Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/hhAaZU-NgyJMDsOU_9ehwsJ6vZw.roa
File: hhAaZU-NgyJMDsOU_9ehwsJ6vZw.roa (raw, json)
Hash identifier: rHoke0HB2/ruJET/17KlG/BEBhbhpLpXahkPlk0amMY=
Subject key identifier: 86:10:1A:65:4F:8D:83:22:4C:0E:C3:94:FF:D7:A1:C2:C2:7A:BD:9C
Certificate issuer: /CN=e909ee3d618974da0cbd805a2da80410a4989881
Certificate serial: 01848B0204184E1DF5B262EF6900CC99BDFB
Authority key identifier: E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/hhAaZU-NgyJMDsOU_9ehwsJ6vZw.roa
Signing time: Fri 18 Nov 2022 13:51:15 +0000
ROA not before: Fri 18 Nov 2022 13:51:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30781
IP address blocks: 46.231.216.0/21 maxlen: 24
185.53.80.0/22 maxlen: 24
141.255.128.0/21 maxlen: 24
212.114.16.0/20 maxlen: 24
46.22.192.0/20 maxlen: 24
45.80.8.0/22 maxlen: 24
45.80.20.0/22 maxlen: 24
45.80.24.0/22 maxlen: 24
45.80.32.0/22 maxlen: 24
46.255.200.0/21 maxlen: 24
95.178.88.0/22 maxlen: 24
185.114.100.0/22 maxlen: 24
94.100.160.0/20 maxlen: 24
37.110.192.0/21 maxlen: 24
193.151.84.0/24 maxlen: 24
193.151.84.0/22 maxlen: 24
193.151.87.0/24 maxlen: 24
37.26.184.0/21 maxlen: 24
185.146.220.0/22 maxlen: 24
194.116.142.0/23 maxlen: 24
185.15.140.0/22 maxlen: 24
185.62.184.0/22 maxlen: 24
212.85.229.0/24 maxlen: 24
212.85.230.0/23 maxlen: 24
195.234.35.0/24 maxlen: 24
95.143.64.0/20 maxlen: 24
91.224.162.0/23 maxlen: 24
176.241.120.0/21 maxlen: 24
212.18.240.0/21 maxlen: 24
130.180.208.0/20 maxlen: 24
78.153.224.0/19 maxlen: 24
91.226.193.0/24 maxlen: 24
185.61.184.0/22 maxlen: 24
185.61.184.0/21 maxlen: 24
185.61.188.0/22 maxlen: 24
31.172.232.0/21 maxlen: 24
31.172.238.0/24 maxlen: 24
185.78.156.0/22 maxlen: 24
185.92.36.0/22 maxlen: 24
31.7.248.0/21 maxlen: 24
31.172.160.0/22 maxlen: 24
193.189.124.0/23 maxlen: 24
185.4.60.0/23 maxlen: 24
185.4.62.0/24 maxlen: 24
185.91.220.0/22 maxlen: 24
185.91.224.0/22 maxlen: 24
77.72.88.0/21 maxlen: 24
91.203.92.0/22 maxlen: 24
37.61.240.0/21 maxlen: 24
85.31.192.0/19 maxlen: 24
82.163.36.0/22 maxlen: 24
5.226.0.0/21 maxlen: 24
88.212.144.0/21 maxlen: 24
88.212.152.0/22 maxlen: 24
185.209.52.0/22 maxlen: 24
82.196.24.0/21 maxlen: 24
88.202.236.0/22 maxlen: 24
77.246.80.0/20 maxlen: 24
185.44.88.0/22 maxlen: 24
195.128.147.0/24 maxlen: 24
2a05:6e00::/29 maxlen: 48
2a03:bdc0::/32 maxlen: 48
2a02:398::/32 maxlen: 48
2a0b:41c0::/29 maxlen: 48
2a00:68c0::/32 maxlen: 48
2a04:cc00::/29 maxlen: 48
2a01:240::/32 maxlen: 48
2a01:290::/32 maxlen: 48
2a00:78c0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:8b:02:04:18:4e:1d:f5:b2:62:ef:69:00:cc:99:bd:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e909ee3d618974da0cbd805a2da80410a4989881
Validity
Not Before: Nov 18 13:51:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86101a654f8d83224c0ec394ffd7a1c2c27abd9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:55:15:11:87:b8:4f:81:13:97:e2:1f:94:85:
43:c1:b6:82:a1:58:aa:6a:a2:ca:91:e1:2f:8d:c4:
