Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/v5_KuRSh2e_VkDphG8m5UPd9aUg.roa
File: v5_KuRSh2e_VkDphG8m5UPd9aUg.roa (raw, json)
Hash identifier: IO9eVZLJDgk9adIFnqQOA5LBdlbSSMDbv/T09WUTnSg=
Subject key identifier: BF:9F:CA:B9:14:A1:D9:EF:D5:90:3A:61:1B:C9:B9:50:F7:7D:69:48
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 1BE667E7
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/v5_KuRSh2e_VkDphG8m5UPd9aUg.roa
Signing time: Tue 12 Apr 2022 13:22:56 +0000
ROA not before: Tue 12 Apr 2022 13:22:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15557
IP address blocks: 80.124.0.0/16 maxlen: 16
217.19.192.0/20 maxlen: 20
88.141.0.0/16 maxlen: 16
212.198.0.0/16 maxlen: 16
217.70.80.0/20 maxlen: 20
79.80.0.0/12 maxlen: 12
185.147.204.0/22 maxlen: 22
77.144.0.0/12 maxlen: 12
195.3.0.0/18 maxlen: 18
77.137.196.0/22 maxlen: 22
85.168.0.0/14 maxlen: 14
77.137.200.0/21 maxlen: 21
77.137.208.0/20 maxlen: 20
194.6.128.0/19 maxlen: 19
195.146.192.0/19 maxlen: 19
84.96.0.0/13 maxlen: 13
77.136.172.0/24 maxlen: 24
88.140.0.0/16 maxlen: 16
77.136.173.0/24 maxlen: 24
77.136.175.0/24 maxlen: 24
77.136.174.0/24 maxlen: 24
87.231.0.0/16 maxlen: 16
62.39.0.0/16 maxlen: 16
77.140.0.0/14 maxlen: 14
89.2.0.0/15 maxlen: 15
62.106.128.0/17 maxlen: 17
217.112.224.0/20 maxlen: 20
194.183.192.0/19 maxlen: 19
213.245.0.0/16 maxlen: 16
62.241.64.0/18 maxlen: 18
81.220.0.0/16 maxlen: 16
89.156.0.0/14 maxlen: 14
213.169.160.0/19 maxlen: 19
93.0.0.0/11 maxlen: 11
109.0.0.0/11 maxlen: 11
81.1.0.0/18 maxlen: 18
81.65.0.0/16 maxlen: 16
77.136.63.0/24 maxlen: 24
62.129.160.0/19 maxlen: 19
78.112.0.0/12 maxlen: 12
62.8.0.0/19 maxlen: 19
77.136.0.0/16 maxlen: 16
88.136.0.0/14 maxlen: 14
77.136.47.0/24 maxlen: 24
37.64.0.0/13 maxlen: 13
77.128.0.0/13 maxlen: 13
80.236.0.0/17 maxlen: 17
212.94.160.0/19 maxlen: 19
81.185.160.0/20 maxlen: 20
80.125.0.0/16 maxlen: 16
83.141.128.0/17 maxlen: 17
84.205.128.0/19 maxlen: 19
77.134.204.0/24 maxlen: 24
84.205.144.0/20 maxlen: 20
81.64.0.0/14 maxlen: 14
213.128.32.0/19 maxlen: 19
80.118.0.0/15 maxlen: 15
194.242.176.0/20 maxlen: 20
92.88.0.0/13 maxlen: 13
91.68.0.0/22 maxlen: 22
195.132.0.0/16 maxlen: 16
85.68.0.0/15 maxlen: 15
195.98.96.0/19 maxlen: 19
213.223.0.0/16 maxlen: 16
91.68.0.0/14 maxlen: 14
84.4.0.0/14 maxlen: 14
77.192.0.0/12 maxlen: 12
86.64.0.0/12 maxlen: 12
82.216.0.0/16 maxlen: 16
195.115.0.0/16 maxlen: 16
88.142.0.0/16 maxlen: 16
2a02:8400::/25 maxlen: 25
2a00:6200::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 468084711 (0x1be667e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Apr 12 13:22:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf9fcab914a1d9efd5903a611bc9b950f77d6948
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:9e:e9:b2:ac:8a:cd:31:89:c6:29:fd:00:14:
6d:c6:9a:46:15:53:5c:10:c4:9c:79:99:b7:52:14:
47:2f:74:f4:93:c8:43:22:7e:c4:5d:7d:e3:99:96:
ff:f1:74:58:10:14:d2:4c:dd:51:b4:bf:55:21:3d:
0c:99:72:09:a8:ef:b8:5c:d5:91:52:0e:eb:16:2e:
f6:29:75:a1:2c:55:ea:30:90:e2:3f:cc:fb:85:36:
dc:67:98:0f:45:8a:20:4a:54:11:fb:12:71:c3:63:
ed:b8:c6:50:03:ff:f3:82:14:9f:0b:2a:52:5b:21:
35:ae:aa:17:11:b5:e4:5b:2c:3c:cb:00:73:5f:fd:
c2:48:bc:de:6f:1a:3b:72:76:04:30:b4:b7:ea:f7:
58:c8:fc:d5:ac:7e:4a:8e:9c:b9:c9:12:ba:c3:4b:
1a:55:ba:8b:be:0f:f8:2f:cf:d7:cb:54:f3:d3:b4:
3d:31:cf:e9:db:b0:16:d0:4f:2a:63:a9:32:ab:89:
bd:70:2f:49:e5:e8:f8:fb:ae:b6:14:63:25:d5:69:
86:07:45:e9:ed:90:5b:c5:f8:b0:29:d7:9d:15:75:
ff:52:d6:0f:67:a7:84:1a:93:bb:7d:5b:28:2d:d8:
74:fa:50:8d:4b:4e:ed:43:de:55:17:dc:cc:e6:66:
1e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:9F:CA:B9:14:A1:D9:EF:D5:90:3A:61:1B:C9:B9:50:F7:7D:69:48
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/v5_KuRSh2e_VkDphG8m5UPd9aUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.64.0.0/13
62.8.0.0/19
62.39.0.0/16
62.106.128.0/17
62.129.160.0/19
62.241.64.0/18
77.128.0.0-77.136.255.255
77.137.196.0-77.137.223.255
77.140.0.0-77.159.255.255
77.192.0.0/12
78.112.0.0/12
79.80.0.0/12
80.118.0.0/15
80.124.0.0/15
80.236.0.0/17
81.1.0.0/18
81.64.0.0/14
81.185.160.0/20
81.220.0.0/16
82.216.0.0/16
83.141.128.0/17
84.4.0.0/14
84.96.0.0/13
84.205.128.0/19
85.68.0.0/15
85.168.0.0/14
86.64.0.0/12
87.231.0.0/16
88.136.0.0-88.142.255.255
89.2.0.0/15
89.156.0.0/14
91.68.0.0/14
92.88.0.0/13
93.0.0.0/11
109.0.0.0/11
185.147.204.0/22
194.6.128.0/19
194.183.192.0/19
194.242.176.0/20
195.3.0.0/18
195.98.96.0/19
195.115.0.0/16
195.132.0.0/16
195.146.192.0/19
212.94.160.0/19
212.198.0.0/16
213.128.32.0/19
213.169.160.0/19
213.223.0.0/16
213.245.0.0/16
217.19.192.0/20
217.70.80.0/20
217.112.224.0/20
IPv6:
2a00:6200::/29
2a02:8400::/25
Signature Algorithm: sha256WithRSAEncryption
7b:37:f9:07:cb:dc:b5:24:af:b2:c5:06:8a:90:4e:9a:1c:43:
ff:55:41:ac:ee:08:e1:e4:19:75:ef:92:a8:52:81:29:b6:ae:
32:60:71:bf:f3:21:cf:29:34:98:24:c8:25:ac:1d:58:ec:e9:
63:27:35:71:af:5e:59:1a:a5:49:c6:f8:78:6b:41:cd:83:6c:
28:fa:e1:18:65:83:7d:23:6f:6d:50:bd:c0:6f:1f:b4:ee:db:
57:e9:11:d0:ca:af:d5:c0:81:aa:d4:51:74:8d:49:91:92:73:
42:e1:7f:ee:30:a3:64:39:31:3e:1c:ba:ee:eb:c1:5f:2a:20:
b7:a1:8f:42:9c:f9:50:c5:25:4e:c2:96:13:dc:9c:aa:31:8f:
82:9e:f0:9c:b6:df:e7:8b:a8:31:e5:7a:b7:97:88:12:d2:0a:
58:ce:b0:04:4a:59:18:b0:40:a8:78:4e:90:51:c2:98:7f:de:
a9:6b:a7:72:65:83:76:8b:d2:53:3c:fb:d8:d2:a3:46:65:3a:
ba:5d:bc:fe:58:ca:b7:29:54:05:7d:41:3c:32:ae:e4:8e:60:
47:c5:90:47:27:75:30:76:03:a7:53:7f:54:7e:05:13:7e:4c:
44:15:13:d3:a9:fb:32:42:88:86:66:ee:42:d6:40:c8:c2:b2:
7f:2d:b2:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:55 2024 by rpki-client on console-fra.rpki-client.org