Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/IJu0haayGE_q8Y3o0m468o-6Ey0.roa
File: IJu0haayGE_q8Y3o0m468o-6Ey0.roa (raw, json)
Hash identifier: TN0gvYYN3RItLQrxRPVaQywzxzWVqH7xGyaAjEe6pD8=
Subject key identifier: 20:9B:B4:85:A6:B2:18:4F:EA:F1:8D:E8:D2:6E:3A:F2:8F:BA:13:2D
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 087FE690
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/IJu0haayGE_q8Y3o0m468o-6Ey0.roa
Signing time: Thu 24 Mar 2022 23:36:58 +0000
ROA not before: Thu 24 Mar 2022 23:36:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9125
IP address blocks: 188.255.136.0/21 maxlen: 21
188.255.133.0/24 maxlen: 24
188.255.144.0/20 maxlen: 20
193.107.4.0/22 maxlen: 22
188.255.204.0/24 maxlen: 24
188.255.201.0/24 maxlen: 24
188.255.203.0/24 maxlen: 24
188.255.202.0/24 maxlen: 24
109.121.16.0/20 maxlen: 20
109.121.12.0/22 maxlen: 22
109.121.30.0/24 maxlen: 24
188.255.221.0/24 maxlen: 24
188.255.223.0/24 maxlen: 24
188.255.220.0/24 maxlen: 24
188.255.222.0/23 maxlen: 23
188.255.224.0/22 maxlen: 22
109.121.32.0/21 maxlen: 21
188.255.232.0/22 maxlen: 22
109.121.44.0/23 maxlen: 23
109.121.40.0/22 maxlen: 22
188.255.230.0/23 maxlen: 24
188.255.233.0/24 maxlen: 24
188.255.229.0/24 maxlen: 24
188.255.228.0/24 maxlen: 24
188.255.240.0/23 maxlen: 23
109.121.48.0/21 maxlen: 21
109.121.46.0/23 maxlen: 23
188.255.242.0/23 maxlen: 23
109.121.56.0/22 maxlen: 22
109.121.60.0/22 maxlen: 22
188.255.249.0/24 maxlen: 24
188.255.160.0/20 maxlen: 20
188.255.176.0/20 maxlen: 20
188.255.181.0/24 maxlen: 24
188.255.184.0/23 maxlen: 23
188.255.186.0/23 maxlen: 23
188.255.189.0/24 maxlen: 24
188.255.188.0/24 maxlen: 24
109.121.0.0/18 maxlen: 18
188.255.194.0/24 maxlen: 24
109.121.8.0/22 maxlen: 22
188.255.196.0/22 maxlen: 22
93.186.79.0/24 maxlen: 24
178.253.192.0/21 maxlen: 21
178.253.204.0/23 maxlen: 23
178.253.200.0/22 maxlen: 22
178.253.206.0/24 maxlen: 24
178.253.208.0/23 maxlen: 23
178.253.211.0/24 maxlen: 24
178.253.219.0/24 maxlen: 24
178.253.217.0/24 maxlen: 24
178.253.224.0/21 maxlen: 21
178.253.220.0/23 maxlen: 23
178.253.223.0/24 maxlen: 24
93.186.70.0/24 maxlen: 24
93.186.69.0/24 maxlen: 24
93.186.66.0/24 maxlen: 24
93.186.73.0/24 maxlen: 24
178.253.232.0/23 maxlen: 23
178.253.239.0/24 maxlen: 24
178.253.234.0/24 maxlen: 24
109.233.186.0/24 maxlen: 24
178.253.243.0/24 maxlen: 24
178.253.246.0/24 maxlen: 24
178.253.242.0/24 maxlen: 24
