Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/b4C1t4GNR__Z80AbfmW6W4OdvPQ.roa
File: b4C1t4GNR__Z80AbfmW6W4OdvPQ.roa (raw, json)
Hash identifier: zqTI0jkuCr50Du/DL4UPDk82HwiI6UajY/j4YAwMNoE=
Subject key identifier: 6F:80:B5:B7:81:8D:47:FF:D9:F3:40:1B:7E:65:BA:5B:83:9D:BC:F4
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 1652FD8F
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/b4C1t4GNR__Z80AbfmW6W4OdvPQ.roa
Signing time: Wed 01 Jun 2022 16:44:20 +0000
ROA not before: Wed 01 Jun 2022 16:44:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8641
IP address blocks: 213.208.160.0/21 maxlen: 21
213.208.168.0/23 maxlen: 23
213.208.170.0/24 maxlen: 24
213.208.172.0/22 maxlen: 22
213.208.176.0/21 maxlen: 21
213.208.186.0/23 maxlen: 23
213.208.184.0/24 maxlen: 24
213.208.188.0/22 maxlen: 22
81.26.144.0/21 maxlen: 21
81.26.144.0/24 maxlen: 24
81.26.152.0/22 maxlen: 22
185.106.107.0/24 maxlen: 24
77.94.160.0/19 maxlen: 19
84.47.128.0/22 maxlen: 22
77.94.175.0/24 maxlen: 24
84.47.135.0/24 maxlen: 24
84.47.134.0/23 maxlen: 23
84.47.136.0/24 maxlen: 24
84.47.140.0/22 maxlen: 22
84.47.144.0/23 maxlen: 23
84.47.152.0/23 maxlen: 23
85.91.96.0/21 maxlen: 21
84.47.147.0/24 maxlen: 24
77.94.189.0/24 maxlen: 24
84.47.148.0/22 maxlen: 22
84.47.156.0/22 maxlen: 22
84.47.161.0/24 maxlen: 24
84.47.160.0/22 maxlen: 22
85.91.112.0/22 maxlen: 22
84.47.164.0/23 maxlen: 23
84.47.168.0/21 maxlen: 21
85.91.118.0/23 maxlen: 23
213.135.64.0/22 maxlen: 22
213.135.70.0/23 maxlen: 23
85.91.122.0/24 maxlen: 24
84.47.176.0/24 maxlen: 24
213.135.69.0/24 maxlen: 24
84.47.177.0/24 maxlen: 24
84.47.176.0/23 maxlen: 23
85.91.120.0/23 maxlen: 23
84.47.181.0/24 maxlen: 24
213.135.72.0/23 maxlen: 23
84.47.182.0/23 maxlen: 23
84.47.186.0/23 maxlen: 23
213.135.77.0/24 maxlen: 24
213.135.80.0/24 maxlen: 24
84.47.190.0/23 maxlen: 23
213.135.79.0/24 maxlen: 24
213.135.80.0/21 maxlen: 21
213.135.88.0/22 maxlen: 22
2a02:bc8::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 374537615 (0x1652fd8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Jun 1 16:44:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f80b5b7818d47ffd9f3401b7e65ba5b839dbcf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d4:9d:7f:7b:ad:32:f6:6b:fc:5b:f3:2d:50:
5a:02:83:5d:29:18:bd:1c:8e:f2:7f:9c:5b:5c:f8:
7e:7d:5a:89:d4:cb:93:b1:37:1e:4c:33:9f:7d:f2:
d7:6d:76:09:9e:fb:5a:51:4d:ae:9a:72:f7:7c:bd:
22:d7:5f:9d:4a:84:f9:7c:c9:1c:f3:cb:4e:72:b1:
22:cc:9a:4b:27:25:02:8e:17:53:c9:91:df:fe:52:
01:00:29:b8:f4:47:e5:db:f1:d7:bc:c9:46:e9:2e:
0b:6e:29:3f:7e:6d:cc:88:69:dd:15:19:df:9b:4e:
1f:0d:90:b9:73:ca:d8:6b:d1:bc:34:b7:f6:ca:a4:
29:6d:71:be:24:98:42:59:cc:ad:b6:52:8a:da:06:
fe:34:11:32:ea:dc:05:5a:78:ad:fa:ad:9e:51:90:
0b:07:7a:d5:d8:d1:22:e7:c6:4b:4d:19:85:13:ae:
29:3a:28:d8:4d:6f:68:66:3f:6b:24:0a:bc:05:71:
28:23:69:2f:e8:d3:4b:f5:a2:41:3a:f9:58:68:97:
16:0a:40:2b:47:36:b8:91:eb:f8:d9:d9:28:96:68:
22:0b:1e:22:93:29:3d:3f:ec:63:5d:d8:4f:2e:13:
1e:59:d7:63:33:ed:e2:f5:de:c1:3c:fe:60:92:14:
95:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:80:B5:B7:81:8D:47:FF:D9:F3:40:1B:7E:65:BA:5B:83:9D:BC:F4
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/b4C1t4GNR__Z80AbfmW6W4OdvPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.94.160.0/19
81.26.144.0-81.26.155.255
84.47.128.0/22
84.47.134.0-84.47.136.255
84.47.140.0-84.47.145.255
84.47.147.0-84.47.153.255
84.47.156.0-84.47.165.255
84.47.168.0-84.47.177.255
84.47.181.0-84.47.183.255
84.47.186.0/23
84.47.190.0/23
85.91.96.0/21
85.91.112.0/22
85.91.118.0-85.91.122.255
185.106.107.0/24
213.135.64.0/22
213.135.69.0-213.135.73.255
213.135.77.0/24
213.135.79.0-213.135.91.255
213.208.160.0-213.208.170.255
213.208.172.0-213.208.184.255
213.208.186.0-213.208.191.255
IPv6:
2a02:bc8::/29
Signature Algorithm: sha256WithRSAEncryption
57:62:1c:06:23:7b:10:56:1c:59:13:f4:0b:c6:26:5c:be:3c:
87:80:18:68:4d:76:f3:39:14:16:10:8e:39:5d:66:a6:74:92:
04:f3:89:70:b7:55:06:9d:83:48:22:d1:5e:ab:30:e7:ec:6e:
b5:bc:d1:60:60:76:3a:37:d4:a7:be:54:84:ee:1d:50:a5:53:
2f:12:10:8c:00:df:92:f6:99:62:52:89:11:de:c4:50:77:e1:
34:f5:22:19:d8:32:d2:61:a9:fd:f9:fd:89:a3:7e:b2:45:6f:
6c:72:2f:16:b6:f5:98:88:de:29:52:ae:a4:68:e7:24:72:31:
40:8d:4f:07:27:02:09:3e:34:40:9e:40:1f:4b:c9:3c:9e:4f:
e9:e8:8c:5f:3d:5c:ed:e4:4c:db:83:60:32:61:ab:a7:40:74:
ae:ce:0f:bf:92:8e:e6:27:cd:a3:f7:86:c4:d6:b1:26:45:14:
49:ee:ad:29:6f:06:81:7f:a6:68:c5:41:4e:03:72:a3:0c:68:
20:54:92:d6:7b:5b:72:6f:b7:92:91:62:24:90:e1:f3:ba:58:
ec:df:9a:e2:ca:2c:b6:51:b0:1e:f3:1b:c7:51:6f:e3:77:ce:
ea:6f:29:11:77:ea:67:e1:c7:14:46:e1:2b:dc:d8:70:ab:ff:
7e:28:a8:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:05 2024 by rpki-client on console-ams.rpki-client.org