Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/sY1-kcUFfqNvf1-nhCPXkKNF6Q8.roa
File: sY1-kcUFfqNvf1-nhCPXkKNF6Q8.roa (raw, json)
Hash identifier: 2qqvLMH8GD29+xd47i8A/8q4QBp++vtG9G3gAzg7rBo=
Subject key identifier: B1:8D:7E:91:C5:05:7E:A3:6F:7F:5F:A7:84:23:D7:90:A3:45:E9:0F
Certificate issuer: /CN=e909ee3d618974da0cbd805a2da80410a4989881
Certificate serial: 0184CCFDE09140E031DD5DE7601E4D54F703
Authority key identifier: E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/sY1-kcUFfqNvf1-nhCPXkKNF6Q8.roa
Signing time: Thu 01 Dec 2022 09:21:40 +0000
ROA not before: Thu 01 Dec 2022 09:21:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30781
IP address blocks: 46.231.216.0/21 maxlen: 24
185.53.80.0/22 maxlen: 24
141.255.128.0/21 maxlen: 24
212.114.16.0/20 maxlen: 24
46.22.192.0/20 maxlen: 24
45.80.8.0/22 maxlen: 24
45.80.20.0/22 maxlen: 24
45.80.24.0/22 maxlen: 24
45.80.32.0/22 maxlen: 24
46.255.200.0/21 maxlen: 24
95.178.88.0/22 maxlen: 24
185.114.100.0/22 maxlen: 24
94.100.160.0/20 maxlen: 24
37.110.192.0/21 maxlen: 24
193.151.84.0/22 maxlen: 24
193.151.84.0/24 maxlen: 24
193.151.87.0/24 maxlen: 24
37.26.184.0/21 maxlen: 24
185.146.220.0/22 maxlen: 24
194.116.142.0/23 maxlen: 24
185.15.140.0/22 maxlen: 24
185.62.184.0/22 maxlen: 24
212.85.229.0/24 maxlen: 24
212.85.230.0/23 maxlen: 24
195.234.35.0/24 maxlen: 24
95.143.64.0/20 maxlen: 24
91.224.162.0/23 maxlen: 24
176.241.120.0/21 maxlen: 24
212.18.240.0/21 maxlen: 24
130.180.208.0/20 maxlen: 24
78.153.224.0/19 maxlen: 24
91.226.193.0/24 maxlen: 24
185.61.184.0/22 maxlen: 24
185.61.184.0/21 maxlen: 24
185.61.188.0/22 maxlen: 24
31.172.232.0/21 maxlen: 24
31.172.238.0/24 maxlen: 24
185.78.156.0/22 maxlen: 24
185.92.36.0/22 maxlen: 24
31.7.248.0/21 maxlen: 24
31.172.160.0/22 maxlen: 24
193.189.124.0/23 maxlen: 24
185.4.60.0/23 maxlen: 24
185.4.62.0/24 maxlen: 24
185.91.220.0/22 maxlen: 24
185.91.224.0/22 maxlen: 24
77.72.88.0/21 maxlen: 24
91.203.92.0/22 maxlen: 24
37.61.240.0/21 maxlen: 24
85.31.192.0/19 maxlen: 24
82.163.36.0/22 maxlen: 24
149.232.160.0/20 maxlen: 24
5.226.0.0/21 maxlen: 24
88.212.144.0/21 maxlen: 24
88.212.152.0/22 maxlen: 24
185.209.52.0/22 maxlen: 24
82.196.24.0/21 maxlen: 24
88.202.236.0/22 maxlen: 24
77.246.80.0/20 maxlen: 24
185.44.88.0/22 maxlen: 24
195.128.147.0/24 maxlen: 24
2a05:6e00::/29 maxlen: 48
2a03:bdc0::/32 maxlen: 48
2a02:398::/32 maxlen: 48
2a0b:41c0::/29 maxlen: 48
2a00:68c0::/32 maxlen: 48
2a04:cc00::/29 maxlen: 48
2a01:240::/32 maxlen: 48
2a01:290::/32 maxlen: 48
2a00:78c0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:cc:fd:e0:91:40:e0:31:dd:5d:e7:60:1e:4d:54:f7:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e909ee3d618974da0cbd805a2da80410a4989881
Validity
Not Before: Dec 1 09:21:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b18d7e91c5057ea36f7f5fa78423d790a345e90f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:42:b0:44:2d:c4:dd:64:25:dd:a1:69:f2:87:
05:92:90:f1:9f:3a:07:46:74:03:e9:b5:2d:7f:7e:
c4:e2:30:02:41:73:bd:d0:6d:00:31:c8:7e:cc:26:
5f:e2:52:56:ee:52:54:3f:de:ab:51:0d:a5:f2:41:
8c:5f:52:a6:78:83:03:19:2a:a6:f4:d8:54:f5:31:
ea:a8:be:fe:10:67:5b:7d:01:c5:94:43:25:42:9e:
0c:c9:68:ad:e0:d7:f9:1b:0e:4c:dc:bc:96:07:05:
67:c9:c9:c2:11:e8:9d:5e:4a:82:de:bf:f8:c8:5f:
9c:de:e2:63:92:7c:03:4d:75:e0:64:63:e3:af:ee:
30:21:e6:e2:d5:5d:69:2f:67:b5:9f:3c:b1:f2:86:
a5:1d:b7:65:b6:c5:07:94:a0:72:18:c2:6d:b0:1c:
c2:47:be:32:30:a9:af:1f:73:6c:7b:be:8e:1e:a9:
1d:0f:d3:cd:02:b2:a2:4e:56:11:e2:fe:4d:d0:38:
43:32:3f:06:8f:e0:bb:36:f2:1f:f0:d9:0d:1f:21:
91:94:15:6e:47:9b:55:46:3b:0b:66:17:e8:56:ac:
f7:02:79:ab:ab:d6:71:20:22:93:1a:fe:be:49:0c:
3c:d2:57:19:6f:6b:df:84:ea:36:eb:47:73:32:69:
da:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:8D:7E:91:C5:05:7E:A3:6F:7F:5F:A7:84:23:D7:90:A3:45:E9:0F
X509v3 Authority Key Identifier:
keyid:E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/sY1-kcUFfqNvf1-nhCPXkKNF6Q8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/6QnuPWGJdNoMvYBaLagEEKSYmIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.0.0/21
31.7.248.0/21
31.172.160.0/22
31.172.232.0/21
37.26.184.0/21
37.61.240.0/21
37.110.192.0/21
45.80.8.0/22
45.80.20.0-45.80.27.255
45.80.32.0/22
46.22.192.0/20
46.231.216.0/21
46.255.200.0/21
77.72.88.0/21
77.246.80.0/20
78.153.224.0/19
82.163.36.0/22
82.196.24.0/21
85.31.192.0/19
88.202.236.0/22
88.212.144.0-88.212.155.255
91.203.92.0/22
91.224.162.0/23
91.226.193.0/24
94.100.160.0/20
95.143.64.0/20
95.178.88.0/22
130.180.208.0/20
141.255.128.0/21
149.232.160.0/20
176.241.120.0/21
185.4.60.0-185.4.62.255
185.15.140.0/22
185.44.88.0/22
185.53.80.0/22
185.61.184.0/21
185.62.184.0/22
185.78.156.0/22
185.91.220.0-185.91.227.255
185.92.36.0/22
185.114.100.0/22
185.146.220.0/22
185.209.52.0/22
193.151.84.0/22
193.189.124.0/23
194.116.142.0/23
195.128.147.0/24
195.234.35.0/24
212.18.240.0/21
212.85.229.0-212.85.231.255
212.114.16.0/20
IPv6:
2a00:68c0::/32
2a00:78c0::/29
2a01:240::/32
2a01:290::/32
2a02:398::/32
2a03:bdc0::/32
2a04:cc00::/29
2a05:6e00::/29
2a0b:41c0::/29
Signature Algorithm: sha256WithRSAEncryption
15:e0:d1:85:d8:0e:ac:e7:e5:48:ce:85:f0:e6:d9:29:81:a4:
0f:78:53:51:da:2f:92:8c:ea:2a:6d:e6:56:18:52:99:33:46:
f7:f7:82:ba:1a:28:ff:a9:b7:3e:91:08:12:d2:65:15:72:fa:
10:33:4b:6a:81:42:d6:d1:9b:8c:c1:10:92:5a:d4:b8:e6:33:
68:5d:c7:d7:24:9f:08:ff:9b:18:6a:37:2a:03:8f:bd:69:16:
0d:c5:52:cf:8a:11:aa:bc:47:75:31:97:de:9f:64:9f:84:7c:
6a:e8:94:46:47:b5:38:5c:07:9a:86:e7:4a:7e:a1:a5:16:06:
34:ad:94:59:31:51:ae:c1:95:5c:ef:5f:cb:db:76:e4:d8:46:
71:83:b0:21:36:ea:67:0e:6e:22:b5:5a:16:a7:83:94:de:d0:
b3:ed:b8:61:41:50:0b:29:88:cc:cc:f8:28:58:55:ec:77:cb:
30:1d:42:89:1c:34:60:26:6b:7f:6c:ba:1b:f7:10:f9:7a:8d:
b0:2a:a9:c2:ca:b3:6c:11:ea:e2:3a:0e:06:c2:dc:83:cc:f1:
a9:4b:82:3e:ed:4f:71:c5:ad:b4:a1:3e:cb:29:c1:57:44:19:
77:88:4f:b8:6e:df:7c:32:39:bc:5a:ef:54:69:64:f9:dd:dd:
65:ad:2d:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:44 2024 by rpki-client on console-fra.rpki-client.org