Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/898101-78ac-4a03-b3f9-a54ec0d68fa8/1/LR5aNwkOIaO4k3PkpYw-FM6Y2xA.roa
File: LR5aNwkOIaO4k3PkpYw-FM6Y2xA.roa (raw, json)
Hash identifier: vpl+lmfv20fUg9JlwbKIQRFXVT76TApfYiczUytG5+Q=
Subject key identifier: 2D:1E:5A:37:09:0E:21:A3:B8:93:73:E4:A5:8C:3E:14:CE:98:DB:10
Certificate issuer: /CN=6dbc20a736ffc1319efde4db63137c8783c6b350
Certificate serial: 085016AF
Authority key identifier: 6D:BC:20:A7:36:FF:C1:31:9E:FD:E4:DB:63:13:7C:87:83:C6:B3:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bbwgpzb_wTGe_eTbYxN8h4PGs1A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/898101-78ac-4a03-b3f9-a54ec0d68fa8/1/LR5aNwkOIaO4k3PkpYw-FM6Y2xA.roa
Signing time: Sat 01 Jan 2022 09:53:23 +0000
ROA not before: Sat 01 Jan 2022 09:53:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47123
IP address blocks: 185.44.192.0/24 maxlen: 24
185.44.193.0/24 maxlen: 24
185.44.194.0/24 maxlen: 24
185.44.195.0/24 maxlen: 24
195.155.64.0/24 maxlen: 24
195.155.65.0/24 maxlen: 24
195.155.66.0/24 maxlen: 24
195.155.67.0/24 maxlen: 24
195.155.68.0/24 maxlen: 24
195.155.69.0/24 maxlen: 24
195.155.70.0/24 maxlen: 24
195.155.71.0/24 maxlen: 24
195.155.78.0/24 maxlen: 24
195.155.72.0/24 maxlen: 24
195.155.73.0/24 maxlen: 24
195.155.74.0/24 maxlen: 24
195.155.75.0/24 maxlen: 24
195.155.76.0/24 maxlen: 24
195.155.77.0/24 maxlen: 24
195.155.79.0/24 maxlen: 24
195.155.80.0/24 maxlen: 24
195.155.81.0/24 maxlen: 24
195.155.82.0/24 maxlen: 24
195.155.83.0/24 maxlen: 24
195.155.84.0/24 maxlen: 24
195.155.85.0/24 maxlen: 24
195.155.86.0/24 maxlen: 24
195.155.87.0/24 maxlen: 24
195.155.88.0/24 maxlen: 24
195.155.89.0/24 maxlen: 24
195.155.90.0/24 maxlen: 24
195.155.91.0/24 maxlen: 24
93.94.248.0/24 maxlen: 24
93.94.249.0/24 maxlen: 24
93.94.250.0/24 maxlen: 24
93.94.251.0/24 maxlen: 24
93.94.252.0/23 maxlen: 23
93.94.254.0/24 maxlen: 24
93.94.255.0/24 maxlen: 24
195.155.92.0/24 maxlen: 24
195.155.93.0/24 maxlen: 24
195.155.94.0/24 maxlen: 24
195.155.95.0/24 maxlen: 24
2a04:c2::/32 maxlen: 32
2a04:c3::/32 maxlen: 32
2a04:c1::/32 maxlen: 32
2a04:c4::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139466415 (0x85016af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dbc20a736ffc1319efde4db63137c8783c6b350
Validity
Not Before: Jan 1 09:53:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d1e5a37090e21a3b89373e4a58c3e14ce98db10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:74:46:85:1c:36:15:f0:11:d0:c9:f4:ac:96:
