Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/6XhIutzaw8QkLhk-d7ngqk6nHGE.roa
File: 6XhIutzaw8QkLhk-d7ngqk6nHGE.roa (raw, json)
Hash identifier: OjHTJpvlOqnkkME5KY5VWhZO/q6GIuj7pWWLK05c4sg=
Subject key identifier: E9:78:48:BA:DC:DA:C3:C4:24:2E:19:3E:77:B9:E0:AA:4E:A7:1C:61
Certificate issuer: /CN=edb926f8c603aab79cb46a883bf632564a3faabf
Certificate serial: 01831D27FD2F126268D9C304471DF56F735A
Authority key identifier: ED:B9:26:F8:C6:03:AA:B7:9C:B4:6A:88:3B:F6:32:56:4A:3F:AA:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7bkm-MYDqrectGqIO_YyVko_qr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/6XhIutzaw8QkLhk-d7ngqk6nHGE.roa
Signing time: Thu 08 Sep 2022 12:51:43 +0000
ROA not before: Thu 08 Sep 2022 12:51:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42695
IP address blocks: 86.107.49.0/24 maxlen: 24
86.107.48.0/23 maxlen: 24
185.16.84.0/22 maxlen: 24
89.46.82.0/24 maxlen: 24
89.46.81.0/24 maxlen: 24
89.46.80.0/24 maxlen: 24
89.46.83.0/24 maxlen: 24
89.46.84.0/23 maxlen: 23
89.46.86.0/24 maxlen: 24
89.46.87.0/24 maxlen: 24
185.2.152.0/22 maxlen: 24
188.241.198.0/23 maxlen: 24
188.241.198.0/24 maxlen: 24
188.241.199.0/24 maxlen: 24
89.36.90.0/23 maxlen: 23
45.114.121.0/24 maxlen: 24
45.114.120.0/22 maxlen: 24
45.114.123.0/24 maxlen: 24
45.114.122.0/24 maxlen: 24
141.255.184.0/21 maxlen: 24
37.153.138.0/23 maxlen: 24
185.52.156.0/22 maxlen: 24
89.45.226.0/23 maxlen: 24
89.45.226.0/24 maxlen: 24
37.153.172.0/23 maxlen: 24
188.240.222.0/23 maxlen: 24
91.106.192.0/21 maxlen: 24
91.123.192.0/20 maxlen: 24
89.45.227.0/24 maxlen: 24
185.103.48.0/23 maxlen: 23
185.103.51.0/24 maxlen: 24
185.103.50.0/24 maxlen: 24
89.42.140.0/23 maxlen: 24
185.62.204.0/22 maxlen: 24
185.62.204.0/24 maxlen: 24
185.62.206.0/24 maxlen: 24
185.62.205.0/24 maxlen: 24
185.62.207.0/24 maxlen: 24
116.206.168.0/22 maxlen: 24
188.240.92.0/22 maxlen: 24
31.132.58.0/24 maxlen: 24
31.132.56.0/24 maxlen: 24
31.132.57.0/24 maxlen: 24
77.81.188.0/23 maxlen: 24
188.240.18.0/23 maxlen: 24
188.95.224.0/21 maxlen: 24
46.254.10.0/23 maxlen: 23
46.254.8.0/21 maxlen: 24
46.254.13.0/24 maxlen: 24
46.254.12.0/24 maxlen: 24
46.254.15.0/24 maxlen: 24
46.254.14.0/24 maxlen: 24
188.212.108.0/23 maxlen: 24
103.57.72.0/22 maxlen: 24
103.57.74.0/24 maxlen: 24
86.107.242.0/23 maxlen: 24
77.81.6.0/23 maxlen: 24
103.81.140.0/23 maxlen: 24
103.81.142.0/24 maxlen: 24
103.81.143.0/24 maxlen: 24
89.40.216.0/23 maxlen: 23
2a03:d7c0::/29 maxlen: 48
2a03:b000:3002::/48 maxlen: 48
2a03:b000:200::/40 maxlen: 40
2a03:b000:500::/40 maxlen: 40
2a03:b000:800::/40 maxlen: 40
2a03:b000:700::/40 maxlen: 40
2a03:b000::/40 maxlen: 40
2a03:b000:600::/40 maxlen: 40
2a03:b000:900::/40 maxlen: 40
2a03:b000:b00::/40 maxlen: 40
2a03:b000:100::/40 maxlen: 40
2a03:b000:c00::/40 maxlen: 40
2a03:b000:400::/40 maxlen: 40
2a04:f180::/29 maxlen: 48
2a06:2980::/29 maxlen: 48
2a00:16d8::/32 maxlen: 48
2a03:b000:3001::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:1d:27:fd:2f:12:62:68:d9:c3:04:47:1d:f5:6f:73:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edb926f8c603aab79cb46a883bf632564a3faabf
Validity
