Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/10393d-a030-4af5-8995-8f2d6684c814/1/aDqc_LraRPy9aI_nXERWgwjMsQY.roa
File: aDqc_LraRPy9aI_nXERWgwjMsQY.roa (raw, json)
Hash identifier: 5DWI2A7pSpNpsVgeypO9p5G6u+7aO1fh6VnHmUNU818=
Subject key identifier: 68:3A:9C:FC:BA:DA:44:FC:BD:68:8F:E7:5C:44:56:83:08:CC:B1:06
Certificate issuer: /CN=1c864813c0862e6b4756f8dfda8957c6aeac6654
Certificate serial: 0C8641B2
Authority key identifier: 1C:86:48:13:C0:86:2E:6B:47:56:F8:DF:DA:89:57:C6:AE:AC:66:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HIZIE8CGLmtHVvjf2olXxq6sZlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/10393d-a030-4af5-8995-8f2d6684c814/1/aDqc_LraRPy9aI_nXERWgwjMsQY.roa
Signing time: Sat 01 Jan 2022 10:02:14 +0000
ROA not before: Sat 01 Jan 2022 10:02:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15830
IP address blocks: 81.201.124.0/22 maxlen: 22
81.29.192.0/19 maxlen: 19
81.29.208.0/20 maxlen: 20
81.201.96.0/22 maxlen: 22
89.107.16.0/21 maxlen: 21
81.201.100.0/23 maxlen: 23
81.201.104.0/24 maxlen: 24
81.201.112.0/22 maxlen: 22
81.201.108.0/22 maxlen: 22
81.201.118.0/23 maxlen: 23
88.80.160.0/20 maxlen: 20
88.80.176.0/21 maxlen: 21
85.90.224.0/20 maxlen: 20
217.20.32.0/21 maxlen: 21
217.20.32.0/20 maxlen: 20
217.20.44.0/22 maxlen: 22
217.20.40.0/23 maxlen: 23
217.20.42.0/23 maxlen: 23
85.90.240.0/22 maxlen: 22
212.111.32.0/21 maxlen: 21
217.117.144.0/20 maxlen: 20
80.252.80.0/20 maxlen: 20
87.237.184.0/21 maxlen: 21
213.52.132.0/22 maxlen: 22
213.52.136.0/21 maxlen: 21
213.52.144.0/20 maxlen: 20
213.52.160.0/20 maxlen: 20
213.52.172.0/22 maxlen: 22
213.52.176.0/22 maxlen: 22
213.52.180.0/23 maxlen: 23
213.52.184.0/22 maxlen: 22
213.52.190.0/23 maxlen: 23
213.52.192.0/18 maxlen: 18
188.95.96.0/21 maxlen: 21
80.85.82.0/23 maxlen: 23
80.85.88.0/21 maxlen: 21
212.71.224.0/21 maxlen: 21
212.71.240.0/22 maxlen: 22
80.85.64.0/20 maxlen: 20
109.237.16.0/21 maxlen: 21
62.216.224.0/21 maxlen: 21
109.237.28.0/24 maxlen: 24
85.233.192.0/19 maxlen: 19
62.216.233.0/24 maxlen: 24
62.216.236.0/22 maxlen: 22
85.233.196.0/24 maxlen: 24
62.216.234.0/23 maxlen: 23
85.233.194.0/24 maxlen: 24
62.216.244.0/22 maxlen: 22
85.233.205.0/24 maxlen: 24
62.216.246.0/24 maxlen: 24
62.216.240.0/20 maxlen: 20
213.219.40.0/21 maxlen: 21
213.219.48.0/20 maxlen: 20
62.209.32.0/19 maxlen: 19
212.111.44.0/22 maxlen: 22
85.90.248.0/21 maxlen: 21
212.111.48.0/20 maxlen: 20
85.90.252.0/22 maxlen: 22
213.219.0.0/19 maxlen: 19
217.114.160.0/20 maxlen: 20
87.252.192.0/20 maxlen: 20
213.219.32.0/22 maxlen: 22
87.252.208.0/20 maxlen: 20
217.68.16.0/22 maxlen: 22
217.68.16.0/20 maxlen: 20
217.68.24.0/21 maxlen: 21
217.68.20.0/22 maxlen: 22
89.21.0.0/19 maxlen: 19
213.168.224.0/20 maxlen: 20
82.199.64.0/19 maxlen: 19
213.168.240.0/21 maxlen: 21
213.168.252.0/22 maxlen: 22
2a02:170::/32 maxlen: 32
2001:4d78:f200::/40 maxlen: 40
2001:4d78::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 210125234 (0xc8641b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c864813c0862e6b4756f8dfda8957c6aeac6654
Validity
Not Before: Jan 1 10:02:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=683a9cfcbada44fcbd688fe75c44568308ccb106
