Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/AJ0GoVPxDPiExeH0G1b5XOoA_ng.roa
File: AJ0GoVPxDPiExeH0G1b5XOoA_ng.roa (raw, json)
Hash identifier: Iu3UGKwekx2LLgp/aQTtF1eQzQefgz5cuUJ4wrIaqYQ=
Subject key identifier: 00:9D:06:A1:53:F1:0C:F8:84:C5:E1:F4:1B:56:F9:5C:EA:00:FE:78
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 08BD79FC
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/AJ0GoVPxDPiExeH0G1b5XOoA_ng.roa
Signing time: Mon 04 Apr 2022 07:47:14 +0000
ROA not before: Mon 04 Apr 2022 07:47:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9125
IP address blocks: 188.255.136.0/21 maxlen: 21
188.255.133.0/24 maxlen: 24
188.255.144.0/20 maxlen: 20
193.107.4.0/22 maxlen: 22
188.255.204.0/24 maxlen: 24
188.255.201.0/24 maxlen: 24
188.255.203.0/24 maxlen: 24
188.255.202.0/24 maxlen: 24
109.121.16.0/20 maxlen: 20
109.121.12.0/22 maxlen: 22
109.121.30.0/24 maxlen: 24
188.255.221.0/24 maxlen: 24
188.255.223.0/24 maxlen: 24
188.255.220.0/24 maxlen: 24
188.255.222.0/23 maxlen: 23
188.255.224.0/22 maxlen: 22
109.121.32.0/21 maxlen: 21
188.255.232.0/22 maxlen: 22
109.121.44.0/23 maxlen: 23
109.121.40.0/22 maxlen: 22
188.255.230.0/23 maxlen: 24
188.255.233.0/24 maxlen: 24
188.255.229.0/24 maxlen: 24
188.255.228.0/24 maxlen: 24
188.255.240.0/23 maxlen: 23
109.121.48.0/21 maxlen: 21
109.121.46.0/23 maxlen: 23
188.255.242.0/23 maxlen: 23
109.121.56.0/22 maxlen: 22
109.121.60.0/22 maxlen: 22
188.255.249.0/24 maxlen: 24
188.255.160.0/20 maxlen: 20
188.255.176.0/20 maxlen: 20
188.255.181.0/24 maxlen: 24
188.255.184.0/23 maxlen: 23
188.255.186.0/23 maxlen: 23
188.255.189.0/24 maxlen: 24
188.255.188.0/24 maxlen: 24
109.121.0.0/18 maxlen: 18
188.255.194.0/24 maxlen: 24
109.121.8.0/22 maxlen: 22
188.255.196.0/22 maxlen: 22
93.186.79.0/24 maxlen: 24
178.253.192.0/21 maxlen: 21
178.253.204.0/23 maxlen: 23
178.253.200.0/22 maxlen: 22
178.253.206.0/24 maxlen: 24
178.253.208.0/23 maxlen: 23
178.253.211.0/24 maxlen: 24
178.253.219.0/24 maxlen: 24
178.253.217.0/24 maxlen: 24
178.253.224.0/21 maxlen: 21
178.253.220.0/23 maxlen: 23
178.253.223.0/24 maxlen: 24
93.186.70.0/24 maxlen: 24
93.186.69.0/24 maxlen: 24
93.186.66.0/24 maxlen: 24
93.186.73.0/24 maxlen: 24
178.253.232.0/23 maxlen: 23
178.253.239.0/24 maxlen: 24
178.253.234.0/24 maxlen: 24
109.233.186.0/24 maxlen: 24
178.253.243.0/24 maxlen: 24
178.253.246.0/24 maxlen: 24
178.253.242.0/24 maxlen: 24
178.253.241.0/24 maxlen: 24
109.233.191.0/24 maxlen: 24
109.233.187.0/24 maxlen: 24
109.233.188.0/24 maxlen: 24
