Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/boGFmAihpmD9wI4QomcH-cqiI3U.roa
File: boGFmAihpmD9wI4QomcH-cqiI3U.roa (raw, json)
Hash identifier: UfoJHhuehq8KfCJiF/KrkAKeUCG81fag5XDIorgL5sI=
Subject key identifier: 6E:81:85:98:08:A1:A6:60:FD:C0:8E:10:A2:67:07:F9:CA:A2:23:75
Certificate issuer: /CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Certificate serial: 1530D0D8
Authority key identifier: 99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/boGFmAihpmD9wI4QomcH-cqiI3U.roa
Signing time: Mon 18 Apr 2022 18:26:24 +0000
ROA not before: Mon 18 Apr 2022 18:26:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13335
IP address blocks: 188.114.98.0/24 maxlen: 24
188.114.97.0/24 maxlen: 24
188.114.96.0/24 maxlen: 24
188.114.104.0/24 maxlen: 24
188.114.100.0/24 maxlen: 24
188.114.99.0/24 maxlen: 24
188.114.101.0/24 maxlen: 24
188.114.103.0/24 maxlen: 24
188.114.102.0/24 maxlen: 24
188.114.111.0/24 maxlen: 24
188.114.106.0/23 maxlen: 23
188.114.108.0/24 maxlen: 24
188.114.110.0/24 maxlen: 24
188.114.109.0/24 maxlen: 24
141.101.67.0/24 maxlen: 24
141.101.66.0/24 maxlen: 24
141.101.69.0/24 maxlen: 24
141.101.68.0/24 maxlen: 24
141.101.71.0/24 maxlen: 24
141.101.70.0/24 maxlen: 24
141.101.65.0/24 maxlen: 24
141.101.74.0/24 maxlen: 24
141.101.73.0/24 maxlen: 24
141.101.76.0/23 maxlen: 23
141.101.75.0/24 maxlen: 24
141.101.72.0/24 maxlen: 24
141.101.83.0/24 maxlen: 24
141.101.82.0/24 maxlen: 24
141.101.84.0/24 maxlen: 24
141.101.85.0/24 maxlen: 24
141.101.88.0/22 maxlen: 22
141.101.90.0/24 maxlen: 24
141.101.95.0/24 maxlen: 24
141.101.94.0/24 maxlen: 24
141.101.97.0/24 maxlen: 24
141.101.96.0/24 maxlen: 24
141.101.98.0/24 maxlen: 24
141.101.104.0/24 maxlen: 24
141.101.105.0/24 maxlen: 24
141.101.100.0/22 maxlen: 22
141.101.99.0/24 maxlen: 24
141.101.109.0/24 maxlen: 24
141.101.108.0/24 maxlen: 24
141.101.111.0/24 maxlen: 24
141.101.110.0/24 maxlen: 24
141.101.112.0/23 maxlen: 23
141.101.107.0/24 maxlen: 24
141.101.106.0/24 maxlen: 24
141.101.112.0/20 maxlen: 20
141.101.114.0/23 maxlen: 23
141.101.64.0/24 maxlen: 24
141.101.120.0/22 maxlen: 22
2a06:98c1:310b::/48 maxlen: 48
2a06:98c1:3101::/48 maxlen: 48
2a06:98c1:50::/45 maxlen: 45
2a06:98c1:3108::/48 maxlen: 48
2a06:98c1:3123::/48 maxlen: 48
2a06:98c1:310f::/48 maxlen: 48
2a06:98c1:3100::/48 maxlen: 48
2a06:98c1:3200::/48 maxlen: 48
2a06:98c1:3122::/48 maxlen: 48
2a06:98c1:3107::/48 maxlen: 48
2a06:98c1:310e::/48 maxlen: 48
2a06:98c1:3104::/48 maxlen: 48
2a06:98c1:3106::/48 maxlen: 48
2a06:98c1:3121::/48 maxlen: 48
2a06:98c1:310d::/48 maxlen: 48
2a06:98c1:3103::/48 maxlen: 48
2a06:98c1:54::/48 maxlen: 48
2a06:98c1:310a::/48 maxlen: 48
2a06:98c1:3120::/48 maxlen: 48
