Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/8TQsrd0YYppfaGrT2GpKfXnArW4.roa
File: 8TQsrd0YYppfaGrT2GpKfXnArW4.roa (raw, json)
Hash identifier: ip4HgXkYhZnhTbwYDOd5hK0kIOTWdjJHvUxHUCaYPro=
Subject key identifier: F1:34:2C:AD:DD:18:62:9A:5F:68:6A:D3:D8:6A:4A:7D:79:C0:AD:6E
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 0183642659129CB5CBD2B59B1A3711A0B082
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/8TQsrd0YYppfaGrT2GpKfXnArW4.roa
Signing time: Thu 22 Sep 2022 07:42:58 +0000
ROA not before: Thu 22 Sep 2022 07:42:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42473
IP address blocks: 185.228.148.0/22 maxlen: 22
37.235.4.0/24 maxlen: 24
37.235.3.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
185.2.176.0/22 maxlen: 32
144.208.192.0/18 maxlen: 32
144.208.205.0/24 maxlen: 24
144.208.206.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
144.208.207.0/24 maxlen: 24
178.255.152.0/21 maxlen: 32
193.33.114.0/23 maxlen: 32
176.123.54.0/23 maxlen: 23
213.227.160.0/19 maxlen: 32
194.1.206.0/24 maxlen: 32
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.96.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
217.146.0.0/19 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.247.0/24 maxlen: 24
188.172.254.0/24 maxlen: 24
45.132.61.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
188.172.192.0/18 maxlen: 32
185.81.209.0/24 maxlen: 24
188.172.208.0/24 maxlen: 24
188.65.72.0/21 maxlen: 32
37.252.226.0/24 maxlen: 24
37.252.224.0/19 maxlen: 32
37.252.243.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
144.208.216.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.226.0/24 maxlen: 24
144.208.224.0/24 maxlen: 24
144.208.225.0/24 maxlen: 24
144.208.223.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
144.208.222.0/24 maxlen: 24
2a00:11c0:66::/48 maxlen: 48
2a00:11c0::/32 maxlen: 128
2a01:aea0:dd1::/48 maxlen: 48
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a00:11c0:9a::/48 maxlen: 48
2a01:aea0::/40 maxlen: 40
2a01:aea0::/32 maxlen: 32
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:83::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:97::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a00:11c0:de::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a00:11c0:98::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:64:26:59:12:9c:b5:cb:d2:b5:9b:1a:37:11:a0:b0:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Sep 22 07:42:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f1342caddd18629a5f686ad3d86a4a7d79c0ad6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:71:a3:22:a7:64:1c:79:f7:d3:a2:13:4d:f7:
d4:dc:07:d2:03:9f:46:d9:c4:18:40:3f:ae:e2:bf:
d9:9c:5a:58:35:7f:c2:4b:23:83:48:ad:60:09:dc:
2d:25:b3:68:c3:3c:26:0e:5d:fe:84:16:25:c3:e7:
2a:48:6a:e9:b3:b6:26:45:ed:76:6a:18:32:aa:e7:
b5:1a:24:3d:03:6d:b8:a8:fa:e7:ed:fe:b4:14:71:
4a:09:d3:9e:61:1e:e7:51:30:f8:85:8c:3f:67:47:
28:13:1b:18:2e:71:f9:fe:33:d3:83:4b:8c:4b:15:
af:92:5d:89:a1:83:fc:39:3d:9c:99:d6:69:c6:73:
3c:a9:d5:13:93:ee:f3:35:13:56:6d:f0:7d:41:4d:
d5:98:9b:2d:f8:3e:d7:e0:65:a9:90:88:9e:ed:fd:
d0:94:b2:f1:bd:a6:8f:b0:1e:17:08:72:b2:dc:e8:
56:90:30:21:90:a5:83:f8:5b:7d:63:a9:2b:70:b3:
39:8f:8e:8f:11:ad:97:92:8d:d0:5f:60:7e:19:cd:
69:ac:e3:aa:32:e7:65:3a:bf:e9:aa:bb:d5:80:ea:
2c:a1:77:03:72:c8:68:49:47:67:22:4d:c4:36:8b:
62:3a:2c:c6:9d:77:12:5b:3a:e9:d9:02:ac:c4:b4:
db:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:34:2C:AD:DD:18:62:9A:5F:68:6A:D3:D8:6A:4A:7D:79:C0:AD:6E
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/8TQsrd0YYppfaGrT2GpKfXnArW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.3.0-37.235.5.255
37.252.224.0/19
45.132.61.0-45.132.63.255
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
Signature Algorithm: sha256WithRSAEncryption
5a:42:39:c3:53:b4:6e:57:ca:de:42:c6:92:57:45:29:0d:8d:
7a:f5:33:a7:e7:08:4f:5c:6f:e0:3a:e4:01:7e:95:09:97:2b:
49:11:a1:10:c5:20:b2:fa:32:08:80:2d:a6:fb:3d:27:1f:02:
8e:b1:f8:da:45:0a:eb:85:d8:e1:3d:77:f8:d9:21:0a:7c:3a:
9a:e3:82:a8:96:c1:9b:a9:61:bb:17:bc:9e:93:9a:4d:35:a8:
4a:12:af:94:6c:cb:e2:c7:6e:28:a1:86:cc:36:87:ce:08:f0:
69:a1:6e:5c:8b:1c:aa:41:03:ee:bf:5d:04:ed:40:76:0f:07:
a2:3a:aa:27:8f:47:9e:20:5e:59:73:8b:53:1f:4f:1d:79:9d:
f8:cd:dc:54:97:ab:17:b0:c6:cb:d3:7e:f4:10:77:d2:0e:71:
b8:6d:c8:2f:e3:20:87:41:03:88:b3:bb:cd:86:32:85:a3:5e:
2d:f4:65:ba:c6:22:d3:04:91:35:03:3f:7a:9e:c8:f9:aa:d4:
0f:79:de:78:da:34:4e:b3:22:f9:1e:25:9f:50:82:9f:d5:65:
4c:ec:5a:ed:b1:82:81:32:60:0d:19:7f:63:87:f3:8b:36:f0:
63:e9:ce:e8:8b:95:70:59:b8:32:7d:08:17:e6:89:5f:85:46:
40:d4:d6:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:50 2024 by rpki-client on console-ams.rpki-client.org