Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/JqJRkcb7Tj3GYGqXB2yoGYjFf_U.roa
File: JqJRkcb7Tj3GYGqXB2yoGYjFf_U.roa (raw, json)
Hash identifier: gBa1htpv5SOLxSoO2x/D/QueGMrH8Su4NGhsvUzetlQ=
Subject key identifier: 26:A2:51:91:C6:FB:4E:3D:C6:60:6A:97:07:6C:A8:19:88:C5:7F:F5
Certificate issuer: /CN=e8a851ddae5a64cc38825395be9a507da95ab7cf
Certificate serial: 1320C9F6
Authority key identifier: E8:A8:51:DD:AE:5A:64:CC:38:82:53:95:BE:9A:50:7D:A9:5A:B7:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6KhR3a5aZMw4glOVvppQfalat88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/JqJRkcb7Tj3GYGqXB2yoGYjFf_U.roa
Signing time: Fri 06 May 2022 06:05:13 +0000
ROA not before: Fri 06 May 2022 06:05:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202940
IP address blocks: 89.208.56.0/21 maxlen: 21
89.208.0.0/21 maxlen: 21
188.191.224.0/21 maxlen: 21
188.191.224.0/24 maxlen: 24
188.191.225.0/24 maxlen: 24
188.191.226.0/24 maxlen: 24
188.191.228.0/24 maxlen: 24
188.191.229.0/24 maxlen: 24
188.191.227.0/24 maxlen: 24
188.191.230.0/24 maxlen: 24
185.175.34.0/23 maxlen: 23
185.175.32.0/22 maxlen: 22
185.175.32.0/23 maxlen: 23
89.208.128.0/21 maxlen: 21
185.184.246.0/23 maxlen: 23
89.208.135.0/24 maxlen: 24
185.184.244.0/23 maxlen: 23
185.184.244.0/22 maxlen: 22
185.149.253.0/24 maxlen: 24
185.149.252.0/22 maxlen: 22
185.149.252.0/24 maxlen: 24
185.149.254.0/24 maxlen: 24
185.149.255.0/24 maxlen: 24
185.180.102.0/24 maxlen: 24
185.180.103.0/24 maxlen: 24
185.180.100.0/24 maxlen: 24
185.180.100.0/22 maxlen: 22
185.167.110.0/24 maxlen: 24
185.167.108.0/23 maxlen: 23
185.167.108.0/24 maxlen: 24
185.167.108.0/22 maxlen: 22
185.167.109.0/24 maxlen: 24
185.167.111.0/24 maxlen: 24
147.236.176.0/20 maxlen: 20
217.175.92.0/22 maxlen: 22
217.175.95.0/24 maxlen: 24
185.182.77.0/24 maxlen: 24
185.182.78.0/24 maxlen: 24
185.182.76.0/22 maxlen: 22
185.182.76.0/24 maxlen: 24
217.175.82.0/24 maxlen: 24
217.175.80.0/20 maxlen: 20
217.175.80.0/22 maxlen: 22
217.175.80.0/24 maxlen: 24
217.175.84.0/22 maxlen: 22
217.175.88.0/22 maxlen: 22
147.236.144.0/22 maxlen: 24
147.236.144.0/21 maxlen: 21
147.236.144.0/20 maxlen: 20
147.236.148.0/22 maxlen: 22
141.226.120.0/23 maxlen: 23
141.226.120.0/22 maxlen: 22
147.236.152.0/23 maxlen: 23
147.236.152.0/22 maxlen: 22
147.236.152.0/21 maxlen: 21
141.226.122.0/23 maxlen: 23
147.236.154.0/23 maxlen: 23
147.236.156.0/22 maxlen: 22
147.236.156.0/24 maxlen: 24
147.236.157.0/24 maxlen: 24
185.182.79.0/24 maxlen: 24
185.108.82.0/23 maxlen: 23
185.108.82.0/24 maxlen: 24
185.108.80.0/23 maxlen: 23
185.108.80.0/22 maxlen: 22
185.108.83.0/24 maxlen: 24
2a00:7c40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 320915958 (0x1320c9f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8a851ddae5a64cc38825395be9a507da95ab7cf
