Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/BLL2l3SKmRNwRaQh1CyLPdcPyEc.roa
File: BLL2l3SKmRNwRaQh1CyLPdcPyEc.roa (raw, json)
Hash identifier: M3KLcTkjPBYmFktpedI4iJeGEgEVSlaRvV5WhmuHNVM=
Subject key identifier: 04:B2:F6:97:74:8A:99:13:70:45:A4:21:D4:2C:8B:3D:D7:0F:C8:47
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 0AC06025
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/BLL2l3SKmRNwRaQh1CyLPdcPyEc.roa
Signing time: Sat 01 Jan 2022 03:02:29 +0000
ROA not before: Sat 01 Jan 2022 03:02:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 185.87.120.0/24 maxlen: 24
193.35.152.0/24 maxlen: 24
193.35.154.0/24 maxlen: 24
193.35.155.0/24 maxlen: 24
193.35.153.0/24 maxlen: 24
185.86.4.0/24 maxlen: 24
185.86.6.0/24 maxlen: 24
185.86.7.0/24 maxlen: 24
185.86.14.0/24 maxlen: 24
185.86.15.0/24 maxlen: 24
185.86.12.0/24 maxlen: 24
185.86.152.0/24 maxlen: 24
185.86.155.0/24 maxlen: 24
185.184.24.0/24 maxlen: 24
185.184.25.0/24 maxlen: 24
185.184.26.0/24 maxlen: 24
185.184.27.0/24 maxlen: 24
91.194.55.0/24 maxlen: 24
193.160.140.0/24 maxlen: 24
193.160.141.0/24 maxlen: 24
193.160.142.0/24 maxlen: 24
193.160.143.0/24 maxlen: 24
185.254.236.0/24 maxlen: 24
185.254.238.0/24 maxlen: 24
185.254.239.0/24 maxlen: 24
185.254.237.0/24 maxlen: 24
193.223.104.0/24 maxlen: 24
193.223.105.0/24 maxlen: 24
185.88.172.0/24 maxlen: 24
185.88.175.0/24 maxlen: 24
193.223.107.0/24 maxlen: 24
193.223.106.0/24 maxlen: 24
185.88.173.0/24 maxlen: 24
185.88.174.0/24 maxlen: 24
185.243.182.0/24 maxlen: 24
185.243.183.0/24 maxlen: 24
185.243.180.0/24 maxlen: 24
185.243.181.0/24 maxlen: 24
185.254.30.0/24 maxlen: 24
185.254.28.0/24 maxlen: 24
185.254.29.0/24 maxlen: 24
185.254.31.0/24 maxlen: 24
185.85.188.0/24 maxlen: 24
185.250.210.0/24 maxlen: 24
194.62.54.0/24 maxlen: 24
194.62.55.0/24 maxlen: 24
194.62.52.0/24 maxlen: 24
194.62.53.0/24 maxlen: 24
93.190.12.0/24 maxlen: 24
93.190.13.0/24 maxlen: 24
93.190.15.0/24 maxlen: 24
160.20.109.0/24 maxlen: 24
160.20.108.0/24 maxlen: 24
109.236.48.0/24 maxlen: 24
109.236.49.0/24 maxlen: 24
109.236.51.0/24 maxlen: 24
109.236.50.0/24 maxlen: 24
185.185.232.0/24 maxlen: 24
185.185.233.0/24 maxlen: 24
185.185.234.0/24 maxlen: 24
185.249.200.0/24 maxlen: 24
185.249.201.0/24 maxlen: 24
185.249.202.0/24 maxlen: 24
185.249.203.0/24 maxlen: 24
185.98.63.0/24 maxlen: 24
185.98.61.0/24 maxlen: 24
185.98.62.0/24 maxlen: 24
2a0b:2780::/29 maxlen: 29
2a05:bf00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 180379685 (0xac06025)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Jan 1 03:02:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=04b2f697748a99137045a421d42c8b3dd70fc847