178.253.241.0/24 maxlen: 24
109.233.191.0/24 maxlen: 24
109.233.187.0/24 maxlen: 24
109.233.188.0/24 maxlen: 24
178.253.247.0/24 maxlen: 24
81.18.50.0/24 maxlen: 24
178.253.248.0/21 maxlen: 21
81.18.58.0/24 maxlen: 24
81.18.54.0/24 maxlen: 24
81.18.63.0/24 maxlen: 24
81.18.62.0/24 maxlen: 24
81.18.59.0/24 maxlen: 24
81.18.60.0/24 maxlen: 24
178.219.0.0/22 maxlen: 22
178.219.10.0/24 maxlen: 24
178.219.12.0/23 maxlen: 23
178.219.14.0/24 maxlen: 24
77.105.16.0/20 maxlen: 20
77.105.21.0/24 maxlen: 24
77.105.36.0/23 maxlen: 23
77.105.36.0/22 maxlen: 22
77.105.32.0/19 maxlen: 19
77.105.32.0/22 maxlen: 22
77.105.38.0/24 maxlen: 24
77.105.48.0/20 maxlen: 20
77.105.0.0/24 maxlen: 24
77.105.4.0/22 maxlen: 22
77.105.0.0/19 maxlen: 19
77.105.8.0/24 maxlen: 24
77.105.11.0/24 maxlen: 24
77.105.10.0/24 maxlen: 24
77.105.6.0/24 maxlen: 24
77.105.5.0/24 maxlen: 24
77.105.8.0/23 maxlen: 23
46.16.104.0/21 maxlen: 21
212.69.17.0/24 maxlen: 24
212.69.14.0/24 maxlen: 24
212.69.16.0/24 maxlen: 24
212.69.15.0/24 maxlen: 24
212.69.20.0/24 maxlen: 24
212.69.28.0/22 maxlen: 22
212.69.28.0/23 maxlen: 23
212.69.31.0/24 maxlen: 24
194.28.131.0/24 maxlen: 24
194.28.128.0/23 maxlen: 23
212.69.2.0/24 maxlen: 24
212.69.8.0/23 maxlen: 23
79.175.96.0/22 maxlen: 22
79.175.111.0/24 maxlen: 24
79.175.113.0/24 maxlen: 24
79.175.112.0/21 maxlen: 21
79.175.120.0/22 maxlen: 22
188.255.255.0/24 maxlen: 24
79.175.64.0/20 maxlen: 20
79.175.64.0/21 maxlen: 21
79.175.64.0/18 maxlen: 18
79.175.72.0/21 maxlen: 21
79.175.80.0/20 maxlen: 20
185.47.91.0/24 maxlen: 24
80.74.160.0/20 maxlen: 20
2a00:8100::/32 maxlen: 32
2a02:660::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142599824 (0x87fe690)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Mar 24 23:36:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=209bb485a6b2184feaf18de8d26e3af28fba132d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:83:82:be:61:97:aa:de:59:97:0d:f4:59:cc:
fd:69:7b:42:01:ce:37:99:80:b5:73:62:65:ae:d6:
a2:9a:a6:ec:7f:93:e6:3e:79:32:74:a3:c5:00:ac:
b9:ea:d1:a3:37:15:88:9c:75:69:64:2b:11:e2:4b:
04:69:5f:a6:f0:5a:80:eb:4d:dc:d5:09:75:0c:9a:
75:3d:01:0c:11:01:60:72:ac:51:d5:ba:e4:73:15:
61:87:d5:29:bf:30:1d:d2:fc:ff:7c:94:51:42:8e:
3a:e8:26:85:ff:5e:d6:9f:b6:2a:af:9a:d9:40:7e:
11:9f:a2:45:ad:99:b1:7c:54:0e:84:17:ce:0b:d5:
8a:37:c7:49:8b:99:ba:fa:5c:c2:7e:08:e2:15:fa:
dd:24:1b:02:54:88:af:5c:b7:f7:b1:13:68:7b:23:
05:e1:42:fc:6e:4f:ce:54:66:7e:19:0e:e0:e8:f2:
32:05:f6:c0:71:73:10:39:21:f1:1f:80:89:33:99:
ee:e5:26:38:d3:ae:3d:02:ce:44:e8:a6:fc:b0:aa:
1d:c4:3c:26:ba:0f:f4:85:db:07:d9:3e:14:f7:83:
47:c2:81:c2:7f:be:15:12:1c:3d:c7:29:32:6c:df:
bf:83:e6:bc:3c:07:a9:c3:85:cf:46:c6:1a:b6:62:
07:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:9B:B4:85:A6:B2:18:4F:EA:F1:8D:E8:D2:6E:3A:F2:8F:BA:13:2D
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/IJu0haayGE_q8Y3o0m468o-6Ey0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.16.104.0/21
77.105.0.0/18
79.175.64.0/18
80.74.160.0/20
81.18.50.0/24
81.18.54.0/24
81.18.58.0-81.18.60.255
81.18.62.0/23
93.186.66.0/24
93.186.69.0-93.186.70.255
93.186.73.0/24
93.186.79.0/24
109.121.0.0/18
109.233.186.0-109.233.188.255
109.233.191.0/24
178.219.0.0/22
178.219.10.0/24
178.219.12.0-178.219.14.255
178.253.192.0-178.253.206.255
178.253.208.0/23
178.253.211.0/24
178.253.217.0/24
178.253.219.0-178.253.221.255
178.253.223.0-178.253.234.255
178.253.239.0/24
178.253.241.0-178.253.243.255
178.253.246.0-178.253.255.255
185.47.91.0/24
188.255.133.0/24
188.255.136.0-188.255.191.255
188.255.194.0/24
188.255.196.0/22
188.255.201.0-188.255.204.255
188.255.220.0-188.255.235.255
188.255.240.0/22
188.255.249.0/24
188.255.255.0/24
193.107.4.0/22
194.28.128.0/23
194.28.131.0/24
212.69.2.0/24
212.69.8.0/23
212.69.14.0-212.69.17.255
212.69.20.0/24
212.69.28.0/22
IPv6:
2a00:8100::/32
2a02:660::/32
Signature Algorithm: sha256WithRSAEncryption
5e:ca:66:ab:db:27:d9:9d:f9:02:3d:59:71:08:10:18:97:a7:
67:cf:aa:77:72:22:a7:33:74:a8:7a:2c:68:04:b9:9b:79:af:
c9:ff:2a:18:ca:52:aa:68:06:00:c5:cb:f5:33:8d:29:74:b7:
07:5e:e4:0f:7a:a1:61:fa:20:ed:fc:6c:6a:b1:ab:ed:19:04:
41:26:72:ed:c4:0d:61:65:7a:a7:4f:ea:fa:2f:fd:99:25:8b:
8b:89:ee:e9:83:fe:3e:c5:12:60:0a:30:79:70:82:6f:58:4e:
e7:09:c8:32:37:7e:5b:a4:20:d6:7d:38:eb:d3:43:f1:fd:bf:
9c:d6:09:3b:3c:50:38:51:ed:96:86:bd:80:c3:32:0d:9e:3f:
7a:78:24:d7:ce:5d:3c:f3:d0:07:b8:b0:aa:ee:3d:56:bc:48:
e7:eb:47:ab:f7:78:5a:60:65:ab:3d:55:31:3e:47:31:9f:21:
79:a9:f7:d7:6f:59:53:ed:f3:b2:ad:22:00:f9:43:49:c7:e9:
e1:28:13:22:3b:d7:c3:5b:b9:86:93:ae:3d:ef:81:e2:45:23:
2e:47:50:91:e1:7f:ea:21:15:25:9e:c3:17:e9:71:f3:a4:00:
e6:0f:6e:ac:fa:da:39:b6:70:6d:54:b7:1d:26:5b:ad:3f:16:
f7:98:97:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:32 2023 by rpki-client on console-fra.rpki-client.org