Validity
Not Before: May 6 06:05:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=26a25191c6fb4e3dc6606a97076ca81988c57ff5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:32:3a:a3:09:51:3e:f9:87:42:3b:70:56:ae:
bd:2c:d8:1a:f1:a2:06:05:3b:86:a7:61:9a:8d:01:
86:e6:32:a1:88:71:f3:29:dd:b1:25:bd:cd:87:4c:
d2:3d:25:e3:d3:7e:ce:a0:78:35:53:43:30:82:d7:
b7:46:2e:71:8b:63:33:0c:45:bf:cd:9e:29:1f:75:
42:8d:9c:1e:16:8d:27:8c:18:9e:79:51:f0:22:3a:
df:53:e5:37:a7:78:d5:d1:7c:02:ba:f8:a6:46:a5:
ef:6c:41:79:55:f7:4c:ad:90:5f:31:ed:3e:87:e9:
aa:00:9a:28:20:ef:c4:18:8a:39:f8:dd:bd:5a:d2:
c6:00:98:4e:42:8e:fa:f3:51:46:e8:68:67:1d:73:
36:fd:d0:b2:19:59:e3:4f:60:99:2b:a6:33:85:d7:
5a:0f:62:fc:47:4f:bf:15:9e:87:18:66:7d:ff:45:
91:0c:49:30:a6:63:0b:30:89:10:8d:b1:4c:02:5f:
ea:16:35:5c:02:88:47:70:82:79:fb:79:01:05:86:
cc:0c:e7:a0:2f:4f:38:1f:c8:0c:74:0d:36:d5:4a:
0b:1f:41:72:56:9b:70:b7:1c:bf:54:de:67:ad:3b:
23:80:9d:02:64:d8:94:ea:f8:6b:ce:11:81:9c:64:
d6:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:A2:51:91:C6:FB:4E:3D:C6:60:6A:97:07:6C:A8:19:88:C5:7F:F5
X509v3 Authority Key Identifier:
keyid:E8:A8:51:DD:AE:5A:64:CC:38:82:53:95:BE:9A:50:7D:A9:5A:B7:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6KhR3a5aZMw4glOVvppQfalat88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/JqJRkcb7Tj3GYGqXB2yoGYjFf_U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/6KhR3a5aZMw4glOVvppQfalat88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.208.0.0/21
89.208.56.0/21
89.208.128.0/21
141.226.120.0/22
147.236.144.0/20
147.236.176.0/20
185.108.80.0/22
185.149.252.0/22
185.167.108.0/22
185.175.32.0/22
185.180.100.0/22
185.182.76.0/22
185.184.244.0/22
188.191.224.0/21
217.175.80.0/20
IPv6:
2a00:7c40::/32
Signature Algorithm: sha256WithRSAEncryption
be:fb:3d:18:aa:cb:8d:28:3f:fe:98:1b:55:69:0f:ff:81:11:
3d:8c:e1:8c:03:f2:e4:01:13:e8:b9:6a:81:5b:ef:67:bb:d3:
cf:90:d2:69:f2:59:0a:55:15:e3:5d:b4:d9:10:0b:b4:1c:bc:
ce:bf:2a:3b:71:63:97:2f:87:bb:b6:7c:1b:82:5f:94:19:9d:
6c:5a:19:bb:80:7d:3a:04:50:f0:49:d9:48:6e:38:80:a3:88:
f9:98:fc:c4:dc:53:eb:b3:55:ec:b7:cc:50:14:a8:1e:95:b9:
67:4d:32:57:96:cb:4f:15:73:5d:1a:9f:f7:47:aa:51:06:97:
36:93:3f:67:f9:e0:4b:74:55:59:07:38:06:01:9b:d5:4f:13:
77:0c:f5:b6:8a:d1:48:44:57:07:17:03:87:f8:b6:97:a4:8f:
f8:f4:14:ed:89:2c:ae:36:e9:29:e5:f1:84:66:f1:cc:34:70:
88:87:aa:d5:43:b0:eb:b3:9d:ac:59:3e:c2:78:3a:a9:20:a3:
52:7d:36:2e:d5:56:65:09:e1:50:95:b2:ad:96:60:6e:4a:b5:
10:00:6d:75:06:a7:1e:6f:68:f6:f4:b2:23:68:a0:fd:86:41:
0a:91:c6:7d:bd:96:cb:44:1c:6a:18:4d:c5:0e:05:b0:8e:4d:
65:41:47:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:29 2023 by rpki-client on console-fra.rpki-client.org