Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/7O6GYPgOXMiQAlLbHG5OMddfRws.roa
File: 7O6GYPgOXMiQAlLbHG5OMddfRws.roa (raw, json)
Hash identifier: X+RbGKHAEElF/GsexYlTZn1uog2132B2xH7Cgnui0So=
Subject key identifier: EC:EE:86:60:F8:0E:5C:C8:90:02:52:DB:1C:6E:4E:31:D7:5F:47:0B
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3B5ACE7B
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/7O6GYPgOXMiQAlLbHG5OMddfRws.roa
Signing time: Tue 22 Mar 2022 11:30:40 +0000
ROA not before: Tue 22 Mar 2022 11:30:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20804
IP address blocks: 88.220.224.0/19 maxlen: 19
88.220.252.0/24 maxlen: 24
88.220.253.0/24 maxlen: 24
88.220.165.0/24 maxlen: 24
88.220.181.0/24 maxlen: 24
88.220.185.0/24 maxlen: 24
88.220.192.0/20 maxlen: 20
88.220.208.0/20 maxlen: 20
88.220.0.0/17 maxlen: 17
213.172.160.0/19 maxlen: 19
88.220.107.0/24 maxlen: 24
88.220.114.0/24 maxlen: 24
88.220.116.0/24 maxlen: 24
88.220.117.0/24 maxlen: 24
88.220.120.0/22 maxlen: 22
88.220.128.0/18 maxlen: 18
88.220.132.0/23 maxlen: 23
88.220.152.0/23 maxlen: 23
88.220.52.0/24 maxlen: 24
88.220.60.0/23 maxlen: 23
88.220.66.0/23 maxlen: 23
88.220.65.0/24 maxlen: 24
88.220.84.0/24 maxlen: 24
88.220.81.0/24 maxlen: 24
82.177.249.0/24 maxlen: 24
82.177.251.0/24 maxlen: 24
81.15.254.0/23 maxlen: 23
81.15.254.0/24 maxlen: 24
81.15.255.0/24 maxlen: 24
82.177.177.0/24 maxlen: 24
82.177.179.0/24 maxlen: 24
82.177.183.0/24 maxlen: 24
82.177.182.0/24 maxlen: 24
82.177.192.0/24 maxlen: 24
82.177.199.0/24 maxlen: 24
82.177.195.0/24 maxlen: 24
82.177.206.0/24 maxlen: 24
82.177.207.0/24 maxlen: 24
195.136.164.0/23 maxlen: 23
82.177.21.0/24 maxlen: 24
195.136.176.0/22 maxlen: 22
195.136.174.0/23 maxlen: 23
82.177.27.0/24 maxlen: 24
82.177.35.0/24 maxlen: 24
82.177.37.0/24 maxlen: 24
82.177.43.0/24 maxlen: 24
81.15.128.0/17 maxlen: 17
82.177.48.0/24 maxlen: 24
82.177.50.0/24 maxlen: 24
82.177.46.0/24 maxlen: 24
81.15.136.0/23 maxlen: 23
82.177.52.0/23 maxlen: 23
81.15.133.0/24 maxlen: 24
82.177.54.0/24 maxlen: 24
195.136.113.0/24 maxlen: 24
195.136.114.0/23 maxlen: 23
82.177.2.0/24 maxlen: 24
195.136.148.0/22 maxlen: 22
195.136.156.0/23 maxlen: 23
82.177.0.0/16 maxlen: 16
82.177.119.0/24 maxlen: 24
81.15.201.0/24 maxlen: 24
82.177.122.0/24 maxlen: 24
81.15.203.0/24 maxlen: 24
81.15.204.0/23 maxlen: 23
82.177.127.0/24 maxlen: 24
81.15.214.0/23 maxlen: 23
82.177.133.0/24 maxlen: 24
81.15.217.0/24 maxlen: 24
81.15.218.0/24 maxlen: 24
82.177.140.0/23 maxlen: 23
81.15.222.0/24 maxlen: 24
81.15.225.0/24 maxlen: 24
81.15.227.0/24 maxlen: 24
81.15.232.0/24 maxlen: 24
81.15.237.0/24 maxlen: 24
81.15.239.0/24 maxlen: 24
81.15.242.0/24 maxlen: 24
82.177.164.0/24 maxlen: 24
82.177.165.0/24 maxlen: 24
82.177.68.0/22 maxlen: 22
81.15.150.0/24 maxlen: 24
81.15.156.0/24 maxlen: 24
82.177.90.0/24 maxlen: 24
82.177.91.0/24 maxlen: 24
82.177.90.0/23 maxlen: 23
81.15.174.0/24 maxlen: 24
81.15.175.0/24 maxlen: 24
195.136.252.0/24 maxlen: 24
81.15.184.0/23 maxlen: 23
81.15.182.0/23 maxlen: 23
82.177.102.0/23 maxlen: 24
81.15.187.0/24 maxlen: 24
81.15.191.0/24 maxlen: 24
