Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/0vp0VNXujR9qbD_DWnUwuZa7GLo.roa
File: 0vp0VNXujR9qbD_DWnUwuZa7GLo.roa (raw, json)
Hash identifier: D9826RrBJd/I5jPBJjZBjyhWL+TLwm6U81RVhXVXQDA=
Subject key identifier: D2:FA:74:54:D5:EE:8D:1F:6A:6C:3F:C3:5A:75:30:B9:96:BB:18:BA
Certificate issuer: /CN=f43bf90808ae7eca063f746a8f1d88865734c8a3
Certificate serial: 0C237119
Authority key identifier: F4:3B:F9:08:08:AE:7E:CA:06:3F:74:6A:8F:1D:88:86:57:34:C8:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/0vp0VNXujR9qbD_DWnUwuZa7GLo.roa
Signing time: Fri 03 Jun 2022 23:26:20 +0000
ROA not before: Fri 03 Jun 2022 23:26:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202448
IP address blocks: 45.137.151.0/24 maxlen: 24
45.137.150.0/24 maxlen: 24
45.137.148.0/24 maxlen: 32
45.137.149.0/24 maxlen: 24
2.56.213.0/24 maxlen: 24
2.56.212.0/24 maxlen: 24
89.43.33.0/24 maxlen: 24
86.107.197.0/24 maxlen: 24
93.114.128.0/24 maxlen: 24
2.56.215.0/24 maxlen: 24
2.56.214.0/24 maxlen: 24
194.32.78.0/24 maxlen: 24
194.32.77.0/24 maxlen: 24
194.32.76.0/24 maxlen: 24
194.32.79.0/24 maxlen: 24
91.250.248.0/24 maxlen: 32
91.250.249.0/24 maxlen: 32
185.234.52.0/24 maxlen: 32
185.96.163.0/24 maxlen: 24
178.157.82.0/24 maxlen: 24
185.170.213.0/24 maxlen: 24
178.157.91.0/24 maxlen: 24
185.170.212.0/24 maxlen: 24
178.157.90.0/24 maxlen: 24
185.170.215.0/24 maxlen: 24
185.170.214.0/24 maxlen: 24
45.153.184.0/24 maxlen: 24
45.153.186.0/24 maxlen: 24
45.153.185.0/24 maxlen: 24
45.153.187.0/24 maxlen: 24
86.106.181.0/24 maxlen: 24
89.38.135.0/24 maxlen: 32
86.105.252.0/24 maxlen: 24
94.176.182.0/24 maxlen: 24
185.243.214.0/24 maxlen: 32
185.243.215.0/24 maxlen: 24
194.99.23.0/24 maxlen: 24
194.99.22.0/24 maxlen: 24
194.99.21.0/24 maxlen: 24
194.99.20.0/24 maxlen: 24
89.38.131.0/24 maxlen: 24
31.14.238.0/24 maxlen: 24
89.38.130.0/24 maxlen: 24
89.38.129.0/24 maxlen: 24
93.114.133.0/24 maxlen: 24
93.115.23.0/24 maxlen: 24
93.115.22.0/24 maxlen: 24
93.115.21.0/24 maxlen: 24
93.115.20.0/24 maxlen: 24
93.115.19.0/24 maxlen: 24
93.115.18.0/24 maxlen: 24
2a05:8280::/32 maxlen: 32
2a09:cd42::/32 maxlen: 32
2a09:cd45::/32 maxlen: 32
2a09:cd43::/32 maxlen: 32
2a0c:b9c1::/32 maxlen: 32
2a09:cd41::/32 maxlen: 32
2a09:cd40::/32 maxlen: 32
2a0c:b9c0::/32 maxlen: 32
2a09:cd46::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 203649305 (0xc237119)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f43bf90808ae7eca063f746a8f1d88865734c8a3
Validity
Not Before: Jun 3 23:26:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d2fa7454d5ee8d1f6a6c3fc35a7530b996bb18ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:07:64:87:e0:64:0c:64:de:a6:75:e6:54:b3:
92:f9:c3:5c:3e:9d:cc:af:cf:3f:d6:50:ff:0b:29:
be:43:2a:4e:d3:37:a6:b6:9b:60:07:56:c9:72:2b:
b7:54:e8:fa:52:07:4b:e2:08:1c:f7:38:53:9c:44:
00:6b:07:8d:2c:fa:2a:b4:17:0d:5f:0c:0e:ef:a6:
49:1a:55:29:4d:58:aa:75:96:42:5b:b4:d3:5d:b0:
e7:6f:80:6f:9f:03:82:28:8e:0b:bb:d1:0c:a1:34:
24:18:f2:5d:02:e4:ca:20:1b:a1:11:8d:38:85:c9:
93:9b:e3:29:96:a1:5d:45:f0:70:44:00:b1:75:0b:
86:2d:21:49:b7:1e:fb:ab:63:8b:85:33:23:f8:8e:
48:20:ca:63:a8:aa:f0:fb:b7:7e:7e:da:3e:16:d1:
9d:66:2d:d6:d9:47:54:6d:72:80:1e:88:94:49:01:
39:e8:ad:51:3c:d0:69:76:48:98:8c:34:57:7d:3a:
a5:62:66:e7:ba:c1:af:d4:4d:c8:31:f9:81:c1:c0:
e7:ff:34:c0:f5:95:aa:3c:fb:0a:e1:2a:12:d5:89:
e5:5d:f8:21:64:34:44:66:fc:8d:64:05:e1:43:15:
a7:6b:8e:5e:eb:98:fb:7f:23:74:c9:ef:ff:6f:e9:
02:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:FA:74:54:D5:EE:8D:1F:6A:6C:3F:C3:5A:75:30:B9:96:BB:18:BA
X509v3 Authority Key Identifier:
keyid:F4:3B:F9:08:08:AE:7E:CA:06:3F:74:6A:8F:1D:88:86:57:34:C8:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/0vp0VNXujR9qbD_DWnUwuZa7GLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.212.0/22
31.14.238.0/24
45.137.148.0/22
45.153.184.0/22
86.105.252.0/24
86.106.181.0/24
86.107.197.0/24
89.38.129.0-89.38.131.255
89.38.135.0/24
89.43.33.0/24
91.250.248.0/23
93.114.128.0/24
93.114.133.0/24
93.115.18.0-93.115.23.255
94.176.182.0/24
178.157.82.0/24
178.157.90.0/23
185.96.163.0/24
185.170.212.0/22
185.234.52.0/24
185.243.214.0/23
194.32.76.0/22
194.99.20.0/22
IPv6:
2a05:8280::/32
2a09:cd40::/30
2a09:cd45::-2a09:cd46:ffff:ffff:ffff:ffff:ffff:ffff
2a0c:b9c0::/31
Signature Algorithm: sha256WithRSAEncryption
c0:0e:aa:fa:be:f0:d5:43:ad:d6:6f:de:a4:d1:4b:fb:62:b9:
22:d5:ef:f0:b7:62:ba:03:4e:3d:1c:98:63:b7:c3:d8:b9:05:
ef:85:c3:35:93:24:43:6b:19:91:f3:3d:f5:e3:b3:54:d2:49:
a0:09:b5:c6:3f:a3:a2:f7:7f:cd:8d:cb:f5:ec:df:3d:96:5b:
9d:a0:be:b4:4c:23:18:23:b7:85:65:a3:db:f5:b0:5d:7f:21:
c2:f9:4f:8f:af:c5:36:bc:56:c5:af:d9:5b:5b:3d:21:31:e0:
6f:99:a4:9d:7c:7a:71:69:f7:ad:fc:d6:1a:b8:bc:2c:25:d5:
18:6e:10:c0:b8:4f:08:59:a0:b3:6a:51:52:bf:c8:4a:25:df:
81:5d:63:b1:dc:d7:dd:44:6f:d5:a0:1e:f7:e9:ea:02:8a:03:
d6:15:2b:54:ce:98:54:1d:f1:eb:b9:11:27:18:0e:01:06:88:
85:72:6d:27:6f:46:e1:14:c8:f3:9a:b6:1d:3a:4f:91:92:88:
49:ab:1f:9c:14:4d:52:ae:35:42:3b:5e:3c:e6:7d:69:1e:db:
06:63:99:96:96:24:bf:60:e6:16:12:f0:9f:44:d6:0a:4e:99:
45:32:2d:a1:d6:3a:5c:67:3c:e9:67:41:9c:8e:35:0d:8f:77:
8f:b0:3e:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:22 2023 by rpki-client on console-ams.rpki-client.org