Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/s2Ka9NbC20lisrrMcJmVmZbnRA4.roa
File: s2Ka9NbC20lisrrMcJmVmZbnRA4.roa (raw, json)
Hash identifier: CN0BY+AkrEkK1O3BNaiqWxU1Tp0cL88hzO/WiAloLsE=
Subject key identifier: B3:62:9A:F4:D6:C2:DB:49:62:B2:BA:CC:70:99:95:99:96:E7:44:0E
Certificate issuer: /CN=411dea53467b6c7143eb23d284569a8183b2e82f
Certificate serial: 0181D83D5C7D53DBF0D2FD5A84C28C5E72A8
Authority key identifier: 41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/s2Ka9NbC20lisrrMcJmVmZbnRA4.roa
Signing time: Thu 07 Jul 2022 10:38:28 +0000
ROA not before: Thu 07 Jul 2022 10:38:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44679
IP address blocks: 185.193.55.0/24 maxlen: 24
185.193.52.0/24 maxlen: 24
185.193.54.0/24 maxlen: 24
185.193.53.0/24 maxlen: 24
84.239.4.0/24 maxlen: 24
84.239.11.0/24 maxlen: 24
84.239.8.0/24 maxlen: 24
84.239.9.0/24 maxlen: 24
84.239.15.0/24 maxlen: 24
84.239.14.0/24 maxlen: 24
84.239.27.0/24 maxlen: 24
84.239.32.0/24 maxlen: 24
84.239.34.0/24 maxlen: 24
84.239.33.0/24 maxlen: 24
84.239.36.0/24 maxlen: 24
84.239.35.0/24 maxlen: 24
84.239.38.0/24 maxlen: 24
84.239.37.0/24 maxlen: 24
84.239.39.0/24 maxlen: 24
84.239.41.0/24 maxlen: 24
84.239.40.0/24 maxlen: 24
84.239.44.0/24 maxlen: 24
84.239.50.0/24 maxlen: 24
84.239.49.0/24 maxlen: 24
84.239.51.0/24 maxlen: 24
84.239.46.0/24 maxlen: 24
84.239.55.0/24 maxlen: 24
84.239.57.0/24 maxlen: 24
84.239.56.0/24 maxlen: 24
84.239.58.0/24 maxlen: 24
84.239.60.0/24 maxlen: 24
84.239.59.0/24 maxlen: 24
84.239.62.0/24 maxlen: 24
84.239.61.0/24 maxlen: 24
84.239.63.0/24 maxlen: 24
2a02:2160:8000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d8:3d:5c:7d:53:db:f0:d2:fd:5a:84:c2:8c:5e:72:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=411dea53467b6c7143eb23d284569a8183b2e82f
Validity
Not Before: Jul 7 10:38:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3629af4d6c2db4962b2bacc7099959996e7440e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:c0:21:e7:ac:fe:86:f6:80:41:4b:5d:ec:9d:
22:53:e8:5b:83:09:7d:4b:6c:21:e0:7e:23:f4:84:
5c:64:c7:67:08:29:4b:53:cc:a3:1e:5c:f5:15:96:
89:83:d9:27:75:18:87:d4:a4:01:41:e1:85:50:39:
7a:ef:da:4e:de:c9:cb:04:43:4c:fe:4f:07:73:f8:
4e:f6:bd:a1:d5:53:04:f8:e9:2a:3f:fb:b8:23:70:
80:7f:29:bc:6e:db:c9:30:db:ad:12:18:5e:0d:18:
9b:a7:7f:ec:ae:b7:57:6c:29:40:fe:2e:e8:1a:fc:
7e:7e:9c:cf:5f:c1:3b:92:1c:64:6c:f2:da:25:b0:
c9:65:ca:f7:85:3d:0e:5a:02:d4:e4:ca:5f:0e:ce:
36:2d:3d:ef:9a:c2:27:26:f0:8f:91:5f:b5:b9:21:
84:f0:87:58:da:4a:29:70:14:ed:50:21:9a:39:60:
ec:c8:78:8f:0b:0b:f9:40:0d:75:df:fe:be:c5:84:
11:f6:a2:a5:8d:ac:18:1e:ae:e5:fe:8d:c3:f2:76:
30:8b:ee:34:4c:18:e6:56:15:64:84:dd:3c:a6:c2:
19:23:0b:ea:f7:67:84:19:88:81:bd:6d:a5:70:d9:
e7:61:54:6f:e7:f3:8c:75:90:1b:b2:eb:99:49:a3:
3f:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:62:9A:F4:D6:C2:DB:49:62:B2:BA:CC:70:99:95:99:96:E7:44:0E
X509v3 Authority Key Identifier:
keyid:41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/s2Ka9NbC20lisrrMcJmVmZbnRA4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/QR3qU0Z7bHFD6yPShFaagYOy6C8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.239.4.0/24
84.239.8.0/23
84.239.11.0/24
84.239.14.0/23
84.239.27.0/24
84.239.32.0-84.239.41.255
84.239.44.0/24
84.239.46.0/24
84.239.49.0-84.239.51.255
84.239.55.0-84.239.63.255
185.193.52.0/22
IPv6:
2a02:2160:8000::/36
Signature Algorithm: sha256WithRSAEncryption
24:18:8f:99:d4:83:f2:f3:0f:7d:0b:90:36:96:f4:c4:b6:2e:
fa:de:46:41:97:c9:03:6e:fe:25:03:7c:5c:d0:a0:f0:57:ed:
19:3b:7c:8b:aa:4b:b1:74:f8:fe:b5:87:e9:41:fb:78:f5:db:
d2:da:c5:7b:ca:03:93:11:9d:11:e0:96:29:ea:55:87:e1:42:
d8:9c:49:30:ad:cf:bc:35:b6:3c:4a:b8:0b:ec:ca:2d:f9:c5:
ff:a4:7c:24:3a:1f:10:c9:a2:44:04:53:76:8b:10:ea:af:f0:
ea:10:ba:82:31:bf:46:ac:d3:da:4d:cd:a9:1a:43:30:b6:61:
f5:5a:4a:b1:e3:f9:ae:59:b4:7b:9a:9b:2e:9b:51:21:ff:ef:
ea:cb:c1:6f:59:18:c7:91:11:07:64:3e:47:58:66:29:a9:de:
c6:62:dd:66:c8:b8:98:e4:01:ca:ca:8f:49:53:e0:9e:40:01:
6f:b9:d5:6f:27:52:16:f6:4b:05:a9:9e:22:e2:0c:10:de:98:
69:7b:45:7f:8c:15:07:e1:a4:83:09:2e:e3:bf:4b:01:d0:3e:
b5:1c:ef:c7:18:f3:84:c9:4a:9d:a1:49:44:27:d7:bd:f3:96:
c4:a2:d6:cc:3d:c1:86:48:2e:d1:aa:37:a4:a6:18:0b:0a:b7:
60:9d:02:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:02 2024 by rpki-client on console-fra.rpki-client.org