Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/QhucZ7AOzpSxNAHrOlXEYG3Iz-g.roa
File: QhucZ7AOzpSxNAHrOlXEYG3Iz-g.roa (raw, json)
Hash identifier: vfTZpFJggEiRZ8NgnJNcwXYYkaQLvf7iO6I2OU6oFfs=
Subject key identifier: 42:1B:9C:67:B0:0E:CE:94:B1:34:01:EB:3A:55:C4:60:6D:C8:CF:E8
Certificate issuer: /CN=8624f3f661f24be5fef641dc722e5cf5ac87389e
Certificate serial: 018460BB13C8280C0E4FA3F143526540B784
Authority key identifier: 86:24:F3:F6:61:F2:4B:E5:FE:F6:41:DC:72:2E:5C:F5:AC:87:38:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/QhucZ7AOzpSxNAHrOlXEYG3Iz-g.roa
Signing time: Thu 10 Nov 2022 08:49:43 +0000
ROA not before: Thu 10 Nov 2022 08:49:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8784
IP address blocks: 194.117.211.0/24 maxlen: 24
194.117.208.0/24 maxlen: 24
194.117.208.0/20 maxlen: 20
194.117.219.0/24 maxlen: 24
194.117.216.0/24 maxlen: 24
195.46.192.0/19 maxlen: 19
195.46.198.0/24 maxlen: 24
195.46.195.0/24 maxlen: 24
195.46.193.0/24 maxlen: 24
195.46.204.0/24 maxlen: 24
195.46.210.0/24 maxlen: 24
195.46.209.0/24 maxlen: 24
195.46.213.0/24 maxlen: 24
195.46.216.0/24 maxlen: 24
195.46.214.0/24 maxlen: 24
195.46.219.0/24 maxlen: 24
195.46.223.0/24 maxlen: 24
178.22.152.0/21 maxlen: 21
194.153.214.0/24 maxlen: 24
83.169.120.0/24 maxlen: 24
83.169.120.0/22 maxlen: 22
83.169.119.0/24 maxlen: 24
83.169.124.0/24 maxlen: 24
83.169.123.0/24 maxlen: 24
83.169.122.0/24 maxlen: 24
83.169.121.0/24 maxlen: 24
83.169.71.0/24 maxlen: 24
83.169.70.0/23 maxlen: 23
83.169.70.0/24 maxlen: 24
83.169.69.0/24 maxlen: 24
83.169.64.0/18 maxlen: 18
83.169.73.0/24 maxlen: 24
83.169.85.0/24 maxlen: 24
83.169.84.0/24 maxlen: 24
83.169.83.0/24 maxlen: 24
83.169.81.0/24 maxlen: 24
83.169.80.0/24 maxlen: 24
83.169.89.0/24 maxlen: 24
83.169.99.0/24 maxlen: 24
83.169.103.0/24 maxlen: 24
83.169.102.0/24 maxlen: 24
83.169.100.0/24 maxlen: 24
83.169.100.0/22 maxlen: 22
83.169.118.0/24 maxlen: 24
83.169.117.0/24 maxlen: 24
83.169.116.0/22 maxlen: 22
83.169.116.0/24 maxlen: 24
83.169.115.0/24 maxlen: 24
83.169.114.0/24 maxlen: 24
83.169.114.0/23 maxlen: 23
213.139.96.0/19 maxlen: 19
213.139.112.0/24 maxlen: 24
213.139.111.0/24 maxlen: 24
213.139.117.0/24 maxlen: 24
213.139.123.0/24 maxlen: 24
212.37.192.0/19 maxlen: 19
83.169.64.0/23 maxlen: 23
2a02:d50::/32 maxlen: 32
2001:4b90::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:60:bb:13:c8:28:0c:0e:4f:a3:f1:43:52:65:40:b7:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8624f3f661f24be5fef641dc722e5cf5ac87389e
