Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/ebf3f7-e3ab-4f8c-86e8-7087e3fe2a5d/1/p0ZDql7_FNs3pSdq5XQDe93tdLQ.roa
File: p0ZDql7_FNs3pSdq5XQDe93tdLQ.roa (raw, json)
Hash identifier: wQOzKckihBTMIJ2UidNPDdoZzTBtnxfW9MG1J6gtnQM=
Subject key identifier: A7:46:43:AA:5E:FF:14:DB:37:A5:27:6A:E5:74:03:7B:DD:ED:74:B4
Certificate issuer: /CN=59dda75f8110743d250c3068a356ce6acf1c4fe2
Certificate serial: 0182B0EA64F9B4C3C5F12495F01B9803F280
Authority key identifier: 59:DD:A7:5F:81:10:74:3D:25:0C:30:68:A3:56:CE:6A:CF:1C:4F:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wd2nX4EQdD0lDDBoo1bOas8cT-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/ebf3f7-e3ab-4f8c-86e8-7087e3fe2a5d/1/p0ZDql7_FNs3pSdq5XQDe93tdLQ.roa
Signing time: Thu 18 Aug 2022 12:25:27 +0000
ROA not before: Thu 18 Aug 2022 12:25:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41897
IP address blocks: 94.248.184.0/21 maxlen: 21
80.245.96.0/22 maxlen: 22
46.40.56.0/22 maxlen: 22
46.40.63.0/24 maxlen: 24
46.40.60.0/23 maxlen: 23
46.40.62.0/24 maxlen: 24
46.40.0.0/18 maxlen: 18
46.40.1.0/24 maxlen: 24
46.40.8.0/22 maxlen: 22
46.40.6.0/24 maxlen: 24
94.248.233.0/24 maxlen: 24
94.248.232.0/24 maxlen: 24
46.40.16.0/21 maxlen: 21
94.248.232.0/22 maxlen: 22
94.248.232.0/21 maxlen: 21
46.40.15.0/24 maxlen: 24
46.40.12.0/23 maxlen: 23
94.248.238.0/24 maxlen: 24
94.248.239.0/24 maxlen: 24
94.248.237.0/24 maxlen: 24
94.248.235.0/24 maxlen: 24
94.248.236.0/24 maxlen: 24
94.248.234.0/24 maxlen: 24
46.40.26.0/24 maxlen: 24
46.40.27.0/24 maxlen: 24
46.40.31.0/24 maxlen: 24
46.40.30.0/24 maxlen: 24
46.40.30.0/23 maxlen: 23
46.40.29.0/24 maxlen: 24
46.40.35.0/24 maxlen: 24
46.40.33.0/24 maxlen: 24
46.40.34.0/24 maxlen: 24
46.40.32.0/24 maxlen: 24
45.158.16.0/22 maxlen: 22
91.147.244.0/22 maxlen: 22
46.40.40.0/21 maxlen: 21
46.40.48.0/21 maxlen: 21
46.251.8.0/22 maxlen: 22
91.102.224.0/21 maxlen: 21
91.102.229.0/24 maxlen: 24
185.231.128.0/22 maxlen: 22
195.192.244.0/22 maxlen: 22
95.85.173.0/24 maxlen: 24
95.85.176.0/22 maxlen: 22
95.85.184.0/23 maxlen: 23
95.85.186.0/23 maxlen: 23
185.169.248.0/22 maxlen: 22
185.169.248.0/24 maxlen: 24
95.85.128.0/22 maxlen: 22
95.85.128.0/18 maxlen: 18
95.85.136.0/22 maxlen: 22
95.85.135.0/24 maxlen: 24
95.85.144.0/21 maxlen: 21
95.85.152.0/23 maxlen: 23
81.24.240.0/21 maxlen: 21
95.85.156.0/22 maxlen: 22
81.24.247.0/24 maxlen: 24
95.85.154.0/23 maxlen: 23
95.85.172.0/24 maxlen: 24
185.141.198.0/24 maxlen: 24
185.141.199.0/24 maxlen: 24
185.141.196.0/22 maxlen: 22
185.141.196.0/23 maxlen: 23
85.222.176.0/20 maxlen: 20
85.222.176.0/21 maxlen: 21
185.6.190.0/24 maxlen: 24
185.6.191.0/24 maxlen: 24
185.6.189.0/24 maxlen: 24
185.6.188.0/24 maxlen: 24
185.6.188.0/22 maxlen: 22
185.10.204.0/22 maxlen: 22
217.17.97.0/24 maxlen: 24
217.17.96.0/20 maxlen: 20
217.17.98.0/24 maxlen: 24
217.17.96.0/24 maxlen: 24
217.17.111.0/24 maxlen: 24
217.17.110.0/24 maxlen: 24
178.20.200.0/24 maxlen: 24
178.20.202.0/23 maxlen: 23
178.20.201.0/24 maxlen: 24
185.37.168.0/22 maxlen: 22
2a00:ad00::/29 maxlen: 29
