Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/87Ea5kSrBu4-smWGZhOTnQm_WJo.roa
File: 87Ea5kSrBu4-smWGZhOTnQm_WJo.roa (raw, json)
Hash identifier: dLwryYEEyQ/1paG1GdFeAfbVts6ild+9M0QtpkJGCnA=
Subject key identifier: F3:B1:1A:E6:44:AB:06:EE:3E:B2:65:86:66:13:93:9D:09:BF:58:9A
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 0182C658FEAF7552CADD2E3439BCC51647DE
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/87Ea5kSrBu4-smWGZhOTnQm_WJo.roa
Signing time: Mon 22 Aug 2022 16:18:17 +0000
ROA not before: Mon 22 Aug 2022 16:18:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206065
IP address blocks: 185.21.76.0/22 maxlen: 24
217.66.211.0/24 maxlen: 24
217.66.208.0/24 maxlen: 24
185.70.60.0/22 maxlen: 24
79.132.217.0/24 maxlen: 24
79.132.219.0/24 maxlen: 24
188.75.92.0/24 maxlen: 24
188.75.94.0/24 maxlen: 24
188.75.102.0/23 maxlen: 23
188.75.107.0/24 maxlen: 24
188.75.110.0/23 maxlen: 23
81.29.243.0/24 maxlen: 24
86.109.32.0/23 maxlen: 23
81.29.250.0/24 maxlen: 24
81.29.250.0/23 maxlen: 23
81.29.251.0/24 maxlen: 24
81.29.254.0/24 maxlen: 24
188.75.122.0/23 maxlen: 23
86.109.41.0/24 maxlen: 24
185.142.233.0/24 maxlen: 24
86.109.56.0/23 maxlen: 23
79.132.213.0/24 maxlen: 24
185.142.234.0/23 maxlen: 24
46.32.9.0/24 maxlen: 24
46.32.5.0/24 maxlen: 24
46.32.14.0/24 maxlen: 24
87.247.180.0/23 maxlen: 24
176.221.65.0/24 maxlen: 24
80.71.113.0/24 maxlen: 24
80.71.124.0/23 maxlen: 23
80.71.122.0/23 maxlen: 23
80.71.127.0/24 maxlen: 24
185.12.62.0/24 maxlen: 24
188.136.220.0/23 maxlen: 23
37.114.252.0/24 maxlen: 24
37.114.248.0/21 maxlen: 24
37.114.253.0/24 maxlen: 24
37.114.254.0/24 maxlen: 24
185.104.228.0/24 maxlen: 24
37.114.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c6:58:fe:af:75:52:ca:dd:2e:34:39:bc:c5:16:47:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Aug 22 16:18:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f3b11ae644ab06ee3eb265866613939d09bf589a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ac:42:5b:1d:1c:53:40:42:b3:8f:39:d9:56:
76:e8:c3:3b:ee:3b:73:12:0d:9f:5b:81:99:af:d4:
c9:09:66:71:ab:ae:4f:72:35:4a:9a:76:93:51:6c:
88:85:fe:be:94:09:75:92:d1:3b:cf:4c:e3:e8:5a:
c1:29:4c:0c:fc:ee:fb:8f:0e:a8:b1:43:80:5f:a0:
8d:c5:1a:dc:a6:a2:fe:ca:97:75:d1:dc:08:23:46:
fa:79:af:04:4c:4d:f8:f6:34:d4:91:a4:8e:e9:43:
e9:52:cc:7e:47:51:6f:dd:d8:67:ff:b0:d0:65:f8:
80:23:1a:fc:77:17:95:d2:2e:38:ae:b3:ea:02:ca:
59:d9:b2:08:c7:7c:65:c9:cd:88:c9:79:6b:ad:9c:
bc:46:1d:dd:cd:0a:e9:d2:8f:24:4d:a8:9d:be:78:
cc:e7:64:fe:3e:12:3c:84:56:84:07:b8:c0:a3:45:
3a:44:5d:c9:66:24:45:ff:d3:61:6a:40:ce:6d:5a:
d1:ce:63:c2:0e:19:e5:4e:9d:a7:bd:1a:58:9a:63:
b1:91:97:ae:62:fe:a6:dc:80:89:bd:cb:2c:e2:3a:
a3:b9:c2:e5:46:dd:bf:e4:18:05:3e:9e:21:c5:e6:
28:4d:f6:69:1a:c1:7a:db:03:69:24:5d:c5:0a:6e:
7d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:B1:1A:E6:44:AB:06:EE:3E:B2:65:86:66:13:93:9D:09:BF:58:9A
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/87Ea5kSrBu4-smWGZhOTnQm_WJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.248.0/21
46.32.5.0/24
46.32.9.0/24
46.32.14.0/24
79.132.213.0/24
79.132.217.0/24
79.132.219.0/24
80.71.113.0/24
80.71.122.0-80.71.125.255
80.71.127.0/24
81.29.243.0/24
81.29.250.0/23
81.29.254.0/24
86.109.32.0/23
86.109.41.0/24
86.109.56.0/23
87.247.180.0/23
176.221.65.0/24
185.12.62.0/24
185.21.76.0/22
185.70.60.0/22
185.104.228.0/24
185.142.233.0-185.142.235.255
188.75.92.0/24
188.75.94.0/24
188.75.102.0/23
188.75.107.0/24
188.75.110.0/23
188.75.122.0/23
188.136.220.0/23
217.66.208.0/24
217.66.211.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:99:a8:79:23:57:01:65:84:27:56:05:c5:2d:12:ce:17:bf:
39:21:ab:07:19:a8:34:7d:b1:1c:53:1a:3b:dd:bc:cc:7f:8b:
21:44:a0:39:81:0c:08:44:6b:4d:da:8d:b1:76:01:3b:29:5d:
1d:27:19:e2:52:be:64:e8:40:6e:fe:d8:89:14:c9:a9:c0:ab:
79:7a:e8:c4:ed:23:86:b6:41:6c:37:e9:71:c8:9e:0a:bb:82:
ff:a0:38:f9:01:49:8c:4f:51:a2:88:ae:09:5a:3f:d8:f3:75:
21:df:d5:ff:79:3c:fd:f6:e1:41:2f:a6:e3:37:50:f0:0a:d4:
dc:72:1c:55:c4:da:e5:0e:43:71:83:24:34:24:f3:80:e6:23:
70:2d:94:b3:9d:5f:34:ff:e2:21:2a:09:62:e3:5c:b0:fb:03:
98:76:c5:53:be:45:de:fe:22:9a:ce:27:47:b0:3d:95:17:6c:
36:3d:ab:92:ed:38:72:54:b4:21:d5:4c:d4:9c:0b:a6:ce:30:
3c:3e:30:3c:fa:cc:31:d1:62:e5:22:7a:12:ed:3c:a8:ca:8c:
58:cd:97:6d:9d:31:7c:9c:e4:0b:50:1b:83:98:3c:23:5c:df:
07:fc:55:bb:e1:2f:c8:23:b5:77:4f:f7:1c:bc:44:92:dc:a0:
91:a8:6a:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:06 2024 by rpki-client on console-ams.rpki-client.org