Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/UFXCoQ1Cyydjdr0KdzLLokhmwwQ.roa
File: UFXCoQ1Cyydjdr0KdzLLokhmwwQ.roa (raw, json)
Hash identifier: duzOj7C7BRVdeBF9JyH24YVlHxzy87vWMTbG0etbjnw=
Subject key identifier: 50:55:C2:A1:0D:42:CB:27:63:76:BD:0A:77:32:CB:A2:48:66:C3:04
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 1B01020E
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/UFXCoQ1Cyydjdr0KdzLLokhmwwQ.roa
Signing time: Sat 01 Jan 2022 13:05:44 +0000
ROA not before: Sat 01 Jan 2022 13:05:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198949
IP address blocks: 80.70.32.0/20 maxlen: 24
80.124.0.0/15 maxlen: 24
87.255.128.0/19 maxlen: 24
217.19.192.0/20 maxlen: 24
212.198.0.0/16 maxlen: 24
91.151.112.0/20 maxlen: 24
213.144.192.0/19 maxlen: 24
213.222.64.0/18 maxlen: 24
77.144.0.0/12 maxlen: 24
217.70.80.0/20 maxlen: 24
79.80.0.0/12 maxlen: 24
185.147.204.0/22 maxlen: 24
79.174.192.0/18 maxlen: 24
195.3.0.0/18 maxlen: 24
85.168.0.0/14 maxlen: 24
81.185.0.0/16 maxlen: 24
194.6.128.0/19 maxlen: 24
84.96.0.0/13 maxlen: 24
195.146.192.0/19 maxlen: 24
87.231.0.0/16 maxlen: 24
62.39.0.0/16 maxlen: 24
77.140.0.0/14 maxlen: 24
62.62.169.0/24 maxlen: 24
89.2.0.0/15 maxlen: 24
62.106.128.0/17 maxlen: 24
217.112.224.0/20 maxlen: 24
194.153.89.0/24 maxlen: 24
194.153.90.0/24 maxlen: 24
194.153.88.0/23 maxlen: 24
194.153.97.0/24 maxlen: 24
194.153.92.0/24 maxlen: 24
194.183.192.0/19 maxlen: 24
62.62.128.0/17 maxlen: 24
89.157.88.0/21 maxlen: 24
89.157.96.0/19 maxlen: 24
141.170.216.0/21 maxlen: 24
212.39.128.0/19 maxlen: 24
213.245.0.0/16 maxlen: 24
62.241.64.0/18 maxlen: 24
81.220.0.0/16 maxlen: 24
213.203.64.0/18 maxlen: 24
89.156.0.0/14 maxlen: 24
213.169.160.0/19 maxlen: 24
93.0.0.0/11 maxlen: 24
109.0.0.0/11 maxlen: 24
81.1.0.0/18 maxlen: 24
88.136.0.0/13 maxlen: 24
84.55.128.0/18 maxlen: 24
62.129.160.0/19 maxlen: 24
62.8.0.0/19 maxlen: 24
78.112.0.0/12 maxlen: 24
46.35.0.0/19 maxlen: 24
77.136.0.0/15 maxlen: 24
37.64.0.0/13 maxlen: 24
80.236.0.0/17 maxlen: 24
77.128.0.0/13 maxlen: 24
212.94.160.0/19 maxlen: 24
83.141.128.0/17 maxlen: 24
84.205.128.0/19 maxlen: 24
212.23.160.0/19 maxlen: 24
212.30.96.0/19 maxlen: 24
81.64.0.0/14 maxlen: 24
213.128.32.0/19 maxlen: 24
194.242.176.0/20 maxlen: 24
80.118.0.0/15 maxlen: 24
195.7.96.0/19 maxlen: 24
92.88.0.0/13 maxlen: 24
195.132.0.0/16 maxlen: 24
195.98.96.0/19 maxlen: 24
85.68.0.0/15 maxlen: 24
213.223.0.0/16 maxlen: 24
84.4.0.0/14 maxlen: 24
91.68.0.0/14 maxlen: 24
77.192.0.0/12 maxlen: 24
86.64.0.0/12 maxlen: 24
82.216.0.0/16 maxlen: 24
195.115.0.0/16 maxlen: 24
78.155.128.0/19 maxlen: 24
2a02:8400::/25 maxlen: 48
2a00:6200::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 453050894 (0x1b01020e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jan 1 13:05:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5055c2a10d42cb276376bd0a7732cba24866c304
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:cb:0d:b6:b3:28:f7:3b:ac:f6:b4:b5:4e:72:
ab:de:e8:0c:41:bc:a8:7c:5d:3d:f9:28:b0:6f:28:
