Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/sMMSAtIqNMlMQD-0ZKQ6Y4CEThs.roa
File: sMMSAtIqNMlMQD-0ZKQ6Y4CEThs.roa (raw, json)
Hash identifier: uDOT3RybMukz8vBirQLNIT6mI9bi1/uRmJ9cHW/LoIo=
Subject key identifier: B0:C3:12:02:D2:2A:34:C9:4C:40:3F:B4:64:A4:3A:63:80:84:4E:1B
Certificate issuer: /CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Certificate serial: 096B253B
Authority key identifier: F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/sMMSAtIqNMlMQD-0ZKQ6Y4CEThs.roa
Signing time: Tue 24 May 2022 09:11:13 +0000
ROA not before: Tue 24 May 2022 09:11:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13194
IP address blocks: 84.46.139.0/24 maxlen: 24
89.117.69.0/24 maxlen: 24
89.117.93.0/24 maxlen: 24
89.117.92.0/24 maxlen: 24
89.117.14.0/24 maxlen: 24
82.140.177.0/24 maxlen: 24
82.140.180.0/24 maxlen: 24
89.117.223.0/24 maxlen: 24
89.117.221.0/24 maxlen: 24
89.117.220.0/24 maxlen: 24
89.117.125.0/24 maxlen: 24
89.117.127.0/24 maxlen: 24
84.46.204.0/24 maxlen: 24
89.117.138.0/24 maxlen: 24
84.46.207.0/24 maxlen: 24
89.117.141.0/24 maxlen: 24
89.117.156.0/24 maxlen: 24
89.117.165.0/24 maxlen: 24
86.38.245.0/24 maxlen: 24
89.116.124.0/24 maxlen: 24
89.116.129.0/24 maxlen: 24
89.116.143.0/24 maxlen: 24
89.116.151.0/24 maxlen: 24
89.116.155.0/24 maxlen: 24
86.38.215.0/24 maxlen: 24
86.38.230.0/24 maxlen: 24
89.116.232.0/24 maxlen: 24
89.116.235.0/24 maxlen: 24
82.140.130.0/24 maxlen: 24
82.140.128.0/24 maxlen: 24
82.140.129.0/24 maxlen: 24
82.140.159.0/24 maxlen: 24
89.117.10.0/24 maxlen: 24
89.116.162.0/24 maxlen: 24
89.116.160.0/24 maxlen: 24
89.116.176.0/24 maxlen: 24
89.116.174.0/24 maxlen: 24
89.116.178.0/24 maxlen: 24
86.38.73.0/24 maxlen: 24
86.38.74.0/24 maxlen: 24
86.38.72.0/24 maxlen: 24
86.38.75.0/24 maxlen: 24
185.189.154.0/24 maxlen: 24
86.38.152.0/24 maxlen: 24
84.15.0.0/16 maxlen: 16
86.38.153.0/24 maxlen: 24
213.252.223.0/24 maxlen: 24
213.252.224.0/22 maxlen: 22
213.252.234.0/23 maxlen: 23
213.252.236.0/23 maxlen: 23
213.252.252.0/24 maxlen: 24
213.252.254.0/24 maxlen: 24
213.252.192.0/20 maxlen: 20
89.117.255.0/24 maxlen: 24
213.226.128.0/18 maxlen: 18
2a00:f500::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158016827 (0x96b253b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Validity
Not Before: May 24 09:11:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0c31202d22a34c94c403fb464a43a6380844e1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:55:2d:3c:8f:8d:d4:e7:78:5e:14:39:0b:9f:
34:ba:92:72:c8:2e:4c:aa:7a:18:39:eb:74:bb:58:
2d:1b:58:ce:58:9a:bb:7a:67:94:b0:bf:61:bb:08:
56:76:8f:6e:72:57:04:73:cf:c3:61:38:dc:69:61:
