Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/sHRDfBT4ER7DvqMxo8We_JsHqo8.roa
File: sHRDfBT4ER7DvqMxo8We_JsHqo8.roa (raw, json)
Hash identifier: l5e8G0F50LVkTEfB4eS/Z19HZaRmIgXOpeR0exuW85g=
Subject key identifier: B0:74:43:7C:14:F8:11:1E:C3:BE:A3:31:A3:C5:9E:FC:9B:07:AA:8F
Certificate issuer: /CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Certificate serial: 097DE0B2
Authority key identifier: F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/sHRDfBT4ER7DvqMxo8We_JsHqo8.roa
Signing time: Wed 01 Jun 2022 09:03:20 +0000
ROA not before: Wed 01 Jun 2022 09:03:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13194
IP address blocks: 84.46.139.0/24 maxlen: 24
89.117.69.0/24 maxlen: 24
89.117.93.0/24 maxlen: 24
89.117.92.0/24 maxlen: 24
89.117.14.0/24 maxlen: 24
82.140.177.0/24 maxlen: 24
82.140.180.0/24 maxlen: 24
217.9.248.0/23 maxlen: 23
89.117.225.0/24 maxlen: 24
89.117.223.0/24 maxlen: 24
89.117.221.0/24 maxlen: 24
89.117.220.0/24 maxlen: 24
89.117.125.0/24 maxlen: 24
89.117.127.0/24 maxlen: 24
84.46.204.0/24 maxlen: 24
89.117.138.0/24 maxlen: 24
84.46.207.0/24 maxlen: 24
89.117.141.0/24 maxlen: 24
89.117.156.0/24 maxlen: 24
89.117.165.0/24 maxlen: 24
86.38.245.0/24 maxlen: 24
89.116.124.0/24 maxlen: 24
89.116.129.0/24 maxlen: 24
89.116.143.0/24 maxlen: 24
89.116.151.0/24 maxlen: 24
89.116.155.0/24 maxlen: 24
86.38.215.0/24 maxlen: 24
86.38.230.0/24 maxlen: 24
89.116.232.0/24 maxlen: 24
89.116.235.0/24 maxlen: 24
82.140.130.0/24 maxlen: 24
82.140.128.0/24 maxlen: 24
82.140.129.0/24 maxlen: 24
82.140.159.0/24 maxlen: 24
89.117.10.0/24 maxlen: 24
89.116.162.0/24 maxlen: 24
89.116.160.0/24 maxlen: 24
89.116.176.0/24 maxlen: 24
89.116.174.0/24 maxlen: 24
89.116.178.0/24 maxlen: 24
86.38.41.0/24 maxlen: 24
86.38.73.0/24 maxlen: 24
86.38.74.0/24 maxlen: 24
86.38.72.0/24 maxlen: 24
86.38.75.0/24 maxlen: 24
86.38.1.0/24 maxlen: 24
185.189.154.0/24 maxlen: 24
86.38.152.0/24 maxlen: 24
84.15.0.0/16 maxlen: 16
86.38.153.0/24 maxlen: 24
213.252.223.0/24 maxlen: 24
213.252.224.0/22 maxlen: 22
213.252.234.0/23 maxlen: 23
213.252.236.0/23 maxlen: 23
213.252.252.0/24 maxlen: 24
213.252.254.0/24 maxlen: 24
213.252.192.0/20 maxlen: 20
89.117.255.0/24 maxlen: 24
213.226.128.0/18 maxlen: 18
2a00:f500::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159244466 (0x97de0b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Validity
Not Before: Jun 1 09:03:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b074437c14f8111ec3bea331a3c59efc9b07aa8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e4:3c:5d:3e:88:2f:9b:df:ee:12:be:7d:cb:
a3:b1:68:48:cf:e5:b8:95:47:64:8d:29:0d:23:02:
28:21:1b:17:4c:6e:0c:b4:77:e0:af:b3:d1:51:ce:
39:00:ab:cf:6b:08:a6:7d:bf:9b:9b:b0:cc:92:5b:
ad:b1:d9:40:eb:7f:84:a4:79:46:ef:47:18:19:30:
26:02:25:58:97:07:b3:77:2b:db:33:f8:a3:f1:f7:
58:0c:7c:22:aa:0c:5d:f2:25:aa:43:9c:8c:9b:36:
b4:6e:d3:54:3b:28:9b:99:88:f3:1d:2e:c8:89:df:
81:41:43:10:45:1c:c5:b2:c5:79:57:17:c4:cd:bc:
ff:e4:5d:0b:58:5d:58:2c:3a:7e:ac:5f:67:6e:22:
a6:7b:0e:b0:a1:f1:22:c0:69:ef:4a:24:63:77:3b:
78:4a:f0:fc:b7:90:1b:c9:12:92:e9:69:2d:b6:ef:
e5:da:1e:54:cb:ed:d1:39:26:2c:60:cb:d2:9d:5b:
25:68:44:67:9f:2e:56:ea:91:1e:be:f6:94:6a:48:
0b:20:c4:38:89:01:50:8d:20:f9:be:38:42:2b:34:
83:f7:0a:6c:88:e6:06:96:ef:4d:84:63:64:04:1d:
e0:e0:85:f8:f4:87:2f:19:9e:02:05:d8:3f:26:8c:
ed:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:74:43:7C:14:F8:11:1E:C3:BE:A3:31:A3:C5:9E:FC:9B:07:AA:8F
X509v3 Authority Key Identifier:
keyid:F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/sHRDfBT4ER7DvqMxo8We_JsHqo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.128.0-82.140.130.255
82.140.159.0/24
82.140.177.0/24
82.140.180.0/24
84.15.0.0/16
84.46.139.0/24
84.46.204.0/24
84.46.207.0/24
86.38.1.0/24
86.38.41.0/24
86.38.72.0/22
86.38.152.0/23
86.38.215.0/24
86.38.230.0/24
86.38.245.0/24
89.116.124.0/24
89.116.129.0/24
89.116.143.0/24
89.116.151.0/24
89.116.155.0/24
89.116.160.0/24
89.116.162.0/24
89.116.174.0/24
89.116.176.0/24
89.116.178.0/24
89.116.232.0/24
89.116.235.0/24
89.117.10.0/24
89.117.14.0/24
89.117.69.0/24
89.117.92.0/23
89.117.125.0/24
89.117.127.0/24
89.117.138.0/24
89.117.141.0/24
89.117.156.0/24
89.117.165.0/24
89.117.220.0/23
89.117.223.0/24
89.117.225.0/24
89.117.255.0/24
185.189.154.0/24
213.226.128.0/18
213.252.192.0/20
213.252.223.0-213.252.227.255
213.252.234.0-213.252.237.255
213.252.252.0/24
213.252.254.0/24
217.9.248.0/23
IPv6:
2a00:f500::/29
Signature Algorithm: sha256WithRSAEncryption
80:17:67:f4:07:ca:a1:78:ea:09:ad:8b:f1:b4:14:12:98:fd:
e0:96:a6:ca:7d:e5:85:55:0f:20:73:14:97:2f:c6:90:be:b5:
5d:af:89:a8:33:21:81:a7:d8:9f:c4:49:08:e7:f4:0d:71:38:
68:4f:18:3d:ea:00:b6:aa:45:2a:cc:e2:9f:a7:4a:cb:f8:13:
b2:97:4e:17:e1:6b:3e:a8:7c:dd:2e:3a:cf:77:bf:d9:ec:36:
3c:e2:9b:27:74:ff:1d:47:dd:88:67:7e:fa:c1:30:28:95:6b:
dd:b5:95:f3:58:bf:42:7b:d7:07:d8:05:b5:88:16:62:35:61:
d9:01:a8:97:40:63:46:81:6b:4d:66:e9:7f:cf:89:67:5b:8a:
32:a1:37:5f:9b:fd:1c:04:09:07:58:98:e6:8e:8d:ac:48:6e:
4a:70:6c:e0:14:d7:b3:9a:b8:f6:49:6e:dc:a4:0f:8e:7b:f6:
40:cd:0a:c8:ba:6a:e2:7d:d9:d1:09:d3:7e:68:7b:82:8c:fa:
be:ae:10:74:b0:17:a8:25:c8:72:16:4f:40:13:cb:38:3c:13:
db:82:44:85:65:0b:ab:8f:d1:66:c0:6a:2b:2c:53:21:f4:ca:
b3:04:79:cf:45:f7:51:7c:89:46:f2:10:a6:13:b2:fe:cb:87:
3c:c0:03:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:07 2023 by rpki-client on console-ams.rpki-client.org