Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/ebf3f7-e3ab-4f8c-86e8-7087e3fe2a5d/1/l-m0-eUhM6s1ze9OWGnzuRye3rQ.roa
File: l-m0-eUhM6s1ze9OWGnzuRye3rQ.roa (raw, json)
Hash identifier: +kOw7LS9Q39elTcb4Cm2pjnuTeQ9L/SLD2He7OdAhyk=
Subject key identifier: 97:E9:B4:F9:E5:21:33:AB:35:CD:EF:4E:58:69:F3:B9:1C:9E:DE:B4
Certificate issuer: /CN=59dda75f8110743d250c3068a356ce6acf1c4fe2
Certificate serial: 37D764DA
Authority key identifier: 59:DD:A7:5F:81:10:74:3D:25:0C:30:68:A3:56:CE:6A:CF:1C:4F:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wd2nX4EQdD0lDDBoo1bOas8cT-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/ebf3f7-e3ab-4f8c-86e8-7087e3fe2a5d/1/l-m0-eUhM6s1ze9OWGnzuRye3rQ.roa
Signing time: Sat 01 Jan 2022 10:54:49 +0000
ROA not before: Sat 01 Jan 2022 10:54:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41897
IP address blocks: 94.248.184.0/21 maxlen: 21
80.245.96.0/22 maxlen: 22
46.40.56.0/22 maxlen: 22
46.40.63.0/24 maxlen: 24
46.40.60.0/23 maxlen: 23
46.40.62.0/24 maxlen: 24
46.40.0.0/18 maxlen: 18
46.40.1.0/24 maxlen: 24
46.40.8.0/22 maxlen: 22
46.40.6.0/24 maxlen: 24
94.248.233.0/24 maxlen: 24
94.248.232.0/24 maxlen: 24
46.40.16.0/21 maxlen: 21
94.248.232.0/21 maxlen: 21
94.248.232.0/22 maxlen: 22
46.40.15.0/24 maxlen: 24
46.40.12.0/23 maxlen: 23
94.248.238.0/24 maxlen: 24
94.248.239.0/24 maxlen: 24
94.248.237.0/24 maxlen: 24
94.248.235.0/24 maxlen: 24
94.248.236.0/24 maxlen: 24
94.248.234.0/24 maxlen: 24
46.40.26.0/24 maxlen: 24
46.40.27.0/24 maxlen: 24
46.40.30.0/24 maxlen: 24
46.40.30.0/23 maxlen: 23
46.40.29.0/24 maxlen: 24
46.40.35.0/24 maxlen: 24
46.40.33.0/24 maxlen: 24
46.40.34.0/24 maxlen: 24
46.40.32.0/24 maxlen: 24
45.158.16.0/22 maxlen: 22
91.147.244.0/22 maxlen: 22
46.40.40.0/21 maxlen: 21
46.40.48.0/21 maxlen: 21
46.251.8.0/22 maxlen: 22
91.102.224.0/21 maxlen: 21
91.102.229.0/24 maxlen: 24
185.231.128.0/22 maxlen: 22
195.192.244.0/22 maxlen: 22
95.85.173.0/24 maxlen: 24
95.85.176.0/22 maxlen: 22
95.85.184.0/23 maxlen: 23
95.85.186.0/23 maxlen: 23
185.169.248.0/22 maxlen: 22
185.169.248.0/24 maxlen: 24
95.85.128.0/22 maxlen: 22
95.85.128.0/18 maxlen: 18
95.85.136.0/22 maxlen: 22
95.85.135.0/24 maxlen: 24
95.85.144.0/21 maxlen: 21
95.85.152.0/23 maxlen: 23
81.24.240.0/21 maxlen: 21
95.85.156.0/22 maxlen: 22
95.85.154.0/23 maxlen: 23
95.85.172.0/24 maxlen: 24
185.141.198.0/24 maxlen: 24
185.141.199.0/24 maxlen: 24
185.141.196.0/22 maxlen: 22
185.141.196.0/23 maxlen: 23
85.222.176.0/21 maxlen: 21
85.222.176.0/20 maxlen: 20
185.6.190.0/24 maxlen: 24
185.6.191.0/24 maxlen: 24
185.6.189.0/24 maxlen: 24
185.6.188.0/24 maxlen: 24
185.6.188.0/22 maxlen: 22
185.10.204.0/22 maxlen: 22
217.17.97.0/24 maxlen: 24
217.17.96.0/20 maxlen: 20
217.17.98.0/24 maxlen: 24
217.17.96.0/24 maxlen: 24
217.17.111.0/24 maxlen: 24
217.17.110.0/24 maxlen: 24
178.20.202.0/23 maxlen: 23
178.20.201.0/24 maxlen: 24
185.37.168.0/22 maxlen: 22
2a00:ad00::/29 maxlen: 29
2a00:ad03::/32 maxlen: 32
2a00:ad00:2010::/44 maxlen: 44
