Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/W37QOZHKdPtok3p4JelcmLnTEcA.roa
File: W37QOZHKdPtok3p4JelcmLnTEcA.roa (raw, json)
Hash identifier: Uobo16JLGT1356xSP5pfI8nVoGB3qls3g5cURxw0Ld8=
Subject key identifier: 5B:7E:D0:39:91:CA:74:FB:68:93:7A:78:25:E9:5C:98:B9:D3:11:C0
Certificate issuer: /CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Certificate serial: 0A853B98
Authority key identifier: 31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/W37QOZHKdPtok3p4JelcmLnTEcA.roa
Signing time: Sun 03 Apr 2022 07:37:47 +0000
ROA not before: Sun 03 Apr 2022 07:37:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 85.153.125.0/24 maxlen: 24
85.153.124.0/24 maxlen: 24
85.153.120.0/24 maxlen: 24
85.153.119.0/24 maxlen: 24
85.153.121.0/24 maxlen: 24
85.153.123.0/24 maxlen: 24
85.153.122.0/24 maxlen: 24
85.153.126.0/24 maxlen: 24
85.153.68.0/22 maxlen: 22
85.153.66.0/24 maxlen: 24
85.153.65.0/24 maxlen: 24
85.153.67.0/24 maxlen: 24
85.153.76.0/22 maxlen: 22
85.153.75.0/24 maxlen: 24
85.153.73.0/24 maxlen: 24
85.153.72.0/24 maxlen: 24
85.153.74.0/24 maxlen: 24
85.153.83.0/24 maxlen: 24
85.153.82.0/24 maxlen: 24
85.153.84.0/22 maxlen: 22
85.153.80.0/24 maxlen: 24
85.153.81.0/24 maxlen: 24
85.153.88.0/22 maxlen: 22
85.153.96.0/22 maxlen: 22
85.153.92.0/24 maxlen: 24
85.153.93.0/24 maxlen: 24
85.153.95.0/24 maxlen: 24
85.153.94.0/24 maxlen: 24
85.153.100.0/22 maxlen: 22
85.153.112.0/24 maxlen: 24
85.153.108.0/22 maxlen: 22
85.153.113.0/24 maxlen: 24
85.153.114.0/24 maxlen: 24
85.153.116.0/24 maxlen: 24
85.153.115.0/24 maxlen: 24
85.153.118.0/24 maxlen: 24
85.153.117.0/24 maxlen: 24
85.153.16.0/22 maxlen: 22
85.153.12.0/22 maxlen: 22
85.153.20.0/24 maxlen: 24
85.153.22.0/24 maxlen: 24
85.153.21.0/24 maxlen: 24
85.153.24.0/22 maxlen: 22
85.153.23.0/24 maxlen: 24
85.153.29.0/24 maxlen: 24
85.153.28.0/24 maxlen: 24
85.153.31.0/24 maxlen: 24
85.153.30.0/24 maxlen: 24
85.153.32.0/24 maxlen: 24
85.153.34.0/24 maxlen: 24
85.153.36.0/22 maxlen: 22
85.153.35.0/24 maxlen: 24
85.153.41.0/24 maxlen: 24
85.153.42.0/24 maxlen: 24
85.153.44.0/24 maxlen: 24
85.153.40.0/24 maxlen: 24
85.153.47.0/24 maxlen: 24
85.153.45.0/24 maxlen: 24
85.153.46.0/24 maxlen: 24
85.153.52.0/22 maxlen: 22
85.153.59.0/24 maxlen: 24
85.153.60.0/22 maxlen: 22
85.115.204.0/24 maxlen: 24
85.115.206.0/24 maxlen: 24
85.115.205.0/24 maxlen: 24
85.115.207.0/24 maxlen: 24
85.153.4.0/24 maxlen: 24
85.153.7.0/24 maxlen: 24
85.153.6.0/24 maxlen: 24
85.153.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176503704 (0xa853b98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Validity
