Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/7SnozbEROcZkoVjZRXKGId2D5uQ.roa
File: 7SnozbEROcZkoVjZRXKGId2D5uQ.roa (raw, json)
Hash identifier: a8vwaiM6zbbE8KuofJXIakKF3raEKxwdyjcVFScKseE=
Subject key identifier: ED:29:E8:CD:B1:11:39:C6:64:A1:58:D9:45:72:86:21:DD:83:E6:E4
Certificate issuer: /CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Certificate serial: 0183B6BA3C3356440504B9561E1B4F761A1F
Authority key identifier: 08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/7SnozbEROcZkoVjZRXKGId2D5uQ.roa
Signing time: Sat 08 Oct 2022 08:33:21 +0000
ROA not before: Sat 08 Oct 2022 08:33:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48715
IP address blocks: 185.141.105.0/24 maxlen: 24
185.141.104.0/24 maxlen: 24
185.141.104.0/22 maxlen: 22
185.141.107.0/24 maxlen: 24
185.141.106.0/24 maxlen: 24
185.18.212.0/22 maxlen: 22
185.18.212.0/24 maxlen: 24
185.18.213.0/24 maxlen: 24
185.18.214.0/24 maxlen: 24
185.18.215.0/24 maxlen: 24
195.211.44.0/24 maxlen: 24
195.211.44.0/22 maxlen: 22
195.211.47.0/24 maxlen: 24
195.211.45.0/24 maxlen: 24
195.211.46.0/24 maxlen: 24
195.110.38.0/23 maxlen: 23
91.236.168.0/24 maxlen: 24
91.236.168.0/23 maxlen: 23
91.236.169.0/24 maxlen: 24
152.89.44.0/24 maxlen: 24
152.89.44.0/22 maxlen: 22
152.89.47.0/24 maxlen: 24
152.89.46.0/24 maxlen: 24
152.89.45.0/24 maxlen: 24
185.51.200.0/22 maxlen: 22
185.51.200.0/24 maxlen: 24
185.51.203.0/24 maxlen: 24
185.51.201.0/24 maxlen: 24
185.51.202.0/24 maxlen: 24
185.112.150.0/23 maxlen: 23
185.112.150.0/24 maxlen: 24
185.112.151.0/24 maxlen: 24
185.112.149.0/24 maxlen: 24
185.121.131.0/24 maxlen: 24
185.121.130.0/24 maxlen: 24
185.121.130.0/23 maxlen: 23
88.135.38.0/24 maxlen: 24
88.135.36.0/22 maxlen: 22
88.135.36.0/24 maxlen: 24
88.135.37.0/24 maxlen: 24
185.141.132.0/24 maxlen: 24
185.141.132.0/22 maxlen: 22
185.141.134.0/24 maxlen: 24
185.141.135.0/24 maxlen: 24
185.141.133.0/24 maxlen: 24
188.209.152.0/24 maxlen: 24
188.209.152.0/23 maxlen: 23
188.209.153.0/24 maxlen: 24
88.135.39.0/24 maxlen: 24
185.128.138.0/24 maxlen: 24
185.128.139.0/24 maxlen: 24
185.128.136.0/22 maxlen: 22
185.128.137.0/24 maxlen: 24
185.128.136.0/24 maxlen: 24
2a0a:5e80::/48 maxlen: 48
2a0a:5e80::/64 maxlen: 64
2a0a:5e80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:b6:ba:3c:33:56:44:05:04:b9:56:1e:1b:4f:76:1a:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Validity
