Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/c00a5b-6a59-41dd-b13b-73495fc08fc4/1/fHwnIb3eztDL2O7Hhuj0-cSzeEI.roa
File: fHwnIb3eztDL2O7Hhuj0-cSzeEI.roa (raw, json)
Hash identifier: 7lkpjdEVqzvu9uYdZ0iPttKggL/EQ+Aqx0amCmJakpI=
Subject key identifier: 7C:7C:27:21:BD:DE:CE:D0:CB:D8:EE:C7:86:E8:F4:F9:C4:B3:78:42
Certificate issuer: /CN=2ee6d560a08a013f3fe0e66dadaf6fd02beaf43f
Certificate serial: 1BE74425
Authority key identifier: 2E:E6:D5:60:A0:8A:01:3F:3F:E0:E6:6D:AD:AF:6F:D0:2B:EA:F4:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LubVYKCKAT8_4OZtra9v0Cvq9D8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/c00a5b-6a59-41dd-b13b-73495fc08fc4/1/fHwnIb3eztDL2O7Hhuj0-cSzeEI.roa
Signing time: Sat 01 Jan 2022 06:06:18 +0000
ROA not before: Sat 01 Jan 2022 06:06:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199610
IP address blocks: 31.214.192.0/22 maxlen: 22
31.214.196.0/22 maxlen: 22
31.214.202.0/23 maxlen: 23
31.214.204.0/22 maxlen: 22
31.214.208.0/22 maxlen: 22
31.214.216.0/22 maxlen: 22
31.214.220.0/23 maxlen: 23
31.214.224.0/22 maxlen: 22
31.214.227.0/24 maxlen: 24
31.214.232.0/21 maxlen: 21
134.255.208.0/23 maxlen: 23
134.255.212.0/23 maxlen: 23
134.255.214.0/24 maxlen: 24
134.255.240.0/24 maxlen: 24
134.255.251.0/24 maxlen: 24
134.255.198.0/24 maxlen: 24
31.214.134.0/23 maxlen: 23
31.214.136.0/24 maxlen: 24
31.214.142.0/23 maxlen: 23
31.214.148.0/24 maxlen: 24
45.140.128.0/23 maxlen: 23
45.140.130.0/23 maxlen: 23
31.214.158.0/23 maxlen: 23
31.214.160.0/21 maxlen: 21
31.214.160.0/24 maxlen: 24
31.214.130.0/23 maxlen: 23
31.214.128.0/24 maxlen: 24
37.10.96.0/21 maxlen: 21
37.10.104.0/22 maxlen: 22
37.10.115.0/24 maxlen: 24
37.10.118.0/23 maxlen: 23
37.10.120.0/22 maxlen: 22
37.10.124.0/24 maxlen: 24
37.10.125.0/24 maxlen: 24
37.10.126.0/24 maxlen: 24
37.10.127.0/24 maxlen: 24
45.159.4.0/22 maxlen: 32
5.83.160.0/22 maxlen: 22
5.83.160.0/21 maxlen: 21
5.83.164.0/22 maxlen: 22
5.83.172.0/22 maxlen: 23
5.83.168.0/22 maxlen: 22
5.83.174.0/23 maxlen: 24
46.251.230.0/23 maxlen: 23
46.251.230.0/24 maxlen: 24
46.251.231.0/24 maxlen: 24
46.251.228.0/24 maxlen: 24
46.251.229.0/24 maxlen: 24
46.251.232.0/23 maxlen: 23
185.9.104.0/22 maxlen: 22
46.251.234.0/24 maxlen: 24
46.251.238.0/24 maxlen: 24
46.251.235.0/24 maxlen: 24
46.251.236.0/24 maxlen: 24
46.251.240.0/21 maxlen: 21
46.251.248.0/24 maxlen: 24
109.230.243.0/24 maxlen: 24
109.230.248.0/23 maxlen: 23
95.156.220.0/23 maxlen: 23
95.156.224.0/24 maxlen: 24
85.190.152.0/24 maxlen: 24
85.190.148.0/24 maxlen: 24
85.190.150.0/24 maxlen: 24
85.190.151.0/24 maxlen: 24
85.190.149.0/24 maxlen: 24
85.190.158.0/24 maxlen: 24