57:f5:fc:31:3d:ff:ab:89:3b:1f:e9:95:37:fe:e2:
09:a6:fc:99:14:3f:f4:2d:fd:0d:f2:41:7d:97:03:
e5:f7:19:ba:51:4b:c9:86:46:00:8f:8c:30:8f:f6:
85:8f:40:a5:bf:73:20:b9:27:97:b2:4b:4d:f5:7b:
fc:b4:a2:2a:15:8e:c4:7e:26:93:a7:83:5c:7e:4d:
1b:98:3d:19:ae:d2:34:95:7c:38:f5:aa:cc:ad:c5:
e1:25:d1:93:3c:9a:19:76:cb:16:bf:15:6a:48:93:
c2:3b:06:94:d1:f7:62:4a:92:c9:b0:e2:95:fe:6c:
9c:50:b9:d4:b0:74:08:87:00:c4:91:37:31:2d:75:
cd:12:5c:8b:9b:e6:74:ea:1d:e7:0d:34:e9:f4:92:
0b:ec:a5:70:8b:97:56:0d:b5:c4:a8:ab:bf:cb:cd:
a1:95:03:1c:c7:4f:89:d4:04:64:17:5a:98:57:c1:
db:2d:ec:1c:1d:cb:e7:57:6c:cd:9b:1f:24:3f:c3:
cc:13:13:b6:80:8e:0f:b1:2a:9b:4b:89:36:d6:68:
06:4c:b7:be:2e:0b:a2:45:14:c6:0b:22:a5:bb:22:
1b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:10:1A:65:4F:8D:83:22:4C:0E:C3:94:FF:D7:A1:C2:C2:7A:BD:9C
X509v3 Authority Key Identifier:
keyid:E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/hhAaZU-NgyJMDsOU_9ehwsJ6vZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/6QnuPWGJdNoMvYBaLagEEKSYmIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.0.0/21
31.7.248.0/21
31.172.160.0/22
31.172.232.0/21
37.26.184.0/21
37.61.240.0/21
37.110.192.0/21
45.80.8.0/22
45.80.20.0-45.80.27.255
45.80.32.0/22
46.22.192.0/20
46.231.216.0/21
46.255.200.0/21
77.72.88.0/21
77.246.80.0/20
78.153.224.0/19
82.163.36.0/22
82.196.24.0/21
85.31.192.0/19
88.202.236.0/22
88.212.144.0-88.212.155.255
91.203.92.0/22
91.224.162.0/23
91.226.193.0/24
94.100.160.0/20
95.143.64.0/20
95.178.88.0/22
130.180.208.0/20
141.255.128.0/21
176.241.120.0/21
185.4.60.0-185.4.62.255
185.15.140.0/22
185.44.88.0/22
185.53.80.0/22
185.61.184.0/21
185.62.184.0/22
185.78.156.0/22
185.91.220.0-185.91.227.255
185.92.36.0/22
185.114.100.0/22
185.146.220.0/22
185.209.52.0/22
193.151.84.0/22
193.189.124.0/23
194.116.142.0/23
195.128.147.0/24
195.234.35.0/24
212.18.240.0/21
212.85.229.0-212.85.231.255
212.114.16.0/20
IPv6:
2a00:68c0::/32
2a00:78c0::/29
2a01:240::/32
2a01:290::/32
2a02:398::/32
2a03:bdc0::/32
2a04:cc00::/29
2a05:6e00::/29
2a0b:41c0::/29
Signature Algorithm: sha256WithRSAEncryption
6f:c1:bf:13:66:f3:b7:6a:38:41:84:40:3c:2a:0c:9b:f2:45:
9e:2e:1f:65:8a:72:10:fd:f4:7e:f0:2c:08:62:68:9e:8b:f6:
1d:32:50:43:bf:ba:1d:b8:d0:63:80:e1:49:e7:25:c9:34:ac:
ce:73:88:91:61:bd:21:7c:75:52:82:7b:32:4d:04:ff:05:2b:
09:25:ea:0e:ab:6b:0a:dc:ba:4b:0e:86:53:17:61:14:59:33:
20:05:ee:04:9b:93:5e:05:8a:3f:69:2f:35:ce:99:5a:37:af:
d9:fe:ef:8b:37:fd:a2:05:f3:69:39:d5:d6:b7:be:e2:25:aa:
a9:fd:f2:58:17:31:85:f1:3c:32:b3:fb:12:d3:f2:fa:41:d2:
ad:3a:9d:be:6d:e4:af:2b:fc:a3:e9:d9:62:5d:92:66:58:ec:
3c:32:64:23:b3:e1:86:bb:4b:24:aa:77:c6:d9:0a:2a:fa:8a:
71:f4:0d:88:e4:80:54:22:97:84:fb:39:42:b6:17:5b:d3:9a:
e6:02:d4:29:42:3f:07:f5:41:0a:b6:97:3b:b3:e7:a4:e1:18:
6a:81:9e:89:f8:9a:ba:82:34:eb:d7:11:f5:42:af:78:d0:6d:
7c:d9:bb:bf:e6:9c:63:ac:ac:4b:85:72:4b:0a:1b:d4:22:09:
16:f7:3f:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:02 2023 by rpki-client on console-fra.rpki-client.org