Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/FS_j8CiVyf9xWZhObqbbTABhspQ.roa
File: FS_j8CiVyf9xWZhObqbbTABhspQ.roa (raw, json)
Hash identifier: 7/afAS6mTGhBYZZng4wjXM8R10a/lHCSFyqiMhR5HIY=
Subject key identifier: 15:2F:E3:F0:28:95:C9:FF:71:59:98:4E:6E:A6:DB:4C:00:61:B2:94
Certificate issuer: /CN=c755702467770ed69b367b77bbe640bc6db4153e
Certificate serial: 01E3D5DE
Authority key identifier: C7:55:70:24:67:77:0E:D6:9B:36:7B:77:BB:E6:40:BC:6D:B4:15:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x1VwJGd3DtabNnt3u-ZAvG20FT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/FS_j8CiVyf9xWZhObqbbTABhspQ.roa
Signing time: Wed 30 Mar 2022 07:50:03 +0000
ROA not before: Wed 30 Mar 2022 07:50:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29286
IP address blocks: 88.202.0.0/17 maxlen: 17
88.202.4.0/24 maxlen: 24
88.202.8.0/24 maxlen: 24
88.202.5.0/24 maxlen: 24
88.202.7.0/24 maxlen: 24
88.202.6.0/24 maxlen: 24
88.202.18.0/24 maxlen: 24
84.254.133.0/24 maxlen: 24
95.210.192.0/20 maxlen: 20
84.254.138.0/24 maxlen: 24
84.254.143.0/24 maxlen: 24
84.254.141.0/24 maxlen: 24
84.254.152.0/24 maxlen: 24
84.254.150.0/24 maxlen: 24
84.254.149.0/24 maxlen: 24
84.254.151.0/24 maxlen: 24
84.254.148.0/24 maxlen: 24
84.254.159.0/24 maxlen: 24
84.254.157.0/24 maxlen: 24
84.254.156.0/24 maxlen: 24
84.254.158.0/24 maxlen: 24
84.254.153.0/24 maxlen: 24
84.254.155.0/24 maxlen: 24
84.254.154.0/24 maxlen: 24
84.254.163.0/24 maxlen: 24
84.254.160.0/24 maxlen: 24
84.254.162.0/24 maxlen: 24
84.254.161.0/24 maxlen: 24
84.254.166.0/24 maxlen: 24
84.254.171.0/24 maxlen: 24
84.254.172.0/24 maxlen: 24
84.254.167.0/24 maxlen: 24
84.254.169.0/24 maxlen: 24
84.254.168.0/24 maxlen: 24
84.254.174.0/24 maxlen: 24
84.254.173.0/24 maxlen: 24
84.254.175.0/24 maxlen: 24
95.210.142.0/24 maxlen: 24
176.227.128.0/20 maxlen: 20
84.254.129.0/24 maxlen: 24
84.254.128.0/24 maxlen: 24
84.254.131.0/24 maxlen: 24
84.254.128.0/18 maxlen: 18
84.254.190.0/24 maxlen: 24
5.61.192.0/21 maxlen: 21
5.61.197.0/24 maxlen: 24
5.61.193.0/24 maxlen: 24
5.61.195.0/24 maxlen: 24
95.210.0.0/22 maxlen: 22
95.210.0.0/16 maxlen: 16
95.210.94.0/24 maxlen: 24
95.210.105.0/24 maxlen: 24
95.210.110.0/24 maxlen: 24
95.210.36.0/24 maxlen: 24
95.210.34.0/24 maxlen: 24
95.210.68.0/24 maxlen: 24
88.202.85.0/24 maxlen: 24
88.202.84.0/24 maxlen: 24
88.202.90.0/24 maxlen: 24
88.202.96.0/24 maxlen: 24
88.202.95.0/24 maxlen: 24
88.202.98.0/24 maxlen: 24
88.202.97.0/24 maxlen: 24
88.202.93.0/24 maxlen: 24
88.202.105.0/24 maxlen: 24
88.202.103.0/24 maxlen: 24
88.202.102.0/24 maxlen: 24
88.202.104.0/24 maxlen: 24
88.202.99.0/24 maxlen: 24
88.202.101.0/24 maxlen: 24
88.202.100.0/24 maxlen: 24
88.202.106.0/24 maxlen: 24
88.202.107.0/24 maxlen: 24
88.202.121.0/24 maxlen: 24
88.202.30.0/24 maxlen: 24
88.202.32.0/24 maxlen: 24
5.175.64.0/20 maxlen: 20
88.202.47.0/24 maxlen: 24