Not Before: Oct 8 08:33:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed29e8cdb11139c664a158d945728621dd83e6e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d1:9e:d0:18:c1:01:52:44:95:9a:11:40:c9:
e4:ff:b4:9f:54:8d:d7:26:59:b9:7a:2c:28:36:3e:
3e:a3:44:d0:d2:d8:61:e4:a8:38:79:82:63:b6:db:
56:9b:f1:8b:d8:a8:ce:57:a4:f0:0e:e7:5d:03:d7:
2a:84:c7:29:b1:15:4e:c2:1c:7a:82:f2:c2:08:86:
e3:35:b6:ad:33:75:43:ff:63:70:2a:c7:45:e4:6e:
b6:42:4b:84:27:0d:01:d1:24:87:eb:c9:52:0b:b0:
ce:32:5c:36:e4:3b:b0:7b:3d:e6:6b:68:f0:57:74:
06:5c:61:13:7a:78:a8:ab:50:ba:70:25:4d:61:c4:
2b:05:39:00:59:67:6b:a6:a0:03:2a:60:38:a1:49:
29:1e:4a:6d:04:65:20:26:7b:3e:ef:ad:fd:55:9d:
b3:54:7d:a3:da:b2:a4:42:b8:b6:7b:31:5f:94:8a:
7c:53:c4:9f:bb:90:60:a2:c9:c4:d7:c2:c9:d2:bd:
c0:6b:2e:2e:55:25:68:b8:76:7f:c5:5c:8b:3f:84:
0c:4c:db:92:bf:5d:6d:7a:82:28:28:b6:e2:b1:51:
e1:52:4f:db:67:ed:ae:8b:9e:47:ef:48:d9:6e:10:
e1:f9:88:ac:6c:a7:2c:aa:1d:4f:a1:7d:d4:21:9b:
41:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:29:E8:CD:B1:11:39:C6:64:A1:58:D9:45:72:86:21:DD:83:E6:E4
X509v3 Authority Key Identifier:
keyid:08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/7SnozbEROcZkoVjZRXKGId2D5uQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/CBt6IuUc-5z4QgXkRJmYrVXY8GU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.135.36.0/22
91.236.168.0/23
152.89.44.0/22
185.18.212.0/22
185.51.200.0/22
185.112.149.0-185.112.151.255
185.121.130.0/23
185.128.136.0/22
185.141.104.0/22
185.141.132.0/22
188.209.152.0/23
195.110.38.0/23
195.211.44.0/22
IPv6:
2a0a:5e80::/29
Signature Algorithm: sha256WithRSAEncryption
35:b5:f0:61:fb:43:ba:6e:bb:a7:b5:22:17:30:af:bc:06:6f:
95:4f:9e:43:2c:16:28:8c:83:ea:8e:48:2b:05:07:5a:df:32:
7c:49:86:95:9e:6e:2a:17:e4:2a:f2:9a:75:f0:5a:96:fe:5c:
71:6e:48:d5:04:73:19:66:10:be:98:ca:af:69:f2:c2:71:7a:
92:72:04:ba:55:30:f2:30:dd:1d:86:9f:87:34:f3:65:ff:af:
6f:8b:d4:03:0d:6f:e8:88:a7:c3:00:f3:02:4b:70:db:6e:f1:
22:98:eb:e3:7d:7c:5d:89:6f:c2:12:d0:a7:64:ce:91:ca:b8:
82:5f:4d:c0:64:e8:60:de:7f:61:b8:82:41:bd:48:06:9c:45:
f5:e5:ee:fb:98:69:e6:03:ca:f3:2f:6f:d7:8e:d6:4d:14:40:
b3:2c:0a:b5:3b:13:8b:11:da:b3:68:da:93:51:d3:08:22:66:
6a:b3:c1:76:f6:ec:b6:28:7c:27:1b:70:50:5e:f9:a3:e8:db:
06:ed:eb:ab:f2:f4:8e:65:b1:75:70:0b:5c:44:8e:53:f4:93:
b1:86:14:4f:a1:f5:80:ab:8a:52:4d:39:34:7b:1c:b0:9f:e0:
02:48:7e:5e:1f:78:12:43:0d:1c:19:27:0b:31:45:a7:e0:2c:
a4:50:5c:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:58 2023 by rpki-client on console-fra.rpki-client.org