Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/QzdCGhrMG6rfMAcJ5uUty7v3I08.roa
File: QzdCGhrMG6rfMAcJ5uUty7v3I08.roa (raw, json)
Hash identifier: BKKSt8ikbJxklZ4UjJDVz9+nuiUjbQ+S2jEEB+rSAmU=
Subject key identifier: 43:37:42:1A:1A:CC:1B:AA:DF:30:07:09:E6:E5:2D:CB:BB:F7:23:4F
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 0369BC54
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/QzdCGhrMG6rfMAcJ5uUty7v3I08.roa
Signing time: Wed 13 Apr 2022 14:01:51 +0000
ROA not before: Wed 13 Apr 2022 14:01:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.134.40.0/22 maxlen: 24
212.63.118.0/24 maxlen: 24
212.63.117.0/24 maxlen: 24
212.63.116.0/24 maxlen: 24
212.63.121.0/24 maxlen: 24
212.63.123.0/24 maxlen: 24
212.63.122.0/24 maxlen: 24
185.94.48.0/22 maxlen: 24
185.131.12.0/22 maxlen: 22
85.217.132.0/24 maxlen: 24
85.217.129.0/24 maxlen: 24
85.217.139.0/24 maxlen: 24
85.217.138.0/24 maxlen: 24
85.217.137.0/24 maxlen: 24
85.217.136.0/24 maxlen: 24
85.217.135.0/24 maxlen: 24
85.217.134.0/24 maxlen: 24
85.217.133.0/24 maxlen: 24
85.217.141.0/24 maxlen: 24
85.217.143.0/24 maxlen: 24
85.217.152.0/24 maxlen: 24
85.217.151.0/24 maxlen: 24
85.217.150.0/24 maxlen: 24
85.217.147.0/24 maxlen: 24
85.217.146.0/24 maxlen: 24
85.217.155.0/24 maxlen: 24
85.217.154.0/24 maxlen: 24
85.217.153.0/24 maxlen: 24
85.217.159.0/24 maxlen: 24
85.217.158.0/24 maxlen: 24
85.217.157.0/24 maxlen: 24
85.217.156.0/24 maxlen: 24
185.130.24.0/23 maxlen: 24
185.130.26.0/23 maxlen: 24
185.234.184.0/24 maxlen: 24
185.234.186.0/23 maxlen: 23
185.234.185.0/24 maxlen: 24
185.44.233.0/24 maxlen: 24
185.44.234.0/23 maxlen: 24
185.162.172.0/23 maxlen: 24
185.162.175.0/24 maxlen: 24
185.162.174.0/24 maxlen: 24
195.82.105.0/24 maxlen: 24
195.82.104.0/24 maxlen: 24
195.82.106.0/24 maxlen: 24
195.82.124.0/24 maxlen: 24
185.216.216.0/22 maxlen: 22
185.216.218.0/23 maxlen: 23
185.216.217.0/24 maxlen: 24
139.28.76.0/22 maxlen: 22
185.196.203.0/24 maxlen: 24
185.196.202.0/24 maxlen: 24
185.196.200.0/23 maxlen: 24
88.98.98.0/24 maxlen: 24
88.98.96.0/20 maxlen: 24
88.98.96.0/23 maxlen: 23
88.98.104.0/23 maxlen: 24
88.98.100.0/22 maxlen: 24
88.98.99.0/24 maxlen: 24
88.98.110.0/24 maxlen: 24
88.98.108.0/22 maxlen: 24
88.98.106.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57261140 (0x369bc54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Apr 13 14:01:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4337421a1acc1baadf300709e6e52dcbbbf7234f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:fd:e2:37:1d:88:ab:f9:5b:c6:04:47:0a:84:
5a:65:cd:33:6f:5f:ee:7a:df:0b:b0:a7:92:ca:43:
14:21:a9:f1:ef:92:9f:6f:af:49:48:49:81:f7:c7:
7b:65:b7:e5:8e:09:b8:37:95:10:ba:90:a1:de:85:
73:5e:70:fb:77:ea:cd:b1:cc:e3:78:71:8e:2e:d6:
c9:f5:89:20:b6:5d:09:2f:ce:71:72:ff:00:e7:7c:
12:a7:f7:86:f3:e5:3e:c8:90:60:69:0f:53:ab:5b:
6e:09:17:d7:11:3f:5c:8e:8f:cd:30:fc:f9:8e:8e:
dd:1c:fc:a8:51:f2:47:b8:28:2e:22:78:45:6d:49:
d5:2d:e5:71:e9:c6:cd:ed:74:d3:66:83:28:ee:4c:
d8:40:43:6d:ee:52:e1:7c:41:8a:ba:fe:85:53:f5:
90:f9:fc:da:5e:84:35:4c:f3:0b:b5:ba:58:91:e8:
4a:cc:28:08:a9:78:7f:5b:83:e6:1f:e7:cf:c9:a7:
12:9a:12:de:9b:9f:d9:73:48:ff:69:02:d6:02:9f:
95:c0:4a:c6:8d:35:7c:61:f7:0e:47:73:de:95:89:
5d:e3:65:34:b0:3e:64:1d:d5:4c:64:22:4b:25:79:
3b:96:3d:03:8e:dd:24:1c:1b:0f:3a:77:24:1c:0b:
f8:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:37:42:1A:1A:CC:1B:AA:DF:30:07:09:E6:E5:2D:CB:BB:F7:23:4F
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/QzdCGhrMG6rfMAcJ5uUty7v3I08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.217.129.0/24
85.217.132.0-85.217.139.255
85.217.141.0/24
85.217.143.0/24
85.217.146.0/23
85.217.150.0-85.217.159.255
88.98.96.0/20
139.28.76.0/22
185.44.233.0-185.44.235.255
185.94.48.0/22
185.130.24.0/22
185.131.12.0/22
185.134.40.0/22
185.162.172.0/22
185.196.200.0/22
185.216.216.0/22
185.234.184.0/22
195.82.104.0-195.82.106.255
195.82.124.0/24
212.63.116.0-212.63.118.255
212.63.121.0-212.63.123.255
Signature Algorithm: sha256WithRSAEncryption
62:5b:ac:a5:76:b0:62:22:5a:94:79:99:33:9e:90:b8:79:eb:
70:0a:d8:74:5a:5a:6b:f0:9b:11:a5:6d:28:18:9f:c5:8c:14:
87:89:95:9d:34:63:c0:b6:29:d4:c7:88:45:a4:e4:32:3f:71:
49:71:7f:77:97:a3:62:75:e6:81:78:7a:1f:dd:72:c5:00:bf:
57:cb:16:f7:ce:27:33:55:24:5f:04:50:64:d2:54:cd:5b:7a:
8e:ae:25:49:0a:d5:73:63:3d:a8:5a:cc:31:27:57:3f:6f:5a:
b1:c5:c1:4c:b1:a3:b1:e3:3d:4c:9f:b0:5f:6c:37:27:48:7e:
62:92:8d:cc:65:6e:2c:cf:4c:1e:74:0b:46:7c:85:a8:02:ee:
01:75:5b:39:0a:41:31:eb:8b:5a:14:19:94:8c:31:2a:c2:8f:
a9:6f:04:bf:89:13:e7:49:98:49:5f:bf:40:cc:f8:4b:87:4b:
5c:0d:80:c5:73:a4:16:4c:18:f3:86:9a:05:ef:fe:d9:35:bb:
54:83:21:b2:40:3f:03:e0:8d:b5:b1:cd:16:b2:da:de:27:60:
af:27:da:44:9f:3e:2d:75:e4:f5:54:2f:fc:72:a9:75:9b:56:
b7:77:2c:77:85:6a:82:a4:62:7c:80:2a:01:3d:11:4a:bf:b1:
74:99:4a:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:36 2024 by rpki-client on console-fra.rpki-client.org