9c:cb:26:4c:4c:27:d7:c2:7a:7e:a2:19:80:bf:de:
96:10:f7:37:6f:98:48:80:fe:b1:3b:76:49:35:98:
0a:46:b8:7e:eb:ca:d1:39:a2:b3:2d:de:cf:2b:40:
6a:a9:c9:d8:ae:c4:80:23:c9:91:3a:c9:38:14:9b:
0d:0f:78:15:23:dc:53:0a:72:0b:53:6d:58:6d:40:
5a:f1:b8:87:d3:87:10:84:77:a8:e2:5c:0f:ae:21:
7c:2d:52:44:a7:a2:4e:a6:cb:5b:f4:9c:44:6b:28:
80:2c:c3:a6:ce:fe:64:b9:16:e6:5b:f6:66:7b:a0:
84:8e:4d:bc:8a:48:d0:09:60:e9:f5:72:10:9f:30:
38:26:69:ee:0f:22:1d:67:e5:af:9e:44:35:5f:a1:
c2:1e:05:63:89:19:07:e8:b5:f6:32:68:dd:4d:04:
cd:9d:5d:46:f6:2b:25:50:62:86:1d:c8:b3:80:ce:
02:9b:be:6f:1d:5e:19:6e:9f:15:40:47:be:5d:af:
37:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:C3:12:02:D2:2A:34:C9:4C:40:3F:B4:64:A4:3A:63:80:84:4E:1B
X509v3 Authority Key Identifier:
keyid:F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/sMMSAtIqNMlMQD-0ZKQ6Y4CEThs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.128.0-82.140.130.255
82.140.159.0/24
82.140.177.0/24
82.140.180.0/24
84.15.0.0/16
84.46.139.0/24
84.46.204.0/24
84.46.207.0/24
86.38.72.0/22
86.38.152.0/23
86.38.215.0/24
86.38.230.0/24
86.38.245.0/24
89.116.124.0/24
89.116.129.0/24
89.116.143.0/24
89.116.151.0/24
89.116.155.0/24
89.116.160.0/24
89.116.162.0/24
89.116.174.0/24
89.116.176.0/24
89.116.178.0/24
89.116.232.0/24
89.116.235.0/24
89.117.10.0/24
89.117.14.0/24
89.117.69.0/24
89.117.92.0/23
89.117.125.0/24
89.117.127.0/24
89.117.138.0/24
89.117.141.0/24
89.117.156.0/24
89.117.165.0/24
89.117.220.0/23
89.117.223.0/24
89.117.255.0/24
185.189.154.0/24
213.226.128.0/18
213.252.192.0/20
213.252.223.0-213.252.227.255
213.252.234.0-213.252.237.255
213.252.252.0/24
213.252.254.0/24
IPv6:
2a00:f500::/29
Signature Algorithm: sha256WithRSAEncryption
80:8b:f1:94:34:7f:f0:f0:91:51:47:ea:9e:6b:26:0a:74:d2:
db:ae:a0:42:39:4a:12:19:d4:3c:f9:fd:00:77:d3:06:27:c1:
c6:ad:de:be:10:34:73:5f:8e:4a:69:0d:d3:ae:f3:e5:44:8a:
04:86:76:03:71:56:20:4f:eb:ff:16:8c:f5:98:89:71:14:7c:
df:ae:68:52:8a:1a:88:e1:9d:7e:e5:44:5f:a8:d7:45:7c:f2:
81:b1:20:49:c8:bd:6e:a1:7e:e6:e8:3a:ee:ab:84:fb:4c:59:
03:46:f1:a4:8d:34:12:bd:20:8f:24:4b:e1:1c:d3:37:92:3f:
73:e2:96:3b:84:5b:d1:9b:27:0a:9f:bc:d8:24:78:d0:04:e5:
3f:01:3e:6a:6a:e3:2d:30:37:04:02:c5:07:f5:ed:03:7b:bc:
6b:7f:6f:e2:5a:60:6f:7a:3a:1f:3e:2b:6a:05:03:ec:e4:ed:
f3:fc:ed:9a:96:f8:95:6c:ee:6a:14:27:48:33:5b:f4:ed:b4:
9e:2d:fa:b4:d0:93:23:92:e1:87:18:5c:18:cc:df:ef:e9:e0:
c3:9b:83:ca:24:90:0a:02:b3:07:d7:6c:da:cd:a9:5c:90:48:
6f:52:31:93:0a:7e:c6:b2:46:86:9a:b2:4f:fb:8d:bb:67:9c:
14:ba:cb:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:26 2023 by rpki-client on console-fra.rpki-client.org