Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/4b419c-cf8f-4c9a-94d7-bb4b65b6a0d1/1/53nSkqtro-tlzUFJ8k0k3EtD1wE.roa
File: 53nSkqtro-tlzUFJ8k0k3EtD1wE.roa (raw, json)
Hash identifier: bqLbYXLEmz0b7rcng3yWdmCX7gffs7+DejxzJisAM78=
Subject key identifier: E7:79:D2:92:AB:6B:A3:EB:65:CD:41:49:F2:4D:24:DC:4B:43:D7:01
Certificate issuer: /CN=5833294a1cdc1358afc439c0a72733b065a86f8b
Certificate serial: 03E4A8F8
Authority key identifier: 58:33:29:4A:1C:DC:13:58:AF:C4:39:C0:A7:27:33:B0:65:A8:6F:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WDMpShzcE1ivxDnApyczsGWob4s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/4b419c-cf8f-4c9a-94d7-bb4b65b6a0d1/1/53nSkqtro-tlzUFJ8k0k3EtD1wE.roa
Signing time: Sat 01 Jan 2022 02:55:37 +0000
ROA not before: Sat 01 Jan 2022 02:55:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43146
IP address blocks: 185.46.8.0/22 maxlen: 22
194.58.124.0/24 maxlen: 24
194.58.125.0/24 maxlen: 24
80.78.244.0/22 maxlen: 22
80.78.249.0/24 maxlen: 24
176.99.2.0/24 maxlen: 24
176.99.3.0/24 maxlen: 24
176.99.10.0/24 maxlen: 24
176.99.14.0/24 maxlen: 24
212.158.162.0/24 maxlen: 24
194.67.107.0/24 maxlen: 24
89.108.112.0/24 maxlen: 24
89.108.110.0/24 maxlen: 24
89.108.108.0/24 maxlen: 24
89.108.106.0/24 maxlen: 24
89.108.111.0/24 maxlen: 24
89.108.109.0/24 maxlen: 24
89.108.107.0/24 maxlen: 24
89.108.108.0/22 maxlen: 22
89.108.118.0/24 maxlen: 24
89.108.116.0/24 maxlen: 24
89.108.117.0/24 maxlen: 24
89.108.116.0/22 maxlen: 22
89.108.120.0/24 maxlen: 24
89.108.124.0/24 maxlen: 24
89.108.122.0/24 maxlen: 24
89.108.119.0/24 maxlen: 24
89.108.125.0/24 maxlen: 24
89.108.123.0/24 maxlen: 24
89.108.121.0/24 maxlen: 24
89.108.124.0/22 maxlen: 22
89.108.120.0/22 maxlen: 22
89.108.126.0/24 maxlen: 24
89.108.127.0/24 maxlen: 24
89.108.68.0/24 maxlen: 24
89.108.74.0/24 maxlen: 24
89.108.72.0/24 maxlen: 24
89.108.72.0/22 maxlen: 22
89.108.75.0/24 maxlen: 24
89.108.73.0/24 maxlen: 24
89.108.84.0/24 maxlen: 24
89.108.82.0/24 maxlen: 24
89.108.80.0/24 maxlen: 24
89.108.85.0/24 maxlen: 24
89.108.90.0/24 maxlen: 24
89.108.86.0/24 maxlen: 24
89.108.91.0/24 maxlen: 24
89.108.87.0/24 maxlen: 24
89.108.96.0/24 maxlen: 24
89.108.92.0/24 maxlen: 24
89.108.97.0/24 maxlen: 24
89.108.93.0/24 maxlen: 24
89.108.104.0/24 maxlen: 24
89.108.105.0/24 maxlen: 24
2a03:4900:fffd::/48 maxlen: 48
2a03:4900:a0::/48 maxlen: 48
2a03:4900:fffb::/48 maxlen: 48
2a03:4900:ffff::/48 maxlen: 48
2a03:4900:a1::/48 maxlen: 48
2a00:f940:8::/48 maxlen: 48
2a03:4900:fffc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65317112 (0x3e4a8f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5833294a1cdc1358afc439c0a72733b065a86f8b
Validity
Not Before: Jan 1 02:55:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e779d292ab6ba3eb65cd4149f24d24dc4b43d701
