Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/7qkVQYWWmQ3Cj-DqGIJQAwXg1Bo.roa
File: 7qkVQYWWmQ3Cj-DqGIJQAwXg1Bo.roa (raw, json)
Hash identifier: fJ1EhXWXvbXEzOr0TzvAXwFy20+VyIi9JqoKZQdKgqw=
Subject key identifier: EE:A9:15:41:85:96:99:0D:C2:8F:E0:EA:18:82:50:03:05:E0:D4:1A
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 1576C227
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/7qkVQYWWmQ3Cj-DqGIJQAwXg1Bo.roa
Signing time: Thu 24 Feb 2022 13:28:07 +0000
ROA not before: Thu 24 Feb 2022 13:28:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8641
IP address blocks: 213.208.160.0/21 maxlen: 21
213.208.168.0/23 maxlen: 23
213.208.170.0/24 maxlen: 24
213.208.172.0/22 maxlen: 22
213.208.176.0/21 maxlen: 21
213.208.186.0/23 maxlen: 23
213.208.184.0/24 maxlen: 24
213.208.188.0/22 maxlen: 22
81.26.144.0/21 maxlen: 21
81.26.144.0/24 maxlen: 24
81.26.152.0/22 maxlen: 22
185.106.107.0/24 maxlen: 24
77.94.160.0/19 maxlen: 19
84.47.128.0/22 maxlen: 22
77.94.175.0/24 maxlen: 24
84.47.134.0/23 maxlen: 23
84.47.136.0/24 maxlen: 24
84.47.140.0/22 maxlen: 22
84.47.144.0/23 maxlen: 23
84.47.152.0/23 maxlen: 23
85.91.96.0/21 maxlen: 21
84.47.147.0/24 maxlen: 24
77.94.189.0/24 maxlen: 24
84.47.148.0/22 maxlen: 22
84.47.156.0/22 maxlen: 22
84.47.160.0/22 maxlen: 22
85.91.112.0/22 maxlen: 22
84.47.164.0/23 maxlen: 23
84.47.168.0/21 maxlen: 21
85.91.118.0/23 maxlen: 23
213.135.64.0/22 maxlen: 22
213.135.70.0/23 maxlen: 23
85.91.122.0/24 maxlen: 24
84.47.176.0/24 maxlen: 24
213.135.69.0/24 maxlen: 24
84.47.177.0/24 maxlen: 24
84.47.176.0/23 maxlen: 23
85.91.120.0/23 maxlen: 23
84.47.181.0/24 maxlen: 24
213.135.72.0/23 maxlen: 23
84.47.182.0/23 maxlen: 23
84.47.186.0/23 maxlen: 23
213.135.77.0/24 maxlen: 24
213.135.80.0/24 maxlen: 24
84.47.190.0/23 maxlen: 23
213.135.79.0/24 maxlen: 24
213.135.80.0/21 maxlen: 21
2a02:bc8::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 360104487 (0x1576c227)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Feb 24 13:28:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eea915418596990dc28fe0ea1882500305e0d41a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:2f:bf:93:83:7d:54:ca:14:d2:33:8b:ef:83:
b6:84:51:2c:a3:7b:3f:0c:d9:09:de:f3:4d:7f:da:
8d:ca:2e:b7:9a:d7:1b:91:8e:ad:f9:34:10:2c:29:
2a:8c:65:47:cf:b8:6d:4c:14:07:63:ba:84:17:d9:
cf:51:6e:59:a0:c7:a9:df:f9:bc:2e:bd:65:a7:80:
9a:1e:8e:0e:e4:5d:b9:b4:6b:e6:a6:11:8c:ee:d3:
2d:dc:19:39:11:8e:57:de:18:bf:58:01:51:d5:93:
be:f4:d5:c3:5d:90:aa:72:1b:a4:ea:fe:c2:bc:27:
99:a1:71:78:c2:db:0d:b1:45:80:d0:89:81:34:ec:
c7:b7:50:ef:f8:9d:85:36:c6:45:f6:45:73:ad:90:
6b:2c:7a:aa:54:d7:71:cb:66:4c:50:ff:6f:0b:ba:
0d:4c:a4:5d:d4:30:e6:d1:5f:8f:42:42:12:5b:5e:
6d:85:78:3e:88:d2:0d:bc:6f:1b:08:6b:63:00:ac:
f7:eb:67:fc:d9:6a:df:a6:23:70:09:8b:bb:27:79:
82:29:05:c8:7d:2d:0b:a4:c6:73:5c:3c:3d:6f:7e:
0c:e4:ac:59:d1:9c:5d:18:7c:2e:41:37:8e:aa:a5:
92:11:23:f9:45:1c:b2:71:10:ee:63:98:f2:e6:9a:
c8:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:A9:15:41:85:96:99:0D:C2:8F:E0:EA:18:82:50:03:05:E0:D4:1A
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/7qkVQYWWmQ3Cj-DqGIJQAwXg1Bo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.94.160.0/19
81.26.144.0-81.26.155.255
84.47.128.0/22
84.47.134.0-84.47.136.255
84.47.140.0-84.47.145.255
84.47.147.0-84.47.153.255
84.47.156.0-84.47.165.255
84.47.168.0-84.47.177.255
84.47.181.0-84.47.183.255
84.47.186.0/23
84.47.190.0/23
85.91.96.0/21
85.91.112.0/22
85.91.118.0-85.91.122.255
185.106.107.0/24
213.135.64.0/22
213.135.69.0-213.135.73.255
213.135.77.0/24
213.135.79.0-213.135.87.255
213.208.160.0-213.208.170.255
213.208.172.0-213.208.184.255
213.208.186.0-213.208.191.255
IPv6:
2a02:bc8::/29
Signature Algorithm: sha256WithRSAEncryption
05:62:20:13:8d:47:8e:02:7d:e1:65:57:6e:8f:3d:16:4f:a3:
d0:90:91:93:fc:be:a6:b1:5a:6b:85:73:01:68:87:96:fc:b0:
aa:d6:9a:ed:a8:8c:00:03:03:69:ed:42:1a:8b:02:2e:31:15:
f4:d2:54:17:9e:3e:1b:72:59:59:a0:c9:d5:e3:f2:d6:5f:c7:
ec:53:9e:8b:77:44:9a:9c:f8:09:d0:6c:64:3c:8e:88:66:f0:
7e:e2:ee:cb:cd:fe:3e:bc:1c:38:91:6f:4a:b1:52:bf:5c:0e:
f3:e7:43:40:fb:14:8c:e5:ad:31:1d:02:12:77:28:9e:1a:50:
17:4b:15:d5:16:b1:75:f8:45:e1:5f:74:2a:77:56:51:7c:44:
16:d9:53:3d:8e:d8:82:23:c5:87:ba:e8:a2:f6:f2:65:30:78:
e9:33:02:ee:81:ef:48:74:ca:e8:4d:c0:9d:15:3b:78:f3:17:
c6:14:9d:56:43:9b:f6:68:cc:8c:56:6a:2a:52:d2:8d:62:88:
7e:4c:5e:61:fd:0f:cd:a7:ac:3a:1a:e9:a5:49:ba:db:af:1c:
1a:b0:c0:7e:77:12:1f:b3:9e:fc:ab:4a:46:95:d8:58:0f:8f:
8c:21:85:76:07:1f:53:d1:c6:c1:7b:27:03:0b:d1:8f:ee:df:
93:fe:34:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:21 2023 by rpki-client on console-fra.rpki-client.org