Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/c00a5b-6a59-41dd-b13b-73495fc08fc4/1/a4vWw9kUF4ll101yGWriLWWtzDc.roa
File: a4vWw9kUF4ll101yGWriLWWtzDc.roa (raw, json)
Hash identifier: xAm26OKujkARhCeRHGr+RlY0XcuceS9bWzDLn7gVpHY=
Subject key identifier: 6B:8B:D6:C3:D9:14:17:89:65:D7:4D:72:19:6A:E2:2D:65:AD:CC:37
Certificate issuer: /CN=2ee6d560a08a013f3fe0e66dadaf6fd02beaf43f
Certificate serial: 0181CFD7B2765B74410F23A349CE9E1FFB45
Authority key identifier: 2E:E6:D5:60:A0:8A:01:3F:3F:E0:E6:6D:AD:AF:6F:D0:2B:EA:F4:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LubVYKCKAT8_4OZtra9v0Cvq9D8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/c00a5b-6a59-41dd-b13b-73495fc08fc4/1/a4vWw9kUF4ll101yGWriLWWtzDc.roa
Signing time: Tue 05 Jul 2022 19:30:28 +0000
ROA not before: Tue 05 Jul 2022 19:30:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199610
IP address blocks: 31.214.192.0/22 maxlen: 22
31.214.196.0/22 maxlen: 22
31.214.202.0/23 maxlen: 23
31.214.204.0/22 maxlen: 22
31.214.208.0/22 maxlen: 22
31.214.216.0/22 maxlen: 22
31.214.220.0/23 maxlen: 23
31.214.224.0/22 maxlen: 22
31.214.227.0/24 maxlen: 24
31.214.232.0/21 maxlen: 24
134.255.208.0/23 maxlen: 23
134.255.212.0/23 maxlen: 23
134.255.214.0/24 maxlen: 24
134.255.240.0/24 maxlen: 24
134.255.251.0/24 maxlen: 24
134.255.198.0/24 maxlen: 24
31.214.134.0/23 maxlen: 23
31.214.136.0/24 maxlen: 24
31.214.142.0/23 maxlen: 23
31.214.148.0/24 maxlen: 24
45.140.128.0/23 maxlen: 23
31.214.158.0/23 maxlen: 23
45.140.130.0/23 maxlen: 32
31.214.160.0/21 maxlen: 24
31.214.160.0/24 maxlen: 24
31.214.130.0/23 maxlen: 23
31.214.128.0/24 maxlen: 24
37.10.96.0/21 maxlen: 24
37.10.104.0/22 maxlen: 32
37.10.115.0/24 maxlen: 24
37.10.118.0/23 maxlen: 23
37.10.124.0/24 maxlen: 24
37.10.125.0/24 maxlen: 24
37.10.120.0/22 maxlen: 32
37.10.126.0/24 maxlen: 24
37.10.127.0/24 maxlen: 24
45.159.4.0/22 maxlen: 32
5.83.160.0/21 maxlen: 24
5.83.160.0/22 maxlen: 22
5.83.164.0/22 maxlen: 22
5.83.172.0/22 maxlen: 23
5.83.168.0/22 maxlen: 22
5.83.174.0/23 maxlen: 24
46.251.230.0/23 maxlen: 23
46.251.230.0/24 maxlen: 24
46.251.231.0/24 maxlen: 24
46.251.228.0/24 maxlen: 24
46.251.229.0/24 maxlen: 24
46.251.232.0/23 maxlen: 23
185.9.104.0/22 maxlen: 22
46.251.234.0/24 maxlen: 24
46.251.238.0/24 maxlen: 24
46.251.235.0/24 maxlen: 24
46.251.236.0/24 maxlen: 24
46.251.240.0/21 maxlen: 24
46.251.248.0/24 maxlen: 24
109.230.243.0/24 maxlen: 24
109.230.248.0/23 maxlen: 23
95.156.220.0/23 maxlen: 23
95.156.224.0/24 maxlen: 24
85.190.152.0/24 maxlen: 24
85.190.148.0/24 maxlen: 24
85.190.150.0/24 maxlen: 24
85.190.151.0/24 maxlen: 24
85.190.149.0/24 maxlen: 24
85.190.158.0/24 maxlen: 24
85.190.153.0/24 maxlen: 24
