Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/397546-dc7b-4660-8a51-bf59fc1cb26d/1/W65D4LW5accLe0OstfkyQebu34M.roa
File: W65D4LW5accLe0OstfkyQebu34M.roa (raw, json)
Hash identifier: ktdGFu/Qnx0/qi9HDm+s3gKOZmQbip6j+kB00Cn6I7Y=
Subject key identifier: 5B:AE:43:E0:B5:B9:69:C7:0B:7B:43:AC:B5:F9:32:41:E6:EE:DF:83
Certificate issuer: /CN=24ba4f52ac1be0755d34bc5483c061bdf293447e
Certificate serial: 0A52B5E1
Authority key identifier: 24:BA:4F:52:AC:1B:E0:75:5D:34:BC:54:83:C0:61:BD:F2:93:44:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JLpPUqwb4HVdNLxUg8BhvfKTRH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/397546-dc7b-4660-8a51-bf59fc1cb26d/1/W65D4LW5accLe0OstfkyQebu34M.roa
Signing time: Sat 01 Jan 2022 09:53:35 +0000
ROA not before: Sat 01 Jan 2022 09:53:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42298
IP address blocks: 176.202.0.0/20 maxlen: 20
176.202.16.0/20 maxlen: 20
78.101.8.0/21 maxlen: 21
37.208.128.0/20 maxlen: 20
37.208.144.0/20 maxlen: 20
178.153.128.0/20 maxlen: 20
178.153.144.0/20 maxlen: 20
178.153.160.0/20 maxlen: 20
178.153.80.0/20 maxlen: 20
178.153.96.0/20 maxlen: 24
178.153.240.0/20 maxlen: 24
178.153.176.0/20 maxlen: 20
178.153.192.0/20 maxlen: 20
178.153.208.0/20 maxlen: 20
178.153.224.0/20 maxlen: 24
178.152.112.0/20 maxlen: 20
178.153.16.0/20 maxlen: 20
178.153.32.0/20 maxlen: 20
178.153.48.0/20 maxlen: 20
178.153.64.0/20 maxlen: 20
178.153.0.0/20 maxlen: 24
178.152.64.0/20 maxlen: 20
178.152.80.0/20 maxlen: 20
178.152.96.0/20 maxlen: 20
178.152.0.0/20 maxlen: 24
178.152.16.0/20 maxlen: 24
89.211.160.0/20 maxlen: 20
37.211.160.0/20 maxlen: 20
89.211.176.0/20 maxlen: 20
37.211.176.0/20 maxlen: 20
89.211.192.0/20 maxlen: 20
89.211.96.0/20 maxlen: 20
89.211.112.0/20 maxlen: 20
89.211.128.0/20 maxlen: 20
37.211.128.0/20 maxlen: 20
89.211.144.0/20 maxlen: 20
37.211.144.0/20 maxlen: 20
89.211.208.0/20 maxlen: 20
89.211.224.0/20 maxlen: 20
89.211.240.0/20 maxlen: 20
37.210.192.0/20 maxlen: 20
37.210.208.0/20 maxlen: 20
37.210.224.0/20 maxlen: 20
37.210.144.0/20 maxlen: 20
37.210.160.0/20 maxlen: 20
37.210.176.0/20 maxlen: 20
86.62.242.0/24 maxlen: 24
86.62.245.0/24 maxlen: 24
86.62.246.0/24 maxlen: 24
86.62.243.0/24 maxlen: 24
86.62.244.0/24 maxlen: 24
37.211.48.0/20 maxlen: 20
86.62.252.0/24 maxlen: 24
86.62.251.0/24 maxlen: 24
86.62.248.0/24 maxlen: 24
86.62.249.0/24 maxlen: 24
86.62.255.0/24 maxlen: 24
213.130.96.0/22 maxlen: 22
37.211.64.0/20 maxlen: 20
