Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/JngAxPP9CrhKOlGLXb9sIA0ZUyw.roa
File: JngAxPP9CrhKOlGLXb9sIA0ZUyw.roa (raw, json)
Hash identifier: NlRBy30XlLPKn8SV3W84RWytv2AWbmxpknGwU8iuhmk=
Subject key identifier: 26:78:00:C4:F3:FD:0A:B8:4A:3A:51:8B:5D:BF:6C:20:0D:19:53:2C
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 18A7D914
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/JngAxPP9CrhKOlGLXb9sIA0ZUyw.roa
Signing time: Mon 04 Jul 2022 12:29:25 +0000
ROA not before: Mon 04 Jul 2022 12:29:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3267
IP address blocks: 82.137.137.0/24 maxlen: 24
86.110.96.0/19 maxlen: 19
86.110.96.0/22 maxlen: 22
193.27.214.0/24 maxlen: 24
193.27.214.0/23 maxlen: 23
194.85.32.0/20 maxlen: 20
86.110.101.0/24 maxlen: 24
86.110.102.0/24 maxlen: 24
86.110.103.0/24 maxlen: 24
82.179.128.0/17 maxlen: 17
86.110.112.0/20 maxlen: 20
194.85.174.0/23 maxlen: 23
80.250.164.0/22 maxlen: 22
80.250.160.0/19 maxlen: 19
80.250.162.0/24 maxlen: 24
80.250.163.0/24 maxlen: 24
80.250.160.0/23 maxlen: 23
80.250.172.0/23 maxlen: 23
80.250.168.0/22 maxlen: 22
80.250.168.0/24 maxlen: 24
80.250.169.0/24 maxlen: 24
80.250.170.0/23 maxlen: 23
80.250.176.0/20 maxlen: 20
80.250.175.0/24 maxlen: 24
194.85.160.0/21 maxlen: 21
194.85.168.0/22 maxlen: 22
194.190.241.0/24 maxlen: 24
194.190.242.0/23 maxlen: 23
194.190.244.0/22 maxlen: 22
194.190.248.0/21 maxlen: 21
82.179.64.0/18 maxlen: 18
85.142.64.0/24 maxlen: 24
85.142.78.0/24 maxlen: 24
194.190.224.0/21 maxlen: 21
194.190.224.0/19 maxlen: 19
194.190.224.0/20 maxlen: 20
194.190.232.0/22 maxlen: 22
82.179.32.0/19 maxlen: 19
194.190.239.0/24 maxlen: 24
194.190.240.0/24 maxlen: 24
194.190.236.0/23 maxlen: 23
194.190.238.0/24 maxlen: 24
2a07:a6c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 413653268 (0x18a7d914)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Jul 4 12:29:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=267800c4f3fd0ab84a3a518b5dbf6c200d19532c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:8a:5d:f6:c7:45:3c:8b:6b:41:a6:aa:c4:da:
d8:c2:73:33:37:1c:49:04:2a:7b:90:5c:b5:aa:4d:
4a:d8:3f:40:44:b1:2e:44:03:19:21:5e:7c:fa:4b:
ff:23:65:57:ba:bc:5e:35:97:f6:0f:77:98:66:77:
a3:f2:22:8d:fd:e5:8b:37:bb:43:85:77:47:87:e8:
d4:56:78:fb:1f:6f:c4:71:71:01:c9:56:55:81:d5:
b0:65:0f:67:92:e4:b9:bb:ef:89:89:a1:a3:bc:20:
ca:36:90:8c:89:c6:a4:2e:cb:bd:2f:d6:9b:c1:8b:
b7:bb:d1:25:41:8d:83:76:fe:a7:ca:c8:cc:8f:c8:
1d:ca:0f:cd:30:6f:bf:94:b7:c9:96:43:36:93:3c:
6a:76:e4:3c:2f:51:6d:5b:05:b4:63:05:2c:68:ae:
67:2b:71:01:0d:3c:07:62:e7:a5:c9:42:e2:7f:f5:
01:32:d0:85:73:83:b1:f1:69:78:0b:f0:0f:6e:b8:
14:93:44:c2:31:a2:a4:94:d8:dd:74:aa:6e:67:ab:
92:40:63:dc:11:66:68:dc:aa:b3:47:b6:62:9b:25:
04:77:e5:f8:a0:c9:63:54:6d:4b:bd:82:68:b9:48:
25:88:fe:44:6e:52:3c:63:8e:14:e4:3c:2e:d9:ee:
7b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:78:00:C4:F3:FD:0A:B8:4A:3A:51:8B:5D:BF:6C:20:0D:19:53:2C
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/JngAxPP9CrhKOlGLXb9sIA0ZUyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.250.160.0/19
82.137.137.0/24
82.179.32.0-82.179.255.255
85.142.64.0/24
85.142.78.0/24
86.110.96.0/19
193.27.214.0/23
194.85.32.0/20
194.85.160.0-194.85.171.255
194.85.174.0/23
194.190.224.0/19
IPv6:
2a07:a6c0::/29
Signature Algorithm: sha256WithRSAEncryption
37:b3:13:58:89:82:38:17:8b:a8:3d:40:48:31:9f:d7:b3:c0:
58:c5:a8:85:24:cb:70:6a:8e:62:92:64:ba:dd:68:df:93:9e:
c6:8f:11:c1:62:70:c7:b9:1f:ba:35:03:76:42:30:19:3b:ca:
05:48:7e:5b:79:5b:a7:df:d4:19:1a:5f:73:f5:a6:c8:28:da:
4e:8d:86:8e:fd:f9:f5:b7:d7:9b:22:83:69:ec:71:47:53:a9:
af:06:62:9a:75:82:a5:b7:a4:48:24:ac:d4:37:4a:b4:cd:d2:
a3:05:46:0a:d7:c8:bc:9b:e3:28:61:cc:f7:41:10:b8:22:33:
e0:ee:f3:52:84:c5:08:87:41:50:dc:0f:7d:50:56:98:bd:12:
1a:97:05:d9:1a:d9:93:37:02:fb:f1:d1:13:e2:52:19:31:91:
b8:27:8d:b6:44:70:58:46:d5:f2:56:2d:5d:83:0b:5f:c2:cf:
2e:4f:ad:cc:64:e7:c1:a1:b6:59:66:70:b9:50:25:63:8f:a4:
a2:e9:7a:f1:63:dc:bb:b3:e5:a1:76:bb:48:36:37:3e:71:3f:
7a:cc:b2:9b:61:f6:8d:bc:82:12:f6:6c:66:8a:5d:c0:99:d4:
54:62:06:04:34:d0:7a:82:f0:20:84:ab:2a:0e:cd:5e:7d:69:
32:b5:06:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:46 2024 by rpki-client on console-fra.rpki-client.org