Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/Cdf71-ji2ZrjmIbVpnprpqcr_Co.roa
File: Cdf71-ji2ZrjmIbVpnprpqcr_Co.roa (raw, json)
Hash identifier: MK/za+D9k2QTs1Gbam8zt9qVj1nyq0a+jBprGfbt4Fs=
Subject key identifier: 09:D7:FB:D7:E8:E2:D9:9A:E3:98:86:D5:A6:7A:6B:A6:A7:2B:FC:2A
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 09781EFE
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/Cdf71-ji2ZrjmIbVpnprpqcr_Co.roa
Signing time: Sat 02 Jul 2022 18:25:25 +0000
ROA not before: Sat 02 Jul 2022 18:25:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3214
IP address blocks: 80.66.196.0/22 maxlen: 24
92.60.42.0/24 maxlen: 24
92.60.41.0/24 maxlen: 24
92.60.40.0/24 maxlen: 24
185.255.55.0/24 maxlen: 24
185.255.53.0/24 maxlen: 24
185.255.52.0/22 maxlen: 24
45.80.188.0/22 maxlen: 24
62.133.35.0/24 maxlen: 24
62.133.33.0/24 maxlen: 24
62.133.32.0/24 maxlen: 24
62.133.32.0/22 maxlen: 24
45.147.48.0/22 maxlen: 24
45.153.244.0/22 maxlen: 24
95.214.164.0/22 maxlen: 24
185.248.84.0/22 maxlen: 24
91.200.241.0/24 maxlen: 24
185.194.52.0/22 maxlen: 24
141.98.196.0/22 maxlen: 24
45.11.45.0/24 maxlen: 24
147.78.179.0/24 maxlen: 24
147.78.178.0/24 maxlen: 24
147.78.177.0/24 maxlen: 24
147.78.176.0/24 maxlen: 24
147.78.176.0/22 maxlen: 24
185.200.64.0/22 maxlen: 24
45.139.192.0/22 maxlen: 24
185.254.75.0/24 maxlen: 24
45.92.157.0/24 maxlen: 24
185.254.72.0/22 maxlen: 24
185.213.148.0/22 maxlen: 24
185.213.151.0/24 maxlen: 24
185.213.149.0/24 maxlen: 24
185.213.148.0/24 maxlen: 24
194.124.216.0/24 maxlen: 24
45.131.152.0/22 maxlen: 24
194.124.228.0/24 maxlen: 24
194.124.227.0/24 maxlen: 24
194.104.152.0/22 maxlen: 24
194.124.213.0/24 maxlen: 24
193.111.90.0/23 maxlen: 24
193.177.220.0/22 maxlen: 24
194.36.222.0/23 maxlen: 24
94.124.116.0/22 maxlen: 24
45.90.210.0/24 maxlen: 24
193.111.30.0/23 maxlen: 24
185.49.32.0/22 maxlen: 24
45.130.23.0/24 maxlen: 24
45.130.22.0/24 maxlen: 24
45.130.21.0/24 maxlen: 24
45.130.20.0/24 maxlen: 24
45.130.20.0/22 maxlen: 24
79.143.140.0/22 maxlen: 24
194.36.24.0/22 maxlen: 24
194.36.25.0/24 maxlen: 24
45.143.232.0/22 maxlen: 24
149.62.44.0/22 maxlen: 24
78.142.192.0/22 maxlen: 24
194.169.180.0/23 maxlen: 24
45.13.198.0/24 maxlen: 24
45.13.199.0/24 maxlen: 24
109.94.168.0/22 maxlen: 24
194.169.54.0/23 maxlen: 24
185.222.216.0/22 maxlen: 24
185.222.216.0/21 maxlen: 24
2a06:4fc0::/29 maxlen: 48
2a07:e900::/29 maxlen: 48
2a09:0:7::/48 maxlen: 48
2a06:57c0::/29 maxlen: 48
2a09:0:4::/48 maxlen: 48
2a09::/29 maxlen: 48
2a0b:4080::/32 maxlen: 48
2a0d:3640::/29 maxlen: 48
2a0c:ed40::/29 maxlen: 48
2a09:0:1::/48 maxlen: 48
2a09:0:1337::/48 maxlen: 64
2a0d:de80::/29 maxlen: 48
2a09:0:6::/48 maxlen: 48
2a09:0:9::/48 maxlen: 48
2a07:fa00::/29 maxlen: 48
2a0d:7540::/29 maxlen: 48
2a03:d9c0::/29 maxlen: 48
2a09:0:3::/48 maxlen: 48
2a10:2600::/29 maxlen: 48
2a0c:59c0::/29 maxlen: 48
2a09:0:11::/48 maxlen: 48
2a0b:89c0::/29 maxlen: 48
2a09:0:8::/48 maxlen: 48
2a0d:4340::/29 maxlen: 48
2a09:0:5::/48 maxlen: 48
2a0e:6200::/29 maxlen: 48
2a07:fe00::/29 maxlen: 48
2a0d:1fc0::/29 maxlen: 48
2a03:d9c0:3000::/48 maxlen: 64
2a03:d9c0:8000::/48 maxlen: 48
2a03:d9c0:c0de::/48 maxlen: 64
2a0d:4bc0::/29 maxlen: 48
2a09:0:2::/48 maxlen: 48