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:0d:c6:89:e5:5b:21:8d:25:b3:17:65:30:a8:
e3:05:52:d2:ea:18:38:6f:39:f1:17:c6:13:c1:63:
85:28:8e:59:37:15:7e:a4:5c:8d:39:13:d4:a7:8f:
3c:46:88:0f:d6:bc:bb:71:53:08:f3:3f:7c:7f:e6:
1f:bb:7a:e8:8f:91:d6:c4:73:d6:63:fe:3d:c0:b3:
49:db:f1:7b:fd:9e:78:43:db:07:87:3f:43:76:db:
b0:db:9d:e5:dd:74:95:51:67:bb:b9:08:c8:0b:0a:
36:80:e2:07:1b:02:99:68:a1:16:02:51:e4:65:ae:
8c:a2:1f:fd:ee:a0:5a:80:0c:08:79:8c:1a:99:e5:
4e:8a:64:94:9c:8c:59:1f:78:b4:fc:8d:84:7f:8b:
11:fe:b1:78:ed:aa:4a:13:51:37:8d:cd:52:3b:dc:
83:02:97:55:f2:9e:d4:dd:74:21:14:70:79:18:5a:
74:27:f9:4c:6f:4b:0a:09:56:4b:92:0c:0b:e1:7d:
23:1e:58:e0:43:d4:e6:5e:4d:1d:ff:de:d7:7f:da:
13:5c:fd:d1:da:02:d2:d0:4d:f0:eb:d7:cb:36:75:
e5:24:32:9e:69:6e:4e:b9:b2:ea:9e:6f:68:ff:4b:
68:b1:05:e2:ef:47:03:75:6f:f6:b2:17:8f:1f:51:
17:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:3A:9C:FC:BA:DA:44:FC:BD:68:8F:E7:5C:44:56:83:08:CC:B1:06
X509v3 Authority Key Identifier:
keyid:1C:86:48:13:C0:86:2E:6B:47:56:F8:DF:DA:89:57:C6:AE:AC:66:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HIZIE8CGLmtHVvjf2olXxq6sZlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/10393d-a030-4af5-8995-8f2d6684c814/1/aDqc_LraRPy9aI_nXERWgwjMsQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/10393d-a030-4af5-8995-8f2d6684c814/1/HIZIE8CGLmtHVvjf2olXxq6sZlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.209.32.0/19
62.216.224.0/21
62.216.233.0-62.216.255.255
80.85.64.0/20
80.85.82.0/23
80.85.88.0/21
80.252.80.0/20
81.29.192.0/19
81.201.96.0-81.201.101.255
81.201.104.0/24
81.201.108.0-81.201.115.255
81.201.118.0/23
81.201.124.0/22
82.199.64.0/19
85.90.224.0-85.90.243.255
85.90.248.0/21
85.233.192.0/19
87.237.184.0/21
87.252.192.0/19
88.80.160.0-88.80.183.255
89.21.0.0/19
89.107.16.0/21
109.237.16.0/21
109.237.28.0/24
188.95.96.0/21
212.71.224.0/21
212.71.240.0/22
212.111.32.0/21
212.111.44.0-212.111.63.255
213.52.132.0-213.52.181.255
213.52.184.0/22
213.52.190.0-213.52.255.255
213.168.224.0-213.168.247.255
213.168.252.0/22
213.219.0.0-213.219.35.255
213.219.40.0-213.219.63.255
217.20.32.0/20
217.68.16.0/20
217.114.160.0/20
217.117.144.0/20
IPv6:
2001:4d78::/32
2a02:170::/32
Signature Algorithm: sha256WithRSAEncryption
23:e4:91:b6:ee:3a:cf:ee:51:d9:37:1c:fb:10:5e:63:eb:6b:
d8:31:e7:f3:e9:d0:b3:a8:f8:04:c0:3b:a3:c7:95:28:9c:13:
fc:64:73:28:c6:36:b5:b8:5c:c1:ae:88:5b:41:87:a6:6b:11:
70:a9:3c:8f:bb:17:d7:5a:9f:2d:60:33:83:ef:41:6b:b6:08:
d2:6b:72:69:5d:85:b7:94:1b:a9:92:be:d7:b8:0a:66:e5:99:
87:73:d8:41:4e:5f:65:22:65:6f:22:cc:96:3f:c6:a1:cf:08:
9b:68:ba:8c:f3:5f:70:4f:82:94:7d:63:dd:14:a3:17:46:3b:
4a:28:53:49:df:a9:26:1c:97:c9:a2:1f:3b:70:fe:c1:4c:e6:
7d:4b:62:a7:08:8e:67:0e:bb:a2:c0:f8:4b:91:b5:20:55:99:
17:74:c9:e3:e5:95:20:51:67:60:81:a6:6a:e1:cd:3b:7a:dd:
ea:70:96:28:38:c7:ce:68:28:b8:76:c5:e6:47:9f:9c:66:c2:
c8:ba:df:01:39:62:f2:3a:8a:21:1a:af:c2:36:8b:8a:ff:6a:
ce:ef:97:31:b1:8a:f3:ec:57:5f:e7:7e:86:23:08:c1:96:52:
2d:68:88:91:31:ee:aa:45:08:4a:0c:18:78:ce:99:dc:27:12:
ef:4e:c7:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:33 2023 by rpki-client on console-ams.rpki-client.org