2a06:98c1:3105::/48 maxlen: 48
2a06:98c1:310c::/48 maxlen: 48
2a06:98c1:3102::/48 maxlen: 48
2a06:98c1:3109::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 355520728 (0x1530d0d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Validity
Not Before: Apr 18 18:26:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e81859808a1a660fdc08e10a26707f9caa22375
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:11:d1:bf:6f:c1:3b:2d:05:9f:dc:7b:72:93:
68:c7:b8:2d:09:ea:17:08:ee:03:4c:7e:99:d1:44:
a9:2b:0e:00:5e:55:62:8a:2a:e7:17:80:6a:5e:86:
ad:d9:83:2b:6c:89:d4:e8:41:f4:8b:42:7b:b5:c5:
b6:a2:6d:4b:78:ac:f9:c1:2b:1a:98:c3:61:e5:6b:
94:4c:4d:cc:71:40:60:f6:04:70:7b:87:58:e4:6e:
6f:b3:93:1d:1b:ee:c6:01:86:fa:d7:b3:9e:b7:b8:
00:30:a7:2c:76:b8:2e:65:08:ca:ae:8f:7f:4e:92:
49:65:ec:ba:6f:0b:77:0a:8d:59:b4:7d:60:b3:95:
ff:f8:8a:80:bd:2a:40:9d:7f:8a:f9:f9:e4:58:01:
c6:be:e8:9b:cd:a2:79:bb:58:ee:6d:9f:03:3b:66:
bd:4f:e6:e5:8d:75:13:2a:76:6f:25:55:0d:dc:e3:
b4:dd:2c:83:38:c8:7b:b2:96:9b:b2:6b:66:cc:7a:
49:ba:35:6d:1a:bd:c5:dc:1f:d6:b4:64:bb:97:43:
c2:05:7d:15:ed:27:dc:a7:f0:bb:09:11:75:87:22:
0c:81:3a:c8:cc:a7:81:73:e0:ab:07:10:2a:c4:75:
76:fc:ae:57:a4:77:31:8b:3a:75:62:b4:fd:54:68:
45:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:81:85:98:08:A1:A6:60:FD:C0:8E:10:A2:67:07:F9:CA:A2:23:75
X509v3 Authority Key Identifier:
keyid:99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/boGFmAihpmD9wI4QomcH-cqiI3U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.64.0-141.101.77.255
141.101.82.0-141.101.85.255
141.101.88.0/22
141.101.94.0-141.101.127.255
188.114.96.0-188.114.104.255
188.114.106.0-188.114.111.255
IPv6:
2a06:98c1:50::/45
2a06:98c1:3100::/44
2a06:98c1:3120::/46
2a06:98c1:3200::/48
Signature Algorithm: sha256WithRSAEncryption
6b:4f:8a:21:7e:86:2b:ce:3f:4c:ba:60:28:e3:0b:38:99:cc:
eb:08:db:51:81:0b:b3:10:81:ea:e6:ba:b8:8e:8e:9d:66:b1:
9e:3e:8e:49:f5:be:62:dd:3b:7b:66:2c:d6:45:be:25:08:14:
4c:e8:9b:e9:28:7f:86:ee:ec:ab:bb:88:16:06:79:dc:2d:3b:
2f:d5:55:ff:29:70:98:c0:b5:18:1a:8a:2e:ee:f1:dc:48:14:
17:d9:c9:10:b8:59:6d:d9:54:47:64:2f:0a:22:53:1d:77:ef:
db:05:52:51:66:76:33:39:23:83:bc:13:98:f1:f3:ba:45:4f:
0b:5e:01:f3:4b:64:7f:61:c9:49:21:b0:ee:03:a3:4f:f5:04:
76:bc:b4:64:5a:65:93:e8:5a:39:89:61:c5:76:92:ac:7e:76:
c7:41:05:84:38:52:63:61:66:bb:82:d1:80:14:86:b5:e4:1e:
66:e5:fa:66:10:86:c3:83:5d:ea:ba:28:d8:32:75:04:67:b8:
33:6e:67:9d:47:21:4e:89:b8:45:9b:77:ae:74:d8:5f:0e:29:
60:bb:6c:cb:63:4c:ff:0d:a0:28:97:65:a3:62:72:ec:e0:c2:
11:3d:25:9f:9b:d2:06:58:8b:60:2d:8e:ff:02:8e:f6:d1:ed:
dd:fd:5d:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:15 2024 by rpki-client on console-fra.rpki-client.org