Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/wcjdIB17JOtDb08jbJwmL8MEz-w.roa
File: wcjdIB17JOtDb08jbJwmL8MEz-w.roa (raw, json)
Hash identifier: GY/PMOjBCSAXvusC0lSOYY9b3z8KJHdcEQlu+DXaZto=
Subject key identifier: C1:C8:DD:20:1D:7B:24:EB:43:6F:4F:23:6C:9C:26:2F:C3:04:CF:EC
Certificate issuer: /CN=edb926f8c603aab79cb46a883bf632564a3faabf
Certificate serial: 16E469FF
Authority key identifier: ED:B9:26:F8:C6:03:AA:B7:9C:B4:6A:88:3B:F6:32:56:4A:3F:AA:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7bkm-MYDqrectGqIO_YyVko_qr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/wcjdIB17JOtDb08jbJwmL8MEz-w.roa
Signing time: Wed 02 Mar 2022 12:24:07 +0000
ROA not before: Wed 02 Mar 2022 12:24:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42695
IP address blocks: 86.107.49.0/24 maxlen: 24
86.107.48.0/24 maxlen: 24
89.46.81.0/24 maxlen: 24
89.46.80.0/24 maxlen: 24
89.46.83.0/24 maxlen: 24
89.46.82.0/24 maxlen: 24
89.46.84.0/23 maxlen: 23
89.46.86.0/24 maxlen: 24
89.46.87.0/24 maxlen: 24
185.2.152.0/22 maxlen: 22
188.241.198.0/24 maxlen: 24
188.241.199.0/24 maxlen: 24
89.36.90.0/23 maxlen: 23
45.114.121.0/24 maxlen: 24
45.114.120.0/22 maxlen: 24
45.114.123.0/24 maxlen: 24
45.114.122.0/24 maxlen: 24
141.255.184.0/21 maxlen: 21
37.153.138.0/23 maxlen: 24
185.52.156.0/22 maxlen: 24
89.45.226.0/24 maxlen: 24
37.153.172.0/23 maxlen: 23
188.240.222.0/23 maxlen: 23
91.106.192.0/21 maxlen: 24
91.123.192.0/20 maxlen: 32
89.45.227.0/24 maxlen: 24
185.103.48.0/23 maxlen: 23
185.103.51.0/24 maxlen: 24
185.103.50.0/24 maxlen: 24
89.42.140.0/23 maxlen: 23
185.62.204.0/24 maxlen: 24
185.62.206.0/24 maxlen: 24
185.62.205.0/24 maxlen: 24
185.62.207.0/24 maxlen: 24
116.206.168.0/22 maxlen: 22
188.240.92.0/22 maxlen: 24
77.81.188.0/23 maxlen: 23
188.240.18.0/23 maxlen: 23
188.95.224.0/21 maxlen: 24
46.254.10.0/23 maxlen: 23
46.254.8.0/21 maxlen: 24
46.254.13.0/24 maxlen: 24
46.254.12.0/24 maxlen: 24
46.254.15.0/24 maxlen: 24
46.254.14.0/24 maxlen: 24
188.212.108.0/23 maxlen: 23
103.57.74.0/24 maxlen: 24
103.57.75.0/24 maxlen: 24
86.107.242.0/23 maxlen: 23
77.81.6.0/23 maxlen: 23
89.40.216.0/23 maxlen: 23
2a03:d7c0::/29 maxlen: 48
2a03:b000:3002::/48 maxlen: 48
2a03:b000:200::/40 maxlen: 40
2a03:b000:700::/40 maxlen: 40
2a03:b000:400::/40 maxlen: 40
2a03:b000:100::/40 maxlen: 40
2a03:b000:c00::/40 maxlen: 40
2a03:b000::/40 maxlen: 40
2a03:b000:900::/40 maxlen: 40
2a03:b000:600::/40 maxlen: 40
2a03:b000:b00::/40 maxlen: 40
2a03:b000:800::/40 maxlen: 40
2a03:b000:500::/40 maxlen: 40
2a04:f180::/29 maxlen: 48
2a06:2980::/29 maxlen: 48
2a00:16d8::/32 maxlen: 48
2a03:b000:3001::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 384068095 (0x16e469ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edb926f8c603aab79cb46a883bf632564a3faabf
Validity
Not Before: Mar 2 12:24:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c1c8dd201d7b24eb436f4f236c9c262fc304cfec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:fc:81:f4:3f:88:ec:96:32:f8:cd:e8:9f:22:
db:e8:c5:8c:cf:6f:52:18:d6:8a:87:37:5f:87:3c:
8b:f7:51:77:c6:6e:0a:db:1f:aa:13:3e:6a:66:eb:
a2:97:65:57:ae:fc:5e:42:10:70:b3:c5:cd:18:23:
f8:09:66:60:cc:08:06:b3:3b:44:c2:fb:67:4a:5c:
47:f0:9b:87:b2:88:18:5f:55:f9:8d:52:cc:dd:e1:
b4:20:4a:6e:27:15:54:d2:91:85:dc:1b:00:ab:44:
cd:ee:95:5b:84:29:22:b4:26:24:8a:a9:3a:a4:df:
cd:21:4c:fc:da:93:b9:d3:b3:a9:d1:f1:c8:eb:27:
ad:2a:40:87:5e:de:1d:fa:f8:b1:65:39:52:04:ba:
1c:ba:d8:3a:54:79:8a:4c:4d:91:39:8c:84:be:ca:
08:26:4a:4c:43:16:05:27:03:34:56:45:90:6e:cd:
43:e4:58:24:04:74:a0:7b:dc:1b:d1:5d:f1:91:4f:
20:0e:e8:4e:8e:5f:6e:94:7a:9e:93:b7:08:87:4b:
0d:9d:e5:19:01:71:5b:49:96:ba:10:a6:0c:a2:dd:
6c:34:c5:d8:e9:f2:68:e6:dd:bf:3d:16:f6:5c:0f:
7a:8a:1e:dc:c7:9f:b0:2d:ce:31:9e:19:7c:f8:5b:
db:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:C8:DD:20:1D:7B:24:EB:43:6F:4F:23:6C:9C:26:2F:C3:04:CF:EC
X509v3 Authority Key Identifier:
keyid:ED:B9:26:F8:C6:03:AA:B7:9C:B4:6A:88:3B:F6:32:56:4A:3F:AA:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7bkm-MYDqrectGqIO_YyVko_qr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/wcjdIB17JOtDb08jbJwmL8MEz-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/7bkm-MYDqrectGqIO_YyVko_qr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.153.138.0/23
37.153.172.0/23
45.114.120.0/22
46.254.8.0/21
77.81.6.0/23
77.81.188.0/23
86.107.48.0/23
86.107.242.0/23
89.36.90.0/23
89.40.216.0/23
89.42.140.0/23
89.45.226.0/23
89.46.80.0/21
91.106.192.0/21
91.123.192.0/20
103.57.74.0/23
116.206.168.0/22
141.255.184.0/21
185.2.152.0/22
185.52.156.0/22
185.62.204.0/22
185.103.48.0/22
188.95.224.0/21
188.212.108.0/23
188.240.18.0/23
188.240.92.0/22
188.240.222.0/23
188.241.198.0/23
IPv6:
2a00:16d8::/32
2a03:b000::-2a03:b000:2ff:ffff:ffff:ffff:ffff:ffff
2a03:b000:400::-2a03:b000:9ff:ffff:ffff:ffff:ffff:ffff
2a03:b000:b00::-2a03:b000:cff:ffff:ffff:ffff:ffff:ffff
2a03:b000:3001::-2a03:b000:3002:ffff:ffff:ffff:ffff:ffff
2a03:d7c0::/29
2a04:f180::/29
2a06:2980::/29
Signature Algorithm: sha256WithRSAEncryption
1f:53:cc:d9:9a:c7:27:86:3e:4d:03:7e:2a:db:0e:ee:23:31:
6e:c2:b9:42:ba:ff:14:4e:fc:62:93:78:73:0e:64:3a:01:93:
9b:d6:5d:2d:ff:9a:a5:9f:ed:b7:0e:7d:de:eb:01:39:79:77:
a0:9f:bf:29:3f:6a:ec:aa:24:87:c5:e0:96:b2:83:bb:e0:9b:
2a:0e:a9:9c:2f:5c:ff:d7:ef:1b:8b:28:d6:6e:3a:4c:ee:69:
25:13:87:5b:c4:b8:ea:35:19:7a:15:5b:b9:6b:f7:80:9d:fc:
35:c4:7a:4e:a5:32:f2:91:3e:52:f9:de:1b:84:ad:33:ef:62:
88:fd:84:fa:8f:40:0b:8f:e8:cc:03:a2:5a:01:b0:71:dd:34:
00:c6:f2:b6:a9:92:13:f0:a0:69:15:bf:a8:01:1e:c9:81:80:
72:83:10:4d:4a:22:a8:fb:10:d8:2b:ff:82:bd:27:b0:15:a4:
b1:e3:57:29:9e:7c:12:68:1a:49:75:22:44:ba:d1:b5:14:2e:
14:26:5c:a7:2b:fa:f8:4b:eb:7e:14:b7:88:57:bd:68:f3:e8:
b9:2b:09:d3:43:9f:f7:a3:ab:27:dd:a0:74:f3:9b:7e:65:bb:
98:45:2d:de:d4:ef:ff:6f:86:92:35:09:9b:c8:c0:6c:22:11:
29:80:37:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:52 2023 by rpki-client on console-fra.rpki-client.org