Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/_LvefiZI9txSbgxPB1YpCRAnU4Q.roa
File: _LvefiZI9txSbgxPB1YpCRAnU4Q.roa (raw, json)
Hash identifier: fX7YipWWiNwFhTtfBwzBeWwAVCnuFsliglcsCRr0zKI=
Subject key identifier: FC:BB:DE:7E:26:48:F6:DC:52:6E:0C:4F:07:56:29:09:10:27:53:84
Certificate issuer: /CN=e8a851ddae5a64cc38825395be9a507da95ab7cf
Certificate serial: 13A83760
Authority key identifier: E8:A8:51:DD:AE:5A:64:CC:38:82:53:95:BE:9A:50:7D:A9:5A:B7:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6KhR3a5aZMw4glOVvppQfalat88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/_LvefiZI9txSbgxPB1YpCRAnU4Q.roa
Signing time: Tue 28 Jun 2022 10:00:02 +0000
ROA not before: Tue 28 Jun 2022 10:00:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202940
IP address blocks: 89.208.56.0/21 maxlen: 21
89.208.0.0/21 maxlen: 21
89.208.4.0/22 maxlen: 24
188.191.224.0/21 maxlen: 21
188.191.224.0/24 maxlen: 24
188.191.225.0/24 maxlen: 24
188.191.226.0/24 maxlen: 24
188.191.228.0/24 maxlen: 24
188.191.229.0/24 maxlen: 24
188.191.227.0/24 maxlen: 24
188.191.230.0/24 maxlen: 24
185.175.34.0/23 maxlen: 23
185.175.32.0/22 maxlen: 22
185.175.32.0/23 maxlen: 23
89.208.128.0/21 maxlen: 21
185.184.246.0/23 maxlen: 23
89.208.135.0/24 maxlen: 24
185.184.244.0/23 maxlen: 23
185.184.244.0/22 maxlen: 22
89.208.134.0/23 maxlen: 24
185.149.253.0/24 maxlen: 24
185.149.252.0/22 maxlen: 22
185.149.252.0/24 maxlen: 24
185.149.254.0/24 maxlen: 24
185.149.255.0/24 maxlen: 24
185.180.102.0/24 maxlen: 24
185.180.103.0/24 maxlen: 24
185.180.100.0/24 maxlen: 24
185.180.100.0/22 maxlen: 22
185.167.110.0/24 maxlen: 24
185.167.108.0/23 maxlen: 23
185.167.108.0/24 maxlen: 24
185.167.108.0/22 maxlen: 22
185.167.109.0/24 maxlen: 24
185.167.111.0/24 maxlen: 24
147.236.176.0/20 maxlen: 20
217.175.92.0/22 maxlen: 22
217.175.95.0/24 maxlen: 24
185.182.77.0/24 maxlen: 24
185.182.78.0/24 maxlen: 24
185.182.76.0/22 maxlen: 22
185.182.76.0/24 maxlen: 24
217.175.82.0/24 maxlen: 24
217.175.80.0/20 maxlen: 20
217.175.80.0/22 maxlen: 22
217.175.80.0/24 maxlen: 24
217.175.84.0/22 maxlen: 22
217.175.88.0/22 maxlen: 22
147.236.144.0/22 maxlen: 24
147.236.144.0/21 maxlen: 21
147.236.144.0/20 maxlen: 20
147.236.148.0/22 maxlen: 22
141.226.120.0/23 maxlen: 23
141.226.120.0/22 maxlen: 22
147.236.152.0/23 maxlen: 23
147.236.152.0/22 maxlen: 22
147.236.152.0/21 maxlen: 21
141.226.122.0/23 maxlen: 23
147.236.154.0/23 maxlen: 23
147.236.156.0/22 maxlen: 22
147.236.156.0/24 maxlen: 24
147.236.157.0/24 maxlen: 24
185.182.79.0/24 maxlen: 24
185.108.82.0/23 maxlen: 23
185.108.82.0/24 maxlen: 24
185.108.80.0/23 maxlen: 23
185.108.80.0/22 maxlen: 22
185.108.83.0/24 maxlen: 24