3a:90:d1:d7:b3:e2:2a:86:af:df:40:fd:aa:f0:f6:
3f:2e:17:4a:1e:60:ef:6d:6c:db:ff:76:1a:14:c0:
a9:af:4d:be:ac:4b:53:72:48:c2:30:c4:bf:30:06:
38:06:b8:2c:56:66:0d:ec:8e:88:8c:58:12:6e:91:
b4:be:76:19:1c:7a:50:c3:85:11:a2:a6:0d:95:d1:
60:c5:36:38:d8:bd:0c:ae:92:2c:58:fa:5d:26:5b:
13:25:f9:ca:fe:f9:25:a0:e0:9a:ae:b9:06:42:4a:
cd:5c:ff:45:2b:3b:82:67:1e:90:d0:5b:f2:62:a3:
90:e8:0b:8a:75:ab:8f:13:c3:2e:be:28:69:bb:08:
f6:21:43:14:9b:52:0b:68:01:f1:bc:84:e8:1a:71:
9d:93:c0:c8:4a:2e:6e:0c:bb:cd:5c:dd:4c:5d:36:
68:4f:c1:a5:8d:3e:8e:d8:de:fd:c1:f3:db:1c:e3:
22:14:34:50:b8:19:41:14:10:08:f3:d7:f9:c7:86:
e2:66:07:82:df:21:59:e3:f7:6e:ed:26:7b:7a:74:
f2:32:43:ef:d1:ff:dd:97:db:f1:ce:96:75:45:82:
95:09:e7:11:86:fa:be:53:c7:cd:f3:3d:2e:d4:2c:
33:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:1E:5A:37:09:0E:21:A3:B8:93:73:E4:A5:8C:3E:14:CE:98:DB:10
X509v3 Authority Key Identifier:
keyid:6D:BC:20:A7:36:FF:C1:31:9E:FD:E4:DB:63:13:7C:87:83:C6:B3:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bbwgpzb_wTGe_eTbYxN8h4PGs1A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/898101-78ac-4a03-b3f9-a54ec0d68fa8/1/LR5aNwkOIaO4k3PkpYw-FM6Y2xA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/898101-78ac-4a03-b3f9-a54ec0d68fa8/1/bbwgpzb_wTGe_eTbYxN8h4PGs1A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.94.248.0/21
185.44.192.0/22
195.155.64.0/19
IPv6:
2a04:c1::-2a04:c4:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
05:e8:e6:45:f7:8d:e9:f1:54:21:8c:f8:a4:94:40:29:d5:d4:
a3:74:ea:ee:b7:c4:6b:5c:08:8d:e4:d2:ae:e3:cf:07:e5:8e:
05:0f:4d:d4:85:11:b7:3c:35:13:ea:ad:7f:1d:e5:b9:01:80:
8f:63:70:1f:e3:ae:35:3f:24:7d:4f:39:c8:87:72:83:fe:61:
6f:40:2b:5e:ed:20:22:d6:8f:34:82:4d:22:19:b3:50:cc:14:
90:e5:8b:03:02:7b:5c:c5:da:ab:ad:2d:69:6a:11:31:3e:9a:
8f:20:ab:5f:89:03:82:ca:82:2d:f5:e3:2f:bd:f2:e9:93:06:
69:e2:99:1d:84:9c:1e:b6:ab:68:c6:ae:e2:11:ed:aa:fd:a1:
9b:d5:d8:84:55:6d:c3:13:7c:51:f5:46:82:a1:ec:bc:e9:f6:
d2:30:ed:93:bd:b5:69:05:10:94:89:27:33:32:e7:07:da:35:
ed:47:b3:20:c9:24:f4:a0:91:8d:8d:da:c0:da:3f:d2:44:b3:
ef:30:e5:65:b9:ed:d4:b5:2a:59:e1:d9:18:51:cc:4d:2f:b1:
a0:b7:6b:db:fd:21:b1:e3:27:6c:68:fe:ed:0a:37:45:aa:15:
d6:56:7e:f9:f3:23:40:17:40:90:94:52:93:ec:66:42:3c:09:
85:26:8a:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:20 2024 by rpki-client on console-fra.rpki-client.org