Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/hc8RDuhriAIW3C7MkKFwqIz8BTQ.roa
File: hc8RDuhriAIW3C7MkKFwqIz8BTQ.roa (raw, json)
Hash identifier: 6VwqkaiSzxcahPZPj2OyfiXHCMRTd5cTmwX5aNuqtfU=
Subject key identifier: 85:CF:11:0E:E8:6B:88:02:16:DC:2E:CC:90:A1:70:A8:8C:FC:05:34
Certificate issuer: /CN=e4a9308742e7eb66506219d829d86185899a1e34
Certificate serial: 01835A877561657FF40B07D38280F0E20612
Authority key identifier: E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/hc8RDuhriAIW3C7MkKFwqIz8BTQ.roa
Signing time: Tue 20 Sep 2022 10:52:50 +0000
ROA not before: Tue 20 Sep 2022 10:52:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48728
IP address blocks: 80.76.165.0/24 maxlen: 24
80.76.164.0/24 maxlen: 24
80.76.160.0/21 maxlen: 21
80.76.162.0/24 maxlen: 24
80.76.160.0/20 maxlen: 20
80.76.161.0/24 maxlen: 24
80.76.163.0/24 maxlen: 24
80.76.171.0/24 maxlen: 24
80.76.168.0/21 maxlen: 21
80.76.170.0/24 maxlen: 24
212.70.96.0/24 maxlen: 24
212.70.96.0/19 maxlen: 19
212.70.98.0/24 maxlen: 24
212.70.102.0/24 maxlen: 24
212.70.99.0/24 maxlen: 24
212.70.109.0/24 maxlen: 24
212.70.110.0/24 maxlen: 24
212.70.112.0/24 maxlen: 24
212.70.111.0/24 maxlen: 24
212.70.107.0/24 maxlen: 24
212.70.114.0/24 maxlen: 24
212.70.113.0/24 maxlen: 24
212.70.116.0/24 maxlen: 24
212.70.115.0/24 maxlen: 24
212.70.117.0/24 maxlen: 24
212.70.118.0/24 maxlen: 24
212.70.119.0/24 maxlen: 24
212.70.121.0/24 maxlen: 24
212.70.126.0/24 maxlen: 24
212.70.127.0/24 maxlen: 24
31.11.48.0/21 maxlen: 21
37.186.37.0/24 maxlen: 24
37.186.38.0/24 maxlen: 24
37.186.32.0/24 maxlen: 24
37.186.34.0/24 maxlen: 24
37.186.32.0/19 maxlen: 19
37.186.33.0/24 maxlen: 24
37.186.36.0/24 maxlen: 24
37.186.35.0/24 maxlen: 24
37.186.44.0/24 maxlen: 24
37.186.39.0/24 maxlen: 24
37.186.41.0/24 maxlen: 24
37.186.40.0/24 maxlen: 24
37.186.43.0/24 maxlen: 24
37.186.42.0/24 maxlen: 24
37.186.51.0/24 maxlen: 24
37.186.50.0/24 maxlen: 24
37.186.46.0/24 maxlen: 24
37.186.45.0/24 maxlen: 24
37.186.48.0/24 maxlen: 24
37.186.47.0/24 maxlen: 24
37.186.49.0/24 maxlen: 24
37.186.58.0/24 maxlen: 24
37.186.57.0/24 maxlen: 24
37.186.53.0/24 maxlen: 24
37.186.52.0/24 maxlen: 24
37.186.55.0/24 maxlen: 24
37.186.56.0/24 maxlen: 24
37.186.60.0/24 maxlen: 24
37.186.59.0/24 maxlen: 24
185.247.88.0/22 maxlen: 22