Not Before: Sep 8 12:51:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e97848badcdac3c4242e193e77b9e0aa4ea71c61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:90:37:60:37:1b:96:25:ba:44:8e:8b:71:b8:
31:d5:8d:7f:7a:5a:1b:d6:fa:0e:54:0f:15:99:5b:
ce:3f:d7:a7:49:7f:d6:8c:45:e6:a6:19:6e:f9:ba:
24:1f:26:3c:0a:cf:ef:fd:44:25:c5:2a:d9:59:ce:
38:bd:bc:0f:8b:a9:fc:b0:2d:d0:a1:8f:14:d3:a4:
f5:87:60:46:91:18:a9:40:b9:e3:51:c2:4f:62:73:
53:4d:72:07:f6:bb:bb:6b:78:1c:31:f9:54:81:75:
6e:ea:6c:fe:74:e0:63:da:db:ac:19:03:fb:1c:44:
19:2e:ed:86:d3:e9:de:c8:a1:6a:31:98:89:48:a1:
7b:16:f6:cb:5e:f3:76:a7:fd:71:54:5b:b7:c9:45:
7c:73:f8:09:83:12:80:6a:7c:75:98:70:b1:e6:dd:
6b:c6:99:64:15:fc:b5:23:14:c2:02:ab:4a:73:72:
45:b4:68:5c:ad:d9:ed:f7:70:d8:66:8d:3a:82:10:
e4:b6:53:19:f7:45:c4:ca:34:4a:bb:04:9b:45:69:
ef:d7:09:ab:8e:5f:12:a1:68:e3:4f:7c:83:4d:e5:
97:22:2f:46:2e:3d:39:d0:04:42:9c:85:95:de:07:
c4:40:77:cf:2e:54:53:af:46:1e:6a:84:21:ed:2b:
92:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:78:48:BA:DC:DA:C3:C4:24:2E:19:3E:77:B9:E0:AA:4E:A7:1C:61
X509v3 Authority Key Identifier:
keyid:ED:B9:26:F8:C6:03:AA:B7:9C:B4:6A:88:3B:F6:32:56:4A:3F:AA:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7bkm-MYDqrectGqIO_YyVko_qr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/6XhIutzaw8QkLhk-d7ngqk6nHGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/7bkm-MYDqrectGqIO_YyVko_qr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.132.56.0-31.132.58.255
37.153.138.0/23
37.153.172.0/23
45.114.120.0/22
46.254.8.0/21
77.81.6.0/23
77.81.188.0/23
86.107.48.0/23
86.107.242.0/23
89.36.90.0/23
89.40.216.0/23
89.42.140.0/23
89.45.226.0/23
89.46.80.0/21
91.106.192.0/21
91.123.192.0/20
103.57.72.0/22
103.81.140.0/22
116.206.168.0/22
141.255.184.0/21
185.2.152.0/22
185.16.84.0/22
185.52.156.0/22
185.62.204.0/22
185.103.48.0/22
188.95.224.0/21
188.212.108.0/23
188.240.18.0/23
188.240.92.0/22
188.240.222.0/23
188.241.198.0/23
IPv6:
2a00:16d8::/32
2a03:b000::-2a03:b000:2ff:ffff:ffff:ffff:ffff:ffff
2a03:b000:400::-2a03:b000:9ff:ffff:ffff:ffff:ffff:ffff
2a03:b000:b00::-2a03:b000:cff:ffff:ffff:ffff:ffff:ffff
2a03:b000:3001::-2a03:b000:3002:ffff:ffff:ffff:ffff:ffff
2a03:d7c0::/29
2a04:f180::/29
2a06:2980::/29
Signature Algorithm: sha256WithRSAEncryption
3f:73:c7:8c:9a:96:15:1f:cc:99:9e:b5:76:e1:04:41:4c:e5:
f6:d8:2f:de:72:59:50:51:7f:13:77:3a:d4:ad:d8:2a:96:2a:
43:1d:e4:12:bc:a5:0b:40:da:e5:fd:e5:18:8e:c2:8d:ed:fc:
3a:f2:89:af:92:b9:67:85:5e:55:55:ec:cb:10:02:4c:94:55:
00:ab:82:fd:0c:cf:30:17:76:15:d9:d0:53:dc:1f:1a:04:4f:
80:c7:16:0c:39:db:99:df:80:02:cf:24:d7:2a:37:e6:e7:b4:
86:29:65:50:9c:72:a4:09:d3:da:15:d1:6a:25:ba:10:fc:3c:
84:51:91:e4:7b:5c:99:cc:ec:54:05:77:4f:b7:97:7f:b0:93:
2a:c9:07:70:ef:79:f8:5e:f8:7c:ea:35:c2:2a:04:65:f6:fa:
f7:df:bc:58:fb:11:0e:9b:3e:91:4e:c9:89:d3:34:77:7e:0d:
2e:e7:28:e2:a7:1e:ae:c9:5f:61:fa:57:ea:61:cb:a8:37:4a:
d9:2d:b5:02:0e:11:9b:fe:ca:e8:7b:6b:9b:89:1b:7f:4d:8b:
38:7a:ef:16:bc:37:a1:9c:1b:68:1e:e9:57:09:72:6d:aa:70:
87:83:0d:22:d0:96:4a:94:d5:0e:2a:d3:b2:38:4b:f0:b3:a2:
f2:c0:72:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:35 2023 by rpki-client on console-ams.rpki-client.org