Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/FBQgjH_d1SAI-7YUsahiKTmmtgs.roa
File: FBQgjH_d1SAI-7YUsahiKTmmtgs.roa (raw, json)
Hash identifier: czjGWfjHehZPGWcmHu2w6JS72dVyFE6QEUjKrzIGxbE=
Subject key identifier: 14:14:20:8C:7F:DD:D5:20:08:FB:B6:14:B1:A8:62:29:39:A6:B6:0B
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 0AA56CA4
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/FBQgjH_d1SAI-7YUsahiKTmmtgs.roa
Signing time: Sat 01 Jan 2022 08:57:41 +0000
ROA not before: Sat 01 Jan 2022 08:57:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15774
IP address blocks: 37.61.176.0/21 maxlen: 32
31.216.170.0/24 maxlen: 24
46.166.65.0/24 maxlen: 24
109.233.172.0/22 maxlen: 32
185.43.86.0/23 maxlen: 32
83.234.240.0/21 maxlen: 21
62.33.122.0/23 maxlen: 32
81.18.128.0/19 maxlen: 32
46.166.80.0/23 maxlen: 24
46.166.80.0/24 maxlen: 24
46.166.79.0/24 maxlen: 24
46.166.83.0/24 maxlen: 24
46.166.82.0/24 maxlen: 24
46.166.81.0/24 maxlen: 24
46.166.84.0/22 maxlen: 23
46.166.88.0/23 maxlen: 23
46.166.91.0/24 maxlen: 24
46.166.95.0/24 maxlen: 24
46.166.94.0/24 maxlen: 24
46.166.93.0/24 maxlen: 24
81.4.192.0/18 maxlen: 32
46.20.64.0/20 maxlen: 32
185.6.236.0/22 maxlen: 32
83.234.136.0/23 maxlen: 23
185.61.24.0/22 maxlen: 32
91.204.96.0/22 maxlen: 32
46.182.128.0/22 maxlen: 22
46.182.131.0/24 maxlen: 24
2a03:3700:4000::/36 maxlen: 128
2a03:3700:1000::/36 maxlen: 128
2a03:3700::/36 maxlen: 128
2a03:3700:5000::/36 maxlen: 128
2a03:3700:2000::/36 maxlen: 128
2a03:3700:3000::/36 maxlen: 128
2a03:3700:6000::/36 maxlen: 128
2a03:3700:7000::/36 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178613412 (0xaa56ca4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: Jan 1 08:57:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1414208c7fddd52008fbb614b1a8622939a6b60b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8a:50:88:32:2c:cf:77:2c:ed:13:ff:3b:71:
55:ed:87:3f:bc:59:d5:43:ce:51:74:c0:eb:8a:2a:
c3:27:8f:6d:a6:0d:4c:30:e8:84:2e:20:c9:05:aa:
88:7f:a7:a8:d5:41:e4:cc:dc:bb:d2:80:63:78:21:
db:87:8b:3f:d5:71:04:52:4f:67:95:25:b5:9c:57:
3c:c1:0d:15:74:10:ae:67:1a:99:74:ce:9e:a5:fe:
85:55:4f:f7:46:86:98:54:c9:2c:0a:78:eb:c7:96:
28:70:ab:b6:13:f4:39:20:37:84:ef:e5:50:bb:e5:
0b:16:51:6a:60:8a:e6:c0:29:06:56:45:a8:bd:b1:
6f:28:83:0b:e3:a3:11:36:5f:1c:8a:09:7a:2b:5e:
74:3e:4d:00:ec:7e:b3:12:ec:3a:fa:ca:b0:1e:18:
d8:de:de:3c:93:9c:62:e5:2d:ae:b2:d0:e9:96:71:
5d:7b:49:1b:e3:98:e0:c7:89:1a:ce:d5:26:f4:7f:
27:95:79:66:6e:43:c9:bd:76:23:7f:fc:22:2c:8b:
18:da:24:6d:03:4d:66:d8:1f:77:c0:8a:0a:76:c6:
3b:69:38:7e:ba:ef:16:45:42:45:52:c0:94:20:01:
75:77:38:d5:fb:4d:88:fb:dc:05:f2:55:b9:e9:85:
10:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:14:20:8C:7F:DD:D5:20:08:FB:B6:14:B1:A8:62:29:39:A6:B6:0B
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/FBQgjH_d1SAI-7YUsahiKTmmtgs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.216.170.0/24
37.61.176.0/21
46.20.64.0/20
46.166.65.0/24
46.166.79.0-46.166.89.255
46.166.91.0/24
46.166.93.0-46.166.95.255
46.182.128.0/22
62.33.122.0/23
81.4.192.0/18
81.18.128.0/19
83.234.136.0/23
83.234.240.0/21
91.204.96.0/22
109.233.172.0/22
185.6.236.0/22
185.43.86.0/23
185.61.24.0/22
IPv6:
2a03:3700::/33
Signature Algorithm: sha256WithRSAEncryption
c4:2c:4f:de:e3:54:33:2e:d0:50:9f:39:13:e5:a0:05:be:93:
7f:bb:9c:55:9c:6b:d1:fd:15:b4:9f:17:ed:33:b9:f1:e4:23:
6a:12:80:57:1a:40:37:7a:95:dd:cd:d6:df:81:1c:b9:0e:cd:
6a:48:ec:c8:bd:1a:99:f6:56:47:88:07:8a:cd:10:73:c3:52:
d5:35:fa:24:66:96:02:8e:fa:bb:b8:14:24:11:3b:d2:4d:5e:
d6:78:14:65:e0:41:84:2c:86:56:58:47:5c:6b:e4:06:79:e7:
f6:40:75:ca:12:54:4b:aa:20:f8:5c:de:3d:36:b2:00:17:4d:
c3:aa:17:cd:55:8e:e7:98:79:e4:0a:ad:ce:43:e2:c9:e0:99:
f8:86:4d:ba:b4:61:5f:ae:16:ca:b1:e0:77:cf:83:bc:84:58:
43:11:e9:b3:86:12:7a:87:67:84:62:64:e5:cb:e9:ae:2c:5b:
29:75:a3:c2:d1:fe:7f:7c:4f:24:fc:d6:af:00:33:3b:92:a2:
0e:cc:5d:89:74:a8:c1:22:08:71:e8:af:51:d2:e2:47:96:55:
e1:6c:a6:94:3b:18:bb:5d:9e:63:d8:8b:50:3c:c7:95:48:26:
bb:86:25:01:d1:d1:c1:f5:41:41:2d:cf:55:dc:63:1b:32:a6:
4a:da:1a:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:08 2024 by rpki-client on console-fra.rpki-client.org