Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/JBenwgWJoB1eOqR9Ssc0bY_Igj8.roa
File: JBenwgWJoB1eOqR9Ssc0bY_Igj8.roa (raw, json)
Hash identifier: OZornkBlZBMZxCBci/qIZhibSIcxw5JVlo4GQLyclP8=
Subject key identifier: 24:17:A7:C2:05:89:A0:1D:5E:3A:A4:7D:4A:C7:34:6D:8F:C8:82:3F
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 03C41A68
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/JBenwgWJoB1eOqR9Ssc0bY_Igj8.roa
Signing time: Wed 18 May 2022 14:09:17 +0000
ROA not before: Wed 18 May 2022 14:09:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.134.40.0/22 maxlen: 24
212.63.118.0/24 maxlen: 24
212.63.117.0/24 maxlen: 24
212.63.116.0/24 maxlen: 24
212.63.121.0/24 maxlen: 24
212.63.123.0/24 maxlen: 24
212.63.122.0/24 maxlen: 24
193.32.236.0/22 maxlen: 24
185.94.48.0/22 maxlen: 24
185.131.12.0/22 maxlen: 22
85.217.132.0/24 maxlen: 24
85.217.129.0/24 maxlen: 24
85.217.139.0/24 maxlen: 24
85.217.138.0/24 maxlen: 24
85.217.137.0/24 maxlen: 24
85.217.136.0/24 maxlen: 24
85.217.135.0/24 maxlen: 24
85.217.134.0/24 maxlen: 24
85.217.133.0/24 maxlen: 24
85.217.141.0/24 maxlen: 24
85.217.143.0/24 maxlen: 24
85.217.152.0/24 maxlen: 24
85.217.151.0/24 maxlen: 24
85.217.150.0/24 maxlen: 24
85.217.147.0/24 maxlen: 24
85.217.146.0/24 maxlen: 24
85.217.155.0/24 maxlen: 24
85.217.154.0/24 maxlen: 24
85.217.153.0/24 maxlen: 24
85.217.159.0/24 maxlen: 24
85.217.158.0/24 maxlen: 24
85.217.157.0/24 maxlen: 24
85.217.156.0/24 maxlen: 24
185.130.24.0/23 maxlen: 24
185.130.26.0/23 maxlen: 24
185.234.184.0/24 maxlen: 24
185.234.186.0/23 maxlen: 23
185.234.185.0/24 maxlen: 24
185.44.233.0/24 maxlen: 24
185.44.234.0/23 maxlen: 24
185.176.84.0/22 maxlen: 24
185.162.172.0/23 maxlen: 24
185.162.175.0/24 maxlen: 24
185.162.174.0/24 maxlen: 24
195.82.105.0/24 maxlen: 24
195.82.104.0/24 maxlen: 24
195.82.106.0/24 maxlen: 24
195.82.124.0/24 maxlen: 24
185.216.216.0/22 maxlen: 22
185.216.218.0/23 maxlen: 23
185.216.217.0/24 maxlen: 24
139.28.76.0/22 maxlen: 22
185.196.203.0/24 maxlen: 24
185.196.202.0/24 maxlen: 24
185.196.200.0/23 maxlen: 24
88.98.98.0/24 maxlen: 24
88.98.96.0/20 maxlen: 24
88.98.96.0/23 maxlen: 23
88.98.104.0/23 maxlen: 24
88.98.100.0/22 maxlen: 24
88.98.99.0/24 maxlen: 24
88.98.110.0/24 maxlen: 24
88.98.108.0/22 maxlen: 24
88.98.106.0/23 maxlen: 24
141.98.52.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63183464 (0x3c41a68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: May 18 14:09:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2417a7c20589a01d5e3aa47d4ac7346d8fc8823f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f4:a7:f0:eb:8d:bd:6a:dd:8b:89:40:80:65:
9c:0e:cf:db:4d:bb:10:8b:6d:26:18:a4:1b:bd:0e:
df:65:db:b5:dd:df:76:79:de:75:08:71:21:3d:e0:
55:00:b5:03:4b:00:f1:5f:48:2c:65:fa:53:0c:91:
1c:6e:71:9d:56:40:6c:20:cd:c5:24:f9:2a:69:ad:
35:bb:db:05:26:f5:1c:52:8b:32:ee:3b:c1:7c:9d:
7e:09:56:1d:fa:bb:d3:cd:46:74:05:b5:5e:35:ee:
50:47:23:7f:7e:5d:53:a2:7e:de:b8:3a:33:0a:4c:
25:50:60:30:09:31:62:9c:0d:03:a0:17:62:fc:60:
3d:a6:7e:fc:ca:2e:a5:e4:3a:98:e4:83:80:29:39:
16:89:ed:41:97:c3:f5:6b:a8:4e:07:ba:9f:35:34:
52:8a:e5:d3:50:7c:ef:9f:c8:41:4d:54:4e:f2:1d:
4a:3a:70:d3:a3:4a:98:c7:11:0e:2a:ac:b5:8d:21:
20:f7:84:f1:34:e5:e0:c9:e9:be:1a:6e:cb:6a:5e:
7f:82:65:87:e6:f7:b4:60:d9:9b:a4:b8:fb:35:af:
8a:99:fb:8e:11:db:02:ae:33:b2:35:e9:e3:6e:b9:
a0:6d:c1:17:4c:33:e6:45:64:a5:aa:fb:85:d0:dd:
6e:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:17:A7:C2:05:89:A0:1D:5E:3A:A4:7D:4A:C7:34:6D:8F:C8:82:3F
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/JBenwgWJoB1eOqR9Ssc0bY_Igj8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.217.129.0/24
85.217.132.0-85.217.139.255
85.217.141.0/24
85.217.143.0/24
85.217.146.0/23
85.217.150.0-85.217.159.255
88.98.96.0/20
139.28.76.0/22
141.98.52.0/22
185.44.233.0-185.44.235.255
185.94.48.0/22
185.130.24.0/22
185.131.12.0/22
185.134.40.0/22
185.162.172.0/22
185.176.84.0/22
185.196.200.0/22
185.216.216.0/22
185.234.184.0/22
193.32.236.0/22
195.82.104.0-195.82.106.255
195.82.124.0/24
212.63.116.0-212.63.118.255
212.63.121.0-212.63.123.255
Signature Algorithm: sha256WithRSAEncryption
5f:12:3f:c4:fb:1f:45:aa:aa:26:f6:ed:17:cf:d3:e1:3b:02:
da:9c:8e:a2:ba:c2:dc:de:69:e8:03:8a:ed:bd:b6:b2:bb:ad:
1f:94:75:c1:e1:bc:0d:95:4d:eb:de:04:94:64:73:22:0f:c1:
4b:3c:9b:6c:b9:da:39:d5:4d:12:e0:9b:e9:30:fe:db:3a:17:
3a:ad:a2:ed:35:ef:5f:f9:4e:0b:3b:3d:50:04:c2:8e:27:7a:
c8:c5:e3:d0:93:eb:86:0a:a7:c3:00:34:ba:ce:12:b9:1c:75:
d8:4a:45:48:d4:37:5d:27:00:e3:41:75:ac:5b:e3:37:3e:fc:
fa:24:f4:bb:1c:43:09:79:c5:14:6e:f2:38:16:c3:f2:f9:e2:
a4:72:f8:17:45:ac:c6:af:b9:78:00:95:87:32:4e:85:c3:a3:
dd:9a:09:db:af:e6:ae:53:84:eb:76:4c:6f:6c:53:63:9f:8b:
b9:ff:51:49:51:05:e8:2a:fb:ba:44:41:ed:e7:d7:68:d1:1a:
06:c2:07:16:b1:4f:37:e6:39:96:c3:20:de:28:b3:b7:e8:cd:
7b:b0:1f:89:8e:81:f0:da:54:10:ca:46:d6:07:c9:b7:3f:5e:
8d:73:3a:6b:1f:4e:4d:5c:24:dc:67:a5:1b:5e:aa:fa:91:5e:
4c:ac:19:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:36 2024 by rpki-client on console-fra.rpki-client.org