Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/8seyXuLcn3Povq-eorkaOmiLYgg.roa
File: 8seyXuLcn3Povq-eorkaOmiLYgg.roa (raw, json)
Hash identifier: MdDFNyboyc87cyIYOHGOrNYHijv9I8bIA/v4PmGE+9U=
Subject key identifier: F2:C7:B2:5E:E2:DC:9F:73:E8:BE:AF:9E:A2:B9:1A:3A:68:8B:62:08
Certificate issuer: /CN=e8a851ddae5a64cc38825395be9a507da95ab7cf
Certificate serial: 11F8A86A
Authority key identifier: E8:A8:51:DD:AE:5A:64:CC:38:82:53:95:BE:9A:50:7D:A9:5A:B7:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6KhR3a5aZMw4glOVvppQfalat88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/8seyXuLcn3Povq-eorkaOmiLYgg.roa
Signing time: Sat 01 Jan 2022 15:59:32 +0000
ROA not before: Sat 01 Jan 2022 15:59:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202940
IP address blocks: 89.208.56.0/21 maxlen: 21
89.208.0.0/21 maxlen: 21
188.191.224.0/21 maxlen: 21
188.191.224.0/24 maxlen: 24
188.191.225.0/24 maxlen: 24
188.191.226.0/24 maxlen: 24
188.191.228.0/24 maxlen: 24
188.191.229.0/24 maxlen: 24
188.191.227.0/24 maxlen: 24
188.191.230.0/24 maxlen: 24
185.175.34.0/23 maxlen: 23
185.175.32.0/22 maxlen: 22
185.175.32.0/23 maxlen: 23
89.208.128.0/21 maxlen: 21
185.184.246.0/23 maxlen: 23
89.208.135.0/24 maxlen: 24
185.184.244.0/23 maxlen: 23
185.184.244.0/22 maxlen: 22
185.149.253.0/24 maxlen: 24
185.149.252.0/22 maxlen: 22
185.149.252.0/24 maxlen: 24
185.149.254.0/24 maxlen: 24
185.149.255.0/24 maxlen: 24
185.180.102.0/24 maxlen: 24
185.180.103.0/24 maxlen: 24
185.180.100.0/24 maxlen: 24
185.180.100.0/22 maxlen: 22
185.167.110.0/24 maxlen: 24
185.167.108.0/23 maxlen: 23
185.167.108.0/24 maxlen: 24
185.167.108.0/22 maxlen: 22
185.167.109.0/24 maxlen: 24
185.167.111.0/24 maxlen: 24
147.236.176.0/20 maxlen: 20
217.175.92.0/22 maxlen: 22
217.175.95.0/24 maxlen: 24
185.182.77.0/24 maxlen: 24
185.182.78.0/24 maxlen: 24
185.182.76.0/22 maxlen: 22
185.182.76.0/24 maxlen: 24
217.175.82.0/24 maxlen: 24
217.175.80.0/20 maxlen: 20
217.175.80.0/22 maxlen: 22
217.175.80.0/24 maxlen: 24
217.175.84.0/22 maxlen: 22
217.175.88.0/22 maxlen: 22
147.236.144.0/21 maxlen: 21
147.236.144.0/22 maxlen: 22
147.236.144.0/20 maxlen: 20
147.236.148.0/22 maxlen: 22
141.226.120.0/23 maxlen: 23
141.226.120.0/22 maxlen: 22
147.236.152.0/23 maxlen: 23
147.236.152.0/22 maxlen: 22
147.236.152.0/21 maxlen: 21
141.226.122.0/23 maxlen: 23
147.236.154.0/23 maxlen: 23
147.236.156.0/22 maxlen: 22
147.236.156.0/24 maxlen: 24
147.236.157.0/24 maxlen: 24
185.182.79.0/24 maxlen: 24
185.108.82.0/23 maxlen: 23
185.108.82.0/24 maxlen: 24
185.108.80.0/23 maxlen: 23
185.108.80.0/22 maxlen: 22
185.108.83.0/24 maxlen: 24
2a00:7c40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 301508714 (0x11f8a86a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8a851ddae5a64cc38825395be9a507da95ab7cf
