Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/AnLEDfx7QZW1UtKu21-h620XwSs.roa
File: AnLEDfx7QZW1UtKu21-h620XwSs.roa (raw, json)
Hash identifier: eIvoN6bnaoEESGXoLeqhKU31ogWLjWb8H9qXDwq95rA=
Subject key identifier: 02:72:C4:0D:FC:7B:41:95:B5:52:D2:AE:DB:5F:A1:EB:6D:17:C1:2B
Certificate issuer: /CN=65816774b7c5665d67a86c20ceb6487b5b78b38d
Certificate serial: 0AE7E6FA
Authority key identifier: 65:81:67:74:B7:C5:66:5D:67:A8:6C:20:CE:B6:48:7B:5B:78:B3:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYFndLfFZl1nqGwgzrZIe1t4s40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/AnLEDfx7QZW1UtKu21-h620XwSs.roa
Signing time: Sat 01 Jan 2022 15:55:04 +0000
ROA not before: Sat 01 Jan 2022 15:55:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34295
IP address blocks: 109.107.64.0/24 maxlen: 24
109.107.65.0/24 maxlen: 24
109.107.67.0/24 maxlen: 24
109.107.66.0/24 maxlen: 24
109.107.69.0/24 maxlen: 24
109.107.68.0/24 maxlen: 24
109.107.68.0/23 maxlen: 23
109.107.81.0/24 maxlen: 24
109.107.80.0/24 maxlen: 24
109.107.83.0/24 maxlen: 24
109.107.82.0/24 maxlen: 24
109.107.85.0/24 maxlen: 24
109.107.84.0/24 maxlen: 24
109.107.86.0/24 maxlen: 24
109.107.87.0/24 maxlen: 24
94.139.203.0/24 maxlen: 24
94.139.202.0/24 maxlen: 24
94.139.201.0/24 maxlen: 24
94.139.200.0/24 maxlen: 24
94.139.200.0/21 maxlen: 21
94.139.200.0/22 maxlen: 22
94.139.192.0/24 maxlen: 24
94.139.192.0/22 maxlen: 22
94.139.196.0/24 maxlen: 24
94.139.198.0/24 maxlen: 24
94.139.197.0/24 maxlen: 24
94.139.199.0/24 maxlen: 24
94.139.196.0/22 maxlen: 22
185.52.49.0/24 maxlen: 24
77.76.161.0/24 maxlen: 24
77.76.160.0/24 maxlen: 24
77.76.162.0/24 maxlen: 24
77.76.164.0/24 maxlen: 24
77.76.163.0/24 maxlen: 24
77.76.166.0/24 maxlen: 24
77.76.165.0/24 maxlen: 24
77.76.169.0/24 maxlen: 24
77.76.171.0/24 maxlen: 24
77.76.170.0/24 maxlen: 24
77.76.172.0/24 maxlen: 24
77.76.168.0/24 maxlen: 24
77.76.167.0/24 maxlen: 24
77.76.173.0/24 maxlen: 24
77.76.175.0/24 maxlen: 24
77.76.174.0/24 maxlen: 24
77.76.183.0/24 maxlen: 24
77.76.180.0/24 maxlen: 24
77.76.182.0/24 maxlen: 24
77.76.181.0/24 maxlen: 24
188.124.64.0/24 maxlen: 24
188.124.65.0/24 maxlen: 24
188.124.67.0/24 maxlen: 24
188.124.66.0/24 maxlen: 24
188.124.69.0/24 maxlen: 24
188.124.68.0/24 maxlen: 24
188.124.70.0/24 maxlen: 24
188.124.71.0/24 maxlen: 24
188.124.72.0/24 maxlen: 24
188.124.74.0/24 maxlen: 24
188.124.73.0/24 maxlen: 24
188.124.75.0/24 maxlen: 24
188.124.77.0/24 maxlen: 24
188.124.76.0/24 maxlen: 24
188.124.78.0/24 maxlen: 24
188.124.80.0/22 maxlen: 22
188.124.79.0/24 maxlen: 24
188.124.81.0/24 maxlen: 24
188.124.80.0/24 maxlen: 24
188.124.82.0/24 maxlen: 24
188.124.84.0/24 maxlen: 24
188.124.83.0/24 maxlen: 24
188.124.85.0/24 maxlen: 24
188.124.86.0/24 maxlen: 24
188.124.88.0/24 maxlen: 24
188.124.87.0/24 maxlen: 24
188.124.89.0/24 maxlen: 24
188.124.91.0/24 maxlen: 24
188.124.90.0/24 maxlen: 24
178.75.202.0/24 maxlen: 24
178.75.204.0/22 maxlen: 22
178.75.203.0/24 maxlen: 24
178.75.205.0/24 maxlen: 24
178.75.206.0/24 maxlen: 24
178.75.204.0/24 maxlen: 24
178.75.201.0/24 maxlen: 24
178.75.200.0/24 maxlen: 24
178.75.208.0/24 maxlen: 24
178.75.208.0/22 maxlen: 22
178.75.212.0/22 maxlen: 22
178.75.207.0/24 maxlen: 24
178.75.210.0/24 maxlen: 24
178.75.209.0/24 maxlen: 24
178.75.211.0/24 maxlen: 24
178.75.213.0/24 maxlen: 24
178.75.212.0/24 maxlen: 24
178.75.217.0/24 maxlen: 24
178.75.216.0/24 maxlen: 24
178.75.218.0/24 maxlen: 24
178.75.219.0/24 maxlen: 24
178.75.215.0/24 maxlen: 24
178.75.214.0/24 maxlen: 24
178.75.216.0/22 maxlen: 22
178.75.220.0/24 maxlen: 24
