Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/8j_VzPHcVpTozyhEVzYGcL72gQo.roa
File: 8j_VzPHcVpTozyhEVzYGcL72gQo.roa (raw, json)
Hash identifier: cRdy3h3AGeZeZ0p2narqwlI+Bhl88dYt+VAuCNGy9DA=
Subject key identifier: F2:3F:D5:CC:F1:DC:56:94:E8:CF:28:44:57:36:06:70:BE:F6:81:0A
Certificate issuer: /CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Certificate serial: 0AEDDA8E
Authority key identifier: 31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/8j_VzPHcVpTozyhEVzYGcL72gQo.roa
Signing time: Fri 20 May 2022 06:55:28 +0000
ROA not before: Fri 20 May 2022 06:55:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 85.153.125.0/24 maxlen: 24
85.153.124.0/24 maxlen: 24
85.153.120.0/24 maxlen: 24
85.153.119.0/24 maxlen: 24
85.153.121.0/24 maxlen: 24
85.153.123.0/24 maxlen: 24
85.153.122.0/24 maxlen: 24
85.153.126.0/24 maxlen: 24
85.153.68.0/22 maxlen: 22
85.153.66.0/24 maxlen: 24
85.153.65.0/24 maxlen: 24
85.153.67.0/24 maxlen: 24
85.153.76.0/22 maxlen: 22
85.153.75.0/24 maxlen: 24
85.153.73.0/24 maxlen: 24
85.153.72.0/24 maxlen: 24
85.153.74.0/24 maxlen: 24
85.153.83.0/24 maxlen: 24
85.153.82.0/24 maxlen: 24
85.153.84.0/22 maxlen: 22
85.153.80.0/24 maxlen: 24
85.153.81.0/24 maxlen: 24
85.153.96.0/22 maxlen: 22
85.153.92.0/24 maxlen: 24
85.153.93.0/24 maxlen: 24
85.153.95.0/24 maxlen: 24
85.153.94.0/24 maxlen: 24
85.153.100.0/22 maxlen: 22
85.153.112.0/24 maxlen: 24
85.153.108.0/22 maxlen: 22
85.153.113.0/24 maxlen: 24
85.153.114.0/24 maxlen: 24
85.153.116.0/24 maxlen: 24
85.153.115.0/24 maxlen: 24
85.153.118.0/24 maxlen: 24
85.153.117.0/24 maxlen: 24
85.153.16.0/22 maxlen: 22
85.153.12.0/22 maxlen: 22
85.153.20.0/24 maxlen: 24
85.153.22.0/24 maxlen: 24
85.153.21.0/24 maxlen: 24
85.153.24.0/22 maxlen: 22
85.153.23.0/24 maxlen: 24
85.153.29.0/24 maxlen: 24
85.153.28.0/24 maxlen: 24
85.153.31.0/24 maxlen: 24
85.153.30.0/24 maxlen: 24
85.153.32.0/24 maxlen: 24
85.153.34.0/24 maxlen: 24
85.153.36.0/22 maxlen: 22
85.153.35.0/24 maxlen: 24
85.153.41.0/24 maxlen: 24
85.153.42.0/24 maxlen: 24
85.153.44.0/24 maxlen: 24
85.153.40.0/24 maxlen: 24
85.153.47.0/24 maxlen: 24
85.153.45.0/24 maxlen: 24
85.153.46.0/24 maxlen: 24
85.153.52.0/22 maxlen: 22
85.153.59.0/24 maxlen: 24
85.153.60.0/22 maxlen: 22
85.115.204.0/24 maxlen: 24
85.115.206.0/24 maxlen: 24
85.115.205.0/24 maxlen: 24
85.115.207.0/24 maxlen: 24
85.153.4.0/24 maxlen: 24
85.153.7.0/24 maxlen: 24
85.153.6.0/24 maxlen: 24
85.153.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 183360142 (0xaedda8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Validity