82.177.112.0/22 maxlen: 22
82.177.108.0/23 maxlen: 23
81.15.198.0/24 maxlen: 24
81.15.199.0/24 maxlen: 24
81.15.195.0/24 maxlen: 24
81.15.194.0/24 maxlen: 24
194.183.32.0/19 maxlen: 19
194.183.32.0/23 maxlen: 23
194.183.34.0/23 maxlen: 23
195.136.65.0/24 maxlen: 24
195.136.88.0/22 maxlen: 22
195.136.4.0/22 maxlen: 22
195.136.0.0/16 maxlen: 16
194.183.56.0/23 maxlen: 23
195.136.16.0/22 maxlen: 22
194.183.54.0/24 maxlen: 24
194.183.55.0/24 maxlen: 24
195.136.21.0/24 maxlen: 24
195.136.27.0/24 maxlen: 24
195.136.25.0/24 maxlen: 24
195.136.34.0/23 maxlen: 23
195.136.38.0/23 maxlen: 23
195.136.48.0/24 maxlen: 24
2a00:4120:8000:4::/64 maxlen: 64
2a00:4120:8000:70::/65 maxlen: 65
2a00:4120:8000:2::/64 maxlen: 64
2a00:4120::/32 maxlen: 32
2a00:4120:8000:5::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 995806843 (0x3b5ace7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Mar 22 11:30:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ecee8660f80e5cc8900252db1c6e4e31d75f470b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:0e:c5:2e:71:28:91:c9:3e:00:9e:15:a0:a9:
20:16:4a:5b:24:1e:05:b2:c0:65:15:e0:e3:5e:76:
a6:88:50:21:59:9a:07:72:3a:c0:f9:ba:11:ae:81:
12:2c:f9:38:2d:98:df:1c:d1:21:ea:03:cc:08:6a:
10:6f:ca:7e:72:ca:bf:a1:43:b6:a0:3c:6a:72:32:
71:83:f8:c7:28:5d:f2:8c:32:52:e3:9a:25:f2:d6:
ce:34:a1:6b:97:33:0b:24:74:69:33:13:8a:5f:cf:
6b:c1:cf:65:c2:5d:cd:05:39:11:fe:4b:29:89:26:
5f:b6:16:3f:56:bf:8a:59:58:b0:59:cd:a3:11:1c:
2c:d6:5b:48:1d:7f:7e:ce:b1:db:40:95:72:df:98:
5b:02:99:d3:b3:91:57:13:e6:f5:7c:98:c6:5b:80:
d8:69:1f:23:0b:a7:36:39:5f:8c:19:94:d7:eb:cb:
1e:b4:8d:c8:25:b2:29:52:4c:dc:83:14:76:a4:ff:
51:38:75:32:a8:eb:c4:42:cb:c0:5c:e7:2d:19:bc:
25:c4:d5:81:9e:d0:5e:2b:4c:41:4a:91:c7:f7:7d:
c4:8e:b7:9c:a6:90:81:ba:63:c1:2b:a7:7c:3a:fb:
03:bb:d2:cc:64:66:15:55:7f:4a:9d:ae:01:a0:91:
1e:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:EE:86:60:F8:0E:5C:C8:90:02:52:DB:1C:6E:4E:31:D7:5F:47:0B
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/7O6GYPgOXMiQAlLbHG5OMddfRws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.15.128.0/17
82.177.0.0/16
88.220.0.0/16
194.183.32.0/19
195.136.0.0/16
213.172.160.0/19
IPv6:
2a00:4120::/32
Signature Algorithm: sha256WithRSAEncryption
ab:e0:dc:d5:a3:1a:97:ae:c0:01:cd:1c:2e:bd:08:b8:13:56:
8c:57:eb:59:48:ed:93:4d:5f:38:6d:5e:2f:5f:c1:96:d2:71:
01:30:f8:84:2f:4a:5d:b9:56:f8:2c:e6:e6:ad:02:49:81:5e:
fe:79:b8:71:7c:c2:78:4b:34:87:e5:ee:2c:ce:8f:22:8b:05:
df:0a:48:bd:81:bd:da:cd:5e:89:39:b5:66:5e:91:71:20:09:
69:03:0e:4e:7e:b3:2c:3f:9a:d3:1d:82:83:c6:db:2f:de:54:
1a:07:ed:6a:30:f5:2b:72:21:46:b1:ad:e7:5d:5a:04:c0:3b:
8a:84:4d:c4:4b:64:a4:f9:e3:a7:fc:ab:a0:2d:04:23:3b:1b:
24:a7:3b:db:15:9c:6a:61:dc:70:f6:a5:0c:fa:05:f4:55:6b:
f5:8a:33:96:4e:21:fa:ea:25:20:c7:ca:12:8f:9f:f6:f9:f9:
c7:9e:33:19:f9:ba:38:5a:00:24:45:e2:b4:7c:c2:e2:9b:a8:
f9:00:aa:24:4e:9d:7c:a6:6b:0f:41:c5:2d:27:dc:28:6d:c8:
4b:0a:45:d4:a5:aa:94:4c:b0:87:85:39:15:19:3d:d1:12:31:
86:e4:21:b0:48:45:ff:52:3a:6b:11:04:a4:95:ef:7b:59:46:
93:ab:9b:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:02 2023 by rpki-client on console-ams.rpki-client.org