Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/88NO8ySo_vXj8yCxeaHJcjDMDrA.roa
File: 88NO8ySo_vXj8yCxeaHJcjDMDrA.roa (raw, json)
Hash identifier: 1JgMStp5PP3pvhaQNoayP+lKOR61TZv67cJnwg2k330=
Subject key identifier: F3:C3:4E:F3:24:A8:FE:F5:E3:F3:20:B1:79:A1:C9:72:30:CC:0E:B0
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 19DB123E
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/88NO8ySo_vXj8yCxeaHJcjDMDrA.roa
Signing time: Sat 01 Jan 2022 15:56:44 +0000
ROA not before: Sat 01 Jan 2022 15:56:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39855
IP address blocks: 89.38.38.0/24 maxlen: 24
45.87.22.0/24 maxlen: 24
45.87.20.0/24 maxlen: 24
45.83.188.0/22 maxlen: 24
185.51.194.0/23 maxlen: 23
185.51.193.0/24 maxlen: 24
45.88.122.0/24 maxlen: 24
45.88.120.0/24 maxlen: 24
136.144.16.0/24 maxlen: 24
136.144.18.0/24 maxlen: 24
136.144.24.0/22 maxlen: 24
45.133.252.0/24 maxlen: 24
45.133.254.0/24 maxlen: 24
136.144.34.0/24 maxlen: 24
136.144.32.0/24 maxlen: 24
188.208.38.0/23 maxlen: 23
45.148.24.0/24 maxlen: 24
45.159.244.0/22 maxlen: 24
45.154.139.0/24 maxlen: 24
45.154.136.0/24 maxlen: 24
45.146.52.0/24 maxlen: 24
185.114.60.0/22 maxlen: 22
185.243.246.0/24 maxlen: 24
185.243.244.0/24 maxlen: 24
185.227.32.0/24 maxlen: 24
45.129.232.0/22 maxlen: 24
89.251.3.0/24 maxlen: 24
89.251.1.0/24 maxlen: 24
89.46.46.0/24 maxlen: 24
45.157.96.0/22 maxlen: 24
89.36.36.0/24 maxlen: 24
45.149.0.0/24 maxlen: 24
45.157.114.0/23 maxlen: 24
45.157.113.0/24 maxlen: 24
45.150.94.0/24 maxlen: 24
45.150.92.0/24 maxlen: 24
45.143.192.0/24 maxlen: 24
45.143.194.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 433787454 (0x19db123e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 15:56:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f3c34ef324a8fef5e3f320b179a1c97230cc0eb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e9:06:0d:5a:ec:a2:26:95:6d:de:9e:dd:56:
b3:05:5c:b1:c0:6e:f6:a5:29:bf:e0:0c:d1:ac:1b:
4c:0a:81:b5:1d:d5:f8:86:28:8d:30:4d:36:f4:2c:
9e:0b:02:e8:a8:fd:03:57:28:c2:d5:5a:b0:2b:bb:
43:e7:57:a2:5e:ec:07:68:7c:d6:a5:14:46:42:e5:
36:58:49:ff:8b:c0:c4:02:86:71:93:83:f0:c3:86:
7e:51:15:5a:31:01:8a:95:14:4a:c0:4d:8f:61:25:
e8:eb:75:c7:ed:87:04:0b:4c:80:c0:ba:9b:dc:be:
bc:60:3b:51:7b:93:7a:2f:39:ac:9f:9c:ce:7a:6d:
8f:a8:45:1f:e3:58:7f:c7:51:f1:4f:0e:de:73:f5:
c5:b8:84:36:1f:25:ef:08:6f:15:ae:cc:a5:b2:8e:
38:c3:ad:66:32:46:08:2a:48:26:48:89:84:52:c1:
0f:3a:93:f0:24:5e:34:57:4e:06:df:98:00:d0:cd:
d7:f0:11:19:66:f7:53:dc:78:5c:b4:3f:e5:c1:df:
36:3b:0e:ca:b1:4e:34:75:1f:88:1d:7c:df:ec:0c:
8d:8e:e4:f4:cc:00:93:61:d2:db:af:8a:82:2f:a7:
47:72:7f:e0:62:c2:f9:e3:26:da:2d:c7:32:69:e9:
72:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:C3:4E:F3:24:A8:FE:F5:E3:F3:20:B1:79:A1:C9:72:30:CC:0E:B0
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/88NO8ySo_vXj8yCxeaHJcjDMDrA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.188.0/22
45.87.20.0/24
45.87.22.0/24
45.88.120.0/24
45.88.122.0/24
45.129.232.0/22
45.133.252.0/24
45.133.254.0/24
45.143.192.0/24
45.143.194.0/24
45.146.52.0/24
45.148.24.0/24
45.149.0.0/24
45.150.92.0/24
45.150.94.0/24
45.154.136.0/24
45.154.139.0/24
45.157.96.0/22
45.157.113.0-45.157.115.255
45.159.244.0/22
89.36.36.0/24
89.38.38.0/24
89.46.46.0/24
89.251.1.0/24
89.251.3.0/24
136.144.16.0/24
136.144.18.0/24
136.144.24.0/22
136.144.32.0/24
136.144.34.0/24
185.51.193.0-185.51.195.255
185.114.60.0/22
185.227.32.0/24
185.243.244.0/24
185.243.246.0/24
188.208.38.0/23
Signature Algorithm: sha256WithRSAEncryption
4e:4e:98:d4:56:1e:e4:61:b6:b0:7f:1d:0b:5b:1b:1b:44:74:
bb:8a:22:c1:6e:25:41:6c:21:b4:23:5b:77:fe:d6:61:c4:cf:
19:aa:62:82:dd:ea:97:d5:61:81:ce:b3:b2:bf:30:78:68:ac:
07:e1:0c:81:bc:a6:15:96:77:d0:7d:6c:2d:b7:87:8e:8c:e7:
1a:10:69:ce:12:ed:52:d3:84:50:ee:e3:89:b1:46:d7:f2:8c:
c3:90:5b:8f:7f:66:f7:6a:dc:75:45:9e:ab:9e:c5:a3:3e:47:
2e:34:af:8d:08:50:a4:31:78:60:7e:f7:a2:e4:0a:47:76:86:
6f:8b:6a:4c:9f:ec:b2:68:c6:ec:76:6d:70:11:61:a1:9c:b9:
05:7b:db:22:7e:84:8d:c4:b2:6f:8a:75:dc:99:91:40:28:f2:
44:27:35:c2:54:92:62:8f:f0:e6:1e:20:d3:45:26:e6:af:df:
85:5e:05:70:1a:9d:96:b4:3d:53:3f:c6:34:16:3c:49:92:84:
81:15:84:71:5f:e5:17:3e:b8:f3:5e:70:ba:67:5e:d0:ea:95:
31:bf:e3:2e:71:5d:a2:ef:95:b6:5e:56:92:1e:44:e8:4a:47:
7e:be:0f:82:3e:ca:9e:b2:b9:99:74:f6:c9:a9:57:ee:89:68:
95:e3:19:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:51 2024 by rpki-client on console-ams.rpki-client.org