2a00:ad07:3000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 936862938 (0x37d764da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59dda75f8110743d250c3068a356ce6acf1c4fe2
Validity
Not Before: Jan 1 10:54:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97e9b4f9e52133ab35cdef4e5869f3b91c9edeb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:bc:ea:9c:2b:af:8e:60:ec:88:68:6f:ca:fd:
d0:54:c4:82:bb:0e:0d:66:64:e7:17:9e:2d:18:51:
a8:8d:67:33:4a:e9:0d:ca:c0:1b:49:84:9b:e0:3c:
6b:6d:85:5a:70:3a:64:0d:30:70:d6:e3:cd:3a:a9:
e1:6e:36:05:6e:d3:30:ef:03:2e:e6:e3:a1:9c:f1:
dd:f7:5d:c9:06:8c:a8:e6:de:1c:d6:ab:fc:9d:12:
a4:96:bb:0e:f7:44:b2:c6:c6:0d:45:e4:6d:6a:c0:
3c:f8:cf:bf:95:92:f8:2e:fb:1c:a5:6b:09:65:39:
f5:c6:3a:a9:fa:40:d8:f0:9e:40:28:06:78:97:46:
1a:d6:63:1c:47:b8:6b:d2:7e:14:46:89:23:15:32:
bf:1b:a8:f4:75:8b:2a:d3:dd:74:ae:a5:19:95:9b:
b6:d1:b1:82:26:99:ae:67:40:63:60:fb:2f:63:c6:
24:23:eb:99:fc:7d:ad:45:8a:00:db:cf:fa:02:e1:
b1:ab:3c:30:3e:8a:49:a3:15:e2:18:a4:3c:0a:ec:
aa:c4:79:62:34:eb:c3:48:70:60:88:5f:bc:b0:9e:
5a:08:32:87:79:a3:2b:f5:6d:59:90:70:76:bb:fc:
3d:7a:3a:96:76:18:f7:a5:34:8a:37:b0:e0:ee:77:
1e:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:E9:B4:F9:E5:21:33:AB:35:CD:EF:4E:58:69:F3:B9:1C:9E:DE:B4
X509v3 Authority Key Identifier:
keyid:59:DD:A7:5F:81:10:74:3D:25:0C:30:68:A3:56:CE:6A:CF:1C:4F:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wd2nX4EQdD0lDDBoo1bOas8cT-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ebf3f7-e3ab-4f8c-86e8-7087e3fe2a5d/1/l-m0-eUhM6s1ze9OWGnzuRye3rQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ebf3f7-e3ab-4f8c-86e8-7087e3fe2a5d/1/Wd2nX4EQdD0lDDBoo1bOas8cT-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.16.0/22
46.40.0.0/18
46.251.8.0/22
80.245.96.0/22
81.24.240.0/21
85.222.176.0/20
91.102.224.0/21
91.147.244.0/22
94.248.184.0/21
94.248.232.0/21
95.85.128.0/18
178.20.201.0-178.20.203.255
185.6.188.0/22
185.10.204.0/22
185.37.168.0/22
185.141.196.0/22
185.169.248.0/22
185.231.128.0/22
195.192.244.0/22
217.17.96.0/20
IPv6:
2a00:ad00::/29
Signature Algorithm: sha256WithRSAEncryption
93:26:17:ea:ad:37:3d:41:ec:20:56:9e:fa:90:db:28:a9:ab:
41:7b:ef:72:d7:e3:85:a2:c8:3e:f8:5e:09:03:46:e7:bd:18:
73:89:d5:f3:61:54:7c:ba:9a:16:19:42:1d:a8:bd:4c:2e:a0:
14:ba:c3:05:73:b5:42:ea:96:f5:01:f7:a4:33:a3:46:f3:8d:
be:f4:90:e9:73:0e:72:fc:74:ec:43:21:c0:84:f0:35:ce:c4:
6f:0e:7c:0a:5a:74:06:b7:da:8c:0b:cd:37:46:9d:89:85:f3:
0d:f5:03:10:82:3f:59:bc:63:cb:c6:74:45:5b:3c:7e:65:b4:
98:d9:f0:da:e7:50:cc:1e:0c:7e:08:da:71:d6:e9:4d:01:72:
3a:aa:55:9e:96:08:fe:56:af:f2:9b:11:a0:53:7e:c9:bc:91:
11:61:6d:91:00:58:d1:0e:eb:ea:1c:7e:e4:85:3d:03:fc:9e:
58:b1:f5:e5:ed:57:54:e8:be:74:78:74:2e:48:19:10:b1:65:
cd:23:4d:3b:00:08:68:4c:be:83:90:23:54:d6:79:5c:75:f6:
1c:c3:73:99:0b:cc:c2:ce:f5:b0:3b:17:1f:cc:b6:98:a2:ef:
3c:c7:63:82:93:e7:b1:31:e7:f6:8c:d3:cd:71:d2:90:5e:4a:
b1:0f:15:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:31 2024 by rpki-client on console-ams.rpki-client.org