2a00:7c40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 329791328 (0x13a83760)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8a851ddae5a64cc38825395be9a507da95ab7cf
Validity
Not Before: Jun 28 10:00:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fcbbde7e2648f6dc526e0c4f0756290910275384
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:17:f1:4b:19:ae:ee:b9:19:55:bd:75:90:38:
74:6a:c2:64:c3:82:1a:71:8d:10:a8:51:46:b6:16:
d8:f0:1a:5e:9f:cd:04:4c:9f:c4:e3:f6:85:18:32:
c9:fa:2e:62:5b:75:b5:ff:45:db:59:bb:2e:1f:90:
d9:a3:b2:51:92:28:5e:a6:14:d5:61:17:e2:7a:ff:
c5:41:5c:fc:ce:88:f6:88:1e:1a:8b:55:ea:44:2e:
9f:8d:6e:7a:97:b3:50:38:26:21:b0:fe:a1:fc:88:
72:6f:68:49:db:ba:b4:5e:66:85:de:9e:8d:4e:0d:
9d:8d:f4:af:fd:0d:c4:e6:a9:63:0a:75:13:58:7c:
c9:c8:3f:3b:60:99:41:6b:38:51:09:15:6d:99:dd:
76:77:d2:40:a1:c2:d1:e9:8b:ba:ae:69:1c:aa:70:
08:d5:c2:f7:09:76:33:39:81:83:42:57:10:ec:d2:
40:42:05:fa:ca:d5:e0:e2:e5:7f:df:6a:1e:24:a9:
94:b0:66:48:d9:fb:d9:6f:dd:24:a4:dd:6c:ae:41:
31:24:4e:3b:6e:6d:42:d4:af:5d:0c:9b:59:37:93:
22:40:8f:a4:5a:90:44:1f:f2:45:3c:92:aa:04:e2:
a0:f5:cb:58:3e:3f:35:56:3a:9c:13:5f:00:27:f7:
39:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:BB:DE:7E:26:48:F6:DC:52:6E:0C:4F:07:56:29:09:10:27:53:84
X509v3 Authority Key Identifier:
keyid:E8:A8:51:DD:AE:5A:64:CC:38:82:53:95:BE:9A:50:7D:A9:5A:B7:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6KhR3a5aZMw4glOVvppQfalat88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/_LvefiZI9txSbgxPB1YpCRAnU4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/6KhR3a5aZMw4glOVvppQfalat88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.208.0.0/21
89.208.56.0/21
89.208.128.0/21
141.226.120.0/22
147.236.144.0/20
147.236.176.0/20
185.108.80.0/22
185.149.252.0/22
185.167.108.0/22
185.175.32.0/22
185.180.100.0/22
185.182.76.0/22
185.184.244.0/22
188.191.224.0/21
217.175.80.0/20
IPv6:
2a00:7c40::/32
Signature Algorithm: sha256WithRSAEncryption
bb:bb:23:9a:f9:0e:31:fb:bb:60:6a:d6:6a:c0:1a:9a:00:da:
03:63:1c:31:82:b5:03:5c:fc:dc:77:11:61:d2:0f:b2:46:f8:
79:7d:81:97:c9:58:08:ee:bd:14:95:5f:53:7e:46:e5:30:2e:
90:b5:ea:3a:e2:02:43:30:3e:37:c1:72:35:b5:32:76:5f:25:
4e:93:6c:e2:af:e8:e7:62:8b:38:0e:4c:1b:ba:43:b4:94:01:
49:d7:95:df:81:a7:0d:80:65:59:a7:93:a1:1e:5e:09:90:73:
2d:3b:97:6e:02:6b:8f:66:64:75:17:13:14:e0:00:d4:be:0a:
a7:b9:da:2f:b2:67:7c:21:91:cc:bf:db:6e:49:08:0b:25:eb:
86:69:a8:1f:79:c4:aa:93:83:77:95:1a:62:f3:9f:fc:fa:58:
b6:d1:df:73:d7:59:d1:8f:47:6f:a4:1e:a9:ec:d1:ac:71:37:
e1:73:41:bd:86:6f:a7:87:e8:65:6b:b5:31:c8:65:70:15:8d:
5b:5b:ce:0e:0c:9e:3e:de:7b:0b:84:63:55:19:41:a1:ca:17:
f8:ce:95:f9:30:d7:ae:b3:1c:84:9f:41:38:ea:82:ab:4d:d6:
c9:3e:96:1d:e0:c8:e9:bc:66:1e:96:1f:28:d8:54:cc:b8:b9:
68:84:63:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:11 2023 by rpki-client on console-ams.rpki-client.org