88.202.55.0/24 maxlen: 24
5.175.77.0/24 maxlen: 24
88.202.64.0/24 maxlen: 24
5.175.76.0/24 maxlen: 24
88.202.63.0/24 maxlen: 24
88.202.66.0/24 maxlen: 24
213.209.160.0/19 maxlen: 19
2a00:ca0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31708638 (0x1e3d5de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c755702467770ed69b367b77bbe640bc6db4153e
Validity
Not Before: Mar 30 07:50:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=152fe3f02895c9ff7159984e6ea6db4c0061b294
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:a7:e9:98:8c:34:30:20:58:de:83:a6:b6:d0:
c2:6d:b9:05:36:6f:97:60:e8:1a:2c:22:e1:6d:5e:
cc:07:1a:27:0a:33:f0:0a:09:d4:0f:b6:d3:7d:9b:
cf:0d:79:6b:0e:fd:e7:94:74:c6:e4:73:64:2f:f6:
20:05:04:02:24:f7:0f:a2:45:3a:a5:c4:2d:27:4b:
23:3d:0b:59:f3:8f:8e:9d:b6:3c:00:50:6d:b5:ff:
a7:88:29:d3:5d:8e:15:76:1d:f0:03:40:19:d6:a6:
63:54:a7:4f:48:4a:ac:87:91:ef:18:37:2b:07:71:
47:42:f2:ca:d5:59:64:2d:d2:d1:d7:37:fe:2f:2c:
b2:84:fc:48:cf:1c:02:95:27:65:a7:91:f7:96:4c:
96:59:0a:be:77:c8:b1:77:f5:d2:35:9c:ad:af:46:
46:e1:eb:e4:8e:b5:dd:be:87:35:d3:8f:38:eb:e2:
c4:4e:5a:f3:93:5f:f4:2c:fb:17:8f:1d:da:87:b2:
d6:bf:87:00:45:7b:3d:a5:5b:e7:90:c9:ec:31:3e:
69:ad:12:e0:c4:a0:22:8d:3e:69:2d:4b:de:f3:ef:
93:a3:63:95:22:4d:ff:4f:a7:f0:9d:38:01:ce:32:
05:99:f9:92:6d:3a:45:3e:a6:6e:83:72:8c:a5:b9:
9c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:2F:E3:F0:28:95:C9:FF:71:59:98:4E:6E:A6:DB:4C:00:61:B2:94
X509v3 Authority Key Identifier:
keyid:C7:55:70:24:67:77:0E:D6:9B:36:7B:77:BB:E6:40:BC:6D:B4:15:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x1VwJGd3DtabNnt3u-ZAvG20FT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/FS_j8CiVyf9xWZhObqbbTABhspQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/x1VwJGd3DtabNnt3u-ZAvG20FT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.61.192.0/21
5.175.64.0/20
84.254.128.0/18
88.202.0.0/17
95.210.0.0/16
176.227.128.0/20
213.209.160.0/19
IPv6:
2a00:ca0::/32
Signature Algorithm: sha256WithRSAEncryption
58:85:05:72:eb:e2:d0:d1:5e:8c:16:54:b5:58:7f:d7:da:88:
5c:e7:76:95:92:1b:2b:ba:73:c7:09:df:c9:d5:3b:8f:f0:d0:
e0:d9:f4:23:6d:40:da:16:66:bc:3a:e2:3c:8d:fa:42:8f:15:
2b:35:94:a1:4c:5b:cd:ce:0c:91:d4:ce:3c:f1:71:26:e9:69:
9e:52:ba:d5:34:3b:85:df:21:06:ff:7e:96:34:8f:26:b5:fb:
13:b3:13:4d:09:71:f5:4d:37:3d:a4:e6:ad:24:d6:e3:92:13:
fa:44:86:f3:9e:ba:27:81:eb:c0:c3:5b:e2:17:0c:29:90:af:
70:56:53:af:6c:c0:b1:5f:8f:bc:d5:dd:02:9a:f9:c9:8c:82:
b9:27:03:61:c7:1b:5d:99:21:00:fd:5a:d5:08:ec:6b:ff:50:
c3:ce:c4:fe:4d:3f:ed:a5:1a:27:8d:e7:62:4b:64:d7:92:85:
15:ba:b1:07:11:b5:a4:2d:fb:a6:f3:e8:87:ee:fa:bb:18:16:
8b:e0:75:09:5d:38:b4:04:b4:00:3e:6e:f2:0c:8d:bb:4b:38:
1a:fd:1a:46:18:41:ae:0b:d3:5e:9c:fb:71:82:6c:f4:5f:07:
6e:53:d8:a6:1c:a0:c2:8a:99:99:30:71:e8:4d:32:7a:9e:da:
55:01:4f:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:19 2024 by rpki-client on console-fra.rpki-client.org