Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/ei1hjObqMbXAOitBtJudLBEi3Wo.roa
File: ei1hjObqMbXAOitBtJudLBEi3Wo.roa (raw, json)
Hash identifier: qtyyAb4w53GlLNQcO19uPxivWfQqRIo60tOaI+dj6SI=
Subject key identifier: 7A:2D:61:8C:E6:EA:31:B5:C0:3A:2B:41:B4:9B:9D:2C:11:22:DD:6A
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 38612628
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/ei1hjObqMbXAOitBtJudLBEi3Wo.roa
Signing time: Thu 12 May 2022 06:56:02 +0000
ROA not before: Thu 12 May 2022 06:56:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8717
IP address blocks: 78.83.146.0/24 maxlen: 24
78.83.150.0/24 maxlen: 24
78.83.147.0/24 maxlen: 24
78.83.151.0/24 maxlen: 24
78.83.148.0/24 maxlen: 24
78.83.149.0/24 maxlen: 24
82.147.154.0/24 maxlen: 24
78.83.160.0/24 maxlen: 24
212.50.7.0/24 maxlen: 24
62.221.128.0/24 maxlen: 24
78.83.143.0/24 maxlen: 24
78.83.144.0/24 maxlen: 24
78.83.145.0/24 maxlen: 24
213.222.59.0/24 maxlen: 24
78.83.210.0/24 maxlen: 24
78.83.226.0/23 maxlen: 23
92.247.168.0/24 maxlen: 24
88.203.237.0/24 maxlen: 24
212.36.6.0/24 maxlen: 24
82.103.103.0/24 maxlen: 24
82.103.109.0/24 maxlen: 24
82.103.110.0/23 maxlen: 23
62.204.128.0/24 maxlen: 24
62.204.130.0/24 maxlen: 24
82.103.120.0/24 maxlen: 24
82.103.126.0/24 maxlen: 24
82.103.127.0/24 maxlen: 24
130.204.70.0/24 maxlen: 24
46.238.14.0/24 maxlen: 24
82.103.91.0/24 maxlen: 24
92.247.29.0/24 maxlen: 24
77.236.178.0/23 maxlen: 23
212.95.161.0/24 maxlen: 24
92.247.67.0/24 maxlen: 24
89.215.214.0/24 maxlen: 24
213.226.5.0/24 maxlen: 24
213.226.9.0/24 maxlen: 24
213.226.6.0/24 maxlen: 24
84.242.176.0/24 maxlen: 24
212.91.172.0/24 maxlen: 24
195.34.101.0/24 maxlen: 24
212.91.186.0/24 maxlen: 24
212.91.185.0/24 maxlen: 24
212.91.181.0/24 maxlen: 24
212.91.187.0/24 maxlen: 24
195.34.122.0/24 maxlen: 24
213.226.31.0/24 maxlen: 24
213.226.35.0/24 maxlen: 24
213.226.48.0/24 maxlen: 24
213.226.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 945890856 (0x38612628)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: May 12 06:56:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a2d618ce6ea31b5c03a2b41b49b9d2c1122dd6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c5:55:71:2e:4f:25:65:bb:b4:01:4e:3f:ab:
ed:de:df:8f:6f:c9:74:eb:eb:fe:85:5e:5b:cc:90:
76:c0:8c:a4:c9:ea:41:67:55:ce:65:7b:d0:2e:28:
77:58:00:ce:59:f7:1a:98:9e:06:df:9f:3c:7e:92:
