Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/uHBhf4w1BfGo33gX4TTc5gAgj9g.roa
File: uHBhf4w1BfGo33gX4TTc5gAgj9g.roa (raw, json)
Hash identifier: BIj/lC9tbcC2J4qk3y+FcRmR2wZU1hkK1zPDI4ur/Jk=
Subject key identifier: B8:70:61:7F:8C:35:05:F1:A8:DF:78:17:E1:34:DC:E6:00:20:8F:D8
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 1570A73A
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/uHBhf4w1BfGo33gX4TTc5gAgj9g.roa
Signing time: Mon 21 Feb 2022 12:17:07 +0000
ROA not before: Mon 21 Feb 2022 12:17:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8641
IP address blocks: 213.208.160.0/21 maxlen: 21
213.208.168.0/23 maxlen: 23
213.208.170.0/24 maxlen: 24
213.208.172.0/22 maxlen: 22
213.208.176.0/21 maxlen: 21
213.208.186.0/23 maxlen: 23
213.208.184.0/24 maxlen: 24
213.208.188.0/22 maxlen: 22
81.26.144.0/21 maxlen: 21
81.26.144.0/24 maxlen: 24
81.26.152.0/22 maxlen: 22
185.106.107.0/24 maxlen: 24
77.94.162.0/24 maxlen: 24
77.94.160.0/19 maxlen: 19
84.47.128.0/22 maxlen: 22
77.94.175.0/24 maxlen: 24
84.47.134.0/23 maxlen: 23
84.47.136.0/24 maxlen: 24
84.47.140.0/22 maxlen: 22
84.47.144.0/23 maxlen: 23
84.47.152.0/23 maxlen: 23
85.91.96.0/21 maxlen: 21
84.47.147.0/24 maxlen: 24
77.94.189.0/24 maxlen: 24
84.47.148.0/22 maxlen: 22
84.47.156.0/22 maxlen: 22
84.47.160.0/22 maxlen: 22
85.91.112.0/22 maxlen: 22
84.47.164.0/23 maxlen: 23
84.47.168.0/21 maxlen: 21
85.91.118.0/23 maxlen: 23
213.135.64.0/22 maxlen: 22
213.135.70.0/23 maxlen: 23
85.91.122.0/24 maxlen: 24
84.47.176.0/24 maxlen: 24
213.135.69.0/24 maxlen: 24
84.47.177.0/24 maxlen: 24
84.47.176.0/23 maxlen: 23
85.91.120.0/23 maxlen: 23
84.47.181.0/24 maxlen: 24
213.135.72.0/23 maxlen: 23
84.47.182.0/23 maxlen: 23
84.47.186.0/23 maxlen: 23
213.135.77.0/24 maxlen: 24
213.135.80.0/24 maxlen: 24
84.47.190.0/23 maxlen: 23
213.135.79.0/24 maxlen: 24
213.135.80.0/21 maxlen: 21
2a02:bc8::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 359704378 (0x1570a73a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Feb 21 12:17:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b870617f8c3505f1a8df7817e134dce600208fd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:1e:32:4e:8c:cb:9a:0a:96:58:4d:25:01:6a:
5f:5b:e8:1f:67:ba:f8:8c:d5:eb:bc:6d:b8:c8:85:
13:07:fa:54:a2:1a:92:7c:3a:8c:59:8b:5d:e6:a6:
a1:18:32:bc:13:70:ca:8d:fc:27:dd:2d:3c:c1:1d:
05:da:1c:bc:39:18:72:f9:db:44:01:89:91:bd:29:
3f:2d:62:ea:5a:e3:46:7d:7c:fa:12:dd:f1:01:32:
68:12:d8:4d:bf:76:da:89:09:9a:d4:99:86:be:40:
96:18:98:aa:fd:2c:a7:b1:fe:d5:d0:0b:00:72:26:
42:57:73:0e:82:74:f7:74:75:61:d3:ce:58:90:fc:
7a:a3:d8:38:6d:48:3d:90:09:e7:e0:0f:ff:f3:89:
21:80:10:bc:16:31:c1:7e:56:02:92:72:a8:09:70:
be:91:dc:8a:da:23:1a:df:43:69:88:64:81:7a:ef:
ba:d1:d3:98:80:68:23:2e:f6:6c:b3:39:cf:ee:b2:
69:81:5c:ba:50:0b:af:ba:fb:83:39:d1:1d:d1:d1:
ea:37:f7:cc:8a:b1:49:49:64:d9:86:3d:37:1e:a9:
b5:ac:fe:88:88:7b:e9:0e:4a:43:33:d6:be:92:a3:
25:54:4a:c7:88:dd:e9:16:80:79:0c:c4:1f:7d:e4:
3d:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:70:61:7F:8C:35:05:F1:A8:DF:78:17:E1:34:DC:E6:00:20:8F:D8
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/uHBhf4w1BfGo33gX4TTc5gAgj9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.94.160.0/19
81.26.144.0-81.26.155.255
84.47.128.0/22
84.47.134.0-84.47.136.255
84.47.140.0-84.47.145.255
84.47.147.0-84.47.153.255
84.47.156.0-84.47.165.255
84.47.168.0-84.47.177.255
84.47.181.0-84.47.183.255
84.47.186.0/23
84.47.190.0/23
85.91.96.0/21
85.91.112.0/22
85.91.118.0-85.91.122.255
185.106.107.0/24
213.135.64.0/22
213.135.69.0-213.135.73.255
213.135.77.0/24
213.135.79.0-213.135.87.255
213.208.160.0-213.208.170.255
213.208.172.0-213.208.184.255
213.208.186.0-213.208.191.255
IPv6:
2a02:bc8::/29
Signature Algorithm: sha256WithRSAEncryption
6f:ef:19:00:c2:f4:77:af:9b:97:25:60:6e:58:26:a7:38:6e:
2a:fc:af:b4:d7:ba:1e:5c:d3:0d:39:4c:01:f7:55:b3:ef:18:
5d:41:66:e8:8c:ab:cc:36:fa:4d:51:07:f3:a3:fe:9c:57:ce:
89:e1:92:cd:b7:ac:f1:bb:62:f2:f9:b9:b9:3e:30:f9:04:aa:
78:2d:7f:fd:15:4b:e4:de:1c:2d:4a:25:5d:9c:44:02:87:d8:
52:7e:28:59:51:27:cc:38:d8:54:92:2e:77:1c:8d:80:70:96:
54:41:c6:fa:64:4c:3f:79:33:21:9a:bb:1b:d5:00:9e:9e:07:
9a:99:cc:ab:07:d8:8f:a8:84:c4:bf:c0:d0:4b:a1:cd:68:38:
08:cb:83:86:05:d5:77:b9:5c:33:7c:75:f1:8c:9c:d3:a2:bb:
51:cf:69:1b:32:2a:23:47:7b:8a:f0:8e:35:ea:81:8c:2c:77:
12:a6:9b:55:cc:d8:14:3d:3e:37:5e:fe:aa:ac:46:12:eb:db:
3b:fb:04:86:26:ca:7d:91:d9:88:48:54:0e:ed:9b:51:a9:90:
dd:4f:c8:43:8f:09:43:e6:e6:cf:eb:8c:d6:9d:64:de:cd:16:
ee:42:38:e0:54:35:f5:a2:19:55:e9:f2:23:7b:b7:da:95:ff:
18:83:95:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:36 2024 by rpki-client on console-fra.rpki-client.org