85.190.154.0/24 maxlen: 24
85.190.155.0/24 maxlen: 24
95.156.238.0/24 maxlen: 24
85.190.157.0/24 maxlen: 24
95.156.239.0/24 maxlen: 24
85.190.156.0/23 maxlen: 23
85.190.159.0/24 maxlen: 24
85.190.156.0/24 maxlen: 24
85.190.160.0/20 maxlen: 20
95.156.250.0/24 maxlen: 24
109.230.197.0/24 maxlen: 24
5.62.96.0/19 maxlen: 24
109.230.208.0/24 maxlen: 24
109.230.211.0/24 maxlen: 24
195.82.158.0/23 maxlen: 23
109.230.214.0/24 maxlen: 24
95.156.193.0/24 maxlen: 24
95.156.194.0/24 maxlen: 24
95.156.198.0/24 maxlen: 24
5.62.126.0/24 maxlen: 24
5.62.127.0/24 maxlen: 24
95.156.210.0/23 maxlen: 23
95.156.209.0/24 maxlen: 24
85.190.128.0/19 maxlen: 24
95.156.213.0/24 maxlen: 24
109.230.240.0/23 maxlen: 23
5.62.64.0/21 maxlen: 24
5.62.67.0/24 maxlen: 24
194.169.211.0/24 maxlen: 24
217.114.192.0/21 maxlen: 24
128.0.112.0/23 maxlen: 23
128.0.114.0/23 maxlen: 24
5.101.160.0/21 maxlen: 24
5.101.166.0/24 maxlen: 24
2a03:4d45::/32 maxlen: 128
2a03:4d44::/32 maxlen: 128
2a03:4d47::/32 maxlen: 128
2a03:4d40::/32 maxlen: 128
2a03:4d43::/32 maxlen: 128
2a03:4d41:600::/40 maxlen: 40
2a03:4d41::/32 maxlen: 128
2a03:4d42::/32 maxlen: 128
2a03:4d41:200::/40 maxlen: 40
2a03:4d41:400::/40 maxlen: 40
2a03:4d41:700::/40 maxlen: 40
2a03:4d41:500::/40 maxlen: 40
2a03:4d41:100::/40 maxlen: 40
2a03:4d41::/40 maxlen: 40
2a03:4d41:300::/40 maxlen: 40
2a03:4d41:900::/40 maxlen: 40
2a03:4d41:600::/44 maxlen: 44
2a03:4d41:100::/44 maxlen: 44
2a03:4d41:300::/44 maxlen: 44
2a03:4d41:200::/44 maxlen: 44
2a03:4d41::/44 maxlen: 44
2a03:4d41:400::/44 maxlen: 44
2a03:4d41:500::/44 maxlen: 44
2a03:4d41:610::/44 maxlen: 44
2a03:4d41:510::/44 maxlen: 44
2a03:4d41:210::/44 maxlen: 44
2a03:4d41:10::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:cf:d7:b2:76:5b:74:41:0f:23:a3:49:ce:9e:1f:fb:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ee6d560a08a013f3fe0e66dadaf6fd02beaf43f
Validity
Not Before: Jul 5 19:30:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6b8bd6c3d914178965d74d72196ae22d65adcc37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:a3:80:ad:b5:91:fd:58:9f:eb:8c:f0:82:1b:
d7:ac:80:58:95:b8:e7:07:75:09:c3:f8:06:70:95:
83:14:d3:ff:e5:36:e4:01:e2:ce:8b:bd:37:2e:b6:
bb:a7:57:05:ae:9a:f2:8b:f9:66:b7:91:df:da:29:
34:58:ce:23:5d:d0:23:0c:25:83:6c:00:94:b5:b5:
28:e5:9c:29:2a:23:cb:ef:ae:12:be:83:54:44:ad:
29:83:21:21:84:1d:74:78:e3:2c:0d:b3:0c:cb:b7:
32:b3:2d:1a:75:35:92:b8:7c:02:01:9d:ec:ad:83:
d6:ec:2c:e7:06:82:1d:4f:f0:4b:30:09:38:b7:1f:
c2:67:13:f2:b6:bb:e9:27:a8:05:4f:57:1e:8d:1a:
8b:1a:75:5b:a9:62:c8:99:4e:52:fb:44:13:13:37:
45:43:82:89:b8:28:cd:3f:5d:47:59:5c:d6:bf:bd:
9e:1f:11:80:4e:06:92:bd:50:47:17:a3:ca:1f:66:
e3:e3:b8:8f:b7:4e:98:c6:61:ef:2e:97:c1:95:42:
90:93:43:0b:c4:7f:48:25:df:0a:56:2c:aa:57:c8:
4b:d5:a6:5a:da:fb:dc:44:84:3e:b2:2e:c2:95:73:
2f:28:b5:dd:b8:a4:39:3b:fd:88:18:19:ba:67:40:
af:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:8B:D6:C3:D9:14:17:89:65:D7:4D:72:19:6A:E2:2D:65:AD:CC:37
X509v3 Authority Key Identifier:
keyid:2E:E6:D5:60:A0:8A:01:3F:3F:E0:E6:6D:AD:AF:6F:D0:2B:EA:F4:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LubVYKCKAT8_4OZtra9v0Cvq9D8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/c00a5b-6a59-41dd-b13b-73495fc08fc4/1/a4vWw9kUF4ll101yGWriLWWtzDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/c00a5b-6a59-41dd-b13b-73495fc08fc4/1/LubVYKCKAT8_4OZtra9v0Cvq9D8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.62.64.0/21
5.62.96.0/19
5.83.160.0/20
5.101.160.0/21
31.214.128.0/24
31.214.130.0/23
31.214.134.0-31.214.136.255
31.214.142.0/23
31.214.148.0/24
31.214.158.0-31.214.167.255
31.214.192.0/21
31.214.202.0-31.214.211.255
31.214.216.0-31.214.221.255
31.214.224.0/22
31.214.232.0/21
37.10.96.0-37.10.107.255
37.10.115.0/24
37.10.118.0-37.10.127.255
45.140.128.0/22
45.159.4.0/22
46.251.228.0-46.251.236.255
46.251.238.0/24
46.251.240.0-46.251.248.255
85.190.128.0-85.190.175.255
95.156.193.0-95.156.194.255
95.156.198.0/24
95.156.209.0-95.156.211.255
95.156.213.0/24
95.156.220.0/23
95.156.224.0/24
95.156.238.0/23
95.156.250.0/24
109.230.197.0/24
109.230.208.0/24
109.230.211.0/24
109.230.214.0/24
109.230.240.0/23
109.230.243.0/24
109.230.248.0/23
128.0.112.0/22
134.255.198.0/24
134.255.208.0/23
134.255.212.0-134.255.214.255
134.255.240.0/24
134.255.251.0/24
185.9.104.0/22
194.169.211.0/24
195.82.158.0/23
217.114.192.0/21
IPv6:
2a03:4d40::-2a03:4d45:ffff:ffff:ffff:ffff:ffff:ffff
2a03:4d47::/32
Signature Algorithm: sha256WithRSAEncryption
0e:05:ca:0c:57:03:32:6e:c4:6d:24:7b:9b:01:a5:36:8b:d0:
9d:77:ec:f5:45:a4:eb:79:df:c2:6e:4c:18:d7:34:d1:9d:8a:
c2:a4:fe:3d:5b:92:78:f0:50:54:2f:c1:ae:29:9c:f2:be:cb:
c6:55:03:de:44:19:d1:a1:29:a8:c3:29:80:51:ac:ef:ce:c2:
6d:a0:9a:34:98:66:51:6f:f4:2b:e9:7b:2f:e9:c0:6b:b2:1b:
f7:a8:7f:61:a3:04:5e:73:b2:50:3b:f9:65:ef:a3:28:79:d1:
38:8c:77:21:47:fe:02:ae:cf:76:1b:40:bd:d5:63:e4:69:cd:
58:6d:d9:2b:5e:21:d7:aa:bd:99:ff:1f:cb:27:db:32:5f:61:
a0:25:e4:9e:96:7a:39:2b:47:af:b9:f4:81:07:dc:c6:cb:7f:
7a:05:0f:13:83:44:20:ce:32:67:60:91:e6:99:6a:1d:11:81:
22:2b:43:cd:44:03:7c:99:3d:a1:d5:a6:30:a7:d3:70:42:74:
93:dd:00:1c:82:d0:b0:95:f6:67:0e:d0:7a:91:31:50:8f:12:
e7:50:da:ee:7c:e7:37:79:b2:52:8f:b0:a4:2f:58:29:83:39:
b2:f5:a9:07:82:b1:1a:2f:94:a7:8d:a2:45:a2:61:d9:4c:9c:
06:56:25:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:07 2023 by rpki-client on console-ams.rpki-client.org