Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/Eqlpr5xnATzqZ-qyI7G8aDBfbWM.roa
File: Eqlpr5xnATzqZ-qyI7G8aDBfbWM.roa (raw, json)
Hash identifier: iCdZhNauJ92IByZsIIjPfxjB0m98uJtOE7K627HVmfQ=
Subject key identifier: 12:A9:69:AF:9C:67:01:3C:EA:67:EA:B2:23:B1:BC:68:30:5F:6D:63
Certificate issuer: /CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Certificate serial: 389968CA
Authority key identifier: 21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/Eqlpr5xnATzqZ-qyI7G8aDBfbWM.roa
Signing time: Mon 02 May 2022 07:38:53 +0000
ROA not before: Mon 02 May 2022 07:38:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1680
IP address blocks: 212.29.192.0/18 maxlen: 24
176.13.0.0/16 maxlen: 24
212.235.0.0/17 maxlen: 24
89.138.0.0/16 maxlen: 16
207.232.0.0/18 maxlen: 18
212.29.244.0/24 maxlen: 24
82.166.201.128/25 maxlen: 25
212.150.0.0/16 maxlen: 24
176.12.128.0/17 maxlen: 24
194.90.1.0/24 maxlen: 24
194.90.0.0/16 maxlen: 24
62.90.0.0/16 maxlen: 24
46.117.0.0/16 maxlen: 16
212.143.194.0/24 maxlen: 24
46.210.0.0/16 maxlen: 24
93.173.0.0/16 maxlen: 16
199.203.1.0/24 maxlen: 24
89.139.0.0/16 maxlen: 16
199.203.0.0/16 maxlen: 16
82.166.0.0/16 maxlen: 24
199.203.21.0/24 maxlen: 24
85.65.0.0/16 maxlen: 16
46.116.0.0/16 maxlen: 16
212.143.0.0/16 maxlen: 24
199.203.191.0/24 maxlen: 24
80.250.144.0/20 maxlen: 24
95.35.0.0/16 maxlen: 24
82.166.100.0/22 maxlen: 24
82.166.112.0/21 maxlen: 24
93.172.0.0/16 maxlen: 16
62.0.88.0/22 maxlen: 24
62.0.87.0/24 maxlen: 24
62.0.94.0/24 maxlen: 24
62.0.92.0/23 maxlen: 24
109.253.0.0/16 maxlen: 24
85.64.0.0/16 maxlen: 16
62.0.0.0/16 maxlen: 24
217.132.0.0/16 maxlen: 16
85.250.0.0/16 maxlen: 16
109.186.0.0/16 maxlen: 16
62.0.116.0/22 maxlen: 24
62.0.114.0/23 maxlen: 24
62.0.120.0/21 maxlen: 24
62.0.128.0/23 maxlen: 24
2001:4df0::/32 maxlen: 32
2a02:148::/32 maxlen: 32
2a02:149::/32 maxlen: 32
2001:4df2::/32 maxlen: 32
2001:4df3::/32 maxlen: 32
2a02:148::/29 maxlen: 32
2a02:14b::/32 maxlen: 32
2a02:14f::/32 maxlen: 32
2001:4df7::/32 maxlen: 32
2a02:14e::/32 maxlen: 32
2001:4df6::/32 maxlen: 32
2001:4df5::/32 maxlen: 32
2a02:14c::/32 maxlen: 32
2001:4df0::/29 maxlen: 32
2001:4df1::/32 maxlen: 32
2a02:14a::/32 maxlen: 32
2a02:14d::/32 maxlen: 32
2001:4df4::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 949577930 (0x389968ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Validity
