Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/xsLRvSjvlTOAUqaTybYQ8b6ImuY.roa
File: xsLRvSjvlTOAUqaTybYQ8b6ImuY.roa (raw, json)
Hash identifier: RQVtlIpsRh0FA0a/YTkRjMvusCj0fvJRxUKpFT7HO/g=
Subject key identifier: C6:C2:D1:BD:28:EF:95:33:80:52:A6:93:C9:B6:10:F1:BE:88:9A:E6
Certificate issuer: /CN=e909ee3d618974da0cbd805a2da80410a4989881
Certificate serial: 0184D33E09B41AA06F2C364874E6735BE7D5
Authority key identifier: E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/xsLRvSjvlTOAUqaTybYQ8b6ImuY.roa
Signing time: Fri 02 Dec 2022 14:29:28 +0000
ROA not before: Fri 02 Dec 2022 14:29:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30781
IP address blocks: 46.231.216.0/21 maxlen: 24
185.53.80.0/22 maxlen: 24
141.255.128.0/21 maxlen: 24
212.114.16.0/20 maxlen: 24
46.22.192.0/20 maxlen: 24
45.80.8.0/22 maxlen: 24
45.80.20.0/22 maxlen: 24
45.80.24.0/22 maxlen: 24
45.80.32.0/22 maxlen: 24
46.255.200.0/21 maxlen: 24
95.178.88.0/22 maxlen: 24
185.114.100.0/22 maxlen: 24
94.100.160.0/20 maxlen: 24
37.110.192.0/21 maxlen: 24
193.151.84.0/24 maxlen: 24
193.151.84.0/22 maxlen: 24
193.151.87.0/24 maxlen: 24
37.26.184.0/21 maxlen: 24
185.146.220.0/22 maxlen: 24
194.116.142.0/23 maxlen: 24
185.15.140.0/22 maxlen: 24
185.62.184.0/22 maxlen: 24
212.85.229.0/24 maxlen: 24
212.85.230.0/23 maxlen: 24
195.234.35.0/24 maxlen: 24
95.143.64.0/20 maxlen: 24
91.224.162.0/23 maxlen: 24
176.241.120.0/21 maxlen: 24
212.18.240.0/21 maxlen: 24
82.96.128.0/18 maxlen: 24
130.180.208.0/20 maxlen: 24
78.153.224.0/19 maxlen: 24
91.226.193.0/24 maxlen: 24
185.61.184.0/22 maxlen: 24
185.61.184.0/21 maxlen: 24
185.61.188.0/22 maxlen: 24
31.172.232.0/21 maxlen: 24
31.172.238.0/24 maxlen: 24
185.78.156.0/22 maxlen: 24
185.92.36.0/22 maxlen: 24
31.7.248.0/21 maxlen: 24
31.172.160.0/22 maxlen: 24
193.189.124.0/23 maxlen: 24
185.4.60.0/23 maxlen: 24
185.4.62.0/24 maxlen: 24
185.91.220.0/22 maxlen: 24
185.91.224.0/22 maxlen: 24
77.72.88.0/21 maxlen: 24
91.203.92.0/22 maxlen: 24
37.61.240.0/21 maxlen: 24
85.31.192.0/19 maxlen: 24
82.163.36.0/22 maxlen: 24
149.232.160.0/20 maxlen: 24
5.226.0.0/21 maxlen: 24
88.212.144.0/21 maxlen: 24
88.212.152.0/22 maxlen: 24
185.209.52.0/22 maxlen: 24
82.196.24.0/21 maxlen: 24
88.202.236.0/22 maxlen: 24
77.246.80.0/20 maxlen: 24
185.44.88.0/22 maxlen: 24
195.128.147.0/24 maxlen: 24
2a05:6e00::/29 maxlen: 48
2a03:bdc0::/32 maxlen: 48
2a02:398::/32 maxlen: 48
2a0b:41c0::/29 maxlen: 48
2a00:68c0::/32 maxlen: 48
2a04:cc00::/29 maxlen: 48
2a01:240::/32 maxlen: 48
2a01:290::/32 maxlen: 48
2a00:78c0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d3:3e:09:b4:1a:a0:6f:2c:36:48:74:e6:73:5b:e7:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e909ee3d618974da0cbd805a2da80410a4989881
Validity
Not Before: Dec 2 14:29:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c6c2d1bd28ef95338052a693c9b610f1be889ae6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:81:69:94:fd:e5:32:08:12:44:7b:59:8b:06:
36:55:b3:64:2e:16:39:07:a7:b6:a3:37:ae:5d:1a:
d6:6c:63:08:5a:b6:c3:cf:95:3c:b9:c4:97:74:bf:
6e:9e:55:04:e5:da:1b:15:ac:b1:50:4f:2a:23:eb:
24:3f:4a:44:b0:75:8d:c0:19:74:5b:7d:e1:06:b5:
31:3f:96:6b:46:b5:6d:9c:73:85:58:49:eb:4c:d1:
b9:24:47:81:a0:03:4c:9e:8f:5b:6f:5c:f0:89:25:
4b:34:c0:20:48:c9:a0:64:37:e1:fe:14:5a:b0:e7:
96:bc:b5:f9:d6:be:86:34:79:02:3b:56:f1:c0:61:
aa:a8:f7:6a:96:19:7c:75:73:e8:29:86:00:f0:de:
1b:4d:41:60:31:c0:cd:ec:6e:52:9f:d1:c9:33:06:
08:be:16:43:e3:1a:bc:89:85:77:8f:5d:e8:32:81:
8b:84:51:43:42:c3:e6:73:a2:ff:4a:f5:67:e5:84:
68:86:3c:6d:cc:62:bb:68:90:3a:a9:53:38:56:1b:
5b:1c:26:39:7c:ac:e0:f8:ba:40:39:9e:77:04:fd:
07:3f:78:d1:21:4c:4f:b8:75:3a:86:a5:f3:46:ce:
13:9f:0b:51:2c:ae:74:9a:2a:9f:91:44:17:59:34:
fc:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:C2:D1:BD:28:EF:95:33:80:52:A6:93:C9:B6:10:F1:BE:88:9A:E6
X509v3 Authority Key Identifier:
keyid:E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/xsLRvSjvlTOAUqaTybYQ8b6ImuY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/6QnuPWGJdNoMvYBaLagEEKSYmIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.0.0/21
31.7.248.0/21
31.172.160.0/22
31.172.232.0/21
37.26.184.0/21
37.61.240.0/21
37.110.192.0/21
45.80.8.0/22
45.80.20.0-45.80.27.255
45.80.32.0/22
46.22.192.0/20
46.231.216.0/21
46.255.200.0/21
77.72.88.0/21
77.246.80.0/20
78.153.224.0/19
82.96.128.0/18
82.163.36.0/22
82.196.24.0/21
85.31.192.0/19
88.202.236.0/22
88.212.144.0-88.212.155.255
91.203.92.0/22
91.224.162.0/23
91.226.193.0/24
94.100.160.0/20
95.143.64.0/20
95.178.88.0/22
130.180.208.0/20
141.255.128.0/21
149.232.160.0/20
176.241.120.0/21
185.4.60.0-185.4.62.255
185.15.140.0/22
185.44.88.0/22
185.53.80.0/22
185.61.184.0/21
185.62.184.0/22
185.78.156.0/22
185.91.220.0-185.91.227.255
185.92.36.0/22
185.114.100.0/22
185.146.220.0/22
185.209.52.0/22
193.151.84.0/22
193.189.124.0/23
194.116.142.0/23
195.128.147.0/24
195.234.35.0/24
212.18.240.0/21
212.85.229.0-212.85.231.255
212.114.16.0/20
IPv6:
2a00:68c0::/32
2a00:78c0::/29
2a01:240::/32
2a01:290::/32
2a02:398::/32
2a03:bdc0::/32
2a04:cc00::/29
2a05:6e00::/29
2a0b:41c0::/29
Signature Algorithm: sha256WithRSAEncryption
2f:15:fa:84:ed:98:dc:6b:fc:bb:db:83:99:53:9c:d7:e6:0c:
4f:a2:12:a9:6d:a8:3f:f1:ef:8b:f1:d8:85:19:53:63:47:98:
00:00:a4:55:ee:50:69:4a:91:b9:36:1a:42:ee:b9:fe:4a:02:
38:a7:77:d4:67:1d:62:db:e4:ce:3f:6f:60:86:26:c1:0a:57:
4a:d9:74:43:de:7d:d1:21:58:2a:69:9d:fc:b0:7b:b1:ad:59:
b5:bf:c8:1f:7a:37:a4:56:ce:35:43:93:9d:f9:a1:20:74:4c:
40:b9:64:53:a5:95:1e:7d:91:21:32:4b:51:98:81:30:ec:49:
9a:89:7d:d2:49:83:bd:56:14:0f:c2:1c:bb:8e:c8:0b:91:c6:
00:cb:41:4b:50:26:48:c5:10:3b:5a:c0:18:8b:43:c9:46:6c:
29:e2:6a:80:54:32:6b:b6:24:ca:91:0f:22:95:f8:2e:e0:3d:
a4:9b:ef:44:57:b8:40:1e:15:10:7e:63:90:97:8c:d0:df:e7:
ac:e2:75:89:b4:60:a2:19:f4:33:a5:2f:91:bc:95:31:f9:16:
91:2d:79:86:7d:c2:b6:67:4a:f5:6b:b0:8f:dd:c2:08:ba:46:
58:07:5f:0c:7e:45:eb:32:37:60:81:ea:13:c2:79:de:14:dc:
98:99:63:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:02 2023 by rpki-client on console-fra.rpki-client.org