37.211.80.0/20 maxlen: 20
213.130.127.0/24 maxlen: 24
37.210.240.0/20 maxlen: 20
86.62.192.0/22 maxlen: 24
86.62.196.0/22 maxlen: 24
86.62.200.0/22 maxlen: 24
37.211.0.0/20 maxlen: 20
86.62.204.0/22 maxlen: 24
86.62.211.0/24 maxlen: 24
86.62.209.0/24 maxlen: 24
86.62.218.0/24 maxlen: 24
86.62.216.0/24 maxlen: 24
37.211.16.0/20 maxlen: 20
86.62.223.0/24 maxlen: 24
86.62.224.0/22 maxlen: 22
86.62.221.0/24 maxlen: 24
86.62.228.0/22 maxlen: 22
86.62.232.0/22 maxlen: 22
86.62.236.0/22 maxlen: 22
37.211.32.0/20 maxlen: 20
37.210.0.0/20 maxlen: 20
37.210.16.0/20 maxlen: 20
37.210.80.0/20 maxlen: 20
37.210.96.0/20 maxlen: 20
37.210.112.0/20 maxlen: 20
37.210.128.0/20 maxlen: 20
37.210.32.0/20 maxlen: 20
37.210.48.0/20 maxlen: 20
37.210.64.0/20 maxlen: 20
82.148.107.0/24 maxlen: 24
176.202.80.0/20 maxlen: 20
78.101.80.0/20 maxlen: 20
176.202.96.0/20 maxlen: 24
78.101.16.0/20 maxlen: 20
176.202.32.0/20 maxlen: 20
176.202.48.0/20 maxlen: 20
78.101.48.0/20 maxlen: 20
78.101.64.0/20 maxlen: 20
78.101.176.0/20 maxlen: 20
78.101.192.0/20 maxlen: 20
78.101.208.0/20 maxlen: 20
78.101.224.0/20 maxlen: 20
176.202.160.0/20 maxlen: 20
78.101.160.0/20 maxlen: 20
176.202.176.0/20 maxlen: 24
2001:1a10:1004::/48 maxlen: 48
2001:1a10:1001::/48 maxlen: 48
2001:1a10:100a::/48 maxlen: 48
2001:1a10:1007::/48 maxlen: 48
2001:1a10:1009::/48 maxlen: 48
2001:1a10:1006::/48 maxlen: 48
2001:1a10:100f::/48 maxlen: 48
2001:1a10:100c::/48 maxlen: 48
2001:1a10:100e::/48 maxlen: 48
2001:1a10:1008::/48 maxlen: 48
2001:1a10:100b::/48 maxlen: 48
2001:1a11::/32 maxlen: 53
2001:1a10:1000::/48 maxlen: 48
2001:1a10:1003::/48 maxlen: 48
2001:1a10:100d::/48 maxlen: 48
2001:1a10:1005::/48 maxlen: 48
2001:1a10:1002::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173192673 (0xa52b5e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24ba4f52ac1be0755d34bc5483c061bdf293447e
Validity
Not Before: Jan 1 09:53:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5bae43e0b5b969c70b7b43acb5f93241e6eedf83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d2:9c:14:2c:51:2c:f5:1a:c5:48:58:ce:ac:
22:98:a8:b1:08:c6:f6:94:50:a4:12:92:14:7c:16:
1f:db:49:e5:aa:0c:c4:68:2a:69:ed:0e:e9:6a:b1:
62:a7:78:c5:5f:70:49:5b:ce:d4:0a:7c:d7:71:be:
71:c7:34:b9:12:4c:5e:a5:bd:8b:fd:83:dc:ff:e2:
94:74:e5:c2:f5:ae:20:0e:57:61:3e:41:a6:90:32:
16:49:ad:08:80:3d:26:ba:e8:b1:8f:56:71:13:f6:
25:74:aa:5d:68:83:2e:7c:1e:36:38:05:88:3f:46:
e5:14:fa:d7:05:9f:dd:ea:45:7e:ec:ac:8f:d5:07:
05:7e:4c:2c:c1:75:d8:68:5d:9a:b6:b5:61:77:2e:
6d:6d:b8:9b:c1:1d:e4:9e:af:dd:c1:cb:f8:41:db:
d9:e3:36:3b:62:46:e6:f7:df:18:4e:21:62:14:03:
27:34:8b:cd:f3:d0:10:75:b0:f2:5d:19:b0:99:27:
d1:a9:a5:d2:4f:2e:9c:57:02:5d:5d:6c:f9:54:d3:
20:62:c4:67:57:c2:c4:15:7d:54:1f:d1:36:0f:af:
49:9f:be:5b:3d:4b:73:cd:cf:d2:bd:bd:49:24:64:
2e:bb:88:c6:fd:40:48:fa:06:1f:f2:3a:69:5b:f9:
84:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:AE:43:E0:B5:B9:69:C7:0B:7B:43:AC:B5:F9:32:41:E6:EE:DF:83
X509v3 Authority Key Identifier:
keyid:24:BA:4F:52:AC:1B:E0:75:5D:34:BC:54:83:C0:61:BD:F2:93:44:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JLpPUqwb4HVdNLxUg8BhvfKTRH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/397546-dc7b-4660-8a51-bf59fc1cb26d/1/W65D4LW5accLe0OstfkyQebu34M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/397546-dc7b-4660-8a51-bf59fc1cb26d/1/JLpPUqwb4HVdNLxUg8BhvfKTRH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.208.128.0/19
37.210.0.0-37.211.95.255
37.211.128.0/18
78.101.8.0-78.101.31.255
78.101.48.0-78.101.95.255
78.101.160.0-78.101.239.255
82.148.107.0/24
86.62.192.0/20
86.62.209.0/24
86.62.211.0/24
86.62.216.0/24
86.62.218.0/24
86.62.221.0/24
86.62.223.0-86.62.239.255
86.62.242.0-86.62.246.255
86.62.248.0/23
86.62.251.0-86.62.252.255
86.62.255.0/24
89.211.96.0-89.211.255.255
176.202.0.0/18
176.202.80.0-176.202.111.255
176.202.160.0/19
178.152.0.0/19
178.152.64.0/18
178.153.0.0-178.153.111.255
178.153.128.0/17
213.130.96.0/22
213.130.127.0/24
IPv6:
2001:1a10:1000::/44
2001:1a11::/32
Signature Algorithm: sha256WithRSAEncryption
5b:88:6b:ce:2b:4c:ea:3f:8c:4f:9a:30:83:19:2f:9f:e0:74:
b5:0a:13:86:e0:5a:a5:0f:5c:41:8e:9d:2d:67:f4:f5:fa:f7:
e0:e7:62:44:94:e1:15:7d:69:2e:ff:a0:90:23:32:0c:17:4f:
ce:06:d6:db:c4:78:89:44:5d:7a:03:c0:67:3d:b9:d3:43:a7:
0e:31:71:63:8e:5c:31:98:df:92:55:86:93:2d:37:28:af:ab:
70:d9:5f:1b:7c:ce:83:70:f5:85:32:6e:03:10:19:f4:20:7d:
0a:eb:74:6e:07:e8:29:ac:55:20:c6:a7:78:12:c0:51:bd:c3:
1f:d7:ac:e5:f6:a5:7f:e3:ac:7e:e9:62:a8:f0:70:bc:c1:9f:
14:c4:19:29:a3:77:a2:73:72:a2:44:98:96:d8:19:73:e4:57:
7e:6f:08:34:0a:3e:2f:7f:88:2e:66:96:6d:c6:5c:8f:5a:d8:
73:99:77:8b:99:33:27:96:28:86:a3:da:28:95:6d:ac:8c:ac:
5a:aa:19:a1:ca:fc:1f:24:a9:d4:07:1a:7f:6e:e4:d9:b2:df:
4a:4e:4b:d3:12:4c:f3:b9:df:f6:52:84:97:09:09:fe:2f:3e:
96:22:93:a4:70:a6:8a:6e:bd:3d:89:a1:37:29:3a:b2:dd:62:
c9:d0:d5:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:11 2024 by rpki-client on console-ams.rpki-client.org