Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/VPWbC4mrSDrDBY8ezDTA3wF8NCw.roa
File: VPWbC4mrSDrDBY8ezDTA3wF8NCw.roa (raw, json)
Hash identifier: GPy6tQ6yBn0nRME1S8RohR2kBQE2q30ILZEVd7rRjEI=
Subject key identifier: 54:F5:9B:0B:89:AB:48:3A:C3:05:8F:1E:CC:34:C0:DF:01:7C:34:2C
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 027C1B8B
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/VPWbC4mrSDrDBY8ezDTA3wF8NCw.roa
Signing time: Sat 01 Jan 2022 15:57:05 +0000
ROA not before: Sat 01 Jan 2022 15:57:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43160
IP address blocks: 185.44.233.0/24 maxlen: 24
185.44.232.0/22 maxlen: 24
185.44.234.0/23 maxlen: 24
212.63.116.0/22 maxlen: 24
212.63.118.0/24 maxlen: 24
212.63.123.0/24 maxlen: 24
212.63.120.0/24 maxlen: 24
212.63.122.0/24 maxlen: 24
185.162.172.0/23 maxlen: 24
195.82.104.0/24 maxlen: 24
185.94.48.0/22 maxlen: 24
195.82.106.0/24 maxlen: 24
185.196.202.0/23 maxlen: 24
185.196.202.0/24 maxlen: 24
185.196.203.0/24 maxlen: 24
85.217.135.0/24 maxlen: 24
85.217.137.0/24 maxlen: 24
85.217.136.0/24 maxlen: 24
85.217.139.0/24 maxlen: 24
85.217.138.0/24 maxlen: 24
85.217.143.0/24 maxlen: 24
85.217.141.0/24 maxlen: 24
85.217.142.0/24 maxlen: 24
85.217.146.0/24 maxlen: 24
85.217.151.0/24 maxlen: 24
85.217.150.0/24 maxlen: 24
85.217.152.0/24 maxlen: 24
85.217.158.0/24 maxlen: 24
85.217.157.0/24 maxlen: 24
85.217.159.0/24 maxlen: 24
85.217.153.0/24 maxlen: 24
85.217.155.0/24 maxlen: 24
85.217.154.0/24 maxlen: 24
185.130.24.0/23 maxlen: 24
185.130.24.0/22 maxlen: 24
88.98.96.0/20 maxlen: 24
88.98.96.0/23 maxlen: 24
88.98.98.0/24 maxlen: 24
88.98.100.0/22 maxlen: 24
88.98.99.0/24 maxlen: 24
88.98.104.0/23 maxlen: 24
88.98.106.0/23 maxlen: 24
88.98.108.0/23 maxlen: 24
88.98.111.0/24 maxlen: 24
88.98.110.0/24 maxlen: 24
185.130.26.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41687947 (0x27c1b8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Jan 1 15:57:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=54f59b0b89ab483ac3058f1ecc34c0df017c342c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:69:ae:35:bc:cc:d3:a6:e0:9b:72:74:4c:54:
0b:46:b4:4d:04:80:97:9d:02:14:b8:c6:64:72:7e:
bd:2c:2c:2f:b5:9a:68:22:68:9b:23:2d:2e:19:5a:
00:05:52:1b:bd:b4:ac:98:ed:73:73:5b:c0:dd:c8:
5a:76:eb:f9:41:2d:34:e0:ad:8a:d8:55:85:c8:44:
59:e2:e7:5d:f3:6c:28:04:28:a0:47:86:65:93:04:
6f:79:45:5c:25:1f:91:5c:08:c2:be:76:b2:1d:e5:
b7:ce:ab:aa:83:8e:1a:ad:f7:30:40:6b:af:20:38:
7f:1e:32:0d:be:39:8c:3f:a1:8d:a0:9f:9f:07:7b:
08:e3:0a:b8:fc:8c:62:d7:e3:4c:8a:d9:7a:99:58:
b9:64:12:5b:46:8b:1f:3f:89:15:5e:bf:34:41:14:
22:60:9a:22:7c:b3:ee:85:8a:8d:60:6b:39:28:3c:
ef:0f:0a:ae:b6:60:db:7f:65:cc:ad:43:aa:c5:03:
ee:3c:45:85:a1:69:65:85:08:35:18:bb:66:5c:84:
53:41:61:cc:0e:81:66:76:b3:42:d3:3e:ef:fe:43:
91:0d:20:dc:29:f6:38:bb:07:c9:34:2b:f8:33:a2:
58:e5:4e:77:16:4e:6a:69:35:b8:07:d1:88:f2:6f:
da:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:F5:9B:0B:89:AB:48:3A:C3:05:8F:1E:CC:34:C0:DF:01:7C:34:2C
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/VPWbC4mrSDrDBY8ezDTA3wF8NCw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.217.135.0-85.217.139.255
85.217.141.0-85.217.143.255
85.217.146.0/24
85.217.150.0-85.217.155.255
85.217.157.0-85.217.159.255
88.98.96.0/20
185.44.232.0/22
185.94.48.0/22
185.130.24.0/22
185.162.172.0/23
185.196.202.0/23
195.82.104.0/24
195.82.106.0/24
212.63.116.0-212.63.120.255
212.63.122.0/23
Signature Algorithm: sha256WithRSAEncryption
25:d4:e8:53:13:02:e2:65:a5:a0:fe:fe:18:97:c8:13:9a:68:
3f:6a:99:47:6a:3f:7d:76:70:0c:fc:b4:39:52:ac:40:8c:55:
2a:7f:64:68:8c:90:49:a4:0d:a5:10:d2:d1:fb:88:7f:1e:82:
1f:32:20:a7:6b:2b:15:88:a0:d0:9c:3f:8d:9f:c7:59:28:6c:
26:7a:04:2c:c6:7d:91:cf:61:48:53:20:0e:d3:05:65:d8:91:
f7:ff:f3:83:69:d7:3d:7d:0a:6b:3d:ff:1e:a0:ec:ba:02:61:
2d:cd:a6:3e:01:00:fd:c4:cd:a5:f7:87:f0:58:43:6a:e5:b5:
6b:24:77:e9:31:79:d2:c4:47:0f:88:15:b5:aa:8a:61:8c:23:
92:c4:22:5f:fe:82:dc:76:7f:c3:e8:24:f6:f0:b8:c1:ae:b0:
c8:6f:15:e0:74:42:73:3a:6c:b0:8e:a0:ab:38:06:44:3c:ac:
f1:61:c9:df:67:25:bc:d4:49:2e:73:b0:0e:28:5e:c9:2c:dd:
de:2c:0c:fa:f8:4a:82:74:6f:df:39:35:ba:14:4a:59:b9:4b:
8c:42:a0:8a:c7:c9:5f:97:2d:64:e9:84:26:a0:93:be:27:15:
a3:00:04:1f:33:e5:cb:70:94:7b:b1:60:71:df:d0:97:8e:e3:
06:d3:8f:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:36 2024 by rpki-client on console-fra.rpki-client.org