Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/83NH3Si7wiaSkntRK-ITmrPfVjo.roa
File: 83NH3Si7wiaSkntRK-ITmrPfVjo.roa (raw, json)
Hash identifier: u+daVGFYYp50LuKq3HtTuoplxK6LFk6HxsynRMmlcmM=
Subject key identifier: F3:73:47:DD:28:BB:C2:26:92:92:7B:51:2B:E2:13:9A:B3:DF:56:3A
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 112141B6
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/83NH3Si7wiaSkntRK-ITmrPfVjo.roa
Signing time: Sat 01 Jan 2022 14:04:48 +0000
ROA not before: Sat 01 Jan 2022 14:04:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206065
IP address blocks: 185.21.76.0/22 maxlen: 24
217.66.211.0/24 maxlen: 24
217.66.208.0/24 maxlen: 24
185.70.60.0/22 maxlen: 24
79.132.217.0/24 maxlen: 24
79.132.219.0/24 maxlen: 24
188.75.92.0/24 maxlen: 24
188.75.94.0/24 maxlen: 24
188.75.102.0/23 maxlen: 23
188.75.107.0/24 maxlen: 24
188.75.110.0/23 maxlen: 23
81.29.243.0/24 maxlen: 24
86.109.32.0/23 maxlen: 23
81.29.250.0/24 maxlen: 24
81.29.250.0/23 maxlen: 23
81.29.251.0/24 maxlen: 24
81.29.254.0/24 maxlen: 24
188.75.122.0/23 maxlen: 23
86.109.41.0/24 maxlen: 24
185.142.233.0/24 maxlen: 24
86.109.56.0/23 maxlen: 23
79.132.213.0/24 maxlen: 24
185.142.234.0/23 maxlen: 24
46.32.9.0/24 maxlen: 24
46.32.5.0/24 maxlen: 24
46.32.14.0/24 maxlen: 24
87.247.180.0/23 maxlen: 24
176.221.65.0/24 maxlen: 24
80.71.113.0/24 maxlen: 24
80.71.124.0/23 maxlen: 23
80.71.122.0/23 maxlen: 23
80.71.127.0/24 maxlen: 24
185.12.62.0/24 maxlen: 24
188.136.220.0/23 maxlen: 23
185.104.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 287392182 (0x112141b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Jan 1 14:04:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f37347dd28bbc22692927b512be2139ab3df563a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:31:ee:a3:44:4e:28:ea:d2:b5:5d:2b:ac:a3:
4c:ad:32:82:03:fa:75:39:ec:a7:59:cd:98:78:fd:
db:7b:0f:eb:61:d7:40:d6:69:d4:5b:68:02:0e:ac:
3f:c6:a7:73:1c:ff:12:53:33:ce:ca:fc:2f:19:ba:
e1:cd:1f:52:65:79:5c:ed:9a:aa:67:3c:fc:23:1c:
8f:27:d0:8e:c0:92:30:43:e6:f4:d2:7e:df:12:7c:
7d:48:c7:f2:cc:e8:2b:3a:c0:71:84:97:a8:12:d8:
62:f2:70:00:12:ad:ed:9c:64:a3:20:e6:cc:93:0a:
7b:eb:2a:2d:53:28:ea:50:16:1f:c6:5d:de:c9:4d:
b9:31:ac:75:61:cd:cc:e6:5b:bd:45:be:d5:a8:f5:
b1:dd:0d:44:da:d6:50:a2:1a:06:99:2d:12:f0:e1:
26:39:65:0d:b5:6c:58:c6:09:05:12:11:35:30:83:
bc:19:da:00:c7:35:39:8e:81:22:75:36:f1:55:0b:
f0:5a:e9:62:31:b7:47:9c:d8:72:f4:1d:51:bb:9d:
0e:15:a6:06:41:11:57:36:dc:99:f6:9d:de:75:b4:
ba:a2:9c:04:15:60:85:39:5a:ad:48:06:2a:eb:fc:
b0:d6:6b:82:a4:ca:09:fe:72:4f:4b:a3:7c:fa:76:
38:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:73:47:DD:28:BB:C2:26:92:92:7B:51:2B:E2:13:9A:B3:DF:56:3A
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/83NH3Si7wiaSkntRK-ITmrPfVjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.32.5.0/24
46.32.9.0/24
46.32.14.0/24
79.132.213.0/24
79.132.217.0/24
79.132.219.0/24
80.71.113.0/24
80.71.122.0-80.71.125.255
80.71.127.0/24
81.29.243.0/24
81.29.250.0/23
81.29.254.0/24
86.109.32.0/23
86.109.41.0/24
86.109.56.0/23
87.247.180.0/23
176.221.65.0/24
185.12.62.0/24
185.21.76.0/22
185.70.60.0/22
185.104.228.0/24
185.142.233.0-185.142.235.255
188.75.92.0/24
188.75.94.0/24
188.75.102.0/23
188.75.107.0/24
188.75.110.0/23
188.75.122.0/23
188.136.220.0/23
217.66.208.0/24
217.66.211.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:71:15:7f:bd:9b:eb:60:9a:b0:bc:e8:d9:34:bf:3c:ce:70:
3e:6b:40:50:7d:cf:8a:f3:a8:b1:e9:5d:a8:3b:ff:fd:b0:8c:
83:5e:25:56:cb:0b:c7:40:44:af:78:c8:1a:34:e7:73:de:44:
7d:7f:5c:c8:dc:fb:fc:bd:9d:db:a2:af:3b:8b:e4:c1:8e:e6:
7f:de:ef:c3:ec:7d:78:b8:63:d8:e8:55:4d:d1:87:56:56:4c:
66:6f:52:26:8d:0c:f4:7e:7b:b3:96:c6:a3:ae:d3:26:8f:c1:
40:0e:a0:90:c4:8e:3d:56:06:d6:7a:f8:0a:29:32:5c:0f:d6:
37:eb:5d:8e:59:10:5b:e0:76:ea:ff:83:ce:bd:7f:bb:89:0d:
9e:dd:6d:65:7e:ba:ea:be:55:ae:09:ad:07:db:26:65:1a:33:
b7:2b:70:e4:c7:17:7c:de:5f:02:bb:8d:15:c5:0c:46:7e:d9:
3f:e8:c5:de:a9:56:1a:71:9a:39:58:22:b1:22:b9:ed:ec:67:
30:1e:8a:d7:d9:c7:16:2b:16:6d:c6:66:68:91:7b:87:77:c7:
c3:94:7d:9d:aa:37:f2:cc:5b:b4:3a:72:f1:75:16:17:f2:90:
c6:08:01:15:b0:0f:bc:e8:92:17:46:eb:c1:d6:f1:c5:29:00:
bc:06:c6:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:06 2024 by rpki-client on console-ams.rpki-client.org