Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/2c8482-5331-4e57-9974-40837d48473d/1/Xy0ulT31vDxwQIMKa8c1cOJG24k.roa
File: Xy0ulT31vDxwQIMKa8c1cOJG24k.roa (raw, json)
Hash identifier: vfIrrBqiS6tzOLMMBr3nbv5NJ+3f5TWyVWZjN83Weaw=
Subject key identifier: 5F:2D:2E:95:3D:F5:BC:3C:70:40:83:0A:6B:C7:35:70:E2:46:DB:89
Certificate issuer: /CN=4da4d6199aec828f6989e2e84cec17765bac5cd5
Certificate serial: 05F0C3B8
Authority key identifier: 4D:A4:D6:19:9A:EC:82:8F:69:89:E2:E8:4C:EC:17:76:5B:AC:5C:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TaTWGZrsgo9pieLoTOwXdlusXNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/2c8482-5331-4e57-9974-40837d48473d/1/Xy0ulT31vDxwQIMKa8c1cOJG24k.roa
Signing time: Sat 01 Jan 2022 08:59:09 +0000
ROA not before: Sat 01 Jan 2022 08:59:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20776
IP address blocks: 89.16.0.0/20 maxlen: 20
89.16.0.0/19 maxlen: 19
89.16.16.0/21 maxlen: 21
89.16.16.0/20 maxlen: 20
89.16.24.0/21 maxlen: 21
82.197.96.0/19 maxlen: 23
92.49.64.0/19 maxlen: 19
92.49.64.0/20 maxlen: 20
82.197.112.0/20 maxlen: 20
109.62.80.0/20 maxlen: 20
109.62.80.0/21 maxlen: 21
109.62.88.0/21 maxlen: 21
109.62.96.0/20 maxlen: 20
92.49.125.0/24 maxlen: 24
92.49.120.0/21 maxlen: 21
82.197.126.0/24 maxlen: 24
92.49.80.0/20 maxlen: 20
92.49.96.0/19 maxlen: 19
92.49.96.0/20 maxlen: 20
92.49.96.0/21 maxlen: 21
92.49.104.0/24 maxlen: 24
92.49.105.0/24 maxlen: 24
92.49.108.0/22 maxlen: 22
92.49.107.0/24 maxlen: 24
92.49.106.0/24 maxlen: 24
92.49.112.0/20 maxlen: 20
92.49.112.0/21 maxlen: 21
188.115.96.0/21 maxlen: 21
188.115.96.0/19 maxlen: 19
93.176.0.0/19 maxlen: 19
93.176.0.0/20 maxlen: 20
188.115.104.0/21 maxlen: 21
93.176.16.0/20 maxlen: 20
188.115.112.0/22 maxlen: 22
188.115.116.0/22 maxlen: 22
188.115.120.0/21 maxlen: 21
109.62.27.0/24 maxlen: 24
109.62.28.0/22 maxlen: 22
109.62.26.0/24 maxlen: 24
109.62.56.0/21 maxlen: 21
109.62.56.0/22 maxlen: 22
109.62.60.0/22 maxlen: 22
109.62.66.0/24 maxlen: 24
109.62.67.0/24 maxlen: 24
109.62.68.0/23 maxlen: 23
109.62.68.0/22 maxlen: 23
109.62.70.0/23 maxlen: 23
109.62.76.0/22 maxlen: 22
109.62.72.0/21 maxlen: 21
109.62.72.0/22 maxlen: 22
109.62.0.0/17 maxlen: 23
109.62.4.0/22 maxlen: 22
109.62.0.0/19 maxlen: 19
109.62.0.0/21 maxlen: 21
109.62.10.0/23 maxlen: 23
109.62.9.0/24 maxlen: 24
109.62.8.0/24 maxlen: 24
109.62.12.0/23 maxlen: 23
80.243.240.0/21 maxlen: 21
80.243.240.0/20 maxlen: 20
109.62.16.0/21 maxlen: 21
109.62.15.0/24 maxlen: 24
109.62.14.0/24 maxlen: 24
109.62.24.0/23 maxlen: 23
80.243.248.0/21 maxlen: 21
188.115.64.0/20 maxlen: 20
188.115.64.0/19 maxlen: 19
188.115.64.0/18 maxlen: 18
188.115.80.0/20 maxlen: 20
217.175.160.0/19 maxlen: 19
217.175.171.0/24 maxlen: 24
217.175.170.0/24 maxlen: 24
217.175.172.0/24 maxlen: 24
217.175.168.0/24 maxlen: 24
217.175.168.0/21 maxlen: 21
217.175.169.0/24 maxlen: 24
