Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/26oEhDqYg8YiUNPfg50Wd6i2kbI.roa
File: 26oEhDqYg8YiUNPfg50Wd6i2kbI.roa (raw, json)
Hash identifier: RMcZcfrZVRzBdC2vX82knm8dveKcxRqQdIma0pYV+Ew=
Subject key identifier: DB:AA:04:84:3A:98:83:C6:22:50:D3:DF:83:9D:16:77:A8:B6:91:B2
Certificate issuer: /CN=8624f3f661f24be5fef641dc722e5cf5ac87389e
Certificate serial: 0182FE73DDE79CBEEDB968661F8BB7C6A05E
Authority key identifier: 86:24:F3:F6:61:F2:4B:E5:FE:F6:41:DC:72:2E:5C:F5:AC:87:38:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/26oEhDqYg8YiUNPfg50Wd6i2kbI.roa
Signing time: Fri 02 Sep 2022 13:46:22 +0000
ROA not before: Fri 02 Sep 2022 13:46:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8784
IP address blocks: 194.117.211.0/24 maxlen: 24
194.117.208.0/24 maxlen: 24
194.117.208.0/20 maxlen: 20
194.117.219.0/24 maxlen: 24
194.117.216.0/24 maxlen: 24
195.46.192.0/19 maxlen: 19
195.46.198.0/24 maxlen: 24
195.46.195.0/24 maxlen: 24
195.46.193.0/24 maxlen: 24
195.46.204.0/24 maxlen: 24
195.46.210.0/24 maxlen: 24
195.46.209.0/24 maxlen: 24
195.46.213.0/24 maxlen: 24
195.46.216.0/24 maxlen: 24
195.46.214.0/24 maxlen: 24
195.46.219.0/24 maxlen: 24
195.46.223.0/24 maxlen: 24
178.22.152.0/21 maxlen: 21
194.153.214.0/24 maxlen: 24
83.169.120.0/24 maxlen: 24
83.169.120.0/22 maxlen: 22
83.169.119.0/24 maxlen: 24
83.169.124.0/24 maxlen: 24
83.169.123.0/24 maxlen: 24
83.169.122.0/24 maxlen: 24
83.169.121.0/24 maxlen: 24
83.169.71.0/24 maxlen: 24
83.169.70.0/23 maxlen: 23
83.169.70.0/24 maxlen: 24
83.169.69.0/24 maxlen: 24
83.169.64.0/18 maxlen: 18
83.169.73.0/24 maxlen: 24
83.169.85.0/24 maxlen: 24
83.169.84.0/24 maxlen: 24
83.169.83.0/24 maxlen: 24
83.169.81.0/24 maxlen: 24
83.169.80.0/24 maxlen: 24
83.169.99.0/24 maxlen: 24
83.169.103.0/24 maxlen: 24
83.169.102.0/24 maxlen: 24
83.169.100.0/24 maxlen: 24
83.169.100.0/22 maxlen: 22
83.169.118.0/24 maxlen: 24
83.169.117.0/24 maxlen: 24
83.169.116.0/22 maxlen: 22
83.169.116.0/24 maxlen: 24
83.169.115.0/24 maxlen: 24
83.169.114.0/23 maxlen: 23
83.169.114.0/24 maxlen: 24
213.139.96.0/19 maxlen: 19
213.139.112.0/24 maxlen: 24
213.139.111.0/24 maxlen: 24
213.139.117.0/24 maxlen: 24
213.139.123.0/24 maxlen: 24
212.37.192.0/19 maxlen: 19
83.169.64.0/23 maxlen: 23
2a02:d50::/32 maxlen: 32
2001:4b90::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:fe:73:dd:e7:9c:be:ed:b9:68:66:1f:8b:b7:c6:a0:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8624f3f661f24be5fef641dc722e5cf5ac87389e
