Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/yFKRt0Avk_AZ_m8PIxMsciy2lB4.roa
File: yFKRt0Avk_AZ_m8PIxMsciy2lB4.roa (raw, json)
Hash identifier: X82CwxuXIgJFwzv2KjtFovws82Tvs8M22l2DNMG++kk=
Subject key identifier: C8:52:91:B7:40:2F:93:F0:19:FE:6F:0F:23:13:2C:72:2C:B6:94:1E
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 035D6A50
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/yFKRt0Avk_AZ_m8PIxMsciy2lB4.roa
Signing time: Mon 11 Apr 2022 14:50:56 +0000
ROA not before: Mon 11 Apr 2022 14:50:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.134.40.0/22 maxlen: 24
212.63.118.0/24 maxlen: 24
212.63.117.0/24 maxlen: 24
212.63.116.0/24 maxlen: 24
212.63.121.0/24 maxlen: 24
212.63.123.0/24 maxlen: 24
212.63.122.0/24 maxlen: 24
185.94.48.0/22 maxlen: 24
185.131.12.0/22 maxlen: 22
85.217.132.0/24 maxlen: 24
85.217.129.0/24 maxlen: 24
85.217.139.0/24 maxlen: 24
85.217.138.0/24 maxlen: 24
85.217.137.0/24 maxlen: 24
85.217.136.0/24 maxlen: 24
85.217.135.0/24 maxlen: 24
85.217.134.0/24 maxlen: 24
85.217.133.0/24 maxlen: 24
85.217.141.0/24 maxlen: 24
85.217.143.0/24 maxlen: 24
85.217.152.0/24 maxlen: 24
85.217.151.0/24 maxlen: 24
85.217.150.0/24 maxlen: 24
85.217.147.0/24 maxlen: 24
85.217.146.0/24 maxlen: 24
85.217.155.0/24 maxlen: 24
85.217.154.0/24 maxlen: 24
85.217.153.0/24 maxlen: 24
85.217.159.0/24 maxlen: 24
85.217.158.0/24 maxlen: 24
85.217.157.0/24 maxlen: 24
85.217.156.0/24 maxlen: 24
185.130.24.0/23 maxlen: 24
185.130.26.0/23 maxlen: 24
185.44.233.0/24 maxlen: 24
185.44.234.0/23 maxlen: 24
185.162.172.0/23 maxlen: 24
185.162.175.0/24 maxlen: 24
185.162.174.0/24 maxlen: 24
195.82.105.0/24 maxlen: 24
195.82.104.0/24 maxlen: 24
195.82.106.0/24 maxlen: 24
195.82.124.0/24 maxlen: 24
185.196.203.0/24 maxlen: 24
185.196.202.0/24 maxlen: 24
185.196.200.0/23 maxlen: 24
88.98.98.0/24 maxlen: 24
88.98.96.0/20 maxlen: 24
88.98.96.0/23 maxlen: 23
88.98.104.0/23 maxlen: 24
88.98.100.0/22 maxlen: 24
88.98.99.0/24 maxlen: 24
88.98.110.0/24 maxlen: 24
88.98.108.0/22 maxlen: 24
88.98.106.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56453712 (0x35d6a50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Apr 11 14:50:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c85291b7402f93f019fe6f0f23132c722cb6941e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:93:f2:95:85:85:d8:6e:8c:7b:3c:5d:c2:dd:
03:49:9b:37:d3:31:bb:d0:ef:95:38:d3:db:3c:5a:
5a:79:7f:81:98:d6:a8:cb:8e:9e:9c:3f:d1:9c:e0:
4a:a6:e8:74:37:a9:37:e6:43:cb:12:c4:e2:a6:7c:
d7:22:60:5d:f7:e9:7a:b5:cd:91:6f:0f:1b:c2:c1:
e1:87:ff:86:c9:c5:ee:a4:a0:b7:61:38:1c:29:35:
a4:c9:08:19:b1:4a:6e:aa:3d:34:ba:13:e8:ee:aa:
6e:dd:09:96:9c:72:ae:cb:e6:66:00:85:68:11:8c:
50:54:4e:dc:d8:e1:6c:c5:0a:cf:4f:46:46:4f:5b:
c4:da:b3:2f:2f:d7:73:72:9e:21:d0:39:93:c7:53:
60:c4:b1:67:3e:9f:d2:82:ab:f3:8d:37:76:c1:ba:
22:ea:38:6b:c7:3c:d4:0e:fa:6f:61:76:a1:12:cc:
e9:58:78:bc:17:d5:48:12:4f:be:c6:87:7e:b1:14:
f6:b8:d6:dc:a6:d3:48:b4:13:a1:d1:25:55:c3:3a:
e9:2f:cf:9b:e8:7a:eb:e9:6b:7c:b1:7e:a3:af:88:
1f:51:e7:5b:dc:a8:ac:e3:81:28:5d:be:0b:5e:c0:
37:5a:61:28:91:bc:7a:e3:b7:1d:9e:58:be:8f:4a:
d5:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:52:91:B7:40:2F:93:F0:19:FE:6F:0F:23:13:2C:72:2C:B6:94:1E
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/yFKRt0Avk_AZ_m8PIxMsciy2lB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.217.129.0/24
85.217.132.0-85.217.139.255
85.217.141.0/24
85.217.143.0/24
85.217.146.0/23
85.217.150.0-85.217.159.255
88.98.96.0/20
185.44.233.0-185.44.235.255
185.94.48.0/22
185.130.24.0/22
185.131.12.0/22
185.134.40.0/22
185.162.172.0/22
185.196.200.0/22
195.82.104.0-195.82.106.255
195.82.124.0/24
212.63.116.0-212.63.118.255
212.63.121.0-212.63.123.255
Signature Algorithm: sha256WithRSAEncryption
1e:24:36:c0:02:0f:3f:d3:8c:60:3e:a7:94:6a:04:5b:2e:43:
10:18:b3:8f:ab:10:ce:75:d8:51:80:dc:04:eb:7a:4b:69:17:
c5:c1:42:cc:b4:ba:64:9a:27:d3:d6:f0:ab:ed:f5:f1:dd:8b:
9f:e7:fb:7b:9e:9c:76:f7:e1:e5:7e:6b:58:3a:39:2a:d4:25:
26:1c:69:76:a7:a1:9b:67:39:cf:d6:ab:db:46:25:c1:93:f8:
42:4c:61:50:6d:f4:58:d9:27:63:bc:86:df:b5:75:e6:7b:80:
14:3d:d3:02:3a:70:5b:70:36:6f:ec:c9:a3:fe:5c:8c:b2:8f:
ef:76:3b:76:fc:a4:97:0e:89:32:ff:91:28:6d:d0:92:c3:bf:
54:2d:64:71:f3:0e:44:17:f5:eb:2c:fb:d6:1a:98:62:ef:36:
20:be:e3:3f:27:e7:4a:af:d5:04:1b:43:2d:d6:32:6d:77:16:
23:e8:66:e3:29:e9:a6:04:f1:66:8c:23:c8:88:0a:9b:5c:56:
b3:83:90:29:82:75:aa:49:ae:f0:2c:b4:7d:3c:75:47:02:99:
6d:8c:47:d8:e7:e3:a7:6f:37:e6:04:58:22:7e:21:73:ab:82:
a4:1d:37:44:5d:ff:01:29:a0:03:ee:32:0a:fd:e0:d3:37:5c:
53:56:64:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:51 2024 by rpki-client on console-ams.rpki-client.org