Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/nXlD-6svKqQ2F-5OTEiyfl5Js1g.roa
File: nXlD-6svKqQ2F-5OTEiyfl5Js1g.roa (raw, json)
Hash identifier: ZvLZ44lSb8a72oft3jEh5mxO7Ve0mp+ipgyEAZ8ZYJQ=
Subject key identifier: 9D:79:43:FB:AB:2F:2A:A4:36:17:EE:4E:4C:48:B2:7E:5E:49:B3:58
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 0830D301
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/nXlD-6svKqQ2F-5OTEiyfl5Js1g.roa
Signing time: Mon 21 Feb 2022 06:55:17 +0000
ROA not before: Mon 21 Feb 2022 06:55:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3214
IP address blocks: 80.66.196.0/22 maxlen: 24
92.60.42.0/24 maxlen: 24
92.60.41.0/24 maxlen: 24
92.60.40.0/24 maxlen: 24
185.255.55.0/24 maxlen: 24
185.255.53.0/24 maxlen: 24
185.255.52.0/22 maxlen: 24
45.80.188.0/22 maxlen: 24
62.133.35.0/24 maxlen: 24
62.133.33.0/24 maxlen: 24
62.133.32.0/24 maxlen: 24
62.133.32.0/22 maxlen: 24
45.147.48.0/22 maxlen: 24
45.153.244.0/22 maxlen: 24
95.214.164.0/22 maxlen: 24
185.248.84.0/22 maxlen: 24
91.200.241.0/24 maxlen: 24
185.194.52.0/22 maxlen: 24
141.98.196.0/22 maxlen: 24
45.11.45.0/24 maxlen: 24
147.78.179.0/24 maxlen: 24
147.78.178.0/24 maxlen: 24
147.78.177.0/24 maxlen: 24
147.78.176.0/24 maxlen: 24
147.78.176.0/22 maxlen: 24
185.200.64.0/22 maxlen: 24
45.139.192.0/22 maxlen: 24
185.254.75.0/24 maxlen: 24
45.92.157.0/24 maxlen: 24
185.254.72.0/22 maxlen: 24
185.213.148.0/22 maxlen: 24
185.213.151.0/24 maxlen: 24
185.213.149.0/24 maxlen: 24
185.213.148.0/24 maxlen: 24
194.124.216.0/24 maxlen: 24
45.131.152.0/22 maxlen: 24
194.124.228.0/24 maxlen: 24
194.124.227.0/24 maxlen: 24
194.104.152.0/22 maxlen: 24
194.124.213.0/24 maxlen: 24
193.111.90.0/23 maxlen: 24
193.177.220.0/22 maxlen: 24
194.36.222.0/23 maxlen: 24
94.124.116.0/22 maxlen: 24
45.90.210.0/24 maxlen: 24
193.111.30.0/23 maxlen: 24
185.49.32.0/22 maxlen: 24
45.130.23.0/24 maxlen: 24
45.130.22.0/24 maxlen: 24
45.130.21.0/24 maxlen: 24
45.130.20.0/24 maxlen: 24
79.143.140.0/22 maxlen: 24
194.36.24.0/22 maxlen: 24
194.36.25.0/24 maxlen: 24
45.143.232.0/22 maxlen: 24
149.62.44.0/22 maxlen: 24
78.142.192.0/22 maxlen: 24
194.169.180.0/23 maxlen: 24
45.13.198.0/24 maxlen: 24
45.13.199.0/24 maxlen: 24
109.94.168.0/22 maxlen: 24
194.169.54.0/23 maxlen: 24
185.222.216.0/22 maxlen: 24
185.222.216.0/21 maxlen: 24
2a06:4fc0::/29 maxlen: 48
2a07:e900::/29 maxlen: 48
2a09:0:7::/48 maxlen: 48
2a06:57c0::/29 maxlen: 48
2a09:0:4::/48 maxlen: 48
2a09::/29 maxlen: 48
2a0b:4080::/32 maxlen: 48
2a0d:3640::/29 maxlen: 48
2a0c:ed40::/29 maxlen: 48
2a09:0:1::/48 maxlen: 48
2a09:0:1337::/48 maxlen: 64
2a0d:de80::/29 maxlen: 48
2a09:0:6::/48 maxlen: 48
2a09:0:9::/48 maxlen: 48
2a07:fa00::/29 maxlen: 48
2a0d:7540::/29 maxlen: 48
2a03:d9c0::/29 maxlen: 48
2a09:0:3::/48 maxlen: 48
2a10:2600::/29 maxlen: 48
2a0c:59c0::/29 maxlen: 48
2a09:0:11::/48 maxlen: 48
2a0b:89c0::/29 maxlen: 48
2a09:0:8::/48 maxlen: 48
2a0d:4340::/29 maxlen: 48
2a09:0:5::/48 maxlen: 48
2a0e:6200::/29 maxlen: 48
2a07:fe00::/29 maxlen: 48
2a0d:1fc0::/29 maxlen: 48