85.190.153.0/24 maxlen: 24
85.190.154.0/24 maxlen: 24
85.190.155.0/24 maxlen: 24
95.156.238.0/24 maxlen: 24
85.190.157.0/24 maxlen: 24
95.156.239.0/24 maxlen: 24
85.190.156.0/23 maxlen: 23
85.190.159.0/24 maxlen: 24
85.190.156.0/24 maxlen: 24
85.190.160.0/20 maxlen: 20
95.156.250.0/24 maxlen: 24
109.230.197.0/24 maxlen: 24
5.62.96.0/19 maxlen: 19
109.230.208.0/24 maxlen: 24
109.230.211.0/24 maxlen: 24
195.82.158.0/23 maxlen: 23
109.230.214.0/24 maxlen: 24
95.156.193.0/24 maxlen: 24
95.156.194.0/24 maxlen: 24
95.156.198.0/24 maxlen: 24
5.62.126.0/24 maxlen: 24
5.62.127.0/24 maxlen: 24
85.190.128.0/19 maxlen: 19
95.156.213.0/24 maxlen: 24
109.230.240.0/23 maxlen: 23
5.62.64.0/21 maxlen: 21
5.62.67.0/24 maxlen: 24
194.169.211.0/24 maxlen: 24
217.114.192.0/21 maxlen: 21
128.0.112.0/23 maxlen: 23
128.0.114.0/23 maxlen: 24
5.101.160.0/21 maxlen: 21
5.101.166.0/24 maxlen: 24
2a03:4d45::/32 maxlen: 128
2a03:4d44::/32 maxlen: 128
2a03:4d47::/32 maxlen: 128
2a03:4d40::/32 maxlen: 128
2a03:4d43::/32 maxlen: 128
2a03:4d41:600::/40 maxlen: 40
2a03:4d41::/32 maxlen: 128
2a03:4d42::/32 maxlen: 128
2a03:4d41:200::/40 maxlen: 40
2a03:4d41:400::/40 maxlen: 40
2a03:4d41:700::/40 maxlen: 40
2a03:4d41:500::/40 maxlen: 40
2a03:4d41:100::/40 maxlen: 40
2a03:4d41::/40 maxlen: 40
2a03:4d41:300::/40 maxlen: 40
2a03:4d41:900::/40 maxlen: 40
2a03:4d41:600::/44 maxlen: 44
2a03:4d41:100::/44 maxlen: 44
2a03:4d41:300::/44 maxlen: 44
2a03:4d41:200::/44 maxlen: 44
2a03:4d41::/44 maxlen: 44
2a03:4d41:400::/44 maxlen: 44
2a03:4d41:500::/44 maxlen: 44
2a03:4d41:610::/44 maxlen: 44
2a03:4d41:510::/44 maxlen: 44
2a03:4d41:210::/44 maxlen: 44
2a03:4d41:10::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 468141093 (0x1be74425)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ee6d560a08a013f3fe0e66dadaf6fd02beaf43f
Validity
Not Before: Jan 1 06:06:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7c7c2721bddeced0cbd8eec786e8f4f9c4b37842
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:81:6b:ec:1a:dd:a4:0d:e9:16:e9:37:1e:91:
ca:d4:ca:14:f1:70:e5:73:6f:bd:2a:55:ed:60:b2:
51:3d:40:da:26:3d:19:12:20:06:a5:0f:d0:6c:ee:
0d:15:c6:57:b4:17:32:84:15:23:d4:c1:06:6f:8e:
5d:57:03:9b:61:6e:27:cd:ec:af:9f:3e:25:9f:10:
94:56:f9:28:d4:b4:d9:f0:e6:00:f4:39:4e:98:aa:
46:9b:e1:4e:d6:80:4a:e7:a7:b6:10:ac:b8:8c:03:
c0:4b:09:0d:1b:41:d2:2d:01:4c:45:5b:14:49:b3:
40:ec:fa:2b:d5:63:96:c8:eb:b4:cc:94:4d:91:15:
65:e4:10:7a:f6:5e:dd:7e:79:28:4d:7b:a6:71:0b:
dc:34:e0:a8:37:ac:10:cc:8f:ba:dc:e3:2a:2b:e2:
3d:c1:b8:6d:f7:c9:ac:94:3a:8e:3d:87:81:49:b2:
ab:27:59:6a:cc:fa:29:11:67:d9:e7:cc:b5:c9:65:
8c:28:d4:1e:38:ed:5f:e9:6a:d0:30:57:17:60:e3:
73:90:92:15:90:92:66:66:bc:de:5b:bd:c8:25:c4:
0e:90:c2:d8:db:cb:dd:19:a2:40:09:c9:ee:44:0c:
1c:10:86:61:2d:de:fd:12:64:da:0c:e6:36:e4:f7:
fb:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:7C:27:21:BD:DE:CE:D0:CB:D8:EE:C7:86:E8:F4:F9:C4:B3:78:42
X509v3 Authority Key Identifier:
keyid:2E:E6:D5:60:A0:8A:01:3F:3F:E0:E6:6D:AD:AF:6F:D0:2B:EA:F4:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LubVYKCKAT8_4OZtra9v0Cvq9D8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/c00a5b-6a59-41dd-b13b-73495fc08fc4/1/fHwnIb3eztDL2O7Hhuj0-cSzeEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/c00a5b-6a59-41dd-b13b-73495fc08fc4/1/LubVYKCKAT8_4OZtra9v0Cvq9D8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.62.64.0/21
5.62.96.0/19
5.83.160.0/20
5.101.160.0/21
31.214.128.0/24
31.214.130.0/23
31.214.134.0-31.214.136.255
31.214.142.0/23
31.214.148.0/24
31.214.158.0-31.214.167.255
31.214.192.0/21
31.214.202.0-31.214.211.255
31.214.216.0-31.214.221.255
31.214.224.0/22
31.214.232.0/21
37.10.96.0-37.10.107.255
37.10.115.0/24
37.10.118.0-37.10.127.255
45.140.128.0/22
45.159.4.0/22
46.251.228.0-46.251.236.255
46.251.238.0/24
46.251.240.0-46.251.248.255
85.190.128.0-85.190.175.255
95.156.193.0-95.156.194.255
95.156.198.0/24
95.156.213.0/24
95.156.220.0/23
95.156.224.0/24
95.156.238.0/23
95.156.250.0/24
109.230.197.0/24
109.230.208.0/24
109.230.211.0/24
109.230.214.0/24
109.230.240.0/23
109.230.243.0/24
109.230.248.0/23
128.0.112.0/22
134.255.198.0/24
134.255.208.0/23
134.255.212.0-134.255.214.255
134.255.240.0/24
134.255.251.0/24
185.9.104.0/22
194.169.211.0/24
195.82.158.0/23
217.114.192.0/21
IPv6:
2a03:4d40::-2a03:4d45:ffff:ffff:ffff:ffff:ffff:ffff
2a03:4d47::/32
Signature Algorithm: sha256WithRSAEncryption
26:65:8d:a6:b7:e9:e5:67:97:26:60:a2:e3:db:ac:9b:09:78:
2a:c8:3f:52:17:d8:ca:91:3d:b1:59:63:96:91:d3:28:8a:8d:
aa:bb:3b:d6:d2:c2:88:3f:cf:ba:64:fa:64:59:72:a9:52:20:
5d:e2:92:d8:97:73:9e:80:08:10:b3:cc:fa:f4:d0:d6:74:b0:
3b:b9:aa:da:86:25:7a:01:e6:54:57:0d:b2:f7:d4:64:bf:b7:
aa:80:3f:88:03:12:bd:a8:2d:d0:51:b5:c3:0e:9c:cc:d0:e2:
a3:52:19:d7:30:9a:ad:fa:6d:d0:7e:20:ad:60:12:f2:85:d5:
b6:ef:37:d1:a4:6d:da:6e:ed:2e:0a:42:df:74:32:fb:cf:bc:
9e:60:e4:6f:8c:07:7c:ce:3d:8e:63:41:a2:b6:74:fd:c5:12:
ad:15:a3:27:67:33:87:13:2e:5f:56:18:72:27:0b:45:68:fe:
74:5a:29:2a:b5:08:da:27:e4:5c:9a:a8:c8:d4:dd:82:a4:91:
d9:53:1f:91:34:76:51:2b:8c:59:72:30:38:01:48:6a:fb:67:
1b:39:07:a6:4e:4c:47:82:64:cd:43:72:3b:7f:3c:e5:f6:4a:
d5:28:39:38:1b:4c:a5:fe:de:0c:d7:d0:c6:fb:2f:b5:f3:37:
3c:69:6e:8c
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:23 2024 by rpki-client on console-ams.rpki-client.org