b5:ff:92:c2:64:25:13:9d:50:04:0b:3e:c2:40:06:
6e:6d:b2:34:67:97:95:4d:1c:56:0a:ca:46:6f:de:
ae:5e:56:5b:fb:6e:0b:b2:1f:fa:ce:00:98:3c:64:
68:cb:81:ad:12:ca:ae:60:76:8d:ad:b4:64:8b:d9:
b7:f7:78:46:89:ea:b6:2f:bb:2f:b6:73:86:01:0c:
36:60:e7:35:19:9f:6f:84:f7:79:a8:ad:e8:34:71:
ce:43:f7:63:88:2a:cd:bb:44:60:6a:37:6a:d3:cc:
8e:51:50:43:6c:ed:3f:af:52:0c:95:52:9e:49:ca:
4b:e3:35:39:bf:2d:64:42:73:53:d2:79:9b:8e:32:
89:c7:96:8c:c5:31:b3:11:1c:f5:7a:e1:da:fa:b3:
9f:38:a6:30:2e:96:78:9e:2e:38:5c:43:fd:35:09:
2c:e0:ab:bb:b4:38:48:80:f8:cd:c1:95:04:7f:5d:
d6:f5:ce:01:ec:8b:f6:ce:0d:ef:cc:4d:95:31:2a:
b0:ed:18:60:21:49:ec:7a:ad:0d:25:6a:0f:af:f9:
54:26:90:03:f5:ef:16:ae:f8:2d:12:7b:82:88:69:
d4:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:55:C2:A1:0D:42:CB:27:63:76:BD:0A:77:32:CB:A2:48:66:C3:04
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/UFXCoQ1Cyydjdr0KdzLLokhmwwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.64.0.0/13
46.35.0.0/19
62.8.0.0/19
62.39.0.0/16
62.62.128.0/17
62.106.128.0/17
62.129.160.0/19
62.241.64.0/18
77.128.0.0-77.137.255.255
77.140.0.0-77.159.255.255
77.192.0.0/12
78.112.0.0/12
78.155.128.0/19
79.80.0.0/12
79.174.192.0/18
80.70.32.0/20
80.118.0.0/15
80.124.0.0/15
80.236.0.0/17
81.1.0.0/18
81.64.0.0/14
81.185.0.0/16
81.220.0.0/16
82.216.0.0/16
83.141.128.0/17
84.4.0.0/14
84.55.128.0/18
84.96.0.0/13
84.205.128.0/19
85.68.0.0/15
85.168.0.0/14
86.64.0.0/12
87.231.0.0/16
87.255.128.0/19
88.136.0.0/13
89.2.0.0/15
89.156.0.0/14
91.68.0.0/14
91.151.112.0/20
92.88.0.0/13
93.0.0.0/11
109.0.0.0/11
141.170.216.0/21
185.147.204.0/22
194.6.128.0/19
194.153.88.0-194.153.90.255
194.153.92.0/24
194.153.97.0/24
194.183.192.0/19
194.242.176.0/20
195.3.0.0/18
195.7.96.0/19
195.98.96.0/19
195.115.0.0/16
195.132.0.0/16
195.146.192.0/19
212.23.160.0/19
212.30.96.0/19
212.39.128.0/19
212.94.160.0/19
212.198.0.0/16
213.128.32.0/19
213.144.192.0/19
213.169.160.0/19
213.203.64.0/18
213.222.64.0/18
213.223.0.0/16
213.245.0.0/16
217.19.192.0/20
217.70.80.0/20
217.112.224.0/20
IPv6:
2a00:6200::/29
2a02:8400::/25
Signature Algorithm: sha256WithRSAEncryption
33:62:25:db:a5:ad:e1:04:94:5f:47:d8:bc:97:06:1b:22:15:
98:f0:c4:db:1e:d2:b6:de:40:d0:4d:93:6e:74:c8:32:28:c2:
91:b9:35:f8:87:19:d1:c8:22:43:71:92:dd:42:ac:55:11:9c:
8e:2b:44:cf:e0:ab:36:91:56:ae:8a:9a:3f:10:32:f4:b8:75:
93:64:02:f8:63:ea:a3:80:3c:55:52:88:d2:89:db:57:f1:26:
2f:4e:95:f2:ba:03:64:43:84:5a:b2:3f:b7:70:89:e5:98:57:
09:4a:7a:b9:cd:76:13:d7:90:fc:72:2f:73:21:64:ad:fd:d4:
07:af:e0:ae:d3:99:5a:05:47:e1:1e:2a:ff:e7:1e:72:9a:6d:
50:e1:a4:c4:b4:65:a6:41:33:5d:1e:08:00:21:45:38:8a:26:
d5:bb:61:9d:e7:a8:ab:74:48:54:de:9e:be:fb:14:8e:c2:ff:
79:89:05:8a:52:b1:34:a8:f8:b5:c5:2f:dc:0a:7f:1a:59:b2:
28:55:81:79:b5:67:56:82:4a:6d:19:9f:f7:0a:9b:0a:e3:15:
0c:99:19:23:5e:91:83:06:c5:36:21:21:80:d1:72:2a:f8:df:
df:2e:00:c0:96:23:40:8e:17:8b:1f:8a:37:c7:3b:9c:6b:04:
1a:64:a1:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:55 2024 by rpki-client on console-fra.rpki-client.org