Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/HYsF4J2hq80RYG4YFRruxaS24jw.roa
File: HYsF4J2hq80RYG4YFRruxaS24jw.roa (raw, json)
Hash identifier: bpYicHu/OMteut95x2J3EhuWkCTT3ajELmMww/2NILA=
Subject key identifier: 1D:8B:05:E0:9D:A1:AB:CD:11:60:6E:18:15:1A:EE:C5:A4:B6:E2:3C
Certificate issuer: /CN=edb926f8c603aab79cb46a883bf632564a3faabf
Certificate serial: 173F3875
Authority key identifier: ED:B9:26:F8:C6:03:AA:B7:9C:B4:6A:88:3B:F6:32:56:4A:3F:AA:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7bkm-MYDqrectGqIO_YyVko_qr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/HYsF4J2hq80RYG4YFRruxaS24jw.roa
Signing time: Fri 08 Apr 2022 10:51:45 +0000
ROA not before: Fri 08 Apr 2022 10:51:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42695
IP address blocks: 86.107.49.0/24 maxlen: 24
86.107.48.0/24 maxlen: 24
86.107.48.0/23 maxlen: 24
185.16.84.0/22 maxlen: 24
89.46.82.0/24 maxlen: 24
89.46.81.0/24 maxlen: 24
89.46.80.0/24 maxlen: 24
89.46.83.0/24 maxlen: 24
89.46.84.0/23 maxlen: 23
89.46.86.0/24 maxlen: 24
89.46.87.0/24 maxlen: 24
185.2.152.0/22 maxlen: 24
188.241.198.0/24 maxlen: 24
188.241.198.0/23 maxlen: 24
188.241.199.0/24 maxlen: 24
89.36.90.0/23 maxlen: 23
45.114.121.0/24 maxlen: 24
45.114.120.0/22 maxlen: 24
45.114.123.0/24 maxlen: 24
45.114.122.0/24 maxlen: 24
141.255.184.0/21 maxlen: 24
37.153.138.0/23 maxlen: 24
185.52.156.0/22 maxlen: 24
37.153.172.0/23 maxlen: 24
89.45.226.0/24 maxlen: 24
89.45.226.0/23 maxlen: 24
188.240.222.0/23 maxlen: 24
91.106.192.0/21 maxlen: 24
91.123.192.0/20 maxlen: 24
89.45.227.0/24 maxlen: 24
185.103.48.0/23 maxlen: 23
185.103.51.0/24 maxlen: 24
185.103.50.0/24 maxlen: 24
89.42.140.0/23 maxlen: 24
185.62.204.0/24 maxlen: 24
185.62.204.0/22 maxlen: 24
185.62.206.0/24 maxlen: 24
185.62.205.0/24 maxlen: 24
185.62.207.0/24 maxlen: 24
116.206.168.0/22 maxlen: 24
188.240.92.0/22 maxlen: 24
77.81.188.0/23 maxlen: 24
188.240.18.0/23 maxlen: 24
188.95.224.0/21 maxlen: 24
46.254.10.0/23 maxlen: 23
46.254.8.0/21 maxlen: 24
46.254.13.0/24 maxlen: 24
46.254.12.0/24 maxlen: 24
46.254.15.0/24 maxlen: 24
46.254.14.0/24 maxlen: 24
188.212.108.0/23 maxlen: 24
103.57.72.0/22 maxlen: 24
103.57.74.0/24 maxlen: 24
103.57.75.0/24 maxlen: 24
86.107.242.0/23 maxlen: 24
77.81.6.0/23 maxlen: 24
103.81.140.0/22 maxlen: 24
89.40.216.0/23 maxlen: 23
2a03:d7c0::/29 maxlen: 48
2a03:b000:3002::/48 maxlen: 48
2a03:b000:400::/40 maxlen: 40
2a03:b000:700::/40 maxlen: 40
2a03:b000:100::/40 maxlen: 40
2a03:b000:200::/40 maxlen: 40
2a03:b000:b00::/40 maxlen: 40
2a03:b000:600::/40 maxlen: 40
2a03:b000::/40 maxlen: 40
2a03:b000:900::/40 maxlen: 40
2a03:b000:500::/40 maxlen: 40
2a03:b000:800::/40 maxlen: 40
2a03:b000:c00::/40 maxlen: 40
2a04:f180::/29 maxlen: 48
2a06:2980::/29 maxlen: 48
2a00:16d8::/32 maxlen: 48
2a03:b000:3001::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 390019189 (0x173f3875)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edb926f8c603aab79cb46a883bf632564a3faabf
Validity