Not Before: May 20 06:55:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f23fd5ccf1dc5694e8cf284457360670bef6810a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b3:f0:f5:57:f9:a4:f6:d8:d3:8b:fb:ba:3f:
f2:26:0b:57:cd:78:81:cc:bc:fc:69:4a:3c:e6:13:
8c:61:c9:1b:49:f6:b5:54:da:36:25:a2:0f:21:ba:
17:5f:c4:b5:bf:96:07:55:d5:ea:6e:19:c5:51:37:
ab:f6:f4:d3:90:fa:80:c7:fc:a5:c9:be:07:f7:5c:
13:4e:f5:88:23:a6:a6:9f:e8:29:60:5c:79:65:90:
22:0e:26:bd:a8:69:6d:26:15:46:80:e8:62:9a:8c:
e3:4f:25:a5:07:37:8f:e9:f6:ab:06:96:4d:a7:93:
4f:31:9d:a4:3d:30:7b:1c:f4:6b:df:94:f0:bc:53:
40:20:4d:9a:02:98:9c:78:00:40:57:ae:b1:c9:08:
cf:96:4b:79:d3:42:61:a7:28:55:d1:4f:c8:74:68:
1c:63:23:a0:d0:33:6a:00:0d:7a:f9:28:2b:37:f7:
ba:2d:6b:b2:f5:b2:ad:cc:22:18:a5:b5:68:af:84:
f5:32:68:f4:32:82:f3:9d:87:d3:e1:47:a1:42:65:
67:e9:12:7e:e1:f1:4e:86:90:5f:77:dc:02:92:e8:
46:fe:d9:62:75:69:12:b9:a9:d3:d6:8a:2e:b7:3b:
e8:19:76:91:ec:6c:a4:0d:63:b2:ed:23:d2:54:54:
23:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:3F:D5:CC:F1:DC:56:94:E8:CF:28:44:57:36:06:70:BE:F6:81:0A
X509v3 Authority Key Identifier:
keyid:31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/8j_VzPHcVpTozyhEVzYGcL72gQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/MaGF0OsMp4EcWGQl3g6WDhz-ths.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.204.0/22
85.153.4.0/24
85.153.6.0-85.153.8.255
85.153.12.0-85.153.32.255
85.153.34.0-85.153.42.255
85.153.44.0/22
85.153.52.0/22
85.153.59.0-85.153.63.255
85.153.65.0-85.153.87.255
85.153.92.0-85.153.103.255
85.153.108.0-85.153.126.255
Signature Algorithm: sha256WithRSAEncryption
2d:83:0e:b1:57:73:b2:8d:44:63:7f:55:a1:64:86:1d:83:48:
91:53:01:f9:d6:9d:9f:57:e5:ab:a4:06:cc:55:ca:ce:6a:0a:
6a:76:e2:0b:37:05:46:17:6d:25:0e:c6:2a:d4:d2:10:78:43:
94:9b:da:56:3e:e8:07:53:23:25:9a:6e:c6:c4:0f:16:4c:41:
76:c7:d0:43:6e:7f:e3:24:ca:09:32:8a:a6:04:91:94:4a:e5:
32:ac:57:bb:51:22:c3:27:9e:5c:40:4c:ed:c6:bf:98:1b:cd:
86:7f:16:64:84:7d:bf:55:de:74:6d:33:2d:ab:b1:99:33:21:
00:32:08:72:7b:71:d0:69:4f:b4:c5:93:7a:30:aa:ee:96:61:
d5:97:40:97:9e:c5:c5:77:1b:ea:e8:00:14:a1:1c:92:49:64:
a0:1b:f8:92:48:82:e0:be:cb:52:c8:2a:c5:c3:8c:64:ab:ea:
88:50:98:20:15:47:24:e9:d0:f8:25:71:25:26:6a:42:a7:b1:
76:7d:21:b1:31:75:79:4b:a7:79:a5:b8:64:20:f0:8a:c2:a7:
44:16:35:4e:bc:4f:1b:24:bf:c0:67:78:73:ce:35:9c:fa:bc:
95:0b:40:b1:fc:af:93:ee:a0:10:a1:e6:d2:f7:e8:f9:50:91:
44:06:87:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:40 2024 by rpki-client on console-ams.rpki-client.org