Validity
Not Before: Sep 2 13:46:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dbaa04843a9883c62250d3df839d1677a8b691b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:24:df:d4:8c:8d:25:23:03:df:53:d1:ef:83:
e5:c7:7a:de:1b:86:e6:b2:e9:04:46:c1:6c:fa:56:
7f:f4:6f:43:d4:96:64:89:19:71:a4:34:84:82:a3:
a6:63:4a:f6:c1:b1:be:c1:8a:85:76:d1:4e:46:d5:
ad:f7:df:7c:bf:bb:4f:2f:b3:16:96:29:80:0f:c9:
9c:26:2c:03:4e:de:fc:0b:57:5c:18:72:d3:64:64:
17:e2:f8:c0:98:d1:3d:51:d2:0b:7e:ce:79:09:b3:
2c:d2:5b:f2:7b:a2:23:bd:d3:66:06:15:f8:97:3d:
c3:5a:76:bb:a4:8a:7b:dc:a5:9c:99:a8:60:0c:15:
df:51:1c:13:12:d9:42:0e:92:58:ab:da:bf:da:4c:
c2:1b:46:85:b8:21:69:22:2b:0f:35:da:0d:f7:47:
0c:4b:64:11:e5:98:ec:76:6d:54:9f:40:d6:77:eb:
56:58:e6:6f:c6:14:04:39:7b:3a:29:34:fa:4f:ed:
51:57:43:0c:18:a3:cb:ec:e9:4b:1c:db:13:a8:14:
23:30:79:b1:51:5e:01:e9:da:32:eb:77:55:f2:88:
35:e0:8a:96:89:a6:09:9f:1f:2f:80:37:af:f2:83:
46:07:d0:0f:a3:1f:4e:df:25:97:ae:3b:94:21:b3:
40:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:AA:04:84:3A:98:83:C6:22:50:D3:DF:83:9D:16:77:A8:B6:91:B2
X509v3 Authority Key Identifier:
keyid:86:24:F3:F6:61:F2:4B:E5:FE:F6:41:DC:72:2E:5C:F5:AC:87:38:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/26oEhDqYg8YiUNPfg50Wd6i2kbI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.169.64.0/18
178.22.152.0/21
194.117.208.0/20
194.153.214.0/24
195.46.192.0/19
212.37.192.0/19
213.139.96.0/19
IPv6:
2001:4b90::/32
2a02:d50::/32
Signature Algorithm: sha256WithRSAEncryption
d4:f2:d6:4a:43:c5:b2:42:e8:8f:82:d4:a0:50:ea:c2:34:48:
87:49:ff:31:10:f9:66:e6:87:17:59:a4:5c:c1:f9:30:fd:26:
4a:5d:bd:33:e1:38:25:d5:c4:64:b0:4a:d6:ae:d1:57:f9:23:
4e:12:54:c9:2c:3b:b3:eb:ed:8a:df:34:55:5f:b6:10:a2:d9:
c7:3e:62:9b:00:e6:51:93:0b:29:f9:e1:c6:37:4b:f8:bf:8e:
f8:ff:6c:94:ba:79:36:09:bb:bc:98:da:d5:40:59:ef:ca:7c:
97:b9:0b:da:48:cd:46:4f:3b:2c:93:25:f5:3e:67:56:b6:cd:
c3:4e:49:8b:83:8b:a6:29:8e:0c:67:81:21:8b:0f:0e:7d:33:
94:c0:ee:38:74:bc:26:a5:33:4f:f9:92:14:ec:2f:e0:8a:37:
3a:2d:9b:68:85:fd:9e:5c:46:4f:ad:2b:8b:aa:c1:13:bb:f6:
35:9d:53:d9:2b:e6:8e:85:78:55:1a:74:a9:35:2f:f1:eb:45:
8a:18:10:3f:9f:22:60:9e:7b:74:8c:f5:74:10:86:7c:bc:af:
5e:f3:8f:07:55:8c:45:81:f3:20:e8:fc:4c:fe:52:83:40:de:
95:da:a9:3a:4e:5e:3d:02:92:b4:c6:fd:28:c4:ce:64:30:53:
50:af:94:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:31 2024 by rpki-client on console-ams.rpki-client.org