Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/ebf3f7-e3ab-4f8c-86e8-7087e3fe2a5d/1/UbbwBmqE14daTUevJjCs4OjvD0E.roa
File: UbbwBmqE14daTUevJjCs4OjvD0E.roa (raw, json)
Hash identifier: tQyN7drN0BhPVfwxYOJW0WJM4vC0IzIb6Cf8+DVIBOE=
Subject key identifier: 51:B6:F0:06:6A:84:D7:87:5A:4D:47:AF:26:30:AC:E0:E8:EF:0F:41
Certificate issuer: /CN=59dda75f8110743d250c3068a356ce6acf1c4fe2
Certificate serial: 0184E90D6646188C5774419C27AB0714FB6D
Authority key identifier: 59:DD:A7:5F:81:10:74:3D:25:0C:30:68:A3:56:CE:6A:CF:1C:4F:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wd2nX4EQdD0lDDBoo1bOas8cT-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/ebf3f7-e3ab-4f8c-86e8-7087e3fe2a5d/1/UbbwBmqE14daTUevJjCs4OjvD0E.roa
Signing time: Tue 06 Dec 2022 20:08:00 +0000
ROA not before: Tue 06 Dec 2022 20:08:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41897
IP address blocks: 94.248.184.0/21 maxlen: 21
80.245.96.0/22 maxlen: 22
46.40.56.0/22 maxlen: 22
46.40.63.0/24 maxlen: 24
46.40.60.0/23 maxlen: 23
46.40.62.0/24 maxlen: 24
46.40.0.0/18 maxlen: 18
46.40.1.0/24 maxlen: 24
46.40.8.0/22 maxlen: 22
46.40.6.0/24 maxlen: 24
94.248.233.0/24 maxlen: 24
94.248.232.0/24 maxlen: 24
46.40.16.0/21 maxlen: 21
94.248.232.0/21 maxlen: 21
94.248.232.0/22 maxlen: 22
46.40.15.0/24 maxlen: 24
46.40.12.0/23 maxlen: 23
94.248.238.0/24 maxlen: 24
94.248.239.0/24 maxlen: 24
94.248.237.0/24 maxlen: 24
94.248.235.0/24 maxlen: 24
94.248.236.0/24 maxlen: 24
94.248.234.0/24 maxlen: 24
46.40.26.0/24 maxlen: 24
46.40.27.0/24 maxlen: 24
46.40.31.0/24 maxlen: 24
46.40.30.0/24 maxlen: 24
46.40.30.0/23 maxlen: 23
46.40.29.0/24 maxlen: 24
46.40.37.0/24 maxlen: 24
46.40.35.0/24 maxlen: 24
46.40.33.0/24 maxlen: 24
46.40.34.0/24 maxlen: 24
46.40.32.0/24 maxlen: 24
45.158.16.0/22 maxlen: 22
91.147.244.0/22 maxlen: 22
46.40.40.0/21 maxlen: 21
46.40.48.0/21 maxlen: 21
46.251.8.0/22 maxlen: 22
91.102.224.0/21 maxlen: 21
91.102.229.0/24 maxlen: 24
185.231.128.0/22 maxlen: 22
195.192.244.0/22 maxlen: 22
95.85.173.0/24 maxlen: 24
95.85.176.0/22 maxlen: 22
95.85.184.0/23 maxlen: 23
95.85.186.0/23 maxlen: 23
185.169.248.0/22 maxlen: 22
185.169.248.0/24 maxlen: 24
95.85.128.0/22 maxlen: 22
95.85.128.0/18 maxlen: 18
95.85.136.0/22 maxlen: 22
95.85.135.0/24 maxlen: 24
95.85.144.0/21 maxlen: 21
95.85.152.0/23 maxlen: 23
81.24.240.0/21 maxlen: 21
95.85.156.0/22 maxlen: 22
81.24.247.0/24 maxlen: 24
95.85.154.0/23 maxlen: 23
95.85.172.0/24 maxlen: 24
185.141.198.0/24 maxlen: 24
185.141.199.0/24 maxlen: 24
185.141.196.0/22 maxlen: 22
185.141.196.0/23 maxlen: 23
85.222.176.0/21 maxlen: 21
85.222.176.0/20 maxlen: 20
85.222.176.0/24 maxlen: 24
185.6.190.0/24 maxlen: 24
185.6.191.0/24 maxlen: 24
185.6.189.0/24 maxlen: 24
185.6.188.0/24 maxlen: 24
185.6.188.0/22 maxlen: 22
185.10.204.0/22 maxlen: 22
185.10.204.0/24 maxlen: 24
217.17.97.0/24 maxlen: 24
217.17.96.0/20 maxlen: 20
217.17.98.0/24 maxlen: 24
217.17.96.0/24 maxlen: 24
217.17.100.0/24 maxlen: 24
217.17.111.0/24 maxlen: 24
217.17.110.0/24 maxlen: 24
178.20.200.0/24 maxlen: 24
178.20.202.0/23 maxlen: 23
178.20.201.0/24 maxlen: 24
