Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/nXhBi_UWD3goJ3KGumu9zN7R1Wc.roa
File: nXhBi_UWD3goJ3KGumu9zN7R1Wc.roa (raw, json)
Hash identifier: Hp9qKamy8vumm/co4xSHZJLw6s3TzxP4EenlwX+GZvE=
Subject key identifier: 9D:78:41:8B:F5:16:0F:78:28:27:72:86:BA:6B:BD:CC:DE:D1:D5:67
Certificate issuer: /CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Certificate serial: 0AFE83E5
Authority key identifier: 31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/nXhBi_UWD3goJ3KGumu9zN7R1Wc.roa
Signing time: Thu 26 May 2022 06:06:13 +0000
ROA not before: Thu 26 May 2022 06:06:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 85.153.125.0/24 maxlen: 24
85.153.124.0/24 maxlen: 24
85.153.120.0/24 maxlen: 24
85.153.119.0/24 maxlen: 24
85.153.121.0/24 maxlen: 24
85.153.123.0/24 maxlen: 24
85.153.122.0/24 maxlen: 24
85.153.126.0/24 maxlen: 24
85.153.68.0/22 maxlen: 22
85.153.66.0/24 maxlen: 24
85.153.65.0/24 maxlen: 24
85.153.67.0/24 maxlen: 24
85.153.76.0/22 maxlen: 22
85.153.75.0/24 maxlen: 24
85.153.73.0/24 maxlen: 24
85.153.72.0/24 maxlen: 24
85.153.74.0/24 maxlen: 24
85.153.83.0/24 maxlen: 24
85.153.82.0/24 maxlen: 24
85.153.84.0/22 maxlen: 22
85.153.80.0/24 maxlen: 24
85.153.81.0/24 maxlen: 24
85.153.88.0/22 maxlen: 22
85.153.96.0/22 maxlen: 22
85.153.92.0/24 maxlen: 24
85.153.93.0/24 maxlen: 24
85.153.95.0/24 maxlen: 24
85.153.94.0/24 maxlen: 24
85.153.100.0/22 maxlen: 22
85.153.112.0/24 maxlen: 24
85.153.108.0/22 maxlen: 22
85.153.113.0/24 maxlen: 24
85.153.114.0/24 maxlen: 24
85.153.116.0/24 maxlen: 24
85.153.115.0/24 maxlen: 24
85.153.118.0/24 maxlen: 24
85.153.117.0/24 maxlen: 24
85.153.16.0/22 maxlen: 22
85.153.12.0/22 maxlen: 22
85.153.20.0/24 maxlen: 24
85.153.22.0/24 maxlen: 24
85.153.21.0/24 maxlen: 24
85.153.24.0/22 maxlen: 22
85.153.23.0/24 maxlen: 24
85.153.29.0/24 maxlen: 24
85.153.28.0/24 maxlen: 24
85.153.31.0/24 maxlen: 24
85.153.30.0/24 maxlen: 24
85.153.32.0/24 maxlen: 24
85.153.34.0/24 maxlen: 24
85.153.36.0/22 maxlen: 22
85.153.35.0/24 maxlen: 24
85.153.41.0/24 maxlen: 24
85.153.42.0/24 maxlen: 24
85.153.44.0/24 maxlen: 24
85.153.40.0/24 maxlen: 24
85.153.47.0/24 maxlen: 24
85.153.45.0/24 maxlen: 24
85.153.46.0/24 maxlen: 24
85.153.52.0/22 maxlen: 22
85.153.59.0/24 maxlen: 24
85.153.60.0/22 maxlen: 22
85.115.204.0/24 maxlen: 24
85.115.206.0/24 maxlen: 24
85.115.205.0/24 maxlen: 24
85.115.207.0/24 maxlen: 24
85.153.4.0/24 maxlen: 24
85.153.7.0/24 maxlen: 24
85.153.6.0/24 maxlen: 24
85.153.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 184452069 (0xafe83e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Validity