178.75.222.0/24 maxlen: 24
178.75.221.0/24 maxlen: 24
178.75.223.0/24 maxlen: 24
178.75.220.0/22 maxlen: 22
178.75.240.0/24 maxlen: 24
178.75.240.0/23 maxlen: 23
178.75.245.0/24 maxlen: 24
178.75.244.0/24 maxlen: 24
178.75.246.0/24 maxlen: 24
178.75.241.0/24 maxlen: 24
178.75.243.0/24 maxlen: 24
178.75.242.0/24 maxlen: 24
178.75.248.0/24 maxlen: 24
178.75.247.0/24 maxlen: 24
178.75.250.0/24 maxlen: 24
178.75.249.0/24 maxlen: 24
178.75.251.0/24 maxlen: 24
178.75.248.0/22 maxlen: 22
77.76.145.0/24 maxlen: 24
77.76.144.0/24 maxlen: 24
77.76.147.0/24 maxlen: 24
77.76.146.0/24 maxlen: 24
77.76.148.0/24 maxlen: 24
77.76.149.0/24 maxlen: 24
178.75.192.0/22 maxlen: 22
178.75.192.0/24 maxlen: 24
178.75.194.0/24 maxlen: 24
178.75.193.0/24 maxlen: 24
178.75.195.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 182970106 (0xae7e6fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65816774b7c5665d67a86c20ceb6487b5b78b38d
Validity
Not Before: Jan 1 15:55:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0272c40dfc7b4195b552d2aedb5fa1eb6d17c12b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:23:a7:e3:5b:9e:fa:b5:a3:5c:87:aa:59:1f:
75:35:d9:d2:92:54:18:5a:f9:c1:ca:af:7e:e7:c6:
34:34:e0:d7:71:93:5a:3e:41:f5:ce:a8:c3:c5:7e:
4a:45:a4:e4:a3:e7:11:d1:eb:37:37:ad:88:49:99:
16:79:35:5c:e4:c5:d8:ce:e9:da:b9:88:e6:41:ed:
0a:45:b9:8d:fc:1f:43:12:c2:ce:67:0d:6e:fa:6f:
9a:9a:cf:df:05:5b:4f:b0:50:50:be:78:28:69:aa:
72:6f:80:45:7d:72:d5:11:af:33:8c:da:65:8a:a3:
97:82:e6:7d:6c:f3:9e:88:11:b2:88:c9:56:fb:41:
d1:6f:96:4c:9e:47:92:bc:4d:46:59:8c:e9:9b:d5:
72:0c:26:12:5f:b7:46:84:36:68:d3:05:26:46:73:
65:ae:3f:bd:7e:6c:fe:9c:2a:6c:f3:dd:87:a0:ec:
82:75:d6:2b:d0:6e:bf:e0:29:f0:c3:15:42:c6:43:
6f:ed:87:91:64:8d:9c:db:78:fb:41:3f:0d:ba:69:
af:4e:b1:d6:08:b4:c4:56:7c:81:64:ef:bb:de:20:
1e:00:a1:17:fb:67:de:e4:01:25:fe:46:48:ac:51:
2b:0d:fe:e3:c7:70:49:23:04:e5:46:3f:bf:6d:e4:
f2:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:72:C4:0D:FC:7B:41:95:B5:52:D2:AE:DB:5F:A1:EB:6D:17:C1:2B
X509v3 Authority Key Identifier:
keyid:65:81:67:74:B7:C5:66:5D:67:A8:6C:20:CE:B6:48:7B:5B:78:B3:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYFndLfFZl1nqGwgzrZIe1t4s40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/AnLEDfx7QZW1UtKu21-h620XwSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/ZYFndLfFZl1nqGwgzrZIe1t4s40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.76.144.0-77.76.149.255
77.76.160.0/20
77.76.180.0/22
94.139.192.0/20
109.107.64.0-109.107.69.255
109.107.80.0/21
178.75.192.0/22
178.75.200.0-178.75.223.255
178.75.240.0-178.75.251.255
185.52.49.0/24
188.124.64.0-188.124.91.255
Signature Algorithm: sha256WithRSAEncryption
09:4e:a7:59:6b:d3:28:2d:75:38:6e:36:b1:bb:70:41:7b:d1:
38:a1:4f:3b:14:4d:80:19:15:b8:02:2f:39:d7:7a:44:57:f8:
cf:9e:26:90:f8:0d:0b:cc:d7:46:ac:5f:30:e5:68:ee:6e:d3:
87:c2:d6:7d:81:37:8e:c5:01:14:6a:a0:bb:d2:bb:b8:02:20:
81:9c:de:98:11:e6:5d:ee:80:95:1c:49:6e:2d:38:75:e1:e1:
cb:0e:fb:bc:3e:e4:36:89:f7:5d:02:29:3b:14:f0:5f:35:a2:
35:54:40:8c:d1:5b:b4:be:bc:54:2c:a9:47:25:7f:13:64:d9:
f4:1b:f1:82:a8:50:cd:10:0a:6a:aa:1a:0c:ae:77:d5:20:da:
38:47:ec:b6:18:3d:23:db:b9:60:1d:ec:ce:c7:ab:de:af:64:
d9:bc:77:ea:3c:6a:d4:83:ff:64:60:00:e1:cc:91:c2:77:0b:
c3:d7:bd:3d:99:b8:72:f0:f2:64:2b:db:5a:f3:de:7e:2e:ae:
9b:97:95:46:69:cf:36:51:29:98:cd:19:ae:ec:f6:82:9a:b3:
32:2b:33:f4:6e:fd:4d:17:6e:fb:11:67:d4:c0:68:15:c1:45:
db:60:2f:7a:69:61:8f:e3:1f:21:52:b3:8c:9d:20:da:ca:a6:
6d:d8:19:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:27 2024 by rpki-client on console-fra.rpki-client.org