Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/m4ZYcGX5zzUgB0M7rJk7r3SSRKs.roa
File: m4ZYcGX5zzUgB0M7rJk7r3SSRKs.roa (raw, json)
Hash identifier: PMvA1cNHsU3mPUI4xxy5MnKmgxXgpjY+BjN4qnXJwC8=
Subject key identifier: 9B:86:58:70:65:F9:CF:35:20:07:43:3B:AC:99:3B:AF:74:92:44:AB
Certificate issuer: /CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Certificate serial: 0183312F0A1CFF7AC281D0DE1743CC9FDF15
Authority key identifier: F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/m4ZYcGX5zzUgB0M7rJk7r3SSRKs.roa
Signing time: Mon 12 Sep 2022 10:11:49 +0000
ROA not before: Mon 12 Sep 2022 10:11:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13194
IP address blocks: 84.46.139.0/24 maxlen: 24
89.117.69.0/24 maxlen: 24
89.117.93.0/24 maxlen: 24
89.117.92.0/24 maxlen: 24
89.117.14.0/24 maxlen: 24
82.140.177.0/24 maxlen: 24
82.140.180.0/24 maxlen: 24
217.9.248.0/23 maxlen: 23
89.117.225.0/24 maxlen: 24
89.117.223.0/24 maxlen: 24
89.117.221.0/24 maxlen: 24
89.117.220.0/24 maxlen: 24
89.117.125.0/24 maxlen: 24
89.117.127.0/24 maxlen: 24
84.46.204.0/24 maxlen: 24
89.117.138.0/24 maxlen: 24
84.46.207.0/24 maxlen: 24
89.117.141.0/24 maxlen: 24
89.117.156.0/24 maxlen: 24
89.117.165.0/24 maxlen: 24
86.38.245.0/24 maxlen: 24
89.116.124.0/24 maxlen: 24
89.116.129.0/24 maxlen: 24
89.116.143.0/24 maxlen: 24
89.116.151.0/24 maxlen: 24
89.116.155.0/24 maxlen: 24
86.38.215.0/24 maxlen: 24
86.38.230.0/24 maxlen: 24
86.38.228.0/24 maxlen: 24
89.116.232.0/24 maxlen: 24
89.116.235.0/24 maxlen: 24
82.140.130.0/24 maxlen: 24
82.140.128.0/24 maxlen: 24
82.140.129.0/24 maxlen: 24
82.140.159.0/24 maxlen: 24
89.117.10.0/24 maxlen: 24
89.116.162.0/24 maxlen: 24
89.116.160.0/24 maxlen: 24
89.116.176.0/24 maxlen: 24
89.116.174.0/24 maxlen: 24
89.116.178.0/24 maxlen: 24
86.38.41.0/24 maxlen: 24
86.38.73.0/24 maxlen: 24
86.38.74.0/24 maxlen: 24
86.38.72.0/24 maxlen: 24
86.38.75.0/24 maxlen: 24
86.38.1.0/24 maxlen: 24
213.226.161.0/24 maxlen: 24
185.189.154.0/24 maxlen: 24
86.38.152.0/24 maxlen: 24
84.15.0.0/16 maxlen: 24
86.38.153.0/24 maxlen: 24
86.38.81.0/24 maxlen: 24
86.38.84.0/24 maxlen: 24
86.38.97.0/24 maxlen: 24
213.252.223.0/24 maxlen: 24
213.252.224.0/22 maxlen: 22
213.252.234.0/23 maxlen: 23
213.252.236.0/23 maxlen: 23
213.252.252.0/24 maxlen: 24
213.252.254.0/24 maxlen: 24
89.117.247.0/24 maxlen: 24
213.252.192.0/20 maxlen: 20
89.117.255.0/24 maxlen: 24
213.226.128.0/18 maxlen: 24
2a00:f500::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:31:2f:0a:1c:ff:7a:c2:81:d0:de:17:43:cc:9f:df:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Validity
Not Before: Sep 12 10:11:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b86587065f9cf352007433bac993baf749244ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d8:30:f5:92:38:4f:7a:b3:6d:d5:db:86:b8:
a3:b9:fb:c1:e5:36:ca:d0:39:cb:68:10:32:00:ed:
0f:5e:e6:2a:24:2d:d1:7e:e7:a4:c2:14:38:51:c1:
7d:4a:f9:4d:9f:e2:81:0d:5d:70:14:c2:b0:ab:1a:
d7:28:92:09:2c:cc:95:2a:a8:45:f3:a8:fc:78:08:
f0:03:3e:8f:be:19:2f:bd:dc:b6:6a:42:38:4a:94:
88:1f:84:56:07:56:3c:55:4d:90:f4:cf:27:19:6d:
07:43:e0:57:04:46:2d:2a:d4:94:19:f4:9a:e3:45:
e8:5d:f2:d3:6d:86:37:f8:18:d5:8e:0e:08:d5:63:
19:36:d3:08:c1:7f:1d:47:84:b7:b3:f4:6d:91:6b:
9b:09:75:2a:e6:13:24:1a:22:f4:1b:70:4c:c0:04:
10:3f:df:c7:cd:df:93:7c:db:01:66:09:2b:30:8b:
ac:30:9d:30:ab:c7:a7:43:14:b8:b2:b5:3c:90:fc:
16:0d:74:bd:29:9b:77:4a:87:c6:9c:40:94:73:88:
49:b2:74:ad:73:81:c0:ed:12:42:fd:21:fd:65:bb:
13:f9:6d:34:c8:08:35:ff:45:54:e0:aa:33:7d:a3:
a0:25:2a:3b:e5:69:13:89:df:74:2b:56:fc:f5:bf:
b0:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:86:58:70:65:F9:CF:35:20:07:43:3B:AC:99:3B:AF:74:92:44:AB
X509v3 Authority Key Identifier:
keyid:F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/m4ZYcGX5zzUgB0M7rJk7r3SSRKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.128.0-82.140.130.255
82.140.159.0/24
82.140.177.0/24
82.140.180.0/24
84.15.0.0/16
84.46.139.0/24
84.46.204.0/24
84.46.207.0/24
86.38.1.0/24
86.38.41.0/24
86.38.72.0/22
86.38.81.0/24
86.38.84.0/24
86.38.97.0/24
86.38.152.0/23
86.38.215.0/24
86.38.228.0/24
86.38.230.0/24
86.38.245.0/24
89.116.124.0/24
89.116.129.0/24
89.116.143.0/24
89.116.151.0/24
89.116.155.0/24
89.116.160.0/24
89.116.162.0/24
89.116.174.0/24
89.116.176.0/24
89.116.178.0/24
89.116.232.0/24
89.116.235.0/24
89.117.10.0/24
89.117.14.0/24
89.117.69.0/24
89.117.92.0/23
89.117.125.0/24
89.117.127.0/24
89.117.138.0/24
89.117.141.0/24
89.117.156.0/24
89.117.165.0/24
89.117.220.0/23
89.117.223.0/24
89.117.225.0/24
89.117.247.0/24
89.117.255.0/24
185.189.154.0/24
213.226.128.0/18
213.252.192.0/20
213.252.223.0-213.252.227.255
213.252.234.0-213.252.237.255
213.252.252.0/24
213.252.254.0/24
217.9.248.0/23
IPv6:
2a00:f500::/29
Signature Algorithm: sha256WithRSAEncryption
49:56:79:75:14:03:0f:ac:86:3e:92:4e:fa:2f:35:03:3f:41:
0a:d8:2b:24:dc:6b:51:97:e7:4c:b7:9c:03:1a:64:26:27:5b:
13:aa:5a:88:b3:54:72:cb:28:9e:5c:de:15:65:b9:42:fa:c4:
57:17:fc:73:82:f9:82:13:e7:f4:69:98:91:5f:6a:c2:91:33:
66:3a:8a:53:fb:38:4a:e3:85:27:ed:71:c9:f5:b2:b9:b5:49:
14:c6:60:73:1f:ea:83:8f:4d:15:ed:17:db:cf:79:58:08:64:
7b:2e:95:3c:67:3e:6c:9d:16:99:04:14:ed:34:b0:39:f9:cb:
05:e7:ca:3d:fe:b5:f0:11:9a:63:17:a6:fc:f7:65:62:2d:3e:
14:1a:88:8c:e3:58:54:66:bd:c7:c8:16:e6:b8:0e:a7:f6:11:
07:97:e5:1c:7c:45:f8:a8:77:c1:1b:a4:27:ed:fb:7b:f7:df:
10:0a:9e:ab:a1:a5:f4:73:2e:5e:45:53:29:fe:36:fe:d8:ea:
a1:1d:80:30:41:3d:34:4e:f4:10:b3:92:09:de:48:3d:42:86:
45:80:1b:90:82:4e:bb:9f:62:63:ab:4b:f0:0e:3a:d5:d1:37:
2a:e6:eb:e7:38:d1:4a:e4:1a:7f:30:e3:43:de:a9:36:6c:0f:
78:bb:a1:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:26 2023 by rpki-client on console-fra.rpki-client.org