Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/zWj9QVZeNia9rhe9udK2WcDp_B4.roa
File: zWj9QVZeNia9rhe9udK2WcDp_B4.roa (raw, json)
Hash identifier: 4Mvadhg2ppe4pEhmbFU3XQruKN6K4rBtceMCSGXsWjc=
Subject key identifier: CD:68:FD:41:56:5E:36:26:BD:AE:17:BD:B9:D2:B6:59:C0:E9:FC:1E
Certificate issuer: /CN=c2d2a234e224bf87996f2f0df559ead882f9e651
Certificate serial: 16E62156
Authority key identifier: C2:D2:A2:34:E2:24:BF:87:99:6F:2F:0D:F5:59:EA:D8:82:F9:E6:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtKiNOIkv4eZby8N9Vnq2IL55lE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/zWj9QVZeNia9rhe9udK2WcDp_B4.roa
Signing time: Fri 18 Feb 2022 07:10:43 +0000
ROA not before: Fri 18 Feb 2022 07:10:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50926
IP address blocks: 185.70.92.0/22 maxlen: 22
188.164.192.0/21 maxlen: 21
188.164.192.0/24 maxlen: 24
188.164.197.0/24 maxlen: 24
188.164.199.0/24 maxlen: 24
94.127.186.0/24 maxlen: 24
188.164.198.0/24 maxlen: 24
94.127.185.0/24 maxlen: 24
94.127.184.0/24 maxlen: 24
188.164.196.0/24 maxlen: 24
188.164.195.0/24 maxlen: 24
188.164.194.0/24 maxlen: 24
188.164.193.0/24 maxlen: 24
94.127.191.0/24 maxlen: 24
94.127.190.0/24 maxlen: 24
94.127.188.0/24 maxlen: 24
149.62.172.0/22 maxlen: 22
149.62.168.0/21 maxlen: 21
149.62.168.0/22 maxlen: 22
195.5.116.0/23 maxlen: 23
91.200.140.0/22 maxlen: 22
188.95.112.0/21 maxlen: 21
185.176.9.0/24 maxlen: 24
185.176.8.0/24 maxlen: 24
185.176.11.0/24 maxlen: 24
185.176.10.0/24 maxlen: 24
84.246.213.0/24 maxlen: 24
84.246.212.0/24 maxlen: 24
84.246.211.0/24 maxlen: 24
84.246.210.0/24 maxlen: 24
84.246.209.0/24 maxlen: 24
84.246.208.0/21 maxlen: 21
84.246.208.0/24 maxlen: 24
109.68.84.0/24 maxlen: 24
109.68.82.0/24 maxlen: 24
84.246.215.0/24 maxlen: 24
109.68.80.0/24 maxlen: 24
109.68.80.0/21 maxlen: 21
84.246.214.0/24 maxlen: 24
91.213.46.0/24 maxlen: 24
31.24.152.0/21 maxlen: 21
31.24.152.0/24 maxlen: 24
31.24.159.0/24 maxlen: 24
31.24.158.0/24 maxlen: 24
31.24.157.0/24 maxlen: 24
31.24.156.0/24 maxlen: 24
31.24.155.0/24 maxlen: 24
31.24.154.0/24 maxlen: 24
91.142.208.0/20 maxlen: 20
185.222.156.0/22 maxlen: 22
5.175.42.0/24 maxlen: 24
5.175.41.0/24 maxlen: 24
5.175.40.0/24 maxlen: 24
5.175.40.0/21 maxlen: 21
5.175.44.0/24 maxlen: 24
5.175.43.0/24 maxlen: 24
5.175.47.0/24 maxlen: 24
5.175.46.0/24 maxlen: 24
31.24.43.0/24 maxlen: 24
31.24.40.0/24 maxlen: 24
31.24.40.0/21 maxlen: 21
31.24.46.0/24 maxlen: 24
31.24.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 384180566 (0x16e62156)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d2a234e224bf87996f2f0df559ead882f9e651
Validity