Not Before: May 2 07:38:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=12a969af9c67013cea67eab223b1bc68305f6d63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1d:bb:9a:c0:97:79:f4:a4:a8:a5:0d:95:5a:
fd:72:6f:06:73:39:12:ea:5e:43:36:3d:de:ff:ae:
4f:95:35:9c:f5:1d:ef:df:fd:66:ce:1c:a7:e6:ff:
b4:15:a7:54:e5:4c:d4:2a:9f:10:5f:ce:53:b8:d2:
dd:2c:88:e0:6b:d3:c2:06:7f:91:80:39:57:71:3f:
90:33:bb:3d:9b:6f:7f:26:13:5d:0b:59:33:76:3b:
b4:6b:e6:8b:4d:64:05:17:ff:98:75:c6:74:b9:88:
d9:97:25:7d:ed:ba:8f:ff:7a:02:00:65:a4:9a:0e:
9b:83:1c:59:79:7b:61:cc:ed:46:38:43:5b:82:b5:
d2:29:77:71:cd:ec:f3:f5:39:ae:36:09:4b:78:2b:
00:dd:9a:7f:f9:25:1a:5b:3e:b7:0e:a8:96:fb:bc:
8c:4e:8d:bc:a6:3b:8e:1a:57:1f:67:46:6c:0a:e8:
9d:8e:cf:39:11:cc:13:f6:96:46:d0:f4:5b:26:46:
ef:e3:27:a9:7a:84:52:48:0a:0a:4b:2d:9d:df:71:
da:d7:e2:4a:1c:f8:db:d5:62:c7:b2:50:a0:13:19:
b1:d8:dd:4c:c2:a5:2e:18:99:87:7c:04:8a:80:ff:
02:c6:93:a2:36:2d:01:e3:98:26:41:f0:2f:5c:92:
a8:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:A9:69:AF:9C:67:01:3C:EA:67:EA:B2:23:B1:BC:68:30:5F:6D:63
X509v3 Authority Key Identifier:
keyid:21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/Eqlpr5xnATzqZ-qyI7G8aDBfbWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.116.0.0/15
46.210.0.0/16
62.0.0.0/16
62.90.0.0/16
80.250.144.0/20
82.166.0.0/16
85.64.0.0/15
85.250.0.0/16
89.138.0.0/15
93.172.0.0/15
95.35.0.0/16
109.186.0.0/16
109.253.0.0/16
176.12.128.0-176.13.255.255
194.90.0.0/16
199.203.0.0/16
207.232.0.0/18
212.29.192.0/18
212.143.0.0/16
212.150.0.0/16
212.235.0.0/17
217.132.0.0/16
IPv6:
2001:4df0::/29
2a02:148::/29
Signature Algorithm: sha256WithRSAEncryption
c3:66:6b:10:c5:00:24:7e:9f:a2:2b:d9:cd:a3:b0:4a:9c:07:
dc:9e:52:69:4f:b6:60:01:5d:4b:94:41:98:b5:ed:42:af:d1:
8f:52:9b:aa:50:b6:ee:15:bc:36:5b:2c:40:ef:ce:28:a3:4b:
bd:31:53:74:ca:d4:02:50:05:c1:96:6f:26:f1:1f:00:71:08:
4e:50:e0:4f:f1:5c:25:b7:3b:c8:1c:83:9e:c1:57:df:8d:0a:
ae:85:82:ad:36:fe:e6:29:dc:e0:6b:a6:f8:80:70:37:e7:5d:
21:c8:05:24:c9:d5:a4:82:41:2f:ad:8e:e4:6d:67:a0:eb:73:
5f:cb:a1:ed:3d:4c:5b:7f:47:4f:22:8f:70:86:15:74:79:c1:
70:c4:b8:ba:f3:76:f3:83:d0:57:26:63:ad:dd:d6:90:4e:9a:
26:3e:f8:a6:36:76:23:20:79:ab:d5:4b:5a:6c:4b:9b:03:29:
9d:b8:6d:56:93:4c:e4:a4:5c:94:a3:7b:08:44:78:c7:13:3f:
f2:31:3a:d5:ee:b0:ae:2f:04:04:c7:7c:1b:c1:7c:28:20:f1:
67:4c:7b:2b:8a:46:7d:7e:30:8e:e0:63:c9:b0:82:14:14:5f:
0f:aa:9e:1f:69:eb:65:44:f7:10:c8:19:e6:70:05:8c:ab:86:
5b:50:88:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:38 2023 by rpki-client on console-ams.rpki-client.org