2a10:480::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158867198 (0x9781efe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jul 2 18:25:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=09d7fbd7e8e2d99ae39886d5a67a6ba6a72bfc2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:60:9d:a0:9a:17:78:43:fe:73:91:b8:73:11:
2b:94:34:3f:ab:63:f8:a6:6f:65:35:63:a4:99:cc:
5d:da:f7:56:cd:5f:ce:1a:2e:a8:5e:ce:e5:e9:2c:
19:fe:65:92:ce:43:f4:c7:64:56:70:7d:f3:26:15:
07:b6:d4:b5:fa:5c:ca:96:5a:05:1d:7c:ae:86:5d:
d0:7a:f6:dc:ae:87:2c:3b:02:57:4b:89:2d:5e:f0:
fc:b9:9b:f1:d2:f5:7a:2a:ff:77:5e:99:82:a7:5c:
ea:2b:be:c7:92:4f:8f:fe:92:9a:62:9b:93:6c:e7:
6a:a3:2f:83:53:dd:7e:ab:51:34:15:96:2b:c4:e8:
fe:71:65:40:10:4d:a9:70:9b:d5:c8:d8:0a:6d:79:
79:81:8b:b6:3b:37:b9:88:d8:fa:5c:ac:7f:a4:ef:
52:c8:8d:bc:b1:0a:81:bd:cc:3d:33:2d:2b:7d:31:
01:7f:38:c5:46:a4:f4:3e:52:02:92:2a:0a:97:f5:
a6:a0:af:a4:c1:9e:b1:3d:e3:b2:99:d1:6a:a3:a6:
b0:c3:38:fc:a0:0d:0f:b5:bb:5c:b3:a6:4b:b5:65:
5c:d4:c0:13:78:84:cc:54:a1:01:62:14:92:09:3c:
5c:38:cc:ac:17:d9:4a:ff:dc:58:a9:90:35:ce:52:
41:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:D7:FB:D7:E8:E2:D9:9A:E3:98:86:D5:A6:7A:6B:A6:A7:2B:FC:2A
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/Cdf71-ji2ZrjmIbVpnprpqcr_Co.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.45.0/24
45.13.198.0/23
45.80.188.0/22
45.90.210.0/24
45.92.157.0/24
45.130.20.0/22
45.131.152.0/22
45.139.192.0/22
45.143.232.0/22
45.147.48.0/22
45.153.244.0/22
62.133.32.0/22
78.142.192.0/22
79.143.140.0/22
80.66.196.0/22
91.200.241.0/24
92.60.40.0-92.60.42.255
94.124.116.0/22
95.214.164.0/22
109.94.168.0/22
141.98.196.0/22
147.78.176.0/22
149.62.44.0/22
185.49.32.0/22
185.194.52.0/22
185.200.64.0/22
185.213.148.0/22
185.222.216.0/21
185.248.84.0/22
185.254.72.0/22
185.255.52.0/22
193.111.30.0/23
193.111.90.0/23
193.177.220.0/22
194.36.24.0/22
194.36.222.0/23
194.104.152.0/22
194.124.213.0/24
194.124.216.0/24
194.124.227.0-194.124.228.255
194.169.54.0/23
194.169.180.0/23
IPv6:
2a03:d9c0::/29
2a06:4fc0::/29
2a06:57c0::/29
2a07:e900::/29
2a07:fa00::/29
2a07:fe00::/29
2a09::/29
2a0b:4080::/32
2a0b:89c0::/29
2a0c:59c0::/29
2a0c:ed40::/29
2a0d:1fc0::/29
2a0d:3640::/29
2a0d:4340::/29
2a0d:4bc0::/29
2a0d:7540::/29
2a0d:de80::/29
2a0e:6200::/29
2a10:480::/29
2a10:2600::/29
Signature Algorithm: sha256WithRSAEncryption
2f:21:25:f8:09:03:55:5a:c6:21:08:ab:92:6d:85:e6:bb:8d:
5d:1e:78:d7:6c:b6:df:ce:36:52:a5:c5:b5:91:b3:56:b1:92:
5c:97:18:c1:34:15:b8:c4:3f:b5:33:03:6e:30:0e:a7:24:1f:
fd:43:3f:18:61:49:b0:f3:c6:cc:7d:80:e1:d5:3e:61:45:c4:
bf:5b:68:6a:5f:c3:ec:21:58:18:22:22:19:3e:c0:30:f7:4b:
b3:3c:d8:09:9a:bc:28:1e:9b:27:49:ab:b7:d5:a3:bb:5e:b5:
73:a1:df:0f:fb:db:9f:9d:76:23:91:46:00:51:57:2c:fb:3b:
22:f2:5b:9c:57:cd:3d:7a:fe:15:9a:ff:dd:15:5d:b9:ad:52:
2b:5c:b9:05:7f:a6:b6:58:ec:5e:60:26:f4:56:4f:35:14:d7:
81:a1:0b:d9:0d:26:9a:7b:8b:ae:00:ae:ea:58:e8:51:8a:bb:
2f:0b:e0:b4:b1:cb:1a:f1:de:14:55:17:21:be:87:cd:44:c6:
27:dc:09:82:f3:e7:b3:b0:b5:f4:d3:b4:c5:ce:76:95:b4:46:
fd:1b:42:ae:98:7b:ec:d2:05:9b:4b:b2:26:b7:af:5f:c5:fd:
8a:f9:8e:f7:c9:0d:e4:ab:f4:ff:b8:89:e9:de:d2:1a:cb:23:
e1:83:23:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:36 2023 by rpki-client on console-ams.rpki-client.org