Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/8e4e68-bd2a-4dc2-aae6-a0560ac82ba7/1/y8Tks5g860gxPufwOK9TapKQcJA.roa
File: y8Tks5g860gxPufwOK9TapKQcJA.roa (raw, json)
Hash identifier: tm+8asSj6MgVGhRHQDtU2zGqEjvKApsMNM8OTlsMaYs=
Subject key identifier: CB:C4:E4:B3:98:3C:EB:48:31:3E:E7:F0:38:AF:53:6A:92:90:70:90
Certificate issuer: /CN=1c6c48cccce321ec18702957b396381a1f1a0410
Certificate serial: 024E3032
Authority key identifier: 1C:6C:48:CC:CC:E3:21:EC:18:70:29:57:B3:96:38:1A:1F:1A:04:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HGxIzMzjIewYcClXs5Y4Gh8aBBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/8e4e68-bd2a-4dc2-aae6-a0560ac82ba7/1/y8Tks5g860gxPufwOK9TapKQcJA.roa
Signing time: Sat 01 Jan 2022 10:53:29 +0000
ROA not before: Sat 01 Jan 2022 10:53:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48642
IP address blocks: 185.214.252.0/22 maxlen: 22
93.90.96.0/20 maxlen: 20
134.255.128.0/19 maxlen: 19
91.108.168.0/21 maxlen: 21
185.201.88.0/22 maxlen: 22
82.112.32.0/19 maxlen: 19
5.199.192.0/19 maxlen: 19
193.46.244.0/22 maxlen: 22
94.230.142.0/23 maxlen: 23
88.218.212.0/22 maxlen: 22
5.43.128.0/19 maxlen: 19
94.230.128.0/20 maxlen: 20
193.168.176.0/22 maxlen: 22
185.252.228.0/22 maxlen: 22
185.59.56.0/22 maxlen: 22
217.151.232.0/21 maxlen: 21
185.60.212.0/22 maxlen: 22
46.36.0.0/19 maxlen: 19
185.229.192.0/22 maxlen: 22
185.2.104.0/22 maxlen: 22
185.132.28.0/22 maxlen: 22
194.169.56.0/22 maxlen: 22
185.204.156.0/22 maxlen: 22
195.69.136.0/22 maxlen: 22
109.74.160.0/20 maxlen: 20
2a0a:f940::/32 maxlen: 32
2a0d:b600::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38678578 (0x24e3032)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c6c48cccce321ec18702957b396381a1f1a0410
Validity
Not Before: Jan 1 10:53:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cbc4e4b3983ceb48313ee7f038af536a92907090
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:71:34:e2:4f:fb:e3:72:d0:0d:55:c9:2d:51:
05:f3:6e:67:fe:03:dd:c3:15:05:ed:9a:d5:e4:1f:
7a:7f:28:91:65:60:54:0c:2c:34:0d:1e:bd:76:27:
dd:e9:e6:93:b0:dc:4e:2b:99:91:d0:02:25:56:14:
87:39:25:3b:6b:be:1d:c0:39:05:32:42:e5:04:2d:
8b:9f:84:c3:f6:a1:39:4e:fb:3a:c7:15:ac:d4:bf:
20:31:02:43:7a:a0:d9:48:a6:71:50:ae:da:68:00:
8b:e7:f9:1d:29:58:25:14:48:3c:21:77:62:89:d9:
0e:3e:88:ca:14:b2:01:0a:d3:eb:dd:40:40:49:e6:
19:fa:ee:80:81:e0:d3:2c:10:a8:f3:8f:fe:8f:95:
fd:b5:78:80:8d:b4:7c:8c:84:31:42:71:3b:1a:a9:
b4:0f:ae:86:37:f9:a0:45:c7:e1:11:06:8d:19:91:
52:b6:9b:79:2d:60:19:45:dd:9e:76:55:16:57:fe:
25:8f:96:93:1a:33:bc:73:d5:a2:58:c5:51:ba:e9:
e3:7f:3f:57:8d:4a:e8:e2:b5:33:43:d9:fa:e4:a5:
0c:dc:eb:e9:96:ca:ae:2b:64:af:da:65:d2:6a:76:
9c:40:8e:a1:2a:ca:f8:a9:ce:37:99:40:0c:9d:1b:
be:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:C4:E4:B3:98:3C:EB:48:31:3E:E7:F0:38:AF:53:6A:92:90:70:90
X509v3 Authority Key Identifier:
keyid:1C:6C:48:CC:CC:E3:21:EC:18:70:29:57:B3:96:38:1A:1F:1A:04:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HGxIzMzjIewYcClXs5Y4Gh8aBBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/8e4e68-bd2a-4dc2-aae6-a0560ac82ba7/1/y8Tks5g860gxPufwOK9TapKQcJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/8e4e68-bd2a-4dc2-aae6-a0560ac82ba7/1/HGxIzMzjIewYcClXs5Y4Gh8aBBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.43.128.0/19
5.199.192.0/19
46.36.0.0/19
82.112.32.0/19
88.218.212.0/22
91.108.168.0/21
93.90.96.0/20
94.230.128.0/20
109.74.160.0/20
134.255.128.0/19
185.2.104.0/22
185.59.56.0/22
185.60.212.0/22
185.132.28.0/22
185.201.88.0/22
185.204.156.0/22
185.214.252.0/22
185.229.192.0/22
185.252.228.0/22
193.46.244.0/22
193.168.176.0/22
194.169.56.0/22
195.69.136.0/22
217.151.232.0/21
IPv6:
2a0a:f940::/32
2a0d:b600::/29
Signature Algorithm: sha256WithRSAEncryption
6c:a2:26:85:49:09:d3:b1:6e:ff:ac:c9:34:96:96:9c:28:54:
0a:96:43:03:9f:6b:5e:dc:a1:6d:5e:17:1a:44:77:5b:38:b3:
cc:33:80:d0:40:38:6f:65:b5:25:20:d2:5d:73:8b:d9:d3:44:
37:cf:ae:6c:3f:a6:51:1f:c5:9d:62:2b:b9:d0:83:5b:db:c5:
44:1c:ee:cb:a3:03:26:15:ae:82:69:7f:c2:10:74:3e:20:88:
cd:e0:4a:32:c3:b8:6f:33:5e:fd:f3:cc:36:d1:1d:e2:64:92:
dd:22:c3:02:cb:f5:b4:53:22:15:38:85:71:32:f4:a4:6f:89:
33:72:10:b4:cf:f7:8f:79:8d:17:9a:27:75:48:f3:ef:bd:fa:
ac:59:5f:1f:fe:e8:4d:6e:73:e3:7e:42:af:65:c2:f0:95:b2:
0b:1e:21:b4:ec:76:ae:c7:c9:d1:e9:82:42:ba:01:ff:6e:6e:
71:8e:54:2f:44:bd:f9:3b:46:8c:dd:6a:b4:bd:6d:9e:19:e5:
59:d8:c0:0c:c3:d3:a4:14:6d:d0:51:a7:ad:f3:bc:18:ae:4f:
02:1b:58:5b:a2:0d:8a:1a:54:c2:07:8d:c3:77:25:08:4b:3c:
0c:90:47:40:3c:99:ed:60:f3:9f:d1:7e:bf:dc:b2:de:7e:76:
42:02:18:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:26:56 2025 by rpki-client