Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/QleaJQNw7xd9kzjxod1p4nI6ZnY.roa
File: QleaJQNw7xd9kzjxod1p4nI6ZnY.roa (raw, json)
Hash identifier: 5wg7HVCZCnSLxbeHBbgiNThFT7gzCUWGzLC5RjuBJSo=
Subject key identifier: 42:57:9A:25:03:70:EF:17:7D:93:38:F1:A1:DD:69:E2:72:3A:66:76
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 1BDC336F
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/QleaJQNw7xd9kzjxod1p4nI6ZnY.roa
Signing time: Fri 08 Apr 2022 08:47:04 +0000
ROA not before: Fri 08 Apr 2022 08:47:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15557
IP address blocks: 80.124.0.0/16 maxlen: 16
217.19.192.0/20 maxlen: 20
88.141.0.0/16 maxlen: 16
212.198.0.0/16 maxlen: 16
217.70.80.0/20 maxlen: 20
79.80.0.0/12 maxlen: 12
185.147.204.0/22 maxlen: 22
77.144.0.0/12 maxlen: 12
195.3.0.0/18 maxlen: 18
77.137.196.0/22 maxlen: 22
85.168.0.0/14 maxlen: 14
77.137.200.0/21 maxlen: 21
77.137.208.0/20 maxlen: 20
194.6.128.0/19 maxlen: 19
195.146.192.0/19 maxlen: 19
84.96.0.0/13 maxlen: 13
77.136.172.0/24 maxlen: 24
88.140.0.0/16 maxlen: 16
77.136.173.0/24 maxlen: 24
77.136.175.0/24 maxlen: 24
77.136.174.0/24 maxlen: 24
87.231.0.0/16 maxlen: 16
62.39.0.0/16 maxlen: 16
77.140.0.0/14 maxlen: 14
89.2.0.0/15 maxlen: 15
62.106.128.0/17 maxlen: 17
217.112.224.0/20 maxlen: 20
194.183.192.0/19 maxlen: 19
213.245.0.0/16 maxlen: 16
62.241.64.0/18 maxlen: 18
81.220.0.0/16 maxlen: 16
89.156.0.0/14 maxlen: 14
213.169.160.0/19 maxlen: 19
109.0.0.0/11 maxlen: 11
93.0.0.0/11 maxlen: 11
81.1.0.0/18 maxlen: 18
81.65.0.0/16 maxlen: 16
77.136.63.0/24 maxlen: 24
62.129.160.0/19 maxlen: 19
62.8.0.0/19 maxlen: 19
77.136.0.0/16 maxlen: 16
88.136.0.0/14 maxlen: 14
77.136.47.0/24 maxlen: 24
37.64.0.0/13 maxlen: 13
77.128.0.0/13 maxlen: 13
80.236.0.0/17 maxlen: 17
212.94.160.0/19 maxlen: 19
81.185.160.0/20 maxlen: 20
80.125.0.0/16 maxlen: 16
83.141.128.0/17 maxlen: 17
84.205.128.0/19 maxlen: 19
77.134.204.0/24 maxlen: 24
84.205.144.0/20 maxlen: 20
81.64.0.0/14 maxlen: 14
213.128.32.0/19 maxlen: 19
80.118.0.0/15 maxlen: 15
194.242.176.0/20 maxlen: 20
92.88.0.0/13 maxlen: 13
91.68.0.0/22 maxlen: 22
195.132.0.0/16 maxlen: 16
85.68.0.0/15 maxlen: 15
195.98.96.0/19 maxlen: 19
91.68.0.0/14 maxlen: 14
77.192.0.0/12 maxlen: 12
86.64.0.0/12 maxlen: 12
82.216.0.0/16 maxlen: 16
88.142.0.0/16 maxlen: 16
2a02:8400::/25 maxlen: 25
2a00:6200::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 467415919 (0x1bdc336f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Apr 8 08:47:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42579a250370ef177d9338f1a1dd69e2723a6676
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:6a:14:8b:3d:ec:c7:64:bc:56:58:2f:f7:46:
ae:18:46:22:63:ac:40:6f:b0:ad:a9:23:be:90:80:
77:50:1a:b6:03:7a:aa:9c:a9:a8:47:0f:b4:3a:72:
61:d6:04:cd:0b:2f:ff:05:97:ba:ec:e6:c4:5f:c0:
89:2f:e8:28:50:20:88:73:f7:b2:6d:85:87:6e:8f:
87:97:d5:f1:9d:03:91:60:0f:d2:bf:14:67:01:18:
08:e9:2d:14:30:6f:45:f7:66:14:3b:c7:de:83:47:
15:a7:aa:68:40:a9:d4:7f:62:f6:9e:83:8c:02:65:
3d:a4:cf:a8:83:0c:37:fd:ab:4b:d3:6f:30:5c:ca:
cb:04:4f:4d:a4:fd:67:d0:32:2f:3c:2a:56:9c:09:
a4:3f:1c:85:d8:7b:f8:e1:98:4e:9e:94:2f:2c:54:
d6:e8:4e:78:b6:f2:28:c0:34:04:29:b5:40:5b:3a:
bd:56:43:3f:bf:7b:6e:7f:da:05:79:5f:1a:18:fc:
e6:76:1d:d1:8f:d6:8e:b6:e5:ef:9f:f8:3a:b1:25:
4b:59:ff:87:71:2c:84:94:99:a8:82:0d:93:2b:b5:
ac:fc:2c:c5:69:7a:29:c4:9c:9f:b9:38:3d:62:61:
20:95:c6:93:b6:8e:1c:46:b1:98:6a:87:10:ba:f5:
d0:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:57:9A:25:03:70:EF:17:7D:93:38:F1:A1:DD:69:E2:72:3A:66:76
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/QleaJQNw7xd9kzjxod1p4nI6ZnY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.64.0.0/13
62.8.0.0/19
62.39.0.0/16
62.106.128.0/17
62.129.160.0/19
62.241.64.0/18
77.128.0.0-77.136.255.255
77.137.196.0-77.137.223.255
77.140.0.0-77.159.255.255
77.192.0.0/12
79.80.0.0/12
80.118.0.0/15
80.124.0.0/15
80.236.0.0/17
81.1.0.0/18
81.64.0.0/14
81.185.160.0/20
81.220.0.0/16
82.216.0.0/16
83.141.128.0/17
84.96.0.0/13
84.205.128.0/19
85.68.0.0/15
85.168.0.0/14
86.64.0.0/12
87.231.0.0/16
88.136.0.0-88.142.255.255
89.2.0.0/15
89.156.0.0/14
91.68.0.0/14
92.88.0.0/13
93.0.0.0/11
109.0.0.0/11
185.147.204.0/22
194.6.128.0/19
194.183.192.0/19
194.242.176.0/20
195.3.0.0/18
195.98.96.0/19
195.132.0.0/16
195.146.192.0/19
212.94.160.0/19
212.198.0.0/16
213.128.32.0/19
213.169.160.0/19
213.245.0.0/16
217.19.192.0/20
217.70.80.0/20
217.112.224.0/20
IPv6:
2a00:6200::/29
2a02:8400::/25
Signature Algorithm: sha256WithRSAEncryption
78:11:e9:33:03:50:2c:1e:ac:0b:9f:03:53:b6:f5:d3:ce:c0:
51:e5:31:71:e0:56:cc:fe:61:ff:50:4f:d9:d7:2c:cb:30:c9:
49:e8:4e:15:22:8f:fe:7c:46:29:8f:11:4b:79:d9:04:3a:3a:
b0:c3:91:18:01:59:df:4b:ee:2d:f4:7d:6f:3e:c1:60:c0:7d:
ba:e9:b3:14:bb:14:4c:bf:7a:ec:67:3c:d0:fc:e8:cf:6d:ce:
b4:39:11:c4:31:8d:14:ad:de:43:18:28:9c:25:41:40:8d:c4:
61:86:53:7f:ba:cd:68:44:72:81:1a:2f:5e:1b:f3:b0:d0:e2:
27:56:7b:28:47:4b:76:99:d5:f9:52:3a:77:a2:57:1e:b3:51:
c7:7b:0b:5e:a0:db:d0:64:d7:48:01:ce:1d:46:ed:f7:58:be:
af:c4:ba:61:2e:d7:b1:07:df:34:c6:4d:ba:34:ac:b8:cc:f8:
63:cf:e0:eb:a1:93:11:20:5a:33:8a:6b:bb:a5:94:bc:6e:03:
ad:ca:0c:5f:ae:bc:51:f4:3d:67:18:1b:ea:ab:e8:e6:55:02:
9e:72:14:bf:56:af:c9:47:08:ff:29:c8:d6:e8:b7:a2:60:6f:
65:a5:f0:c7:94:4c:16:9e:ad:9c:6c:90:d8:25:12:4f:0a:7f:
31:11:5f:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:50 2024 by rpki-client on console-ams.rpki-client.org