Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/BGYi_b-FEESx1m47lVTeCn37tEQ.roa
File: BGYi_b-FEESx1m47lVTeCn37tEQ.roa (raw, json)
Hash identifier: gwwtr+EuGTRN2jdz7/zu+5TJAe7lQPzOTZTti4CZpNk=
Subject key identifier: 04:66:22:FD:BF:85:10:44:B1:D6:6E:3B:95:54:DE:0A:7D:FB:B4:44
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 18825554
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/BGYi_b-FEESx1m47lVTeCn37tEQ.roa
Signing time: Tue 21 Jun 2022 11:55:44 +0000
ROA not before: Tue 21 Jun 2022 11:55:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3267
IP address blocks: 82.137.137.0/24 maxlen: 24
86.110.96.0/19 maxlen: 19
86.110.96.0/22 maxlen: 22
193.27.214.0/24 maxlen: 24
193.27.214.0/23 maxlen: 23
194.85.32.0/20 maxlen: 20
86.110.101.0/24 maxlen: 24
82.179.128.0/17 maxlen: 17
86.110.112.0/20 maxlen: 20
194.85.174.0/23 maxlen: 23
80.250.164.0/22 maxlen: 22
80.250.160.0/19 maxlen: 19
80.250.162.0/24 maxlen: 24
80.250.163.0/24 maxlen: 24
80.250.160.0/23 maxlen: 23
80.250.172.0/23 maxlen: 23
80.250.168.0/22 maxlen: 22
80.250.168.0/24 maxlen: 24
80.250.169.0/24 maxlen: 24
80.250.170.0/23 maxlen: 23
80.250.176.0/20 maxlen: 20
80.250.175.0/24 maxlen: 24
194.85.160.0/21 maxlen: 21
194.85.168.0/22 maxlen: 22
194.190.241.0/24 maxlen: 24
194.190.242.0/23 maxlen: 23
194.190.244.0/22 maxlen: 22
194.190.248.0/21 maxlen: 21
82.179.64.0/18 maxlen: 18
85.142.64.0/24 maxlen: 24
85.142.78.0/24 maxlen: 24
194.190.224.0/21 maxlen: 21
194.190.224.0/19 maxlen: 19
194.190.224.0/20 maxlen: 20
194.190.232.0/22 maxlen: 22
82.179.32.0/19 maxlen: 19
194.190.239.0/24 maxlen: 24
194.190.240.0/24 maxlen: 24
194.190.236.0/23 maxlen: 23
194.190.238.0/24 maxlen: 24
2a07:a6c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 411194708 (0x18825554)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Jun 21 11:55:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=046622fdbf851044b1d66e3b9554de0a7dfbb444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a1:7e:47:5b:33:8b:85:10:76:5a:af:95:af:
20:32:ee:bb:96:e1:d6:a5:8c:e3:85:f6:0f:96:06:
c8:75:95:07:dc:1b:f8:84:74:ba:aa:91:f1:ed:b7:
d5:9b:93:2f:c2:4a:d4:31:a5:87:5c:7a:2f:0c:89:
49:ef:32:d6:45:1b:a1:a5:4e:0d:29:4b:2d:0f:fe:
81:cb:d6:5b:14:c6:d3:35:8c:85:2b:4e:7b:ab:5c:
77:d0:1d:68:29:d1:91:1d:41:34:be:cc:80:c9:15:
b5:ad:9a:8a:96:cf:67:19:d9:97:05:0c:24:1b:ea:
82:e3:ca:fc:f8:11:fa:4b:71:0e:96:b5:70:f1:22:
44:6e:1b:a6:be:cc:76:75:c3:0a:66:e5:1d:66:94:
b9:21:86:b7:10:c1:5e:fc:7a:26:f4:89:7c:b5:9a:
d1:8f:25:fa:94:28:84:16:3b:7d:ac:9e:5d:fd:0f:
ee:23:a4:22:b5:cc:6e:f6:3e:8d:a1:2d:f6:72:63:
95:ba:0f:28:e8:4c:c6:dd:76:19:41:17:08:8b:c4:
5a:66:a3:9d:f1:e1:4a:e4:f0:87:86:a9:a5:d5:71:
0c:a5:46:55:0f:54:fe:03:49:ee:2a:2b:de:4e:58:
61:92:1c:5a:33:a5:e7:39:99:ac:92:1c:fb:c4:2c:
70:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:66:22:FD:BF:85:10:44:B1:D6:6E:3B:95:54:DE:0A:7D:FB:B4:44
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/BGYi_b-FEESx1m47lVTeCn37tEQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.250.160.0/19
82.137.137.0/24
82.179.32.0-82.179.255.255
85.142.64.0/24
85.142.78.0/24
86.110.96.0/19
193.27.214.0/23
194.85.32.0/20
194.85.160.0-194.85.171.255
194.85.174.0/23
194.190.224.0/19
IPv6:
2a07:a6c0::/29
Signature Algorithm: sha256WithRSAEncryption
4b:fd:0d:67:d2:21:43:a2:dc:75:20:69:d7:f5:68:3b:69:64:
21:93:9f:7d:dc:43:9e:37:fc:d1:16:2c:8f:dc:c5:94:47:44:
da:57:2f:f7:ca:74:c7:d7:3f:07:e8:d7:1e:7d:e2:4e:45:0a:
39:db:1b:3e:31:5d:5c:25:90:bf:8f:f2:fe:28:cd:58:bd:3d:
d4:b8:41:c4:6c:66:59:9f:ba:22:85:09:94:2e:e0:1a:b1:ba:
50:df:25:3a:c4:98:44:19:45:aa:64:df:19:f1:56:b0:40:a7:
43:eb:f2:3c:d1:8b:d8:d8:03:91:93:c1:94:c8:ef:93:cb:56:
ae:54:7e:43:45:93:b9:62:7a:52:28:2e:bd:3c:d4:78:c3:f3:
33:a0:83:79:94:29:55:2a:10:66:53:c7:79:29:5b:ba:73:1e:
1b:b1:5f:34:73:b5:9a:2d:b5:25:d6:3c:5c:cd:1f:dc:b2:78:
af:65:26:5b:c7:5a:5a:50:65:cd:95:82:f1:9a:5b:62:54:7c:
6d:58:c1:be:e6:31:09:2f:ce:e2:6d:f7:73:a6:2c:78:0a:13:
1a:8d:58:15:2f:0d:86:02:f7:36:73:08:5a:44:87:d9:9c:b9:
f4:fe:97:82:01:7c:17:11:84:eb:eb:6f:fe:2e:f1:67:5e:08:
8d:d4:e9:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:01 2024 by rpki-client on console-ams.rpki-client.org