Validity
Not Before: Nov 10 08:49:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=421b9c67b00ece94b13401eb3a55c4606dc8cfe8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:28:af:f8:b9:4c:8f:c4:8d:ca:24:cd:25:f3:
f1:65:8c:c3:79:3d:aa:56:31:86:23:88:4a:a5:05:
31:ee:3f:77:ae:c1:98:33:33:29:24:5d:41:71:94:
9d:14:94:7e:ea:a0:9b:c0:b0:b2:4b:c4:86:2c:34:
71:6b:77:c3:0a:08:f0:f5:83:01:cb:3b:53:3f:e1:
d6:b0:1f:f3:80:4f:60:27:69:e2:1b:97:6a:d3:14:
bb:08:49:af:2f:9d:78:5c:14:c7:50:79:a5:f5:8c:
6d:58:8a:32:b1:5d:cd:aa:02:18:56:15:f0:05:1d:
97:e5:eb:bc:d7:7d:d2:d1:1e:e7:ca:6a:52:0b:0f:
14:92:f5:b1:14:f0:c7:5a:74:ab:90:e3:d6:d6:51:
a2:ab:f8:f6:4f:1f:02:6a:23:79:85:03:e8:46:a3:
c9:ca:05:07:2d:6c:2c:46:a9:48:08:16:a3:64:d5:
6d:23:2e:e6:db:2c:c8:14:5b:37:88:d8:b2:c2:28:
42:43:6a:4a:ea:02:be:ee:8d:57:f6:b8:d6:5d:ed:
84:7a:a1:db:1f:fb:80:50:d5:09:fd:ed:0e:1c:77:
ce:fe:46:c0:44:ed:9d:87:d1:b8:d4:c0:49:0a:b0:
c8:3b:43:9d:28:d0:b9:3c:c2:e2:2f:69:f8:d9:92:
84:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:1B:9C:67:B0:0E:CE:94:B1:34:01:EB:3A:55:C4:60:6D:C8:CF:E8
X509v3 Authority Key Identifier:
keyid:86:24:F3:F6:61:F2:4B:E5:FE:F6:41:DC:72:2E:5C:F5:AC:87:38:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/QhucZ7AOzpSxNAHrOlXEYG3Iz-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.169.64.0/18
178.22.152.0/21
194.117.208.0/20
194.153.214.0/24
195.46.192.0/19
212.37.192.0/19
213.139.96.0/19
IPv6:
2001:4b90::/32
2a02:d50::/32
Signature Algorithm: sha256WithRSAEncryption
75:4a:69:e5:67:db:a3:a4:2e:b1:f7:d9:fd:a5:0a:4e:3b:25:
80:e7:d2:ba:a7:07:d7:d6:d2:b8:6c:d1:09:91:d4:ab:ad:f0:
a0:c4:90:3c:35:f4:c1:65:ae:40:de:9c:9f:8c:c9:6a:c4:4a:
74:d6:5f:43:65:0e:f2:f8:d7:86:3e:a8:ac:3d:ed:6a:40:8b:
5d:70:19:c7:34:57:43:2a:98:3b:86:16:cd:42:01:81:55:3a:
68:75:3a:53:99:c9:44:ce:65:8c:91:57:d5:82:40:82:24:39:
c3:45:a1:d3:43:ca:2c:20:97:16:4b:5f:12:08:a4:78:e5:65:
6e:69:5c:38:4e:7b:02:80:13:8b:08:0f:e3:4c:b0:41:22:6d:
2e:3f:cc:e2:8c:70:69:e9:34:e3:1d:f7:46:18:70:99:1d:85:
27:42:85:ab:6a:40:7b:d7:b2:20:76:ce:eb:a5:fa:2c:6d:49:
41:ee:a4:25:d2:63:7b:ce:c6:aa:94:88:af:b8:cd:f1:de:10:
74:51:cd:4c:c9:fb:c6:1e:80:15:3c:44:01:28:be:8f:e8:cd:
05:2c:05:6d:1b:db:d5:5a:9e:65:b2:80:72:f4:81:4c:ae:09:
ed:5d:c5:1e:a1:28:24:cc:46:19:00:4e:c3:1a:0d:4b:07:44:
ff:80:1b:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:40 2024 by rpki-client on console-fra.rpki-client.org