Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/H2ifEBwTbCbaDuDobLHCRRdDbxk.roa
File: H2ifEBwTbCbaDuDobLHCRRdDbxk.roa (raw, json)
Hash identifier: aP9WgQnwExSdpoRaAt0PesGc53ZkY/B+rtH0Ng05JIc=
Subject key identifier: 1F:68:9F:10:1C:13:6C:26:DA:0E:E0:E8:6C:B1:C2:45:17:43:6F:19
Certificate issuer: /CN=e909ee3d618974da0cbd805a2da80410a4989881
Certificate serial: 018379C9235D8936F2317AE34642F1FA52B3
Authority key identifier: E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/H2ifEBwTbCbaDuDobLHCRRdDbxk.roa
Signing time: Mon 26 Sep 2022 12:32:48 +0000
ROA not before: Mon 26 Sep 2022 12:32:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30781
IP address blocks: 46.231.216.0/21 maxlen: 24
185.53.80.0/22 maxlen: 24
141.255.128.0/21 maxlen: 24
212.114.16.0/20 maxlen: 24
46.22.192.0/20 maxlen: 24
45.80.8.0/22 maxlen: 24
45.80.20.0/22 maxlen: 24
45.80.24.0/22 maxlen: 24
45.80.32.0/22 maxlen: 24
46.255.200.0/21 maxlen: 24
95.178.88.0/22 maxlen: 24
185.114.100.0/22 maxlen: 24
94.100.160.0/20 maxlen: 24
37.110.192.0/21 maxlen: 24
193.151.84.0/24 maxlen: 24
193.151.87.0/24 maxlen: 24
37.26.184.0/21 maxlen: 24
185.146.220.0/22 maxlen: 24
194.116.142.0/23 maxlen: 24
185.15.140.0/22 maxlen: 24
185.62.184.0/22 maxlen: 24
212.85.229.0/24 maxlen: 24
212.85.230.0/23 maxlen: 24
195.234.35.0/24 maxlen: 24
95.143.64.0/20 maxlen: 24
176.241.120.0/21 maxlen: 24
212.18.240.0/21 maxlen: 24
130.180.208.0/20 maxlen: 24
78.153.224.0/19 maxlen: 24
91.226.193.0/24 maxlen: 24
185.61.184.0/22 maxlen: 24
185.61.184.0/21 maxlen: 24
185.61.188.0/22 maxlen: 24
31.172.232.0/21 maxlen: 24
31.172.238.0/24 maxlen: 24
185.78.156.0/22 maxlen: 24
185.92.36.0/22 maxlen: 24
31.7.248.0/21 maxlen: 24
31.172.160.0/22 maxlen: 24
193.189.124.0/23 maxlen: 24
185.4.60.0/23 maxlen: 24
185.4.62.0/24 maxlen: 24
185.91.220.0/22 maxlen: 24
185.91.224.0/22 maxlen: 24
77.72.88.0/21 maxlen: 24
91.203.92.0/22 maxlen: 24
37.61.240.0/21 maxlen: 24
85.31.192.0/19 maxlen: 24
82.163.36.0/22 maxlen: 24
5.226.0.0/21 maxlen: 24
88.212.144.0/21 maxlen: 24
88.212.152.0/22 maxlen: 24
185.209.52.0/22 maxlen: 24
82.196.24.0/21 maxlen: 24
88.202.236.0/22 maxlen: 24
77.246.80.0/20 maxlen: 24
185.44.88.0/22 maxlen: 24
2a05:6e00::/29 maxlen: 48
2a03:bdc0::/32 maxlen: 48
2a02:398::/32 maxlen: 48
2a0b:41c0::/29 maxlen: 48
2a00:68c0::/32 maxlen: 48
2a04:cc00::/29 maxlen: 48
2a01:240::/32 maxlen: 48
2a01:290::/32 maxlen: 48
2a00:78c0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:79:c9:23:5d:89:36:f2:31:7a:e3:46:42:f1:fa:52:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e909ee3d618974da0cbd805a2da80410a4989881
Validity
Not Before: Sep 26 12:32:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f689f101c136c26da0ee0e86cb1c24517436f19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:25:c4:80:c5:84:92:98:0d:c1:79:92:2a:28:
ce:7d:85:1b:59:e6:78:b9:87:0a:9c:ef:b8:00:d1:
b2:45:a4:e6:9e:b7:f9:d3:e7:94:6f:e7:b1:43:40:
1a:73:3f:60:ce:30:59:92:c6:8f:88:ab:7f:6e:5d:
54:2f:ef:5d:91:53:53:76:d3:71:4f:20:f5:23:19:
4f:d7:12:82:03:d2:ac:f5:8a:f7:ff:4f:57:32:b4:
77:53:89:c8:a0:a3:ca:c8:cd:15:8c:51:c3:61:c3:
f2:a9:08:58:e6:73:db:b0:3b:51:30:1f:e8:8b:ca:
c5:e5:f6:3b:a6:5b:36:5a:3b:ec:0c:e5:54:42:6b:
67:62:9c:fc:c6:62:0e:63:07:30:b3:41:e6:8b:b8:
86:03:fe:55:51:57:f0:d8:c4:de:fa:9e:c6:53:26:
de:8f:58:b9:2a:ef:61:db:a4:6a:6d:b6:f2:91:20:
5b:5d:5f:a8:71:62:df:b3:fa:1f:97:cc:de:9b:8a:
1f:87:68:e0:97:b2:95:5a:0d:c9:33:62:35:69:28:
29:5d:0c:47:7f:45:42:9a:68:d8:a9:19:5f:91:90:
90:ba:e9:f7:1a:55:58:e2:c1:b9:8b:6c:d6:b4:63:
69:c0:60:04:1f:b0:ab:1d:13:ad:a7:d0:e1:ee:4a:
b1:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:68:9F:10:1C:13:6C:26:DA:0E:E0:E8:6C:B1:C2:45:17:43:6F:19
X509v3 Authority Key Identifier:
keyid:E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/H2ifEBwTbCbaDuDobLHCRRdDbxk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/6QnuPWGJdNoMvYBaLagEEKSYmIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.0.0/21
31.7.248.0/21
31.172.160.0/22
31.172.232.0/21
37.26.184.0/21
37.61.240.0/21
37.110.192.0/21
45.80.8.0/22
45.80.20.0-45.80.27.255
45.80.32.0/22
46.22.192.0/20
46.231.216.0/21
46.255.200.0/21
77.72.88.0/21
77.246.80.0/20
78.153.224.0/19
82.163.36.0/22
82.196.24.0/21
85.31.192.0/19
88.202.236.0/22
88.212.144.0-88.212.155.255
91.203.92.0/22
91.226.193.0/24
94.100.160.0/20
95.143.64.0/20
95.178.88.0/22
130.180.208.0/20
141.255.128.0/21
176.241.120.0/21
185.4.60.0-185.4.62.255
185.15.140.0/22
185.44.88.0/22
185.53.80.0/22
185.61.184.0/21
185.62.184.0/22
185.78.156.0/22
185.91.220.0-185.91.227.255
185.92.36.0/22
185.114.100.0/22
185.146.220.0/22
185.209.52.0/22
193.151.84.0/24
193.151.87.0/24
193.189.124.0/23
194.116.142.0/23
195.234.35.0/24
212.18.240.0/21
212.85.229.0-212.85.231.255
212.114.16.0/20
IPv6:
2a00:68c0::/32
2a00:78c0::/29
2a01:240::/32
2a01:290::/32
2a02:398::/32
2a03:bdc0::/32
2a04:cc00::/29
2a05:6e00::/29
2a0b:41c0::/29
Signature Algorithm: sha256WithRSAEncryption
bf:62:ea:4d:39:bb:2c:ed:65:d8:83:26:03:91:5b:68:26:c7:
7a:96:8e:f2:cc:71:f8:e0:cd:46:12:61:40:a8:10:45:7a:0e:
b0:67:63:b7:3d:c0:ff:02:e7:2c:57:e9:81:e2:4a:d3:1b:a6:
8c:13:17:51:35:8e:89:cf:98:11:72:d6:38:73:37:cf:8d:5d:
80:cc:e0:77:6a:e6:b8:82:2e:69:9b:45:8d:fd:be:d1:0c:e3:
09:39:d1:0d:d5:cf:60:72:16:8a:c4:9b:1a:54:8f:8c:94:12:
14:89:5f:19:8b:23:c0:21:9d:4f:87:e5:e1:69:f5:ac:f1:21:
87:ad:6d:04:5f:c0:a5:4e:50:f4:fd:93:63:50:ae:6c:54:e8:
c8:44:1c:97:36:30:ca:6b:31:b2:9c:d2:4a:05:b3:9c:cb:42:
de:88:4f:ab:76:09:b0:83:c5:8b:e1:5e:59:15:58:ac:53:74:
e0:9f:cb:ce:2f:47:00:1c:7f:87:19:0e:f3:48:04:6d:3d:30:
07:c4:d1:06:67:22:ad:fe:f8:75:ef:56:a8:48:58:1f:f9:24:
68:b7:79:50:ea:29:7a:2f:1e:7c:bb:ef:a2:34:b8:56:21:b3:
ac:b1:9e:71:59:7b:41:69:ea:1c:b6:6e:c7:3b:78:c0:f4:b6:
db:86:89:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:17 2024 by rpki-client on console-ams.rpki-client.org