2a04:7f80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:5a:87:75:61:65:7f:f4:0b:07:d3:82:80:f0:e2:06:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9308742e7eb66506219d829d86185899a1e34
Validity
Not Before: Sep 20 10:52:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85cf110ee86b880216dc2ecc90a170a88cfc0534
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e8:24:6d:28:7d:e1:c4:93:2d:18:dd:dd:74:
71:20:11:b4:ab:75:e3:a1:ee:f4:2a:fd:5c:51:c8:
d6:93:d3:bd:15:bd:f0:c5:d1:10:53:31:24:b0:9e:
73:da:d9:2f:1d:4e:5e:2b:64:5e:8a:ed:17:ff:00:
70:be:7f:4a:81:67:a9:05:e7:ef:06:02:50:84:94:
10:aa:05:02:7f:7f:dd:a3:26:f6:89:13:be:ed:72:
0f:7a:a8:35:5e:2b:ce:bd:6f:d4:0c:5c:7e:47:ab:
c7:2e:17:db:14:fe:92:0d:1d:f1:fd:77:49:f5:53:
d4:ea:63:ad:d5:ab:40:a7:ab:fb:a9:99:89:81:d6:
6b:f8:5b:de:4b:54:1e:a8:eb:5b:af:8d:5f:4e:20:
9a:7f:2f:5c:09:6b:ab:92:80:10:ec:a8:77:c6:50:
1f:2e:6f:88:46:1d:3a:66:1d:b5:37:00:a7:cd:79:
79:75:73:50:0f:2c:e3:a4:d6:e6:64:0f:08:cd:0e:
11:86:d8:3a:2c:10:fb:f8:f1:33:cc:c9:7d:93:83:
5b:55:f6:bf:be:e9:fe:69:d9:22:1f:26:09:d3:f9:
55:b1:ca:86:00:31:c8:f7:2a:8c:06:53:8b:8b:f4:
15:e8:4a:a5:4b:75:6a:73:c1:de:4c:c7:89:ce:0d:
4a:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:CF:11:0E:E8:6B:88:02:16:DC:2E:CC:90:A1:70:A8:8C:FC:05:34
X509v3 Authority Key Identifier:
keyid:E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/hc8RDuhriAIW3C7MkKFwqIz8BTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.48.0/21
37.186.32.0/19
80.76.160.0/20
185.247.88.0/22
212.70.96.0/19
IPv6:
2a04:7f80::/29
Signature Algorithm: sha256WithRSAEncryption
a4:87:92:7e:f5:38:9b:41:2a:16:b3:be:32:47:93:9d:59:6d:
14:2f:98:1c:79:4c:4d:38:04:fd:0a:84:fa:25:5a:f0:45:c3:
66:ba:e6:67:e1:54:a3:25:01:86:f1:71:23:38:0d:1e:a4:91:
0a:7f:8a:cc:40:21:6c:12:8d:7d:24:33:6a:3b:80:84:4a:52:
2f:26:f8:92:3d:ca:09:e9:28:49:6e:51:4d:40:d0:da:e1:08:
bf:d5:6f:a0:d8:67:5c:f0:b2:d2:74:42:6f:f5:67:36:88:85:
24:02:05:59:15:74:fd:e3:a2:41:2a:a5:0f:61:25:02:63:54:
c7:d9:40:d2:92:82:ca:2a:b6:ff:2b:f3:a9:6c:e7:26:7a:36:
c2:e2:8a:f3:29:43:2a:ff:9b:74:34:a7:07:c2:c1:c0:89:3c:
7e:7c:ca:a2:cd:d1:91:38:27:3b:70:17:1a:9e:7d:3f:a5:f8:
d1:3b:1d:95:8e:ad:b4:ce:73:4f:d8:58:22:9c:7f:b5:1a:02:
6a:d7:4d:e2:33:5b:31:21:92:57:85:4e:73:09:06:d1:32:1d:
c5:00:cd:36:c0:ee:8f:23:43:ba:08:de:b5:12:8b:33:85:cc:
41:c0:a3:c1:4a:60:b2:5b:ac:9f:3e:ab:fd:ec:53:96:7c:04:
2c:68:b2:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:35 2023 by rpki-client on console-ams.rpki-client.org