Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/P7K_Lgqtiz7JiUu5pifX-mh2aU4.roa
File: P7K_Lgqtiz7JiUu5pifX-mh2aU4.roa (raw, json)
Hash identifier: dffLCLrL8Bwo59UTl/Ni5nc7mHGX/og8aonnPDJc1YM=
Subject key identifier: 3F:B2:BF:2E:0A:AD:8B:3E:C9:89:4B:B9:A6:27:D7:FA:68:76:69:4E
Certificate issuer: /CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Certificate serial: 018ADFEC4CCC6EA6D55A9022AD5009B63189
Authority key identifier: 08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/P7K_Lgqtiz7JiUu5pifX-mh2aU4.roa
Signing time: Fri 29 Sep 2023 07:51:59 +0000
ROA not before: Fri 29 Sep 2023 07:51:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31363
IP address blocks: 86.62.79.0/24 maxlen: 24
86.62.84.0/24 maxlen: 24
86.62.94.0/24 maxlen: 24
86.62.96.0/24 maxlen: 24
86.62.92.0/24 maxlen: 24
86.62.98.0/24 maxlen: 24
86.62.102.0/24 maxlen: 24
86.62.99.0/24 maxlen: 24
86.62.110.0/24 maxlen: 24
86.62.112.0/24 maxlen: 24
86.62.118.0/24 maxlen: 24
86.62.114.0/24 maxlen: 24
86.62.115.0/24 maxlen: 24
86.62.116.0/24 maxlen: 24
86.62.117.0/24 maxlen: 24
86.62.113.0/24 maxlen: 24
86.62.119.0/24 maxlen: 24
86.62.125.0/24 maxlen: 24
195.91.254.0/24 maxlen: 24
195.91.255.0/24 maxlen: 24
195.91.204.0/24 maxlen: 24
195.91.208.0/24 maxlen: 24
195.91.209.0/24 maxlen: 24
195.91.210.0/24 maxlen: 24
195.91.211.0/24 maxlen: 24
195.91.213.0/24 maxlen: 24
195.91.215.0/24 maxlen: 24
195.91.217.0/24 maxlen: 24
195.91.218.0/24 maxlen: 24
195.91.219.0/24 maxlen: 24
195.54.210.0/24 maxlen: 24
195.91.222.0/24 maxlen: 24
195.91.223.0/24 maxlen: 24
195.91.224.0/24 maxlen: 24
195.91.220.0/24 maxlen: 24
195.91.221.0/24 maxlen: 24
195.91.225.0/24 maxlen: 24
195.91.226.0/24 maxlen: 24
195.91.232.0/24 maxlen: 24
195.91.233.0/24 maxlen: 24
195.91.229.0/24 maxlen: 24
195.91.230.0/24 maxlen: 24
195.91.231.0/24 maxlen: 24
195.91.227.0/24 maxlen: 24
195.91.228.0/24 maxlen: 24
195.91.236.0/24 maxlen: 24
195.91.237.0/24 maxlen: 24
195.91.238.0/24 maxlen: 24
195.91.234.0/24 maxlen: 24
195.91.235.0/24 maxlen: 24
195.91.239.0/24 maxlen: 24
195.91.240.0/24 maxlen: 24
195.91.246.0/24 maxlen: 24
195.91.243.0/24 maxlen: 24
195.91.244.0/24 maxlen: 24
195.91.245.0/24 maxlen: 24
195.91.241.0/24 maxlen: 24
195.91.242.0/24 maxlen: 24
195.91.252.0/24 maxlen: 24
195.91.247.0/24 maxlen: 24
86.62.75.0/24 maxlen: 24
195.91.149.0/24 maxlen: 24
195.91.150.0/24 maxlen: 24
195.91.151.0/24 maxlen: 24
195.91.146.0/24 maxlen: 24
195.91.147.0/24 maxlen: 24
195.91.148.0/24 maxlen: 24
195.91.153.0/24 maxlen: 24
195.91.156.0/24 maxlen: 24
195.91.160.0/24 maxlen: 24
195.91.166.0/24 maxlen: 24
195.91.165.0/24 maxlen: 24
195.91.168.0/24 maxlen: 24
195.91.169.0/24 maxlen: 24
195.91.170.0/24 maxlen: 24
195.91.171.0/24 maxlen: 24
195.91.172.0/24 maxlen: 24
195.91.178.0/24 maxlen: 24
195.91.179.0/24 maxlen: 24
195.91.173.0/24 maxlen: 24
195.91.174.0/24 maxlen: 24
195.91.175.0/24 maxlen: 24
195.91.180.0/24 maxlen: 24
195.91.181.0/24 maxlen: 24
195.91.182.0/24 maxlen: 24
195.91.184.0/24 maxlen: 24
195.91.191.0/24 maxlen: 24
195.91.187.0/24 maxlen: 24
195.91.188.0/24 maxlen: 24