Not Before: May 26 06:06:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d78418bf5160f7828277286ba6bbdccded1d567
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:5d:d9:61:14:60:df:3e:b0:41:34:5f:3e:25:
5b:1b:93:31:55:27:de:08:48:93:08:ad:28:50:dc:
93:6b:08:ae:c7:f5:72:9c:06:87:92:41:03:b2:b6:
99:35:1e:2d:fc:e8:7a:c9:23:14:f5:70:18:af:61:
91:e2:81:75:97:f8:26:07:1e:6e:c2:03:22:26:63:
74:fd:1d:08:6c:0d:31:0f:1c:b3:e9:87:87:25:c0:
d2:bd:28:c2:03:d0:77:57:5e:bf:b2:dd:cf:f9:e2:
6c:05:35:d8:bf:0f:ed:57:2b:b2:68:e7:43:51:44:
80:78:d8:11:6d:2e:00:1a:7a:4d:f3:0b:25:07:7c:
f2:f4:5d:7b:4a:6d:60:49:39:6f:72:65:b7:20:fe:
9b:34:8f:72:7a:71:23:92:e1:a7:8e:6e:f2:ef:aa:
e9:b9:a9:46:ec:95:a2:64:f7:a8:01:2f:63:ab:55:
55:96:c6:c4:41:3a:f2:ea:53:29:4d:7a:25:3b:3a:
29:ef:48:57:8b:07:89:34:1a:a5:7b:b0:4c:c9:8b:
2b:6c:0e:15:79:9a:34:78:76:a1:56:a8:8e:4a:19:
c7:06:74:01:22:ce:0e:61:fb:85:d1:29:9d:f3:ae:
84:f3:15:a0:2c:84:90:6c:4a:5e:15:dd:87:c9:98:
9f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:78:41:8B:F5:16:0F:78:28:27:72:86:BA:6B:BD:CC:DE:D1:D5:67
X509v3 Authority Key Identifier:
keyid:31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/nXhBi_UWD3goJ3KGumu9zN7R1Wc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/MaGF0OsMp4EcWGQl3g6WDhz-ths.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.204.0/22
85.153.4.0/24
85.153.6.0-85.153.8.255
85.153.12.0-85.153.32.255
85.153.34.0-85.153.42.255
85.153.44.0/22
85.153.52.0/22
85.153.59.0-85.153.63.255
85.153.65.0-85.153.103.255
85.153.108.0-85.153.126.255
Signature Algorithm: sha256WithRSAEncryption
5f:9c:11:db:41:97:ac:fe:87:fb:30:dd:1e:f3:17:ea:ce:81:
b5:c9:41:bb:d3:e4:20:8b:45:2f:a1:d4:8e:39:bf:8e:71:dc:
96:55:e6:94:a3:92:93:83:d2:7a:10:b8:35:7f:1d:7f:1b:79:
c7:48:e8:f5:cd:d0:65:4c:f2:45:e6:4d:74:51:03:fa:de:38:
85:26:66:14:c8:a3:54:5f:b7:5e:ae:f0:c5:2f:35:9c:7d:9e:
b2:bf:1c:13:a5:56:1e:da:57:5c:05:86:3c:df:7a:47:03:33:
0b:63:20:38:ca:de:38:67:f6:9d:0e:f7:a0:05:7d:f7:c0:b5:
81:9a:0c:25:2c:2a:a3:c4:ae:4d:85:d9:ab:1b:9b:93:e2:05:
6c:c0:df:93:4f:2c:8d:49:1e:7f:dc:11:7a:9e:15:c9:9f:c1:
bd:b1:00:e8:e9:96:c4:12:42:75:e9:88:45:8f:5d:71:46:f4:
2d:77:44:bf:91:f9:ff:81:de:0d:2b:2d:10:b3:db:6e:4a:02:
f5:29:e9:98:3b:eb:c9:63:e5:dc:9d:35:3b:af:fd:ba:58:90:
d5:12:ca:66:3c:a2:4a:eb:2f:2c:73:21:df:a8:4b:32:e4:f0:
35:2e:ae:90:68:dc:08:2e:a5:1a:0d:22:06:4d:a3:d2:71:93:
82:60:58:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:40 2024 by rpki-client on console-ams.rpki-client.org