Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/z8-9aAmB7-pL_xmu93Snb20sSiw.roa
File: z8-9aAmB7-pL_xmu93Snb20sSiw.roa (raw, json)
Hash identifier: fJmxhm7ooz15L/qhNNy3uglonwVgZVeGLaCq/19IZms=
Subject key identifier: CF:CF:BD:68:09:81:EF:EA:4B:FF:19:AE:F7:74:A7:6F:6D:2C:4A:2C
Certificate issuer: /CN=edb926f8c603aab79cb46a883bf632564a3faabf
Certificate serial: 0181CDC8563280CA16EF17B48E9D7376D963
Authority key identifier: ED:B9:26:F8:C6:03:AA:B7:9C:B4:6A:88:3B:F6:32:56:4A:3F:AA:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7bkm-MYDqrectGqIO_YyVko_qr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/z8-9aAmB7-pL_xmu93Snb20sSiw.roa
Signing time: Tue 05 Jul 2022 09:54:27 +0000
ROA not before: Tue 05 Jul 2022 09:54:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42695
IP address blocks: 86.107.49.0/24 maxlen: 24
86.107.48.0/24 maxlen: 24
86.107.48.0/23 maxlen: 24
185.16.84.0/22 maxlen: 24
89.46.81.0/24 maxlen: 24
89.46.80.0/24 maxlen: 24
89.46.83.0/24 maxlen: 24
89.46.82.0/24 maxlen: 24
89.46.84.0/23 maxlen: 23
89.46.86.0/24 maxlen: 24
89.46.87.0/24 maxlen: 24
185.2.152.0/22 maxlen: 24
188.241.198.0/24 maxlen: 24
188.241.198.0/23 maxlen: 24
188.241.199.0/24 maxlen: 24
89.36.90.0/23 maxlen: 23
45.114.121.0/24 maxlen: 24
45.114.120.0/22 maxlen: 24
45.114.123.0/24 maxlen: 24
45.114.122.0/24 maxlen: 24
141.255.184.0/21 maxlen: 24
37.153.138.0/23 maxlen: 24
185.52.156.0/22 maxlen: 24
37.153.172.0/23 maxlen: 24
89.45.226.0/24 maxlen: 24
89.45.226.0/23 maxlen: 24
188.240.222.0/23 maxlen: 24
91.106.192.0/21 maxlen: 24
91.123.192.0/20 maxlen: 24
89.45.227.0/24 maxlen: 24
185.103.48.0/23 maxlen: 23
185.103.51.0/24 maxlen: 24
185.103.50.0/24 maxlen: 24
89.42.140.0/23 maxlen: 24
185.62.204.0/24 maxlen: 24
185.62.204.0/22 maxlen: 24
185.62.206.0/24 maxlen: 24
185.62.205.0/24 maxlen: 24
185.62.207.0/24 maxlen: 24
116.206.168.0/22 maxlen: 24
188.240.92.0/22 maxlen: 24
77.81.188.0/23 maxlen: 24
188.240.18.0/23 maxlen: 24
188.95.224.0/21 maxlen: 24
46.254.10.0/23 maxlen: 23
46.254.8.0/21 maxlen: 24
46.254.13.0/24 maxlen: 24
46.254.12.0/24 maxlen: 24
46.254.15.0/24 maxlen: 24
46.254.14.0/24 maxlen: 24
188.212.108.0/23 maxlen: 24
103.57.72.0/22 maxlen: 24
103.57.74.0/24 maxlen: 24
86.107.242.0/23 maxlen: 24
77.81.6.0/23 maxlen: 24
103.81.140.0/22 maxlen: 23
103.81.142.0/24 maxlen: 24
103.81.143.0/24 maxlen: 24
89.40.216.0/23 maxlen: 23
2a03:d7c0::/29 maxlen: 48
2a03:b000:3002::/48 maxlen: 48
2a03:b000:200::/40 maxlen: 40
2a03:b000:500::/40 maxlen: 40
2a03:b000::/40 maxlen: 40
2a03:b000:b00::/40 maxlen: 40
2a03:b000:800::/40 maxlen: 40
2a03:b000:600::/40 maxlen: 40
2a03:b000:900::/40 maxlen: 40
2a03:b000:700::/40 maxlen: 40
2a03:b000:100::/40 maxlen: 40
2a03:b000:400::/40 maxlen: 40
2a03:b000:c00::/40 maxlen: 40
2a04:f180::/29 maxlen: 48
2a06:2980::/29 maxlen: 48
2a00:16d8::/32 maxlen: 48
2a03:b000:3001::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:cd:c8:56:32:80:ca:16:ef:17:b4:8e:9d:73:76:d9:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edb926f8c603aab79cb46a883bf632564a3faabf
Validity