195.91.196.0/24 maxlen: 24
195.91.197.0/24 maxlen: 24
195.91.138.0/24 maxlen: 24
195.91.133.0/24 maxlen: 24
195.91.145.0/24 maxlen: 24
195.91.144.0/24 maxlen: 24
2a02:2698:9800::/38 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:df:ec:4c:cc:6e:a6:d5:5a:90:22:ad:50:09:b6:31:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Validity
Not Before: Sep 29 07:51:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3fb2bf2e0aad8b3ec9894bb9a627d7fa6876694e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c7:b7:8c:d2:9a:ef:ee:61:d6:a4:0c:23:90:
64:ba:a9:5b:b5:23:2b:3a:04:20:82:02:e3:75:20:
33:21:fc:8c:ca:17:a3:eb:af:f2:f5:e1:96:c9:2a:
34:1c:3a:42:e0:dd:9b:71:c1:4b:8a:1a:63:d0:4e:
3f:0d:3f:b3:e1:8e:7e:94:d5:fb:d4:3a:ce:a7:9a:
fa:64:d8:64:d4:80:a1:3c:57:f2:98:f8:32:52:4f:
9d:5b:b9:5b:5b:ec:8f:41:c0:f7:69:09:ef:d7:77:
c0:88:e2:9a:61:0d:72:95:88:eb:8d:e2:04:2a:43:
1d:5b:49:6f:ec:97:26:76:a1:b8:a6:69:ce:8a:c5:
36:ef:52:d9:9c:26:e2:9a:d1:48:a3:d4:05:67:e3:
0d:6f:b1:35:e8:fa:86:7b:31:ed:85:89:d5:ef:ee:
51:b6:be:0f:95:cd:d3:3a:5f:3a:0b:1f:98:67:52:
0d:2f:51:44:27:e4:5f:04:9f:0d:cf:38:f4:40:f1:
10:95:e6:96:b9:c3:a9:fd:63:ef:85:ee:69:8c:00:
81:e1:69:96:b1:39:d6:7d:4f:23:40:30:a2:ff:c6:
e3:86:34:c8:37:ca:40:fc:b1:d2:0d:c8:00:77:26:
b6:f6:d0:6f:d4:5f:22:1d:90:ae:54:46:f1:ab:ed:
63:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:B2:BF:2E:0A:AD:8B:3E:C9:89:4B:B9:A6:27:D7:FA:68:76:69:4E
X509v3 Authority Key Identifier:
keyid:08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/P7K_Lgqtiz7JiUu5pifX-mh2aU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.62.75.0/24
86.62.79.0/24
86.62.84.0/24
86.62.92.0/24
86.62.94.0/24
86.62.96.0/24
86.62.98.0/23
86.62.102.0/24
86.62.110.0/24
86.62.112.0/21
86.62.125.0/24
195.54.210.0/24
195.91.133.0/24
195.91.138.0/24
195.91.144.0/21
195.91.153.0/24
195.91.156.0/24
195.91.160.0/24
195.91.165.0-195.91.166.255
195.91.168.0/21
195.91.178.0-195.91.182.255
195.91.184.0/24
195.91.187.0-195.91.188.255
195.91.191.0/24
195.91.196.0/23
195.91.204.0/24
195.91.208.0/22
195.91.213.0/24
195.91.215.0/24
195.91.217.0-195.91.247.255
195.91.252.0/24
195.91.254.0/23
IPv6:
2a02:2698:9800::/38
Signature Algorithm: sha256WithRSAEncryption
db:e2:a3:ce:25:8b:a6:29:df:60:b3:60:27:cd:08:a9:be:8a:
ac:ca:09:5f:3b:76:3a:00:32:c7:b1:da:e7:12:95:51:80:d8:
dd:2f:54:66:31:f8:88:76:28:af:4f:b1:94:8a:b5:70:69:71:
9b:50:62:94:4b:dd:b9:0e:33:34:ed:c1:28:94:40:1b:2f:97:
f9:1e:ba:e6:40:1d:0e:dd:03:30:84:31:44:09:3b:89:45:d0:
b8:6b:3b:ea:67:f9:8c:92:74:a9:72:82:ad:c1:a9:d9:8e:b7:
fe:96:4a:b3:e8:38:1a:3f:c5:3d:7f:a2:e2:7d:5f:33:5a:1d:
bc:48:2f:25:83:cf:b5:1e:26:57:57:59:f1:76:b8:c8:2b:8b:
8e:e3:30:e8:56:00:a8:29:b4:3d:ea:59:33:c1:d2:69:64:c0:
d6:76:e6:02:2d:ef:c0:87:b8:4b:72:95:2e:f9:c9:6c:f9:1c:
c7:da:41:91:b9:02:67:35:bd:2d:56:dd:73:ac:4d:2b:0f:d0:
1d:00:4c:0a:09:ec:79:98:a8:9b:5b:33:4e:55:73:f7:55:99:
5d:50:d3:89:fb:1e:eb:97:76:e3:d3:84:04:c1:55:d6:96:77:
93:64:6e:12:67:39:d9:9c:f9:59:60:b4:57:ea:81:c6:63:f1:
e6:9f:46:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:37:51 2025 by rpki-client