e6:17:d5:75:02:f5:67:cc:cf:02:b8:5d:68:e8:eb:
2d:76:10:fa:11:d7:9d:1f:b3:b1:07:07:ba:3c:1d:
2f:34:20:c4:f0:21:27:d8:db:af:fb:97:cc:3e:04:
dd:88:fe:d7:6a:91:09:9e:42:7f:94:42:b8:95:cc:
d2:e7:af:89:19:bc:2a:b1:1c:a9:eb:c5:37:d3:d1:
43:21:0d:12:40:c5:db:00:0d:03:06:a2:bd:f9:00:
44:4a:b9:77:ab:40:99:51:fb:e0:f0:2d:13:c4:ec:
7f:63:14:4b:ef:6a:20:d4:96:7e:d2:d0:8f:8b:bc:
67:80:02:46:2a:36:e3:b4:7f:d1:9b:ec:67:3f:0b:
63:2e:13:ec:4d:54:3d:1d:43:e4:a3:f5:24:32:a8:
00:9f:af:91:ca:96:72:74:e8:09:bf:a7:54:6f:ca:
bf:c5:57:8f:4b:39:78:d1:4e:5d:ca:af:e6:e7:a2:
32:3c:ed:0c:92:f7:02:17:f9:0f:2e:30:59:68:b4:
ad:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:2D:61:8C:E6:EA:31:B5:C0:3A:2B:41:B4:9B:9D:2C:11:22:DD:6A
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/ei1hjObqMbXAOitBtJudLBEi3Wo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.238.14.0/24
62.204.128.0/24
62.204.130.0/24
62.221.128.0/24
77.236.178.0/23
78.83.143.0-78.83.151.255
78.83.160.0/24
78.83.210.0/24
78.83.226.0/23
82.103.91.0/24
82.103.103.0/24
82.103.109.0-82.103.111.255
82.103.120.0/24
82.103.126.0/23
82.147.154.0/24
84.242.176.0/24
88.203.237.0/24
89.215.214.0/24
92.247.29.0/24
92.247.67.0/24
92.247.168.0/24
130.204.70.0/24
195.34.101.0/24
195.34.122.0/24
212.36.6.0/24
212.50.7.0/24
212.91.172.0/24
212.91.181.0/24
212.91.185.0-212.91.187.255
212.95.161.0/24
213.222.59.0/24
213.226.5.0-213.226.6.255
213.226.9.0/24
213.226.31.0/24
213.226.35.0/24
213.226.47.0-213.226.48.255
Signature Algorithm: sha256WithRSAEncryption
11:98:e7:ae:48:6d:d9:94:14:69:dc:99:0a:0e:d9:8c:74:2e:
41:42:1a:5a:52:5d:e6:0b:2b:d6:2d:f1:7c:8f:9c:c5:43:ac:
a5:78:db:14:9f:43:56:35:ac:27:bc:af:18:88:72:4d:f1:81:
48:9b:d7:48:88:81:bf:54:98:2b:b4:44:6a:e6:d6:dc:73:d3:
c9:bf:fb:8f:48:a6:a7:4b:39:4b:64:a3:35:58:9f:03:b0:7a:
0c:c3:09:fe:6c:d4:7c:e6:45:d2:8c:5f:41:c8:b5:9a:5e:0d:
49:51:74:93:e3:6b:a6:23:a2:65:fc:71:81:f1:b4:64:56:3b:
c5:47:92:99:f9:1d:e1:4c:51:49:e0:78:aa:b3:3d:bd:e5:40:
f0:50:2b:ca:1e:82:ec:8d:a0:04:32:dd:19:a6:6c:52:0c:40:
7d:7e:64:a9:d5:b1:03:65:f9:2a:b2:2c:94:f6:02:36:5e:26:
09:7c:bb:1c:4e:1d:5a:7f:c7:a9:38:a0:0f:d0:9f:48:e4:89:
5d:9b:0b:8d:9f:d0:a0:4d:70:b4:97:18:a1:de:83:e6:03:04:
18:da:a5:91:6c:de:35:22:30:e0:67:c9:aa:47:f1:da:d9:83:
6b:69:49:55:b0:fe:dc:51:4f:71:40:bf:23:d8:c3:80:14:14:
10:56:d8:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:13 2023 by rpki-client on console-ams.rpki-client.org