Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/ebf3f7-e3ab-4f8c-86e8-7087e3fe2a5d/1/BDbdU3DVx1hfkMOwVGEnq1zfF9I.roa
File: BDbdU3DVx1hfkMOwVGEnq1zfF9I.roa (raw, json)
Hash identifier: oIMAf5hRRoGNzi3wWtivkMEO7rnh9eiEG8jfm3004kY=
Subject key identifier: 04:36:DD:53:70:D5:C7:58:5F:90:C3:B0:54:61:27:AB:5C:DF:17:D2
Certificate issuer: /CN=59dda75f8110743d250c3068a356ce6acf1c4fe2
Certificate serial: 01856D0A7B936E2FE55E9F8C298F65AFD68A
Authority key identifier: 59:DD:A7:5F:81:10:74:3D:25:0C:30:68:A3:56:CE:6A:CF:1C:4F:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wd2nX4EQdD0lDDBoo1bOas8cT-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/ebf3f7-e3ab-4f8c-86e8-7087e3fe2a5d/1/BDbdU3DVx1hfkMOwVGEnq1zfF9I.roa
Signing time: Sun 01 Jan 2023 11:14:41 +0000
ROA not before: Sun 01 Jan 2023 11:14:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41897
IP address blocks: 94.248.184.0/21 maxlen: 21
46.40.56.0/22 maxlen: 22
46.40.63.0/24 maxlen: 24
46.40.60.0/23 maxlen: 23
46.40.62.0/24 maxlen: 24
46.40.0.0/18 maxlen: 18
46.40.1.0/24 maxlen: 24
46.40.8.0/22 maxlen: 22
46.40.6.0/24 maxlen: 24
94.248.233.0/24 maxlen: 24
94.248.232.0/24 maxlen: 24
46.40.16.0/21 maxlen: 21
94.248.232.0/21 maxlen: 21
94.248.232.0/22 maxlen: 22
46.40.15.0/24 maxlen: 24
46.40.12.0/23 maxlen: 23
94.248.238.0/24 maxlen: 24
94.248.239.0/24 maxlen: 24
94.248.237.0/24 maxlen: 24
94.248.235.0/24 maxlen: 24
94.248.236.0/24 maxlen: 24
94.248.234.0/24 maxlen: 24
46.40.26.0/24 maxlen: 24
46.40.27.0/24 maxlen: 24
46.40.31.0/24 maxlen: 24
46.40.30.0/24 maxlen: 24
46.40.30.0/23 maxlen: 23
46.40.29.0/24 maxlen: 24
46.40.37.0/24 maxlen: 24
46.40.35.0/24 maxlen: 24
46.40.33.0/24 maxlen: 24
46.40.34.0/24 maxlen: 24
46.40.32.0/24 maxlen: 24
91.147.244.0/22 maxlen: 22
46.40.40.0/21 maxlen: 21
46.40.48.0/21 maxlen: 21
89.147.80.0/20 maxlen: 20
89.147.80.0/22 maxlen: 22
89.147.80.0/24 maxlen: 24
195.192.244.0/22 maxlen: 22
95.85.173.0/24 maxlen: 24
95.85.176.0/22 maxlen: 22
95.85.184.0/23 maxlen: 23
95.85.186.0/23 maxlen: 23
95.85.128.0/22 maxlen: 22
95.85.128.0/18 maxlen: 18
95.85.136.0/22 maxlen: 22
95.85.135.0/24 maxlen: 24
95.85.144.0/21 maxlen: 21
95.85.152.0/24 maxlen: 24
95.85.152.0/23 maxlen: 23
81.24.240.0/21 maxlen: 21
95.85.156.0/22 maxlen: 22
95.85.154.0/24 maxlen: 24
95.85.155.0/24 maxlen: 24
81.24.247.0/24 maxlen: 24
95.85.153.0/24 maxlen: 24
95.85.154.0/23 maxlen: 23
95.85.172.0/24 maxlen: 24
185.10.204.0/22 maxlen: 22
185.10.204.0/24 maxlen: 24
217.17.97.0/24 maxlen: 24
217.17.98.0/24 maxlen: 24
217.17.96.0/24 maxlen: 24
217.17.96.0/20 maxlen: 24
217.17.100.0/24 maxlen: 24
217.17.111.0/24 maxlen: 24
217.17.110.0/24 maxlen: 24
217.17.107.0/24 maxlen: 24
217.17.108.0/24 maxlen: 24
185.37.170.0/24 maxlen: 24
185.37.168.0/22 maxlen: 22
80.245.96.0/22 maxlen: 22
45.158.16.0/22 maxlen: 22
46.251.8.0/22 maxlen: 22
91.102.224.0/21 maxlen: 21
91.102.229.0/24 maxlen: 24
185.231.128.0/22 maxlen: 22
185.169.248.0/22 maxlen: 22
185.169.248.0/24 maxlen: 24
185.156.152.0/22 maxlen: 22
185.141.198.0/24 maxlen: 24
185.141.199.0/24 maxlen: 24
185.141.196.0/22 maxlen: 22
185.141.196.0/23 maxlen: 23
85.222.178.0/24 maxlen: 24
85.222.179.0/24 maxlen: 24
85.222.176.0/21 maxlen: 21
85.222.176.0/20 maxlen: 20
85.222.176.0/24 maxlen: 24
85.222.180.0/22 maxlen: 22
185.6.190.0/24 maxlen: 24
