Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/FxnRtIRqrlcD4fjB23Ytki4jvY0.roa
File: FxnRtIRqrlcD4fjB23Ytki4jvY0.roa (raw, json)
Hash identifier: /w3HrSv13OTCGvpChpcpZUIpvxqpRX1Tdwyz1kIw0EA=
Subject key identifier: 17:19:D1:B4:84:6A:AE:57:03:E1:F8:C1:DB:76:2D:92:2E:23:BD:8D
Certificate issuer: /CN=edb926f8c603aab79cb46a883bf632564a3faabf
Certificate serial: 164F86EC
Authority key identifier: ED:B9:26:F8:C6:03:AA:B7:9C:B4:6A:88:3B:F6:32:56:4A:3F:AA:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7bkm-MYDqrectGqIO_YyVko_qr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/FxnRtIRqrlcD4fjB23Ytki4jvY0.roa
Signing time: Sat 01 Jan 2022 16:06:34 +0000
ROA not before: Sat 01 Jan 2022 16:06:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42695
IP address blocks: 86.107.49.0/24 maxlen: 24
86.107.48.0/24 maxlen: 24
89.46.81.0/24 maxlen: 24
89.46.80.0/24 maxlen: 24
89.46.83.0/24 maxlen: 24
89.46.82.0/24 maxlen: 24
89.46.84.0/23 maxlen: 23
89.46.86.0/24 maxlen: 24
89.46.87.0/24 maxlen: 24
185.2.152.0/22 maxlen: 22
188.241.198.0/24 maxlen: 24
188.241.199.0/24 maxlen: 24
89.36.90.0/23 maxlen: 23
45.114.121.0/24 maxlen: 24
45.114.120.0/24 maxlen: 24
45.114.123.0/24 maxlen: 24
45.114.122.0/24 maxlen: 24
141.255.184.0/21 maxlen: 21
37.153.138.0/23 maxlen: 23
185.52.156.0/22 maxlen: 24
89.45.226.0/24 maxlen: 24
37.153.172.0/23 maxlen: 23
188.240.222.0/23 maxlen: 23
91.106.192.0/21 maxlen: 24
91.123.192.0/20 maxlen: 32
89.45.227.0/24 maxlen: 24
185.103.48.0/23 maxlen: 23
185.103.51.0/24 maxlen: 24
185.103.50.0/24 maxlen: 24
89.42.140.0/23 maxlen: 23
185.62.204.0/24 maxlen: 24
185.62.206.0/24 maxlen: 24
185.62.205.0/24 maxlen: 24
185.62.207.0/24 maxlen: 24
116.206.168.0/22 maxlen: 22
188.240.92.0/22 maxlen: 24
77.81.188.0/23 maxlen: 23
188.240.18.0/23 maxlen: 23
188.95.224.0/21 maxlen: 24
46.254.10.0/23 maxlen: 23
46.254.8.0/23 maxlen: 23
46.254.13.0/24 maxlen: 24
46.254.12.0/24 maxlen: 24
46.254.15.0/24 maxlen: 24
46.254.14.0/24 maxlen: 24
188.212.108.0/23 maxlen: 23
103.57.74.0/24 maxlen: 24
103.57.75.0/24 maxlen: 24
86.107.242.0/23 maxlen: 23
77.81.6.0/23 maxlen: 23
89.40.216.0/23 maxlen: 23
2a03:d7c0::/29 maxlen: 48
2a03:b000:3002::/48 maxlen: 48
2a03:b000:400::/40 maxlen: 40
2a03:b000:700::/40 maxlen: 40
2a03:b000::/40 maxlen: 40
2a03:b000:b00::/40 maxlen: 40
2a03:b000:500::/40 maxlen: 40
2a03:b000:800::/40 maxlen: 40
2a03:b000:200::/40 maxlen: 40
2a03:b000:c00::/40 maxlen: 40
2a03:b000:100::/40 maxlen: 40
2a03:b000:600::/40 maxlen: 40
2a03:b000:900::/40 maxlen: 40
2a04:f180::/29 maxlen: 48
2a06:2980::/29 maxlen: 48
2a00:16d8::/32 maxlen: 32
2a03:b000:3001::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 374310636 (0x164f86ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edb926f8c603aab79cb46a883bf632564a3faabf
Validity
Not Before: Jan 1 16:06:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1719d1b4846aae5703e1f8c1db762d922e23bd8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:11:de:75:91:c3:93:f1:ff:88:9c:07:dc:b5:
3e:2c:7f:c3:76:d9:32:cf:93:29:4c:8f:d4:ff:f5:
8c:96:0f:d5:37:f8:29:85:f0:51:2a:e2:6f:ee:d3:
4d:88:bf:59:43:22:ae:30:fa:f2:fc:3a:6a:3e:e3:
bf:e3:15:f5:95:bf:fd:c3:36:d1:36:6c:4a:c3:0e:
61:1e:1f:a7:45:0f:ab:37:15:52:61:16:df:4c:33:
2e:e8:68:d5:e3:51:79:ea:ac:4b:d8:c9:5b:26:4f:
1b:b3:25:8f:f6:ab:52:ed:88:8c:e5:16:34:f0:af:
d5:62:3f:5d:28:c1:09:34:54:b9:d3:d9:c9:b7:d8:
ee:33:bf:9a:40:32:ef:9f:10:80:49:fb:4d:08:c0:
dc:f7:53:3c:f0:df:12:63:b6:aa:2c:03:93:1b:4f:
91:b5:84:a4:f1:1b:5d:12:4d:f3:a7:3e:be:b5:19:
75:a9:93:01:8d:42:98:39:c3:5b:a3:a0:05:93:6f:
e0:de:05:c1:13:90:41:f0:0b:aa:86:e4:fa:c5:28:
72:dc:ba:e4:5d:b5:9f:68:35:d4:f8:5b:a8:77:51:
98:c4:e8:ad:9e:38:96:ed:ba:e6:fa:01:1b:31:66:
75:13:80:11:0d:f3:31:14:8f:43:00:bc:ee:f6:c4:
a1:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:19:D1:B4:84:6A:AE:57:03:E1:F8:C1:DB:76:2D:92:2E:23:BD:8D
X509v3 Authority Key Identifier:
keyid:ED:B9:26:F8:C6:03:AA:B7:9C:B4:6A:88:3B:F6:32:56:4A:3F:AA:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7bkm-MYDqrectGqIO_YyVko_qr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/FxnRtIRqrlcD4fjB23Ytki4jvY0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/7bkm-MYDqrectGqIO_YyVko_qr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.153.138.0/23
37.153.172.0/23
45.114.120.0/22
46.254.8.0/21
77.81.6.0/23
77.81.188.0/23
86.107.48.0/23
86.107.242.0/23
89.36.90.0/23
89.40.216.0/23
89.42.140.0/23
89.45.226.0/23
89.46.80.0/21
91.106.192.0/21
91.123.192.0/20
103.57.74.0/23
116.206.168.0/22
141.255.184.0/21
185.2.152.0/22
185.52.156.0/22
185.62.204.0/22
185.103.48.0/22
188.95.224.0/21
188.212.108.0/23
188.240.18.0/23
188.240.92.0/22
188.240.222.0/23
188.241.198.0/23
IPv6:
2a00:16d8::/32
2a03:b000::-2a03:b000:2ff:ffff:ffff:ffff:ffff:ffff
2a03:b000:400::-2a03:b000:9ff:ffff:ffff:ffff:ffff:ffff
2a03:b000:b00::-2a03:b000:cff:ffff:ffff:ffff:ffff:ffff
2a03:b000:3001::-2a03:b000:3002:ffff:ffff:ffff:ffff:ffff
2a03:d7c0::/29
2a04:f180::/29
2a06:2980::/29
Signature Algorithm: sha256WithRSAEncryption
a9:39:c1:50:fd:23:d7:88:04:7d:e8:9f:1d:3a:dc:60:3b:34:
de:34:12:e0:11:5f:6b:39:ef:fc:95:30:74:6c:b4:0e:5c:ad:
e9:51:04:72:90:5b:16:9d:e8:dd:00:f7:93:7c:a6:7a:d6:16:
c3:ed:57:99:0b:f8:3d:36:1c:8e:ef:ae:06:94:82:88:cb:a2:
e0:63:44:14:4c:99:54:6d:d3:7b:e4:15:dd:fb:35:90:85:9c:
69:9e:ce:95:54:76:b9:22:85:d0:23:f7:3b:c2:e1:4e:d7:13:
6a:ff:59:2d:4c:26:93:d6:3d:31:31:ea:6d:f1:55:66:c6:47:
d9:c0:61:5f:a0:21:75:1b:eb:a4:ee:7c:3a:37:05:28:f1:68:
3a:b1:66:b2:ab:43:bf:21:8b:83:58:9e:8a:dd:50:46:09:25:
67:0e:80:6c:8e:7b:67:51:76:05:b7:ca:77:9a:e8:b2:d8:b3:
aa:d0:d7:34:67:95:f2:ea:7a:1e:f7:06:4a:78:41:8b:ce:3e:
04:ba:6e:a4:fe:3e:08:9d:ad:a5:6f:c7:1e:21:c4:46:9d:6b:
6e:b8:4b:b5:84:2d:02:b6:55:21:b4:13:53:06:04:74:18:6d:
19:91:b3:e0:4c:0c:c5:cb:14:ba:c8:f2:4b:80:a8:ae:4b:2b:
68:0b:cc:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:35 2023 by rpki-client on console-ams.rpki-client.org