Not Before: Apr 3 07:37:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b7ed03991ca74fb68937a7825e95c98b9d311c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:69:2c:b8:d1:dc:7f:8b:ff:9d:ce:2c:2c:c2:
98:69:37:a0:0c:1f:b5:0d:0a:88:2d:5a:9d:39:2d:
cc:a7:f9:8c:fe:07:9c:7e:1e:72:30:34:4e:8f:f1:
5c:ed:92:25:65:f0:66:66:99:26:a8:da:d1:63:fa:
47:47:f6:8b:12:b3:19:f9:60:83:71:c6:9a:f1:79:
ca:ba:49:1b:0a:03:93:07:63:f0:5b:59:ad:d2:f1:
68:ea:e8:61:5a:e0:2e:5f:bc:16:75:45:31:57:18:
25:96:c0:e9:66:e8:ce:2b:4d:17:86:99:bb:da:f0:
31:83:af:78:58:77:52:7a:c7:4b:46:61:11:8a:ee:
59:ad:39:e5:f4:9b:4e:8b:f2:7b:20:60:d4:e7:2f:
11:7b:88:23:7e:ab:3c:71:5c:86:ab:46:5d:69:3b:
a4:1c:dc:e0:f0:2a:5f:16:89:c7:37:30:d2:d0:32:
ec:04:6b:5b:3c:a2:3c:9f:bc:1c:9a:84:99:a3:e7:
94:38:86:10:37:c7:96:6d:5e:63:c3:1b:8e:96:3a:
13:28:c5:1c:2d:8d:13:9d:bb:fd:fa:ce:4e:ca:4f:
ca:22:72:0d:f6:9a:b4:8d:e8:7e:52:9d:e4:f9:93:
63:c6:82:e6:70:00:38:d4:45:8b:02:45:29:d6:c9:
3b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:7E:D0:39:91:CA:74:FB:68:93:7A:78:25:E9:5C:98:B9:D3:11:C0
X509v3 Authority Key Identifier:
keyid:31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/W37QOZHKdPtok3p4JelcmLnTEcA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/MaGF0OsMp4EcWGQl3g6WDhz-ths.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.204.0/22
85.153.4.0/24
85.153.6.0-85.153.8.255
85.153.12.0-85.153.32.255
85.153.34.0-85.153.42.255
85.153.44.0/22
85.153.52.0/22
85.153.59.0-85.153.63.255
85.153.65.0-85.153.103.255
85.153.108.0-85.153.126.255
Signature Algorithm: sha256WithRSAEncryption
92:d5:46:1f:65:1c:52:be:bf:f8:7b:15:0f:69:02:b8:9b:30:
cf:80:f3:91:f5:c7:e3:23:8d:b3:23:71:59:5c:e9:89:48:a4:
dd:20:38:82:8a:9d:aa:12:8c:6f:e2:95:29:f1:a8:16:87:58:
21:2a:93:ca:04:73:8a:87:1a:00:8c:56:8e:2e:a4:25:30:4c:
e6:28:d7:ab:ac:44:bc:7a:5f:ea:50:11:97:40:0d:22:e2:7d:
0c:77:e2:d8:84:95:5c:cb:d8:6d:b8:52:6c:54:9d:f3:61:cb:
d1:b3:b6:8b:29:6c:96:c1:41:a5:57:5c:cb:ca:91:6a:4c:d8:
5b:f4:3c:bd:5d:cb:b5:80:63:56:4d:21:a5:f0:da:21:13:ea:
cd:2a:12:94:06:b6:7f:b8:cd:b2:0a:6b:50:16:2d:65:b9:db:
d9:66:d5:16:43:8f:c3:03:bb:17:b2:f6:d9:34:b6:2c:84:6f:
30:2b:fc:54:92:d8:75:a8:2c:f1:9d:aa:ee:e0:c8:1f:58:14:
f5:d2:42:45:10:10:a3:89:bc:98:40:2a:6f:10:a0:c1:3d:bf:
5c:bd:64:c7:b3:25:99:d2:60:b2:98:de:08:c6:fd:c6:db:8b:
5c:0f:6e:73:a7:79:4d:54:50:57:f2:b1:24:a8:1c:d6:a7:54:
1c:aa:df:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:34 2023 by rpki-client on console-ams.rpki-client.org