Not Before: Apr 8 10:51:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d8b05e09da1abcd11606e18151aeec5a4b6e23c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:a7:be:93:ab:38:c5:b3:e1:16:f7:e8:82:7f:
5a:fe:55:4c:2b:7b:ce:44:54:69:66:6b:c3:6b:55:
f5:ef:5b:38:3d:68:2b:e4:74:f5:cb:43:dd:a8:bb:
2b:0b:b9:51:26:18:01:d8:1d:14:f2:a4:74:da:bf:
1f:94:73:d9:41:4a:d0:e2:c4:f1:05:6d:4b:79:fd:
11:33:49:36:89:2d:8a:f5:87:48:50:06:3c:3a:51:
61:a7:18:12:86:2f:eb:87:7a:ab:76:ad:5f:70:72:
d7:82:df:f9:c8:c3:91:04:b4:78:9a:e9:ad:cf:89:
f0:0a:c9:46:18:1b:e3:c6:12:ca:ec:1f:38:35:a5:
a3:36:25:48:98:42:a1:49:b5:6f:cf:fd:0f:2d:7e:
76:f4:a8:b2:6e:75:14:ec:89:9f:96:f3:d5:6b:c7:
a0:47:4c:21:60:ee:82:25:5b:29:32:9f:cd:69:ad:
fa:38:da:80:df:26:bf:31:9a:bf:13:cb:c9:1a:3e:
3b:0f:40:40:d2:89:0c:f1:05:73:9c:50:3b:d1:2a:
3c:13:1c:b9:60:bb:2d:2f:18:5b:b0:e4:0f:df:5a:
05:89:b3:4f:3e:df:09:32:e5:c3:7f:51:11:99:f0:
45:4e:1e:d8:d2:91:bf:19:4a:93:f0:a1:8e:59:ce:
b9:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:8B:05:E0:9D:A1:AB:CD:11:60:6E:18:15:1A:EE:C5:A4:B6:E2:3C
X509v3 Authority Key Identifier:
keyid:ED:B9:26:F8:C6:03:AA:B7:9C:B4:6A:88:3B:F6:32:56:4A:3F:AA:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7bkm-MYDqrectGqIO_YyVko_qr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/HYsF4J2hq80RYG4YFRruxaS24jw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/7bkm-MYDqrectGqIO_YyVko_qr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.153.138.0/23
37.153.172.0/23
45.114.120.0/22
46.254.8.0/21
77.81.6.0/23
77.81.188.0/23
86.107.48.0/23
86.107.242.0/23
89.36.90.0/23
89.40.216.0/23
89.42.140.0/23
89.45.226.0/23
89.46.80.0/21
91.106.192.0/21
91.123.192.0/20
103.57.72.0/22
103.81.140.0/22
116.206.168.0/22
141.255.184.0/21
185.2.152.0/22
185.16.84.0/22
185.52.156.0/22
185.62.204.0/22
185.103.48.0/22
188.95.224.0/21
188.212.108.0/23
188.240.18.0/23
188.240.92.0/22
188.240.222.0/23
188.241.198.0/23
IPv6:
2a00:16d8::/32
2a03:b000::-2a03:b000:2ff:ffff:ffff:ffff:ffff:ffff
2a03:b000:400::-2a03:b000:9ff:ffff:ffff:ffff:ffff:ffff
2a03:b000:b00::-2a03:b000:cff:ffff:ffff:ffff:ffff:ffff
2a03:b000:3001::-2a03:b000:3002:ffff:ffff:ffff:ffff:ffff
2a03:d7c0::/29
2a04:f180::/29
2a06:2980::/29
Signature Algorithm: sha256WithRSAEncryption
ac:17:5d:54:a9:58:1c:37:fd:0b:f8:07:29:2f:b0:0b:97:a1:
7d:40:50:64:77:b7:97:4d:a2:20:f1:d2:9a:c9:30:b4:67:7f:
bf:75:f9:e2:8b:e7:67:a5:6c:b7:b1:55:8f:c4:91:eb:ac:e9:
64:53:ec:c6:d4:85:4d:2f:40:d6:ec:76:13:3e:79:b6:29:d4:
b1:db:25:c7:3f:29:c4:e9:93:90:a1:34:75:cb:0f:e2:ae:00:
88:9a:73:4f:f3:ef:94:c1:cb:c6:65:cf:90:56:f9:bc:d5:1d:
7e:28:90:35:00:39:0b:f9:31:e1:a0:45:fe:c5:44:e2:2b:bf:
d5:7e:b0:ee:58:1a:a9:9f:80:30:e9:a7:81:bd:de:c3:a3:38:
a3:33:f1:28:9f:0d:a7:fb:d8:f8:70:be:6b:0e:cd:47:1a:9a:
4e:d1:36:c0:97:bd:72:db:47:14:a9:ca:bb:2b:d6:47:50:29:
57:35:9b:3b:06:88:ea:b0:98:04:6c:ac:4e:c6:b5:3c:8f:5e:
bf:6a:6f:cf:c5:c3:16:e6:dd:53:94:76:e1:ec:86:3d:6c:cc:
90:a3:56:53:ed:c6:0a:ad:21:92:3e:96:23:e0:32:70:92:40:
01:d6:ae:ed:22:69:94:67:fa:f0:53:c8:12:08:10:08:e6:02:
20:e7:5d:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:35 2023 by rpki-client on console-ams.rpki-client.org