Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/DbmCOkHgRAWNha-jNXLNUSPPINQ.roa
File: DbmCOkHgRAWNha-jNXLNUSPPINQ.roa (raw, json)
Hash identifier: HaoXcK7jvO1lLGDfls23xUSX9lfCxuVHyBsQIDO9SkU=
Subject key identifier: 0D:B9:82:3A:41:E0:44:05:8D:85:AF:A3:35:72:CD:51:23:CF:20:D4
Certificate issuer: /CN=edb926f8c603aab79cb46a883bf632564a3faabf
Certificate serial: 16DD30D7
Authority key identifier: ED:B9:26:F8:C6:03:AA:B7:9C:B4:6A:88:3B:F6:32:56:4A:3F:AA:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7bkm-MYDqrectGqIO_YyVko_qr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/DbmCOkHgRAWNha-jNXLNUSPPINQ.roa
Signing time: Tue 01 Mar 2022 08:24:59 +0000
ROA not before: Tue 01 Mar 2022 08:24:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42695
IP address blocks: 86.107.49.0/24 maxlen: 24
86.107.48.0/24 maxlen: 24
89.46.81.0/24 maxlen: 24
89.46.80.0/24 maxlen: 24
89.46.83.0/24 maxlen: 24
89.46.82.0/24 maxlen: 24
89.46.84.0/23 maxlen: 23
89.46.86.0/24 maxlen: 24
89.46.87.0/24 maxlen: 24
185.2.152.0/22 maxlen: 22
188.241.198.0/24 maxlen: 24
188.241.199.0/24 maxlen: 24
89.36.90.0/23 maxlen: 23
45.114.121.0/24 maxlen: 24
45.114.120.0/24 maxlen: 24
45.114.123.0/24 maxlen: 24
45.114.122.0/24 maxlen: 24
141.255.184.0/21 maxlen: 21
37.153.138.0/23 maxlen: 23
185.52.156.0/22 maxlen: 24
89.45.226.0/24 maxlen: 24
37.153.172.0/23 maxlen: 23
188.240.222.0/23 maxlen: 23
91.106.192.0/21 maxlen: 24
91.123.192.0/20 maxlen: 32
89.45.227.0/24 maxlen: 24
185.103.48.0/23 maxlen: 23
185.103.51.0/24 maxlen: 24
185.103.50.0/24 maxlen: 24
89.42.140.0/23 maxlen: 23
185.62.204.0/24 maxlen: 24
185.62.206.0/24 maxlen: 24
185.62.205.0/24 maxlen: 24
185.62.207.0/24 maxlen: 24
116.206.168.0/22 maxlen: 22
188.240.92.0/22 maxlen: 24
77.81.188.0/23 maxlen: 23
188.240.18.0/23 maxlen: 23
188.95.224.0/21 maxlen: 24
46.254.10.0/23 maxlen: 23
46.254.8.0/21 maxlen: 24
46.254.13.0/24 maxlen: 24
46.254.12.0/24 maxlen: 24
46.254.15.0/24 maxlen: 24
46.254.14.0/24 maxlen: 24
188.212.108.0/23 maxlen: 23
103.57.74.0/24 maxlen: 24
103.57.75.0/24 maxlen: 24
86.107.242.0/23 maxlen: 23
77.81.6.0/23 maxlen: 23
89.40.216.0/23 maxlen: 23
2a03:d7c0::/29 maxlen: 48
2a03:b000:3002::/48 maxlen: 48
2a03:b000:700::/40 maxlen: 40
2a03:b000::/40 maxlen: 40
2a03:b000:500::/40 maxlen: 40
2a03:b000:800::/40 maxlen: 40
2a03:b000:b00::/40 maxlen: 40
2a03:b000:200::/40 maxlen: 40
2a03:b000:600::/40 maxlen: 40
2a03:b000:900::/40 maxlen: 40
2a03:b000:400::/40 maxlen: 40
2a03:b000:100::/40 maxlen: 40
2a03:b000:c00::/40 maxlen: 40
2a04:f180::/29 maxlen: 48
2a06:2980::/29 maxlen: 48
2a00:16d8::/32 maxlen: 32
2a03:b000:3001::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 383594711 (0x16dd30d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edb926f8c603aab79cb46a883bf632564a3faabf
Validity
Not Before: Mar 1 08:24:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0db9823a41e044058d85afa33572cd5123cf20d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:96:61:ed:bf:78:a8:03:1d:ac:6f:03:1b:37:
d6:6a:60:2e:26:da:eb:2c:30:28:fe:e3:66:15:3e:
99:03:13:4e:fd:d1:ad:af:45:5d:4d:b2:a9:b3:82:
5b:0b:f6:90:6c:67:8f:f4:8a:41:4c:2b:e0:8f:87:
e5:53:af:ad:f7:a3:c3:90:7f:c8:a5:68:4b:a1:b2:
8f:ab:04:f3:55:3d:b9:a5:71:44:05:05:81:c4:39:
2b:bf:6d:4e:f8:96:c8:7a:e6:af:51:a9:e9:f6:8d:
ec:7d:6e:2b:bb:41:08:76:9f:9c:4f:04:bd:df:bb:
db:0c:6a:f7:69:73:4b:1e:d4:3d:45:77:d4:f7:49:
06:ff:15:30:59:3b:fa:94:25:f9:9e:a1:ce:27:44:
93:ed:5a:6b:a8:0b:64:3a:16:34:70:ce:24:93:d3:
2f:0f:7f:5e:43:70:cb:a2:6f:59:17:f7:9f:38:4d:
9f:6a:3b:61:24:36:bf:cb:34:16:19:30:10:0b:b9:
75:eb:f5:ba:bc:d1:f1:a0:bc:95:ae:5c:6e:a8:ec:
73:cf:2a:c4:40:32:55:2f:23:90:62:40:91:83:5a:
c2:cb:7b:53:5c:44:5d:3d:fa:29:e5:a0:87:f4:8b:
97:89:23:71:a4:0b:1f:31:5a:e1:99:d9:f1:8d:c4:
e9:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:B9:82:3A:41:E0:44:05:8D:85:AF:A3:35:72:CD:51:23:CF:20:D4
X509v3 Authority Key Identifier:
keyid:ED:B9:26:F8:C6:03:AA:B7:9C:B4:6A:88:3B:F6:32:56:4A:3F:AA:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7bkm-MYDqrectGqIO_YyVko_qr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/DbmCOkHgRAWNha-jNXLNUSPPINQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/7bkm-MYDqrectGqIO_YyVko_qr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.153.138.0/23
37.153.172.0/23
45.114.120.0/22
46.254.8.0/21
77.81.6.0/23
77.81.188.0/23
86.107.48.0/23
86.107.242.0/23
89.36.90.0/23
89.40.216.0/23
89.42.140.0/23
89.45.226.0/23
89.46.80.0/21
91.106.192.0/21
91.123.192.0/20
103.57.74.0/23
116.206.168.0/22
141.255.184.0/21
185.2.152.0/22
185.52.156.0/22
185.62.204.0/22
185.103.48.0/22
188.95.224.0/21
188.212.108.0/23
188.240.18.0/23
188.240.92.0/22
188.240.222.0/23
188.241.198.0/23
IPv6:
2a00:16d8::/32
2a03:b000::-2a03:b000:2ff:ffff:ffff:ffff:ffff:ffff
2a03:b000:400::-2a03:b000:9ff:ffff:ffff:ffff:ffff:ffff
2a03:b000:b00::-2a03:b000:cff:ffff:ffff:ffff:ffff:ffff
2a03:b000:3001::-2a03:b000:3002:ffff:ffff:ffff:ffff:ffff
2a03:d7c0::/29
2a04:f180::/29
2a06:2980::/29
Signature Algorithm: sha256WithRSAEncryption
93:8e:8e:03:b9:c2:ed:82:db:6e:df:e1:92:90:b7:b1:26:bf:
3d:cd:24:a7:61:d7:fc:24:6c:b4:35:1d:c7:ff:86:23:5a:8d:
06:2c:f7:2a:b6:b1:fb:37:8d:bd:b7:f8:df:3c:28:18:7a:73:
11:e7:a5:25:37:1d:3a:31:03:81:dd:dd:be:a0:3a:a6:6a:55:
b1:10:8b:bc:9a:13:d9:b0:20:74:94:95:b6:44:19:ff:cb:8e:
03:0e:62:ec:80:ac:9f:26:d3:dd:67:f9:3c:9b:60:8d:46:29:
9e:11:48:be:3e:fd:34:ac:85:a1:3e:76:2a:8f:82:7a:87:91:
bb:89:f8:6e:9b:9a:3f:16:c9:30:48:6d:76:68:19:3d:87:75:
53:c6:39:f7:dc:20:32:be:48:f5:bf:17:d7:56:b7:4d:30:74:
0d:26:6f:ba:65:74:bc:ae:ab:2d:b6:ec:39:42:a0:a8:f9:c9:
73:04:cb:1f:59:0a:23:f6:5b:d7:5a:e8:4b:b5:cf:75:41:95:
56:a4:74:e5:b5:41:80:18:f0:c5:12:ec:42:1c:95:8d:bd:db:
55:07:62:23:8d:b1:33:bd:27:15:5f:e1:35:c3:97:49:3d:0c:
0e:63:ab:ac:56:c9:0b:fa:9f:9c:cb:db:5d:a8:89:77:8e:e2:
74:8b:30:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:35 2023 by rpki-client on console-ams.rpki-client.org