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b3:cc:26:d7:47:5d:4a:74:4a:c3:f3:53:a7:
7a:49:3c:83:0e:1c:f1:a8:3f:28:61:d8:c2:ae:98:
7d:94:7d:b3:54:6c:29:73:2d:23:8f:14:4c:fa:53:
07:4c:aa:4b:17:73:48:a9:0d:41:05:61:2b:9a:66:
4a:dc:9a:2a:46:a7:29:76:46:f5:41:49:a1:ff:d2:
0f:5b:fb:7d:1f:07:4e:09:d1:ad:d8:6a:dc:ae:c3:
f9:94:5f:75:74:04:d8:20:fb:0e:31:1c:73:2f:2e:
b7:2e:81:e0:b9:90:9f:2e:a5:24:09:9f:ad:29:1c:
8e:88:89:eb:5e:b5:bb:b7:66:03:66:ea:0f:2a:59:
9d:0d:82:9a:3b:b4:c7:62:ba:49:65:6e:18:4f:35:
b9:79:f8:45:9f:3b:eb:71:42:e1:e1:4c:10:66:d4:
3a:fb:a6:b4:f6:4e:b5:af:c9:c3:b4:00:01:ad:5c:
26:64:f1:90:55:90:74:bf:9d:b3:bb:3a:bb:63:49:
9c:3b:03:39:16:3e:69:14:0d:aa:95:b7:e1:24:c3:
9f:6f:fa:a8:0b:d9:61:bd:ca:6f:7a:9e:aa:ee:fc:
94:dd:95:c4:3d:10:63:29:32:c7:21:6c:39:2a:b8:
b4:fa:82:88:0b:c6:b6:58:bb:b4:fd:39:55:19:c2:
f4:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:79:D2:92:AB:6B:A3:EB:65:CD:41:49:F2:4D:24:DC:4B:43:D7:01
X509v3 Authority Key Identifier:
keyid:58:33:29:4A:1C:DC:13:58:AF:C4:39:C0:A7:27:33:B0:65:A8:6F:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WDMpShzcE1ivxDnApyczsGWob4s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4b419c-cf8f-4c9a-94d7-bb4b65b6a0d1/1/53nSkqtro-tlzUFJ8k0k3EtD1wE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4b419c-cf8f-4c9a-94d7-bb4b65b6a0d1/1/WDMpShzcE1ivxDnApyczsGWob4s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.78.244.0/22
80.78.249.0/24
89.108.68.0/24
89.108.72.0/22
89.108.80.0/24
89.108.82.0/24
89.108.84.0/22
89.108.90.0-89.108.93.255
89.108.96.0/23
89.108.104.0-89.108.112.255
89.108.116.0-89.108.127.255
176.99.2.0/23
176.99.10.0/24
176.99.14.0/24
185.46.8.0/22
194.58.124.0/23
194.67.107.0/24
212.158.162.0/24
IPv6:
2a00:f940:8::/48
2a03:4900:a0::/47
2a03:4900:fffb::-2a03:4900:fffd:ffff:ffff:ffff:ffff:ffff
2a03:4900:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
af:9e:8f:30:00:83:39:75:b8:f2:d6:99:dd:90:e2:e2:45:41:
bb:72:e1:59:d4:af:34:3b:7e:23:a5:a8:50:ee:0a:14:4a:cd:
5e:21:6f:fe:a6:eb:c6:39:70:96:7b:7e:38:08:e7:e9:82:c4:
3f:8e:67:35:1d:d0:b4:c7:4c:8c:91:cd:69:eb:3e:4c:b5:38:
e2:dd:c9:7e:cb:4c:0a:b3:7b:4e:26:7b:97:df:79:7d:6f:b4:
0e:6c:96:8a:ad:c9:26:d7:30:8c:67:54:fe:17:02:f5:32:85:
f8:0b:b1:4e:44:72:af:31:9a:09:3e:91:43:05:1e:7a:e8:0e:
cb:2e:b2:ad:87:85:7b:77:6d:c7:b9:4c:d6:1a:5f:d0:bf:26:
fc:ca:5b:1e:91:93:52:d5:95:5b:07:eb:c0:2b:dd:a9:9a:37:
dc:07:35:08:ca:0d:28:cb:42:8d:e6:00:1c:cf:7d:9a:b5:87:
4e:e1:72:ea:f4:1a:84:15:03:e5:38:8e:5e:be:22:a6:4f:de:
d6:ed:c1:eb:a6:cd:01:41:f6:7a:29:cb:a7:62:00:af:1e:d9:
19:46:93:06:9d:23:09:0c:ea:13:29:1f:b7:d3:e3:b7:7d:ba:
23:bf:75:4f:4a:67:cc:2b:cb:fb:13:12:2f:06:06:66:22:c0:
57:bb:fb:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:34 2024 by rpki-client on console-ams.rpki-client.org