Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/hdZsqBYECnuqXYz9l4_w_OBfivw.roa
File: hdZsqBYECnuqXYz9l4_w_OBfivw.roa (raw, json)
Hash identifier: YIschiEkjOO5+Zv5wcVj2SpV0UNNROoARoYfFxsG144=
Subject key identifier: 85:D6:6C:A8:16:04:0A:7B:AA:5D:8C:FD:97:8F:F0:FC:E0:5F:8A:FC
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 018387E5D0CC716D91B2046C24063AF16078
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/hdZsqBYECnuqXYz9l4_w_OBfivw.roa
Signing time: Thu 29 Sep 2022 06:18:48 +0000
ROA not before: Thu 29 Sep 2022 06:18:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31287
IP address blocks: 185.46.163.0/24 maxlen: 24
185.46.160.0/22 maxlen: 22
85.187.205.0/24 maxlen: 24
85.187.206.0/24 maxlen: 24
85.187.204.0/24 maxlen: 24
85.187.207.0/24 maxlen: 24
85.187.222.0/24 maxlen: 24
85.187.232.0/24 maxlen: 24
85.187.235.0/24 maxlen: 24
85.187.234.0/24 maxlen: 24
85.187.248.0/24 maxlen: 24
85.187.250.0/24 maxlen: 24
85.187.42.0/24 maxlen: 24
85.187.50.0/24 maxlen: 24
85.187.63.0/24 maxlen: 24
85.187.62.0/24 maxlen: 24
46.55.252.0/22 maxlen: 22
46.55.252.0/24 maxlen: 24
46.55.253.0/24 maxlen: 24
151.237.128.0/24 maxlen: 24
85.187.4.0/24 maxlen: 24
85.187.3.0/24 maxlen: 24
85.187.6.0/24 maxlen: 24
85.187.8.0/24 maxlen: 24
85.187.10.0/23 maxlen: 23
85.187.16.0/24 maxlen: 24
85.187.15.0/24 maxlen: 24
85.187.18.0/24 maxlen: 24
85.187.20.0/24 maxlen: 24
85.187.184.0/23 maxlen: 23
46.55.254.0/24 maxlen: 24
77.78.152.0/21 maxlen: 21
77.78.154.0/24 maxlen: 24
77.78.153.0/24 maxlen: 24
77.78.159.0/24 maxlen: 24
185.72.58.0/24 maxlen: 24
80.72.64.0/24 maxlen: 24
151.237.91.0/24 maxlen: 24
80.72.72.0/24 maxlen: 24
151.237.92.0/24 maxlen: 24
151.237.93.0/24 maxlen: 24
195.85.215.0/24 maxlen: 24
151.237.36.0/22 maxlen: 22
151.237.36.0/24 maxlen: 24
151.237.38.0/24 maxlen: 24
151.237.37.0/24 maxlen: 24
151.237.39.0/24 maxlen: 24
151.237.63.0/24 maxlen: 24
2a01:9e40::/32 maxlen: 32
2a03:b540::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:87:e5:d0:cc:71:6d:91:b2:04:6c:24:06:3a:f1:60:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Sep 29 06:18:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85d66ca816040a7baa5d8cfd978ff0fce05f8afc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:76:dd:83:47:a2:1a:03:70:86:1d:e2:01:82:
ad:85:9d:b5:a9:ef:a3:11:18:f1:33:ff:b6:f3:a7:
22:30:fb:f4:69:48:29:b7:cc:b7:62:be:ca:4f:f4:
c3:17:ec:c2:f5:43:36:9e:7b:9e:3d:ac:8f:ca:aa:
f7:16:72:11:27:9e:c7:d5:c0:e0:e7:d3:29:19:88:
c1:a3:13:39:74:4b:a4:db:3a:00:11:fc:9b:03:29:
43:5d:75:b7:84:0a:8e:4f:5c:24:7b:f5:82:b9:68:
32:83:1d:f9:9d:f1:33:7c:0e:53:fd:14:05:3d:db:
e8:20:6b:eb:c4:b0:db:c0:2c:b2:0a:0d:f1:6d:66:
e9:cb:5f:04:fa:8b:21:5b:c4:99:41:fd:43:38:cf:
84:7f:18:5a:77:55:48:a8:ea:98:c0:bd:56:2c:75:
59:9f:7a:3a:88:23:bc:00:3a:ed:9c:5e:3c:a6:79:
41:e8:2d:a7:ad:2f:54:9e:2d:32:9d:36:bc:37:65:
e8:a0:10:c4:a1:25:b4:d3:a9:04:f5:6b:e7:9f:6f:
ff:b8:c4:d5:75:74:67:90:e6:31:01:7e:ee:80:2e:
da:4f:79:0c:53:6d:7a:86:33:b7:08:02:98:36:61:
59:09:19:42:34:45:b4:7b:8f:ab:f9:b1:fd:84:f4:
39:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:D6:6C:A8:16:04:0A:7B:AA:5D:8C:FD:97:8F:F0:FC:E0:5F:8A:FC
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/hdZsqBYECnuqXYz9l4_w_OBfivw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.55.252.0/22
77.78.152.0/21
80.72.64.0/24
80.72.72.0/24
85.187.3.0-85.187.4.255
85.187.6.0/24
85.187.8.0/24
85.187.10.0/23
85.187.15.0-85.187.16.255
85.187.18.0/24
85.187.20.0/24
85.187.42.0/24
85.187.50.0/24
85.187.62.0/23
85.187.184.0/23
85.187.204.0/22
85.187.222.0/24
85.187.232.0/24
85.187.234.0/23
85.187.248.0/24
85.187.250.0/24
151.237.36.0/22
151.237.63.0/24
151.237.91.0-151.237.93.255
151.237.128.0/24
185.46.160.0/22
185.72.58.0/24
195.85.215.0/24
IPv6:
2a01:9e40::/32
2a03:b540::/32
Signature Algorithm: sha256WithRSAEncryption
8a:d2:20:33:7b:76:b3:d8:ea:8b:a0:c0:c3:0e:5e:5c:5a:3a:
8e:58:a0:ba:23:66:51:52:d4:56:aa:34:fc:1c:91:ef:1d:6d:
ec:4d:e6:e5:4d:9e:4b:4e:70:0c:67:3a:38:57:e7:e3:80:9f:
c6:87:50:43:33:2c:db:ac:ee:fd:67:33:16:f2:19:26:1f:7f:
99:13:74:1a:d7:1e:16:89:cf:d2:30:e2:93:2d:7b:28:5a:09:
cb:c7:d3:34:cf:e8:d6:dd:b4:75:c4:8d:b8:ce:0a:21:52:3c:
19:1e:97:f6:a9:ea:bb:8c:1b:fd:00:f1:e5:45:09:5b:8b:f7:
27:2a:af:e5:47:58:90:fc:e5:78:d6:ca:78:57:10:84:69:9f:
0f:b5:05:28:f0:9f:ff:4a:d9:37:61:bd:ed:64:a4:21:eb:ce:
7a:de:8f:6b:ed:7c:7c:87:d3:31:63:bc:62:93:da:24:26:43:
6b:85:a3:10:72:7d:89:83:bb:e9:9b:38:5a:d4:14:81:f3:f7:
2d:dd:be:09:de:f8:91:80:2e:ed:74:80:72:10:97:ed:a4:47:
ae:60:ef:19:67:9e:5a:ba:e1:37:02:2c:17:fa:55:ac:d3:9e:
2d:61:48:b6:fc:78:0f:ec:51:7b:54:a1:84:c6:04:f4:6b:eb:
6c:ca:6a:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:41 2024 by rpki-client on console-ams.rpki-client.org