Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/6b9ee8-924b-4a31-a464-9f99c1477fbe/1/tRr_PxtUrJl6iuEKTjia7K6vXok.roa
File: tRr_PxtUrJl6iuEKTjia7K6vXok.roa (raw, json)
Hash identifier: loKc1ltEOmdNomLLieIDxaE5n5Q69F4gOfxjo19bY6o=
Subject key identifier: B5:1A:FF:3F:1B:54:AC:99:7A:8A:E1:0A:4E:38:9A:EC:AE:AF:5E:89
Certificate issuer: /CN=681ce4d99ba8ebb91a794abfcbdd15bde09c99f8
Certificate serial: 084DF5A7
Authority key identifier: 68:1C:E4:D9:9B:A8:EB:B9:1A:79:4A:BF:CB:DD:15:BD:E0:9C:99:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aBzk2Zuo67kaeUq_y90VveCcmfg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/6b9ee8-924b-4a31-a464-9f99c1477fbe/1/tRr_PxtUrJl6iuEKTjia7K6vXok.roa
Signing time: Sat 01 Jan 2022 05:56:36 +0000
ROA not before: Sat 01 Jan 2022 05:56:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6752
IP address blocks: 80.80.84.0/22 maxlen: 22
80.80.92.0/22 maxlen: 22
185.87.36.0/22 maxlen: 22
185.33.0.0/22 maxlen: 22
194.158.64.0/22 maxlen: 22
194.158.64.0/24 maxlen: 24
194.158.64.0/19 maxlen: 19
194.158.68.0/22 maxlen: 22
194.158.72.0/23 maxlen: 23
194.158.72.0/22 maxlen: 22
194.158.76.0/22 maxlen: 22
185.87.40.0/22 maxlen: 22
185.87.44.0/22 maxlen: 22
188.241.26.0/23 maxlen: 23
91.187.64.0/19 maxlen: 19
91.187.64.0/22 maxlen: 22
91.187.68.0/22 maxlen: 22
91.187.76.0/22 maxlen: 22
91.187.72.0/22 maxlen: 22
91.187.84.0/22 maxlen: 22
91.187.80.0/22 maxlen: 22
91.187.88.0/22 maxlen: 22
89.150.4.0/22 maxlen: 22
89.150.2.0/23 maxlen: 23
89.150.8.0/22 maxlen: 22
89.150.12.0/22 maxlen: 22
91.187.92.0/22 maxlen: 22
185.194.56.0/22 maxlen: 22
46.172.224.0/19 maxlen: 19
46.172.232.0/22 maxlen: 22
185.4.52.0/22 maxlen: 22
185.132.200.0/22 maxlen: 22
109.111.96.0/22 maxlen: 22
109.111.96.0/19 maxlen: 19
109.111.100.0/22 maxlen: 22
109.111.104.0/22 maxlen: 22
109.111.108.0/22 maxlen: 22
109.111.112.0/22 maxlen: 22
109.111.116.0/22 maxlen: 22
85.94.164.0/22 maxlen: 22
109.111.124.0/22 maxlen: 22
109.111.120.0/22 maxlen: 22
85.94.160.0/19 maxlen: 19
85.94.160.0/22 maxlen: 22
85.94.168.0/22 maxlen: 22
85.94.172.0/22 maxlen: 22
85.94.176.0/22 maxlen: 22
85.94.184.0/22 maxlen: 22
85.94.180.0/22 maxlen: 22
194.158.80.0/22 maxlen: 22
194.158.84.0/22 maxlen: 22
194.158.88.0/22 maxlen: 22
194.158.92.0/22 maxlen: 22
85.94.188.0/22 maxlen: 22
2a02:8060::/31 maxlen: 31
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139326887 (0x84df5a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=681ce4d99ba8ebb91a794abfcbdd15bde09c99f8
Validity
Not Before: Jan 1 05:56:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b51aff3f1b54ac997a8ae10a4e389aecaeaf5e89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ce:0c:17:6e:0f:60:30:41:70:d8:77:a9:a0:
48:85:a9:7a:ee:dd:4d:22:d7:eb:cc:81:36:dc:16:
95:fa:26:5d:81:dd:2a:16:1e:3e:4b:f7:e9:40:ed:
a0:b9:dd:4d:f7:95:ad:9e:62:39:1a:a2:0f:28:fe:
de:8a:db:27:22:47:b7:24:5c:83:ad:47:ab:27:08:
90:f0:fd:7d:b1:1b:0d:a0:fc:51:93:8b:c6:12:aa:
65:08:d6:d7:fd:05:29:07:e6:52:f6:b0:28:e5:2a:
fb:1d:3f:f4:07:df:da:22:5e:dd:28:a3:25:db:6b:
9d:24:8a:9d:67:7e:34:8c:17:95:31:c8:53:18:43:
16:df:c9:f0:e9:a8:f8:dd:0c:69:c9:c6:e5:ae:f7:
8a:4d:f8:ef:ab:b9:b6:d8:71:20:7a:89:54:f8:b1:
cb:d0:b4:6c:f2:a2:a6:03:68:0b:01:29:1e:6c:b4:
7b:7d:1f:52:4a:c2:84:e8:98:2e:c4:e6:2e:38:8f:
77:ea:a7:06:00:ad:83:a9:a3:51:f3:99:38:c8:2a:
39:f3:cc:b7:8b:48:62:72:53:77:29:75:a9:73:d3:
90:4e:2c:3d:4b:ea:19:6c:e6:2a:6e:ed:df:da:b1:
06:ce:d9:a0:4f:d8:5e:3d:cc:f5:5e:83:1f:20:41:
05:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:1A:FF:3F:1B:54:AC:99:7A:8A:E1:0A:4E:38:9A:EC:AE:AF:5E:89
X509v3 Authority Key Identifier:
keyid:68:1C:E4:D9:9B:A8:EB:B9:1A:79:4A:BF:CB:DD:15:BD:E0:9C:99:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aBzk2Zuo67kaeUq_y90VveCcmfg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/6b9ee8-924b-4a31-a464-9f99c1477fbe/1/tRr_PxtUrJl6iuEKTjia7K6vXok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/6b9ee8-924b-4a31-a464-9f99c1477fbe/1/aBzk2Zuo67kaeUq_y90VveCcmfg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.172.224.0/19
80.80.84.0/22
80.80.92.0/22
85.94.160.0/19
89.150.2.0-89.150.15.255
91.187.64.0/19
109.111.96.0/19
185.4.52.0/22
185.33.0.0/22
185.87.36.0-185.87.47.255
185.132.200.0/22
185.194.56.0/22
188.241.26.0/23
194.158.64.0/19
IPv6:
2a02:8060::/31
Signature Algorithm: sha256WithRSAEncryption
a7:c4:fa:f2:64:4c:c6:a4:ce:9f:74:5e:da:e9:42:06:06:c1:
62:ca:2b:fc:2b:52:2f:df:68:d4:18:d8:8f:cc:5e:c6:5f:f3:
af:9c:f4:27:35:a0:96:bd:c0:27:43:20:bc:1b:79:f5:9b:c4:
5c:b5:00:e0:8d:73:4f:44:7f:64:d2:9a:db:83:86:b8:55:07:
60:ae:e5:4b:36:13:f5:de:65:12:1b:e4:27:ca:55:5a:52:9b:
08:d8:13:72:83:ba:48:b5:f8:fb:10:6f:f8:d8:23:fd:35:24:
97:b3:cc:1f:80:ff:87:85:da:75:45:fe:f0:23:a7:b9:00:ab:
8a:44:59:31:7c:f0:f0:1a:4e:d2:13:13:da:53:a2:2c:83:4a:
ef:b0:90:e3:e6:2b:56:83:c4:14:3f:c5:fe:fb:3d:29:ad:9d:
9d:16:be:05:f7:fa:5f:43:cc:87:b4:48:25:82:48:94:a3:e5:
72:7a:5e:9f:ee:7b:3b:e2:36:42:f9:65:11:30:c1:68:e5:55:
e0:ca:df:86:77:b6:28:fc:55:df:cb:ba:9e:81:25:1b:90:83:
06:96:6d:3c:9a:11:39:50:51:4b:1e:a4:af:a7:ac:fd:ca:e8:
3c:67:58:fe:d6:ec:9b:bb:a1:1f:a8:e3:b4:28:e7:3e:e7:e8:
fb:55:61:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:56 2024 by rpki-client on console-ams.rpki-client.org