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:f9:73:fb:c5:2d:06:bd:de:32:2d:52:0d:93:
d8:2b:72:9f:74:c1:95:7a:c1:69:1b:0c:be:ad:2f:
70:2d:bb:a3:eb:eb:c5:51:82:85:0d:f2:cc:75:fe:
e1:e2:26:ab:10:0a:b5:31:f7:a3:dc:38:ce:91:bc:
73:a5:36:33:07:7f:cc:51:33:81:78:00:19:04:60:
c0:a6:04:ea:6f:fd:bf:f9:0c:74:ed:81:3d:fe:f8:
2e:22:ce:c5:c4:a2:0b:57:81:8c:30:a8:f5:7d:e9:
d5:7c:49:c0:2b:43:fc:08:89:40:e8:c7:df:6f:1a:
3d:6f:59:52:0a:57:a8:7a:72:cd:8d:b4:2e:19:70:
ec:05:a6:d3:d3:52:72:88:b0:a1:7c:71:b5:7a:a4:
7f:82:48:11:47:29:ae:bd:59:1e:b4:99:4e:bb:9a:
d9:bb:38:d2:a4:89:8e:20:d7:95:6f:66:f2:fe:45:
51:31:56:1d:51:d8:67:d3:75:b6:4b:00:56:4b:6c:
f9:6a:79:ce:ea:27:e3:09:e4:49:89:54:49:85:61:
18:30:4e:10:4e:fb:4d:e5:49:ad:c2:bf:5c:52:8a:
2e:fb:ff:b5:ff:c6:ce:ad:ed:e8:9a:00:11:d4:58:
0e:3f:68:5c:9e:8e:ec:5e:ce:d0:88:f6:f7:64:2e:
bf:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:B2:F6:97:74:8A:99:13:70:45:A4:21:D4:2C:8B:3D:D7:0F:C8:47
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/BLL2l3SKmRNwRaQh1CyLPdcPyEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.55.0/24
93.190.12.0/23
93.190.15.0/24
109.236.48.0/22
160.20.108.0/23
185.85.188.0/24
185.86.4.0/24
185.86.6.0/23
185.86.12.0/24
185.86.14.0/23
185.86.152.0/24
185.86.155.0/24
185.87.120.0/24
185.88.172.0/22
185.98.61.0-185.98.63.255
185.184.24.0/22
185.185.232.0-185.185.234.255
185.243.180.0/22
185.249.200.0/22
185.250.210.0/24
185.254.28.0/22
185.254.236.0/22
193.35.152.0/22
193.160.140.0/22
193.223.104.0/22
194.62.52.0/22
IPv6:
2a05:bf00::/29
2a0b:2780::/29
Signature Algorithm: sha256WithRSAEncryption
53:26:aa:35:99:48:1f:7c:23:ab:7f:2a:70:14:6d:ab:b3:0c:
c0:d5:b4:14:ca:bb:1a:e9:e6:c8:24:2b:04:59:36:55:1c:2f:
3c:a3:ed:df:7d:7e:f5:94:3c:84:4b:42:3c:36:7d:96:5e:4e:
f8:ce:21:9b:85:e2:9b:28:bb:99:73:f3:62:f2:a8:a5:86:d2:
52:7c:a4:53:3b:73:31:f4:6b:66:fc:8b:42:dc:53:34:f0:ee:
4d:73:3e:97:41:c2:40:a3:cb:0c:ea:09:40:f2:a3:32:b4:be:
d3:35:56:2a:1c:a1:4d:7b:0e:aa:9f:00:44:e9:66:c9:38:aa:
f6:74:36:58:fd:c1:4b:12:ce:85:78:ae:38:16:ca:2d:da:65:
27:22:af:51:de:57:74:ee:d6:05:c5:38:ef:e0:b9:e9:67:c5:
c7:f4:bf:81:84:4c:44:46:f6:82:74:0a:83:12:ab:6b:e1:e8:
7a:81:d4:40:4e:62:24:95:15:51:50:13:5f:7a:94:64:e5:46:
5f:9a:4e:92:2b:60:bc:7b:24:b8:43:3b:ff:28:7d:aa:89:53:
a6:bf:7e:f1:f0:97:e2:38:02:38:14:48:f5:46:4a:e8:1e:e4:
33:2c:5c:3b:14:63:28:b3:5e:23:c6:c5:3b:68:43:60:d1:9a:
b4:d3:1b:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:24 2024 by rpki-client on console-ams.rpki-client.org