217.175.174.0/23 maxlen: 23
217.175.176.0/21 maxlen: 21
217.175.176.0/22 maxlen: 22
217.175.180.0/22 maxlen: 22
217.175.184.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99664824 (0x5f0c3b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4da4d6199aec828f6989e2e84cec17765bac5cd5
Validity
Not Before: Jan 1 08:59:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f2d2e953df5bc3c7040830a6bc73570e246db89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:63:19:d4:c8:a6:9d:0b:a8:45:23:aa:74:5e:
d6:8b:a2:48:29:4b:b9:27:8e:b6:a8:f1:84:c8:b2:
96:19:32:c7:bb:2c:3b:64:fb:a7:11:a1:6f:92:59:
b0:d0:ac:1e:29:ff:f2:51:f1:83:bb:0a:8f:6c:b2:
80:75:86:f9:2f:0a:7d:d1:e4:e2:99:d2:4d:fb:84:
24:24:b7:87:13:4e:a6:0c:c2:08:1b:78:d7:b7:28:
6b:73:91:2f:6a:6e:a4:3a:94:48:53:cc:4e:92:b0:
64:b2:07:07:3d:e5:82:6d:67:85:43:00:4f:0c:64:
a4:fd:43:cf:ef:ae:59:11:be:7b:2b:05:c5:da:71:
29:8f:9e:4f:3f:42:52:7b:bc:06:7f:0c:41:9c:82:
9a:f9:e2:31:d6:70:b0:f1:89:3c:9b:6f:d1:24:12:
46:8a:1e:3f:da:3a:12:8b:90:7a:df:a6:80:4a:25:
97:2b:5d:37:2d:96:c8:85:9b:89:f9:34:6f:e5:7a:
36:5f:04:f9:cc:4a:f8:62:21:6d:84:38:aa:1e:82:
73:3b:f1:b6:17:db:ee:70:1a:1f:42:3f:47:3d:01:
30:8e:47:67:a0:1a:8a:7a:07:bb:d9:c0:43:be:f0:
b9:e2:38:46:b2:07:c6:cd:79:f5:8f:91:44:bc:13:
0d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:2D:2E:95:3D:F5:BC:3C:70:40:83:0A:6B:C7:35:70:E2:46:DB:89
X509v3 Authority Key Identifier:
keyid:4D:A4:D6:19:9A:EC:82:8F:69:89:E2:E8:4C:EC:17:76:5B:AC:5C:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TaTWGZrsgo9pieLoTOwXdlusXNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/2c8482-5331-4e57-9974-40837d48473d/1/Xy0ulT31vDxwQIMKa8c1cOJG24k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/2c8482-5331-4e57-9974-40837d48473d/1/TaTWGZrsgo9pieLoTOwXdlusXNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.243.240.0/20
82.197.96.0/19
89.16.0.0/19
92.49.64.0/18
93.176.0.0/19
109.62.0.0/17
188.115.64.0/18
217.175.160.0/19
Signature Algorithm: sha256WithRSAEncryption
60:4e:0d:72:51:09:c9:22:5d:5e:15:a9:3d:21:38:48:98:a4:
7a:c4:af:d1:21:c5:5c:ef:e6:cf:ce:47:fd:5a:52:d6:6a:fa:
40:41:02:b0:6e:52:51:a5:c4:d6:14:83:62:22:27:23:35:28:
58:a6:a7:30:c5:26:a6:2b:aa:d3:b6:b1:85:c9:70:c5:dc:f4:
48:4e:a4:1c:5a:dc:7a:7e:cb:c2:e4:47:30:18:08:d0:43:bd:
d0:db:a2:63:60:be:b1:e2:23:ad:c9:53:a2:22:31:9b:4a:70:
10:ae:d3:3a:a4:fd:9b:14:ad:89:62:26:57:75:aa:31:3c:13:
ff:ef:a0:18:8f:6c:86:5a:dd:72:f2:39:7a:a2:7b:0e:1f:d1:
b6:88:20:38:0c:21:7a:0c:a6:af:c9:ef:3a:4b:47:7f:23:35:
50:5b:9e:49:11:df:6a:0a:6b:4f:75:35:a3:c2:a0:54:3e:7c:
a3:67:2c:4d:68:f7:da:ae:2c:50:cf:5a:45:00:36:66:b3:d2:
74:e1:c0:b6:bf:f2:b3:0a:01:c8:3c:7b:1f:ff:81:fb:87:16:
c3:9f:a9:e9:fb:2f:90:3b:fa:12:63:f9:e7:fe:65:0a:6a:05:
f3:d4:bb:c1:ce:58:c7:53:5e:2d:34:1d:8f:c3:85:59:86:65:
f3:c2:d2:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:19 2024 by rpki-client on console-fra.rpki-client.org