185.6.191.0/24 maxlen: 24
185.6.189.0/24 maxlen: 24
185.6.188.0/24 maxlen: 24
185.6.188.0/22 maxlen: 22
178.20.200.0/24 maxlen: 24
178.20.202.0/23 maxlen: 23
178.20.201.0/24 maxlen: 24
2a00:ad07:3000::/36 maxlen: 36
2a00:ad00::/29 maxlen: 29
2a00:ad03::/32 maxlen: 32
2a00:ad00:2010::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:7b:93:6e:2f:e5:5e:9f:8c:29:8f:65:af:d6:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59dda75f8110743d250c3068a356ce6acf1c4fe2
Validity
Not Before: Jan 1 11:14:41 2023 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0436dd5370d5c7585f90c3b0546127ab5cdf17d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:58:69:a2:31:f0:1a:67:6b:e9:c2:d0:6e:ea:
9b:87:b3:e6:c1:97:82:21:93:da:e5:9a:5b:8d:ed:
77:ee:24:b6:66:08:86:98:23:6c:cc:56:e8:8b:ba:
c1:0d:7a:6a:b6:58:b0:fa:9c:fd:fb:3c:f1:7a:99:
e1:5b:e9:56:7e:53:ab:9a:3e:7f:84:50:70:2a:c6:
37:0c:33:29:9d:ca:0a:ec:44:ae:3d:13:0d:74:4c:
e1:5e:09:9a:79:c4:31:fa:74:64:3e:e8:a3:65:c9:
d3:bf:b9:34:f8:ff:63:84:40:db:b7:71:14:dc:e6:
1c:f0:fc:fa:7e:32:1d:87:ce:ce:f5:0a:98:e9:f4:
dd:5c:b2:3a:53:e0:9d:be:dc:29:5e:73:14:db:39:
88:68:5d:12:1a:46:19:64:19:b0:d3:34:2a:88:e0:
3c:14:a2:75:ca:ed:0a:cb:6a:cf:55:08:f1:02:59:
13:2c:e8:97:9d:81:75:ab:c9:8c:ca:fa:de:4a:18:
88:53:8a:41:5c:85:a2:78:6f:68:09:8e:48:2d:93:
a3:79:3a:26:86:cc:fa:d2:15:f2:8c:5e:71:c0:2f:
dd:52:51:cd:74:d4:cb:6f:0b:b8:29:ec:a6:6e:eb:
32:ec:8e:f9:d5:94:96:0e:ac:90:ed:37:61:2c:9b:
29:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:36:DD:53:70:D5:C7:58:5F:90:C3:B0:54:61:27:AB:5C:DF:17:D2
X509v3 Authority Key Identifier:
keyid:59:DD:A7:5F:81:10:74:3D:25:0C:30:68:A3:56:CE:6A:CF:1C:4F:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wd2nX4EQdD0lDDBoo1bOas8cT-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ebf3f7-e3ab-4f8c-86e8-7087e3fe2a5d/1/BDbdU3DVx1hfkMOwVGEnq1zfF9I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ebf3f7-e3ab-4f8c-86e8-7087e3fe2a5d/1/Wd2nX4EQdD0lDDBoo1bOas8cT-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.16.0/22
46.40.0.0/18
46.251.8.0/22
80.245.96.0/22
81.24.240.0/21
85.222.176.0/20
89.147.80.0/20
91.102.224.0/21
91.147.244.0/22
94.248.184.0/21
94.248.232.0/21
95.85.128.0/18
178.20.200.0/22
185.6.188.0/22
185.10.204.0/22
185.37.168.0/22
185.141.196.0/22
185.156.152.0/22
185.169.248.0/22
185.231.128.0/22
195.192.244.0/22
217.17.96.0/20
IPv6:
2a00:ad00::/29
Signature Algorithm: sha256WithRSAEncryption
9b:69:ad:3f:d0:b0:9a:1e:cf:7f:93:65:71:8b:3a:07:0f:92:
38:07:5c:3a:8c:07:6c:53:ed:f5:a6:01:ad:7e:3f:4a:a1:d8:
31:6f:87:fc:ea:20:42:ae:46:0f:8d:a4:b8:da:ed:96:80:44:
bc:72:54:6c:cf:c6:27:b0:35:74:11:79:4f:4d:f3:68:e7:be:
dd:f1:f5:f0:21:71:3f:d5:a2:69:31:f5:f7:18:02:24:a4:2b:
b5:3e:48:b9:8a:3b:ac:d3:9a:0b:04:ec:86:68:74:6b:dc:0b:
4c:f2:08:44:11:fc:35:d0:d2:51:cc:a2:ab:3f:fd:32:17:9e:
bb:62:f2:05:ad:4c:60:49:9b:f9:86:3b:a2:4a:25:84:ed:00:
47:6f:3b:69:c1:fc:92:f3:de:cd:fa:92:ba:3a:a4:23:57:f2:
00:a7:60:4f:00:4f:2d:00:90:5d:10:58:3f:14:97:7b:f7:ee:
10:8b:34:36:db:5b:27:0a:af:4a:84:c0:61:35:21:56:64:1e:
81:fc:0b:fb:6b:ff:b8:b4:03:ec:07:20:d8:47:14:14:cc:bf:
2f:de:7c:6c:d2:ea:4d:77:a3:f2:ad:71:c7:de:81:f7:18:95:
4c:41:56:d7:84:74:84:a3:c9:e9:58:18:f8:ff:5c:09:d9:40:
a6:4d:72:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:31 2024 by rpki-client on console-ams.rpki-client.org