185.37.168.0/22 maxlen: 22
2a00:ad00::/29 maxlen: 29
2a00:ad03::/32 maxlen: 32
2a00:ad00:2010::/44 maxlen: 44
2a00:ad07:3000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e9:0d:66:46:18:8c:57:74:41:9c:27:ab:07:14:fb:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59dda75f8110743d250c3068a356ce6acf1c4fe2
Validity
Not Before: Dec 6 20:08:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51b6f0066a84d7875a4d47af2630ace0e8ef0f41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:ba:55:b2:59:07:02:14:f9:31:f8:c0:2f:3f:
c9:f3:98:d7:5a:df:ea:66:62:55:95:08:1f:5b:0a:
41:ae:72:b0:58:d0:40:c6:dd:36:80:c6:fe:e5:1d:
ac:e7:a6:73:9a:ae:98:a6:ca:85:24:16:3a:0e:55:
e2:58:f0:8f:f7:e6:59:dd:bc:53:4d:94:f1:bd:59:
4d:31:91:48:cf:6e:12:7f:13:76:06:23:a5:09:2e:
db:95:ff:46:46:54:8a:dd:66:36:10:a2:c3:2d:ad:
4d:4a:5c:df:2f:ab:bd:61:59:63:7b:2c:a7:01:8d:
d3:23:71:1a:c4:83:aa:06:56:bc:36:2b:ee:bb:86:
34:0a:c7:29:76:99:c0:9e:ac:ec:ae:5b:46:9f:5e:
7b:dd:d3:58:39:04:e0:4b:b7:86:23:6b:0e:75:0d:
e6:d3:a1:eb:43:35:22:b5:95:60:4d:c8:2b:6d:9c:
9f:76:a2:71:0d:eb:45:fd:3e:6e:ed:db:b1:c6:26:
0d:1b:30:fc:85:2a:bf:81:4b:41:53:a1:cc:5c:12:
4b:9c:7e:20:65:2a:eb:96:40:13:91:2d:44:3d:aa:
a0:4e:82:40:17:54:d0:2d:a9:ac:7f:e3:ca:ce:38:
a3:12:95:d1:d5:ac:90:b1:11:f3:c1:cd:80:63:2a:
ac:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:B6:F0:06:6A:84:D7:87:5A:4D:47:AF:26:30:AC:E0:E8:EF:0F:41
X509v3 Authority Key Identifier:
keyid:59:DD:A7:5F:81:10:74:3D:25:0C:30:68:A3:56:CE:6A:CF:1C:4F:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wd2nX4EQdD0lDDBoo1bOas8cT-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ebf3f7-e3ab-4f8c-86e8-7087e3fe2a5d/1/UbbwBmqE14daTUevJjCs4OjvD0E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ebf3f7-e3ab-4f8c-86e8-7087e3fe2a5d/1/Wd2nX4EQdD0lDDBoo1bOas8cT-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.16.0/22
46.40.0.0/18
46.251.8.0/22
80.245.96.0/22
81.24.240.0/21
85.222.176.0/20
91.102.224.0/21
91.147.244.0/22
94.248.184.0/21
94.248.232.0/21
95.85.128.0/18
178.20.200.0/22
185.6.188.0/22
185.10.204.0/22
185.37.168.0/22
185.141.196.0/22
185.169.248.0/22
185.231.128.0/22
195.192.244.0/22
217.17.96.0/20
IPv6:
2a00:ad00::/29
Signature Algorithm: sha256WithRSAEncryption
3a:02:88:c3:52:4a:61:8f:66:00:7f:b6:cf:86:aa:28:99:43:
97:4a:73:da:02:7c:6f:c5:1c:c5:31:25:b3:d1:58:61:8b:81:
5b:b8:f7:4b:06:50:be:41:8b:ba:54:b6:b9:9c:9e:09:f8:0d:
c0:41:0d:98:23:e7:56:06:b8:5a:73:ac:62:6f:95:e8:ab:1a:
72:3f:5f:11:8c:76:ab:ed:81:70:1a:8e:5e:72:5a:c0:eb:04:
ae:e5:5d:ec:9d:b5:bc:af:62:3f:da:c4:36:b3:b0:ff:3d:32:
af:49:af:51:7f:7c:4b:26:ff:0e:1c:67:af:7b:a0:3d:27:3b:
d5:df:22:5d:8b:6d:94:2c:95:14:a3:d9:b4:a7:df:8d:8e:ce:
48:fc:29:30:2f:10:b7:39:f8:96:b8:70:23:fb:bc:aa:7f:88:
f3:09:54:eb:55:e4:0f:57:f6:e3:1c:29:0b:e0:a6:7e:b3:b9:
91:ac:6d:a9:c4:a7:5b:69:6b:f0:1f:85:2d:28:ef:66:1e:e8:
2d:50:3b:c0:8c:91:e5:2c:85:3c:cb:4a:b0:a7:a8:0d:f5:58:
9b:cc:db:e6:93:39:ea:55:5c:d6:9c:44:3b:f9:26:cc:52:a8:
ac:af:28:f8:5e:19:28:8d:74:07:4c:3c:24:12:f9:83:7c:73:
05:4a:ef:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:05 2024 by rpki-client on console-fra.rpki-client.org