Validity
Not Before: Jan 1 15:59:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f2c7b25ee2dc9f73e8beaf9ea2b91a3a688b6208
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:04:8f:95:ad:77:aa:10:67:4b:b4:82:fe:b8:
2b:71:c2:dd:b3:26:49:7a:4e:3b:97:5e:82:ab:9c:
ed:8e:55:ca:bf:f2:b0:97:61:e2:34:be:f7:78:4a:
8c:d9:20:a9:3f:98:0d:a8:56:af:09:5d:c4:31:b9:
e7:25:5f:f0:6f:9a:8e:c4:b1:1e:a6:00:6b:8d:89:
b1:5b:04:72:87:30:d7:6e:dd:51:f4:d9:a5:2f:f7:
4c:b0:51:db:15:4d:08:e7:58:fb:f3:c0:72:28:ef:
7c:74:0f:e3:d0:7f:02:ee:50:ca:c8:65:08:ba:67:
23:24:f8:16:51:ae:c3:7b:6c:79:04:6c:3a:40:06:
e8:38:48:46:fc:72:15:8a:0e:bf:97:ec:15:02:d3:
8d:18:f6:ba:c5:6c:c3:3c:5c:bf:b4:1e:9c:7f:8f:
d2:22:9b:68:df:2f:6c:33:b0:66:ea:2c:c8:09:0c:
f3:da:b6:cd:8d:f7:e3:a5:3e:2e:e9:6d:99:7e:30:
af:16:7e:76:1e:71:be:16:b4:9c:62:68:fe:5c:bd:
eb:8b:9c:44:e6:97:fd:2e:e2:2d:aa:77:f5:f5:96:
ea:06:3d:d0:e1:9e:c8:41:be:27:7e:5d:35:8e:e5:
f2:ba:32:f9:34:4b:65:9d:a6:8e:c7:d5:da:1f:13:
74:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:C7:B2:5E:E2:DC:9F:73:E8:BE:AF:9E:A2:B9:1A:3A:68:8B:62:08
X509v3 Authority Key Identifier:
keyid:E8:A8:51:DD:AE:5A:64:CC:38:82:53:95:BE:9A:50:7D:A9:5A:B7:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6KhR3a5aZMw4glOVvppQfalat88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/8seyXuLcn3Povq-eorkaOmiLYgg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/6KhR3a5aZMw4glOVvppQfalat88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.208.0.0/21
89.208.56.0/21
89.208.128.0/21
141.226.120.0/22
147.236.144.0/20
147.236.176.0/20
185.108.80.0/22
185.149.252.0/22
185.167.108.0/22
185.175.32.0/22
185.180.100.0/22
185.182.76.0/22
185.184.244.0/22
188.191.224.0/21
217.175.80.0/20
IPv6:
2a00:7c40::/32
Signature Algorithm: sha256WithRSAEncryption
42:0a:fd:08:f5:6b:e2:95:23:8c:df:95:af:3b:7a:21:c4:94:
80:5a:0f:c8:05:c1:f4:62:4a:b6:c1:4f:85:f7:7f:5a:5b:45:
5f:72:09:55:9a:45:e8:1b:16:dc:ee:ea:b3:7e:a6:c9:5f:f2:
50:d2:87:0b:3b:bb:6f:f2:03:9f:a8:65:9d:b7:47:fe:d8:59:
8d:45:f1:5b:62:3c:4c:c1:c0:47:1f:0b:ac:a8:48:22:65:df:
3b:39:aa:b5:9b:0b:54:dd:1e:7f:27:72:8a:d6:fc:74:c1:76:
69:e7:84:20:dd:69:3a:72:04:13:2c:d3:73:19:0d:e1:25:95:
ec:9c:b8:4e:07:a2:47:02:e5:47:a0:9c:f4:7e:a3:f5:1c:6f:
31:9c:25:d7:1f:6b:e9:67:bf:2c:42:a4:11:92:40:db:9d:65:
b2:14:68:6a:45:2e:09:46:47:a9:fa:4e:ed:89:fb:50:8b:ef:
8f:dc:73:6a:a3:74:4f:dc:ad:a2:59:f7:21:1a:fb:ab:74:48:
69:0b:3f:c5:88:dd:30:0d:f8:ac:a4:8c:40:08:8a:39:b2:25:
63:fa:ed:2e:20:e1:04:b6:aa:30:c2:80:d0:c3:42:b6:19:85:
17:7e:a6:6a:52:97:b4:01:b5:31:21:73:06:4d:c3:ad:a9:ba:
00:28:24:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:29 2023 by rpki-client on console-fra.rpki-client.org