b2:bf:62:e9:62:ac:36:20:a3:93:fa:9b:9d:39:e5:95:
b1:76:a0:7c:8b:a6:a6:44:47:90:56:e5:72:da:16:e5:04:97:
4b:ee:00:01:d8:85:f1:cb:b2:0b:6e:3b:84:e6:4c:74:2b:f7:
78:ee:04:77:cf:b2:96:9f:69:61:93:0a:78:b1:3e:aa:e4:23:
94:b4:f7:25:70:2c:f3:7c:d6:b4:22:82:c8:93:a1:2c:8f:d6:
e3:c9:0f:70:af:84:80:98:2f:2a:0e:39:49:c5:e3:94:ef:eb:
37:6d:98:ac:a8:1e:3f:2a:db:59:62:33:7a:78:bc:ae:6d:a3:
6f:00:02:5e:5d:e1:fb:d3:6c:39:06:29:1f:dd:a1:fa:1c:61:
62:df:09:48:84:f9:fe:53:b4:4c:95:35:20:16:f9:02:1d:9e:
ae:55:1e:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:22 2024 by rpki-client on console-fra.rpki-client.org