178.253.247.0/24 maxlen: 24
81.18.50.0/24 maxlen: 24
178.253.248.0/21 maxlen: 21
81.18.58.0/24 maxlen: 24
81.18.54.0/24 maxlen: 24
81.18.63.0/24 maxlen: 24
81.18.62.0/24 maxlen: 24
81.18.59.0/24 maxlen: 24
81.18.60.0/24 maxlen: 24
178.219.0.0/22 maxlen: 22
178.219.10.0/24 maxlen: 24
178.219.12.0/23 maxlen: 23
178.219.14.0/24 maxlen: 24
77.105.13.0/24 maxlen: 24
77.105.12.0/24 maxlen: 24
77.105.14.0/24 maxlen: 24
77.105.16.0/20 maxlen: 20
77.105.15.0/24 maxlen: 24
77.105.17.0/24 maxlen: 24
77.105.23.0/24 maxlen: 24
77.105.24.0/24 maxlen: 24
77.105.20.0/24 maxlen: 24
77.105.21.0/24 maxlen: 24
77.105.30.0/24 maxlen: 24
77.105.29.0/24 maxlen: 24
77.105.27.0/24 maxlen: 24
77.105.26.0/24 maxlen: 24
77.105.28.0/24 maxlen: 24
77.105.25.0/24 maxlen: 24
77.105.36.0/23 maxlen: 23
77.105.36.0/22 maxlen: 22
77.105.32.0/22 maxlen: 22
77.105.32.0/19 maxlen: 19
77.105.38.0/24 maxlen: 24
77.105.48.0/20 maxlen: 20
77.105.0.0/24 maxlen: 24
77.105.4.0/22 maxlen: 22
77.105.0.0/22 maxlen: 22
77.105.8.0/24 maxlen: 24
77.105.11.0/24 maxlen: 24
77.105.10.0/24 maxlen: 24
77.105.6.0/24 maxlen: 24
77.105.5.0/24 maxlen: 24
77.105.7.0/24 maxlen: 24
77.105.8.0/23 maxlen: 23
46.16.104.0/21 maxlen: 21
212.69.17.0/24 maxlen: 24
212.69.14.0/24 maxlen: 24
212.69.16.0/24 maxlen: 24
212.69.15.0/24 maxlen: 24
212.69.20.0/24 maxlen: 24
212.69.28.0/22 maxlen: 22
212.69.28.0/23 maxlen: 23
212.69.31.0/24 maxlen: 24
194.28.131.0/24 maxlen: 24
194.28.128.0/23 maxlen: 23
212.69.2.0/24 maxlen: 24
212.69.8.0/23 maxlen: 23
79.175.96.0/22 maxlen: 22
79.175.111.0/24 maxlen: 24
79.175.113.0/24 maxlen: 24
79.175.120.0/22 maxlen: 22
188.255.255.0/24 maxlen: 24
79.175.64.0/21 maxlen: 21
79.175.64.0/20 maxlen: 20
79.175.64.0/18 maxlen: 18
79.175.72.0/21 maxlen: 21
79.175.80.0/20 maxlen: 20
185.47.91.0/24 maxlen: 24
80.74.160.0/20 maxlen: 20
2a00:8100::/32 maxlen: 32
2a02:660::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146635260 (0x8bd79fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Apr 4 07:47:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=009d06a153f10cf884c5e1f41b56f95cea00fe78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:6a:1a:2c:39:79:f0:91:bd:de:7c:ac:31:62:
bc:a6:17:4e:80:09:4b:5e:57:e3:b3:08:98:04:42:
47:bd:b8:bd:83:dc:4b:c7:6c:4e:01:69:a1:f2:86:
e1:f2:11:3d:7b:c1:a5:47:0e:bc:56:09:94:0f:01:
dd:10:8b:7f:a8:d6:9d:74:9b:04:0d:1a:82:20:f2:
f4:f5:ce:c3:3a:d7:81:f6:3a:5c:b1:18:19:fb:3c:
9c:65:48:e1:7f:55:ba:d8:96:5b:34:72:d3:a5:2e:
cd:51:db:85:1b:26:c7:c7:86:bc:6b:c2:56:ca:95:
3f:6f:ea:0a:5a:8b:47:05:f2:52:2d:98:4a:24:32:
43:fd:2c:1c:3f:8a:3d:1c:28:30:66:d6:01:b0:ea:
41:6f:5a:f4:2b:b1:88:49:b0:56:57:ed:b9:b8:08:
f6:43:89:46:31:80:4e:76:be:bb:7d:be:92:11:5c:
5c:d0:c1:bd:77:5e:43:77:e7:37:1b:bd:36:bb:26:
f0:f4:fe:0d:08:5f:a3:1c:a3:41:7f:3a:d3:c9:f4:
94:0c:12:30:4a:03:5f:99:a3:89:64:64:90:93:90:
ee:56:05:61:72:6b:0e:15:20:de:f7:2c:fe:35:97:
ec:da:95:0c:15:9c:4d:24:19:a0:83:5b:89:bb:bc:
15:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:9D:06:A1:53:F1:0C:F8:84:C5:E1:F4:1B:56:F9:5C:EA:00:FE:78
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/AJ0GoVPxDPiExeH0G1b5XOoA_ng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.16.104.0/21
77.105.0.0/18
79.175.64.0/18
80.74.160.0/20
81.18.50.0/24
81.18.54.0/24
81.18.58.0-81.18.60.255
81.18.62.0/23
93.186.66.0/24
93.186.69.0-93.186.70.255
93.186.73.0/24
93.186.79.0/24
109.121.0.0/18
109.233.186.0-109.233.188.255
109.233.191.0/24
178.219.0.0/22
178.219.10.0/24
178.219.12.0-178.219.14.255
178.253.192.0-178.253.206.255
178.253.208.0/23
178.253.211.0/24
178.253.217.0/24
178.253.219.0-178.253.221.255
178.253.223.0-178.253.234.255
178.253.239.0/24
178.253.241.0-178.253.243.255
178.253.246.0-178.253.255.255
185.47.91.0/24
188.255.133.0/24
188.255.136.0-188.255.191.255
188.255.194.0/24
188.255.196.0/22
188.255.201.0-188.255.204.255
188.255.220.0-188.255.235.255
188.255.240.0/22
188.255.249.0/24
188.255.255.0/24
193.107.4.0/22
194.28.128.0/23
194.28.131.0/24
212.69.2.0/24
212.69.8.0/23
212.69.14.0-212.69.17.255
212.69.20.0/24
212.69.28.0/22
IPv6:
2a00:8100::/32
2a02:660::/32
Signature Algorithm: sha256WithRSAEncryption
7a:c6:f9:42:3f:b6:ed:89:aa:ce:04:68:8e:59:06:a4:b1:cf:
fc:76:60:0c:1f:16:e8:1c:77:95:8a:15:c0:5f:75:81:f5:32:
be:3d:5b:73:6b:6f:9f:4b:1f:aa:c0:f5:3d:f8:b8:b5:1a:9c:
81:35:77:0a:38:80:24:da:20:7e:38:c7:6a:13:53:cd:09:bc:
fe:c1:15:9a:4f:d4:cc:ff:2b:0a:c3:fd:bb:de:87:ac:9f:90:
7c:2d:73:c1:1d:0a:7e:0a:e6:46:e7:a5:c0:b2:f4:99:78:b8:
9b:78:4f:33:e0:0e:2d:b4:81:51:a6:ae:61:f2:11:e4:18:c6:
f5:59:25:6d:68:cb:8f:f0:ef:39:b7:d8:d6:e9:c1:23:e1:35:
f4:6a:6d:57:49:da:a6:b8:db:38:b7:d3:d4:d4:36:0e:60:de:
d8:4e:ff:3d:e5:09:4e:2c:53:24:76:d8:06:77:4b:0f:47:77:
0f:84:ff:11:4b:1b:69:f0:2c:97:92:0f:3b:8a:0d:e8:4f:b6:
0a:cb:45:6b:58:db:44:f7:6d:1f:0d:48:ab:0e:7c:53:25:78:
68:83:e5:b5:d2:4c:18:a9:05:25:e5:d8:74:cf:f2:00:bf:2d:
20:db:95:bf:fe:0f:a6:c4:99:e6:26:f3:bb:a9:8b:47:54:fc:
33:07:90:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:31 2023 by rpki-client on console-fra.rpki-client.org