Not Before: Jul 5 09:54:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cfcfbd680981efea4bff19aef774a76f6d2c4a2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:a5:ae:2d:07:9d:e1:41:71:e6:f1:c7:27:c6:
c0:40:23:79:fd:b0:b3:d2:39:51:fb:72:bd:47:09:
21:3c:eb:8d:a7:5a:86:3e:54:fb:4d:15:c3:20:f3:
7c:26:17:82:39:0a:17:b4:b0:54:8b:6c:85:68:57:
bd:25:65:20:ef:e7:8e:87:5c:0e:81:87:f9:06:98:
3f:74:50:fe:b7:b1:78:3a:47:b1:c8:1c:dc:57:05:
7a:41:4c:dd:43:8f:07:04:f3:07:62:0f:8d:0a:13:
83:bd:2a:f4:eb:74:86:d9:49:73:00:71:c3:e1:df:
8e:d6:9c:49:b9:0a:69:eb:a0:41:ab:4e:6d:cb:bd:
4e:69:77:d6:40:ea:3d:07:65:d8:b5:19:78:a2:8d:
b7:b7:a1:f0:cf:32:de:d2:eb:b3:3a:ce:27:d4:96:
1c:6e:10:88:5c:c1:8b:46:20:5b:11:d2:bd:34:85:
71:bd:e5:e3:f8:47:78:63:4e:ae:c7:68:ef:51:aa:
5b:9f:1f:c2:80:66:e2:41:e4:2f:1b:21:2c:b4:4b:
85:2a:0a:90:70:ca:21:f3:a6:a3:93:ae:99:44:74:
99:73:d0:87:83:76:90:06:7f:4f:81:2c:21:74:37:
d9:8c:b1:19:a6:09:c9:49:2b:a4:d8:4a:f2:30:5a:
2f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:CF:BD:68:09:81:EF:EA:4B:FF:19:AE:F7:74:A7:6F:6D:2C:4A:2C
X509v3 Authority Key Identifier:
keyid:ED:B9:26:F8:C6:03:AA:B7:9C:B4:6A:88:3B:F6:32:56:4A:3F:AA:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7bkm-MYDqrectGqIO_YyVko_qr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/z8-9aAmB7-pL_xmu93Snb20sSiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/7bkm-MYDqrectGqIO_YyVko_qr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.153.138.0/23
37.153.172.0/23
45.114.120.0/22
46.254.8.0/21
77.81.6.0/23
77.81.188.0/23
86.107.48.0/23
86.107.242.0/23
89.36.90.0/23
89.40.216.0/23
89.42.140.0/23
89.45.226.0/23
89.46.80.0/21
91.106.192.0/21
91.123.192.0/20
103.57.72.0/22
103.81.140.0/22
116.206.168.0/22
141.255.184.0/21
185.2.152.0/22
185.16.84.0/22
185.52.156.0/22
185.62.204.0/22
185.103.48.0/22
188.95.224.0/21
188.212.108.0/23
188.240.18.0/23
188.240.92.0/22
188.240.222.0/23
188.241.198.0/23
IPv6:
2a00:16d8::/32
2a03:b000::-2a03:b000:2ff:ffff:ffff:ffff:ffff:ffff
2a03:b000:400::-2a03:b000:9ff:ffff:ffff:ffff:ffff:ffff
2a03:b000:b00::-2a03:b000:cff:ffff:ffff:ffff:ffff:ffff
2a03:b000:3001::-2a03:b000:3002:ffff:ffff:ffff:ffff:ffff
2a03:d7c0::/29
2a04:f180::/29
2a06:2980::/29
Signature Algorithm: sha256WithRSAEncryption
af:bf:ae:38:d8:78:df:23:e1:8f:df:89:ef:27:46:f6:5b:06:
a6:ab:09:ad:0d:cb:a5:c8:f7:04:a0:13:bb:5f:b3:5f:a0:50:
bc:c6:2b:9e:25:98:3d:75:83:52:50:65:ce:ba:0a:a4:87:c1:
f9:91:88:cc:a8:b3:e7:71:b3:b7:8f:b7:91:9b:75:6b:9d:b5:
61:46:9c:bd:bd:6d:11:3e:4b:a1:51:0a:7c:1e:27:f4:4c:be:
a8:76:ef:a1:8f:ee:8d:f2:d3:11:ca:45:5c:44:6d:51:67:ec:
da:9d:e3:e6:b8:3a:3b:bd:f9:d1:82:01:9e:56:02:e7:b8:90:
dc:34:77:a4:6b:90:a2:35:3d:58:85:99:7c:a5:28:ed:0f:14:
3b:00:1f:65:09:5a:b0:78:cd:58:d1:f9:ce:49:11:6f:40:a9:
9b:a7:d2:bf:c8:89:40:2f:8b:0b:39:ba:60:de:f9:29:d9:05:
f6:73:59:f2:f8:84:e2:ac:87:ef:1e:9e:b2:e9:eb:99:5b:3c:
93:c5:ea:fe:0e:eb:0b:8e:f2:e9:79:27:80:b8:91:11:85:67:
d7:ae:8d:9a:b9:46:91:f1:00:4e:c1:62:23:40:d4:b0:ac:cc:
8a:a8:fc:51:48:d8:d4:53:89:35:1c:80:7e:57:62:a6:62:ec:
3b:6d:50:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:35 2023 by rpki-client on console-ams.rpki-client.org