2a00:ad03::/32 maxlen: 32
2a00:ad00:2010::/44 maxlen: 44
2a00:ad07:3000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b0:ea:64:f9:b4:c3:c5:f1:24:95:f0:1b:98:03:f2:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59dda75f8110743d250c3068a356ce6acf1c4fe2
Validity
Not Before: Aug 18 12:25:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a74643aa5eff14db37a5276ae574037bdded74b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:8d:d4:73:78:84:e6:a7:eb:fe:d4:2b:ff:94:
9a:8a:67:62:3b:29:39:83:12:d5:41:4b:49:19:6e:
c8:dd:0c:ca:e7:01:3f:db:b1:ea:cd:3b:c9:cb:4c:
61:c1:8f:1e:3f:18:ae:70:67:0b:af:51:a0:c0:5e:
e5:d7:b6:dd:6a:7e:e3:a4:65:92:18:c1:b5:72:1b:
b9:9e:d8:93:17:ad:b4:00:e7:3a:6a:21:44:54:c8:
2f:0a:71:0d:b3:d2:1e:f2:68:3f:b0:5d:f7:c3:77:
0b:80:56:bf:91:99:36:f0:14:58:d9:de:38:7e:e5:
65:b2:dc:c1:06:32:64:bb:3b:30:cd:e6:9d:3f:95:
41:67:1b:eb:4d:0e:36:d6:92:a9:db:a8:bc:8a:d0:
c9:69:2d:d3:00:34:86:b0:9b:c2:e0:62:6e:a8:53:
27:5b:38:d9:fd:d8:b5:e4:be:eb:c1:12:29:e3:55:
fe:d1:eb:9e:13:68:fd:61:fd:e7:7a:62:b2:e9:97:
7d:8d:35:24:95:94:50:62:a3:13:9f:7f:dc:ac:84:
8b:a5:21:98:ab:d5:ba:c4:8c:c2:f3:b9:8c:b0:d4:
51:d5:6e:0a:d7:54:ff:14:c3:12:fe:5d:95:b7:d2:
c8:fa:62:7e:14:de:22:46:c2:d6:ab:da:54:10:e7:
1c:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:46:43:AA:5E:FF:14:DB:37:A5:27:6A:E5:74:03:7B:DD:ED:74:B4
X509v3 Authority Key Identifier:
keyid:59:DD:A7:5F:81:10:74:3D:25:0C:30:68:A3:56:CE:6A:CF:1C:4F:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wd2nX4EQdD0lDDBoo1bOas8cT-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ebf3f7-e3ab-4f8c-86e8-7087e3fe2a5d/1/p0ZDql7_FNs3pSdq5XQDe93tdLQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ebf3f7-e3ab-4f8c-86e8-7087e3fe2a5d/1/Wd2nX4EQdD0lDDBoo1bOas8cT-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.16.0/22
46.40.0.0/18
46.251.8.0/22
80.245.96.0/22
81.24.240.0/21
85.222.176.0/20
91.102.224.0/21
91.147.244.0/22
94.248.184.0/21
94.248.232.0/21
95.85.128.0/18
178.20.200.0/22
185.6.188.0/22
185.10.204.0/22
185.37.168.0/22
185.141.196.0/22
185.169.248.0/22
185.231.128.0/22
195.192.244.0/22
217.17.96.0/20
IPv6:
2a00:ad00::/29
Signature Algorithm: sha256WithRSAEncryption
75:e2:cf:b3:80:d2:72:a2:b3:d7:f1:3b:aa:fe:ce:ee:cd:78:
46:26:43:84:4f:29:22:3b:d5:30:40:32:27:6e:27:04:57:af:
de:b0:7e:92:95:45:16:1e:32:77:5f:14:67:6e:ca:28:e7:4d:
a6:50:af:b8:92:6a:8c:c0:38:dc:ac:ef:74:d7:3d:5a:e1:08:
75:dd:a7:ef:e0:8a:2a:df:28:ad:7c:2e:4c:18:da:db:48:b6:
24:ee:33:f6:f2:63:55:51:a1:b4:f1:77:3a:bf:ed:7f:88:e9:
a9:1a:6d:bf:2f:8a:13:1c:24:f6:42:82:02:82:d8:dd:a6:4a:
ae:91:65:50:6b:dc:05:42:6b:b5:96:ae:00:ba:84:2e:0d:0d:
f7:ba:a4:11:ba:21:97:ca:4b:ed:ec:2d:34:21:d7:ac:8c:0b:
3e:a2:cb:3a:4a:27:ff:33:7b:7a:e6:4e:22:24:67:5b:dc:59:
75:d8:52:f7:07:be:f8:d2:b0:de:e8:22:ad:6c:7b:05:18:e5:
63:35:31:c3:e4:63:11:7d:f2:67:b0:80:fe:34:b2:10:5d:b4:
ef:c8:82:a1:ef:c8:df:fc:b6:44:8b:a1:40:c6:5c:d1:44:0e:
9a:a3:28:3a:af:e8:1b:16:83:83:b9:3d:01:9b:45:24:61:8d:
c4:4c:04:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:31 2024 by rpki-client on console-ams.rpki-client.org