Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/IUKJTKWAQht-eEjtR4NSJ5xkKKc.roa
File: IUKJTKWAQht-eEjtR4NSJ5xkKKc.roa (raw, json)
Hash identifier: yor/Q8eCOGuJxrNUg7KkQOF2Mf9KkvP/NCIjal8hcTA=
Subject key identifier: 21:42:89:4C:A5:80:42:1B:7E:78:48:ED:47:83:52:27:9C:64:28:A7
Certificate issuer: /CN=e909ee3d618974da0cbd805a2da80410a4989881
Certificate serial: 1D00F158
Authority key identifier: E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/IUKJTKWAQht-eEjtR4NSJ5xkKKc.roa
Signing time: Mon 04 Jul 2022 13:21:25 +0000
ROA not before: Mon 04 Jul 2022 13:21:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30781
IP address blocks: 46.231.216.0/21 maxlen: 24
185.53.80.0/22 maxlen: 24
212.114.16.0/20 maxlen: 24
46.22.192.0/20 maxlen: 24
45.80.8.0/22 maxlen: 24
45.80.20.0/22 maxlen: 24
45.80.24.0/22 maxlen: 24
45.80.32.0/22 maxlen: 24
46.255.200.0/21 maxlen: 24
95.178.88.0/22 maxlen: 24
185.114.100.0/22 maxlen: 24
94.100.160.0/20 maxlen: 24
37.110.192.0/21 maxlen: 24
193.151.84.0/24 maxlen: 24
193.151.87.0/24 maxlen: 24
37.26.184.0/21 maxlen: 24
185.146.220.0/22 maxlen: 24
194.116.142.0/23 maxlen: 24
185.15.140.0/22 maxlen: 24
185.62.184.0/22 maxlen: 24
212.85.229.0/24 maxlen: 24
212.85.230.0/23 maxlen: 24
195.234.35.0/24 maxlen: 24
95.143.64.0/20 maxlen: 24
176.241.120.0/21 maxlen: 24
212.18.240.0/21 maxlen: 24
130.180.208.0/20 maxlen: 24
78.153.224.0/19 maxlen: 24
185.61.184.0/22 maxlen: 24
185.61.184.0/21 maxlen: 24
185.61.188.0/22 maxlen: 24
31.172.232.0/21 maxlen: 24
31.172.238.0/24 maxlen: 24
185.78.156.0/22 maxlen: 24
185.92.36.0/22 maxlen: 24
31.7.248.0/21 maxlen: 24
31.172.160.0/22 maxlen: 24
193.189.124.0/23 maxlen: 24
185.4.60.0/23 maxlen: 24
185.4.62.0/24 maxlen: 24
185.91.220.0/22 maxlen: 24
185.91.224.0/22 maxlen: 24
77.72.88.0/21 maxlen: 24
37.61.240.0/21 maxlen: 24
85.31.192.0/19 maxlen: 24
82.163.36.0/22 maxlen: 24
5.226.0.0/21 maxlen: 24
88.212.144.0/21 maxlen: 24
88.212.152.0/22 maxlen: 24
185.209.52.0/22 maxlen: 24
82.196.24.0/21 maxlen: 24
88.202.236.0/22 maxlen: 24
77.246.80.0/20 maxlen: 24
185.44.88.0/22 maxlen: 24
2a05:6e00::/29 maxlen: 48
2a03:bdc0::/32 maxlen: 48
2a02:398::/32 maxlen: 48
2a0b:41c0::/29 maxlen: 48
2a00:68c0::/32 maxlen: 48
2a04:cc00::/29 maxlen: 48
2a01:240::/32 maxlen: 48
2a01:290::/32 maxlen: 48
2a00:78c0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 486601048 (0x1d00f158)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e909ee3d618974da0cbd805a2da80410a4989881
Validity
Not Before: Jul 4 13:21:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2142894ca580421b7e7848ed478352279c6428a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:30:6c:a6:b3:8a:ea:9e:23:b6:a0:1c:c2:f9:
a0:04:76:39:51:a9:e3:e0:ae:09:b0:6d:20:6c:18:
a7:f2:20:93:95:9e:b1:fc:3b:80:29:fa:78:46:25:
96:0d:6f:ea:dc:76:f3:cc:ed:49:27:9c:10:f9:97:
2f:9a:e4:91:89:54:24:27:fc:2a:c1:a9:4e:10:78:
8b:fb:d7:ad:b8:fb:a5:6b:d8:da:f4:8f:3a:42:88:
b0:93:0e:72:a3:14:a2:55:13:d9:46:8e:51:5e:8f:
a1:db:5c:0c:13:f3:a8:77:45:fe:fe:d2:1f:7e:07:
64:27:16:96:54:9c:ee:27:e4:9a:31:cd:71:08:84:
dc:2b:8b:c3:1f:e2:c5:d7:3c:92:07:d9:95:a5:b4:
70:56:92:9a:85:ca:9c:32:33:3b:19:6e:2f:ca:e3:
d7:af:96:c9:3b:c8:23:a8:69:23:31:66:b4:f5:94:
18:b0:4a:55:58:bb:26:5a:98:fb:66:1f:a9:aa:f2:
b5:54:51:be:14:3e:14:c1:69:d0:87:00:42:66:7c:
65:9e:37:04:97:10:03:35:47:65:5d:04:b8:54:a4:
41:13:7a:fb:ed:44:19:4f:ea:b5:56:db:db:b3:58:
39:30:36:10:5b:27:df:fe:73:e4:21:8c:fb:59:8e:
10:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:42:89:4C:A5:80:42:1B:7E:78:48:ED:47:83:52:27:9C:64:28:A7
X509v3 Authority Key Identifier:
keyid:E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/IUKJTKWAQht-eEjtR4NSJ5xkKKc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/6QnuPWGJdNoMvYBaLagEEKSYmIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.0.0/21
31.7.248.0/21
31.172.160.0/22
31.172.232.0/21
37.26.184.0/21
37.61.240.0/21
37.110.192.0/21
45.80.8.0/22
45.80.20.0-45.80.27.255
45.80.32.0/22
46.22.192.0/20
46.231.216.0/21
46.255.200.0/21
77.72.88.0/21
77.246.80.0/20
78.153.224.0/19
82.163.36.0/22
82.196.24.0/21
85.31.192.0/19
88.202.236.0/22
88.212.144.0-88.212.155.255
94.100.160.0/20
95.143.64.0/20
95.178.88.0/22
130.180.208.0/20
176.241.120.0/21
185.4.60.0-185.4.62.255
185.15.140.0/22
185.44.88.0/22
185.53.80.0/22
185.61.184.0/21
185.62.184.0/22
185.78.156.0/22
185.91.220.0-185.91.227.255
185.92.36.0/22
185.114.100.0/22
185.146.220.0/22
185.209.52.0/22
193.151.84.0/24
193.151.87.0/24
193.189.124.0/23
194.116.142.0/23
195.234.35.0/24
212.18.240.0/21
212.85.229.0-212.85.231.255
212.114.16.0/20
IPv6:
2a00:68c0::/32
2a00:78c0::/29
2a01:240::/32
2a01:290::/32
2a02:398::/32
2a03:bdc0::/32
2a04:cc00::/29
2a05:6e00::/29
2a0b:41c0::/29
Signature Algorithm: sha256WithRSAEncryption
0b:89:e0:f7:12:4a:a8:7b:41:b9:55:ba:bc:aa:83:a8:e3:00:
7e:4d:80:be:22:4e:5e:99:97:d8:b7:b6:77:a6:20:f5:e4:c0:
14:fa:86:7d:34:b1:59:ec:a6:66:98:65:b2:61:42:4f:b3:15:
7b:d8:b6:9f:f2:6c:91:0f:af:f5:98:88:9f:58:f6:c1:1f:62:
82:f6:15:14:7c:53:ea:73:c1:fc:2e:cd:7b:5c:5e:3e:f5:35:
ba:13:55:34:03:6a:89:cf:84:e4:a8:33:a8:bd:99:a0:67:3d:
f1:49:85:74:c5:04:45:a1:7d:70:04:10:fb:27:08:b0:1a:2d:
01:e1:46:86:0a:76:39:17:9a:93:d2:df:c4:6f:8b:91:04:9f:
dc:7d:70:70:e7:be:c4:d4:f3:fd:07:97:32:e9:d1:4c:6b:3b:
ab:b2:83:4e:1b:df:cb:11:91:35:31:1f:a6:b6:b8:4b:02:69:
b2:05:34:83:b4:cc:45:d2:e6:df:2b:eb:fc:bc:07:27:98:b9:
76:7c:dd:89:20:42:8e:69:9f:b7:23:fb:6b:b3:a2:ec:16:23:
d7:12:b2:62:c1:b4:81:de:f4:91:89:f6:ed:3e:6a:5b:34:f9:
ea:fe:45:8d:3e:a2:ef:89:ec:2b:ad:39:c0:64:db:c6:c1:76:
17:9a:ce:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:17 2024 by rpki-client on console-ams.rpki-client.org