Not Before: Feb 18 07:10:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd68fd41565e3626bdae17bdb9d2b659c0e9fc1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:3e:b3:b2:16:61:81:31:52:2f:23:13:c6:2f:
cd:71:97:ca:93:36:52:68:c1:b3:ee:7c:6f:0a:70:
10:40:0b:36:23:a9:6f:d7:a0:46:1d:c1:23:97:8b:
89:14:7c:d8:e4:6a:01:c5:dd:5e:53:06:e3:c9:17:
d6:e7:e9:d5:74:02:58:37:c3:d6:f3:a2:6c:b5:53:
12:62:4b:1e:97:5f:65:64:05:89:5a:a3:a4:00:c5:
c9:84:eb:93:b3:8b:26:1c:27:d2:34:3a:f1:0f:54:
16:3f:7d:e0:9c:20:83:5a:57:0a:d6:a8:f4:ac:7d:
f5:db:52:6a:52:91:14:9d:e2:e5:50:34:c1:f4:37:
be:44:64:aa:6a:2b:8a:27:82:d0:f0:87:1b:cb:22:
2e:62:b7:d1:7c:72:f3:c2:a4:4b:5d:3d:93:50:04:
9a:2c:7e:96:cc:8e:24:e0:91:72:ab:bc:7e:cc:27:
2d:d1:c5:c5:4e:8e:5e:da:80:85:54:b4:6c:b4:00:
3a:3a:4c:f8:ef:61:08:30:9d:ad:04:76:a6:75:7a:
63:e4:75:df:9f:d1:a6:4c:40:25:22:88:1e:ab:1d:
10:4e:7b:a6:93:a5:0c:eb:bb:4e:64:b7:ea:4a:8a:
49:e7:59:b7:0a:f4:7f:6b:2a:57:a9:18:50:4a:8c:
bb:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:68:FD:41:56:5E:36:26:BD:AE:17:BD:B9:D2:B6:59:C0:E9:FC:1E
X509v3 Authority Key Identifier:
keyid:C2:D2:A2:34:E2:24:BF:87:99:6F:2F:0D:F5:59:EA:D8:82:F9:E6:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtKiNOIkv4eZby8N9Vnq2IL55lE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/zWj9QVZeNia9rhe9udK2WcDp_B4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/wtKiNOIkv4eZby8N9Vnq2IL55lE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.175.40.0/21
31.24.40.0/21
31.24.152.0/21
84.246.208.0/21
91.142.208.0/20
91.200.140.0/22
91.213.46.0/24
94.127.184.0-94.127.186.255
94.127.188.0/24
94.127.190.0/23
109.68.80.0/21
149.62.168.0/21
185.70.92.0/22
185.176.8.0/22
185.222.156.0/22
188.95.112.0/21
188.164.192.0/21
195.5.116.0/23
Signature Algorithm: sha256WithRSAEncryption
55:de:f3:2b:d0:57:79:7c:48:ac:18:d8:aa:b5:29:13:ed:5d:
58:d3:1a:b6:61:fd:53:c9:99:57:f4:ee:09:24:cc:72:a6:c6:
9b:05:d5:a0:07:dd:6b:f8:89:20:32:78:02:49:94:2f:d5:7e:
59:6a:e8:75:43:15:d9:ef:0e:4b:8a:b9:ef:27:82:e7:d3:1d:
97:87:4f:1e:07:0d:73:6c:72:86:36:61:a7:a9:e3:c1:9d:9c:
72:df:d8:91:d1:1a:69:1d:c9:02:06:b0:dc:1d:58:23:02:05:
e4:c6:b1:67:95:ca:ed:6c:58:5e:64:2d:cf:31:88:3f:cc:e0:
4a:84:e8:c6:09:41:1a:c3:4f:d2:ed:3c:7a:37:6e:41:11:a1:
98:c5:c4:42:52:89:6f:0e:cc:44:49:86:ab:ee:6d:fb:b0:b1:
62:f9:6b:a6:77:5c:7f:57:f7:56:c5:80:fd:92:8b:a0:c6:cc:
be:45:c2:d9:60:ee:90:98:54:74:f0:47:d3:f6:96:b0:f7:98:
54:87:f3:d6:41:c6:00:62:c6:7d:f3:3f:fe:10:a4:34:43:ec:
8b:52:2d:1f:34:40:2d:f6:ee:89:40:8c:a7:2e:41:04:d1:33:
c0:d5:28:3f:3e:4d:b1:db:1e:f8:17:d4:8e:c8:c4:e0:8a:ca:
bc:2d:41:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:04 2024 by rpki-client on console-fra.rpki-client.org