Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/833HgwTt99Tbbwj7KY23GtOHJNc.roa
File: 833HgwTt99Tbbwj7KY23GtOHJNc.roa (raw, json)
Hash identifier: tBrnw7Xe93cGLQP8ydkh5N598NHfZOcwCHrHRRednfM=
Subject key identifier: F3:7D:C7:83:04:ED:F7:D4:DB:6F:08:FB:29:8D:B7:1A:D3:87:24:D7
Certificate issuer: /CN=5d0c27f85581e2e7bde0c98fbd54be1d49670517
Certificate serial: 097AE021
Authority key identifier: 5D:0C:27:F8:55:81:E2:E7:BD:E0:C9:8F:BD:54:BE:1D:49:67:05:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XQwn-FWB4ue94MmPvVS-HUlnBRc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/833HgwTt99Tbbwj7KY23GtOHJNc.roa
Signing time: Sat 01 Jan 2022 08:54:51 +0000
ROA not before: Sat 01 Jan 2022 08:54:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48159
IP address blocks: 185.11.90.0/24 maxlen: 24
185.11.89.0/24 maxlen: 24
185.11.88.0/24 maxlen: 24
178.251.208.0/24 maxlen: 24
178.251.213.0/24 maxlen: 24
178.251.212.0/24 maxlen: 24
178.251.215.0/24 maxlen: 24
178.251.214.0/24 maxlen: 24
2a03:57c0:7c00::1208:201/128 maxlen: 128
2a03:57c0:7c00::1208:143/128 maxlen: 128
2a03:57c0:7c00::1208:3/128 maxlen: 128
2a03:57c0:7c00::1209:85/128 maxlen: 128
2a03:57c0:7c00::1208:45/128 maxlen: 128
2a03:57c0:7c00::1208:185/128 maxlen: 128
2a03:57c0:7c00::1209:211/128 maxlen: 128
2a03:57c0:7c00::1209:55/128 maxlen: 128
2a03:57c0:7c00::1209:155/128 maxlen: 128
2a03:57c0:7c00::1209:95/128 maxlen: 128
2a03:57c0:7c00::1208:95/128 maxlen: 128
2a03:57c0:7c00::1208:215/128 maxlen: 128
2a03:57c0:7c00::1208:55/128 maxlen: 128
2a03:57c0::/32 maxlen: 32
2a03:57c0:7c00::1208:220/128 maxlen: 128
2a03:57c0:7c00::1209:25/128 maxlen: 128
2a03:57c0:7c00::1209:165/128 maxlen: 128
2a03:57c0:7c00::1208:65/128 maxlen: 128
2a03:57c0:7c00::1208:165/128 maxlen: 128
2a03:57c0:7c00::1208:25/128 maxlen: 128
2a03:57c0:7c00::1209:27/128 maxlen: 128
2a03:57c0:7c00::1208:27/128 maxlen: 128
2a03:57c0:7c00::1209:135/128 maxlen: 128
2a03:57c0:7c00::1209:75/128 maxlen: 128
2a03:57c0:7c00::1208:235/128 maxlen: 128
2a03:57c0:7c00::1208:175/128 maxlen: 128
2a03:57c0:7c00::1208:75/128 maxlen: 128
2a03:57c0:7c00::1209:177/128 maxlen: 128
2a03:57c0:7c00::1208:137/128 maxlen: 128
2a03:57c0:7c00::1208:177/128 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159047713 (0x97ae021)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d0c27f85581e2e7bde0c98fbd54be1d49670517
Validity
Not Before: Jan 1 08:54:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f37dc78304edf7d4db6f08fb298db71ad38724d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d7:c2:2b:53:a3:1d:f6:18:3e:06:af:74:43:
22:b4:cd:d1:51:a4:fc:93:79:78:92:ad:c9:96:0d:
dc:42:4f:8a:1c:48:e2:36:ed:e1:2c:9c:52:44:cb:
9c:b0:36:8d:b2:12:08:5f:e5:79:c3:61:11:d4:1d:
bc:2b:19:c0:c0:01:08:fd:9f:4b:01:67:45:94:04:
e8:69:c4:e5:e0:8c:45:c9:b5:c8:ac:d2:93:a5:44:
1d:2b:c5:18:0e:41:18:5b:43:08:6a:84:67:91:51:
67:89:8c:4b:30:7c:f7:df:df:4e:8f:2b:42:db:23:
56:77:52:ff:ba:13:3d:b5:bc:e7:6d:5d:7a:60:47:
8a:10:d4:03:c0:00:2c:5c:46:ee:45:93:46:fc:83:
43:83:6e:36:09:01:59:ee:6b:f1:61:fd:2a:0d:c1:
21:36:16:a3:42:23:2f:d8:c0:a0:22:99:cf:9f:bd:
0d:20:39:e2:ef:f9:2c:6e:d2:80:b6:01:b6:76:c7:
fe:01:18:7c:e7:e4:ff:e3:73:38:e5:db:fc:df:e4:
a4:4a:42:99:c1:53:6d:1b:c7:d2:88:9b:c1:b2:74:
27:d4:2a:dd:92:2c:d3:df:1d:d8:c8:87:a7:ac:4d:
ef:b1:8f:26:fc:52:e1:5d:32:8b:e2:90:5a:b7:4a:
5a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:7D:C7:83:04:ED:F7:D4:DB:6F:08:FB:29:8D:B7:1A:D3:87:24:D7
X509v3 Authority Key Identifier:
keyid:5D:0C:27:F8:55:81:E2:E7:BD:E0:C9:8F:BD:54:BE:1D:49:67:05:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XQwn-FWB4ue94MmPvVS-HUlnBRc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/833HgwTt99Tbbwj7KY23GtOHJNc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.251.208.0/24
178.251.212.0/22
185.11.88.0-185.11.90.255
IPv6:
2a03:57c0::/32
Signature Algorithm: sha256WithRSAEncryption
00:6f:b1:06:96:a4:ce:35:d5:62:c6:b3:2f:88:eb:4a:51:0e:
1b:2e:8b:cc:17:3b:c7:17:e6:0e:e9:0f:37:11:24:55:20:8a:
4a:a2:88:09:aa:ac:99:22:78:de:7e:e4:a3:74:93:7b:c6:cf:
67:9b:91:9b:c6:20:fd:33:ce:8c:ee:d5:c6:c5:6e:b3:fe:26:
ec:c0:ad:bd:90:53:26:3a:6a:86:04:d9:10:66:12:49:d6:c7:
91:20:9c:75:3b:00:2d:51:25:c0:98:4f:b1:e0:ff:2a:c7:11:
7c:20:bb:77:e5:d1:f3:c1:81:7c:55:8d:13:87:90:6d:a1:ee:
7c:c9:81:b3:e2:46:4e:cf:9a:17:9a:9c:1a:b7:5a:1a:65:2d:
16:22:28:db:07:5c:01:23:6a:c2:6c:ea:f8:a5:a7:78:2d:98:
c4:94:3e:7f:f6:5f:35:44:b4:3d:a0:27:8b:fa:6a:77:48:39:
b7:ef:ad:d0:bd:4c:a2:91:31:95:b0:23:7f:f5:6e:7c:0f:e3:
9d:cd:a5:e2:2b:96:67:d8:45:fd:ae:93:b8:54:9a:5d:54:2b:
57:dd:81:7b:ae:99:64:bc:37:52:b1:e0:b2:d6:66:3d:5f:35:
e3:d8:d9:7b:33:65:25:33:e1:e9:31:d4:e1:dd:90:0c:d7:6d:
71:db:78:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:39:56 2025 by rpki-client