2a03:d9c0:3000::/48 maxlen: 64
2a03:d9c0:8000::/48 maxlen: 48
2a03:d9c0:c0de::/48 maxlen: 64
2a0d:4bc0::/29 maxlen: 48
2a09:0:2::/48 maxlen: 48
2a10:480::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137417473 (0x830d301)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Feb 21 06:55:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d7943fbab2f2aa43617ee4e4c48b27e5e49b358
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2f:13:3a:cf:cd:ef:ca:00:02:71:73:c4:e4:
40:f6:fd:32:b4:72:7b:00:7c:7d:66:83:dd:dc:a7:
79:0a:62:79:bc:d5:f0:e3:5f:65:09:35:9a:2c:13:
b4:8b:46:36:fd:33:34:1c:f8:a5:8b:0e:c3:2f:ff:
bf:45:d3:ed:9e:de:cc:ac:17:9c:d2:66:6c:e5:5b:
a6:27:ac:9f:23:48:80:fc:6c:4e:88:cd:82:c0:a3:
3e:a3:fc:7b:d1:10:6c:89:44:e9:46:08:32:69:92:
76:92:82:c8:f0:b7:e9:72:38:0d:79:0b:ad:07:e0:
be:df:a8:05:09:f8:2a:bc:5d:9b:1f:b3:2a:5e:9d:
38:00:d4:9c:f6:46:8d:b6:1f:b6:e8:f7:2d:1d:fe:
98:4c:ec:8d:4e:53:4a:75:1b:d3:2d:9d:57:c5:39:
05:d2:59:ff:a6:18:84:1b:3b:26:50:2d:f2:4d:61:
d4:9d:3b:3b:56:72:44:b3:30:43:12:38:a9:d5:7f:
a0:e0:25:f8:40:00:86:5a:56:fd:0f:a3:32:14:60:
ee:ab:94:71:e5:b4:a4:47:11:71:a9:d0:b1:f0:e3:
16:98:c0:b2:a5:d7:61:4c:50:35:ee:1e:e2:52:99:
02:09:1c:55:28:55:03:64:0f:5c:82:a5:03:fe:17:
f2:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:79:43:FB:AB:2F:2A:A4:36:17:EE:4E:4C:48:B2:7E:5E:49:B3:58
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/nXlD-6svKqQ2F-5OTEiyfl5Js1g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.45.0/24
45.13.198.0/23
45.80.188.0/22
45.90.210.0/24
45.92.157.0/24
45.130.20.0/22
45.131.152.0/22
45.139.192.0/22
45.143.232.0/22
45.147.48.0/22
45.153.244.0/22
62.133.32.0/22
78.142.192.0/22
79.143.140.0/22
80.66.196.0/22
91.200.241.0/24
92.60.40.0-92.60.42.255
94.124.116.0/22
95.214.164.0/22
109.94.168.0/22
141.98.196.0/22
147.78.176.0/22
149.62.44.0/22
185.49.32.0/22
185.194.52.0/22
185.200.64.0/22
185.213.148.0/22
185.222.216.0/21
185.248.84.0/22
185.254.72.0/22
185.255.52.0/22
193.111.30.0/23
193.111.90.0/23
193.177.220.0/22
194.36.24.0/22
194.36.222.0/23
194.104.152.0/22
194.124.213.0/24
194.124.216.0/24
194.124.227.0-194.124.228.255
194.169.54.0/23
194.169.180.0/23
IPv6:
2a03:d9c0::/29
2a06:4fc0::/29
2a06:57c0::/29
2a07:e900::/29
2a07:fa00::/29
2a07:fe00::/29
2a09::/29
2a0b:4080::/32
2a0b:89c0::/29
2a0c:59c0::/29
2a0c:ed40::/29
2a0d:1fc0::/29
2a0d:3640::/29
2a0d:4340::/29
2a0d:4bc0::/29
2a0d:7540::/29
2a0d:de80::/29
2a0e:6200::/29
2a10:480::/29
2a10:2600::/29
Signature Algorithm: sha256WithRSAEncryption
16:66:ba:74:f8:a5:4c:79:ae:2f:d6:2f:a0:50:9f:50:92:8f:
79:d8:56:7e:45:c8:2e:6a:e4:5b:9d:1a:81:24:77:ba:af:19:
28:17:c0:eb:a0:3e:00:9d:d0:dd:6c:71:cd:3c:05:30:dd:be:
ed:91:e7:86:6a:72:02:51:bc:c6:7b:5c:a0:7a:a3:40:70:d0:
9c:be:a5:38:2c:06:0b:a0:35:95:06:f5:a0:6e:45:1c:b2:70:
a6:f3:60:33:19:d5:7f:d4:6a:5f:3b:78:07:a7:71:51:39:c2:
16:47:07:a6:3d:e4:1b:b8:3a:b7:74:23:ee:60:3f:d8:78:b4:
8e:3c:88:cc:15:ba:b0:4d:9f:95:75:95:a2:a3:d3:af:59:d5:
18:b8:c0:8f:6c:e5:21:1f:9f:30:b6:00:8a:80:e0:7e:2d:67:
81:81:1c:98:75:88:76:ab:fc:3a:cc:24:6f:dc:0e:c6:4c:fd:
07:f8:a7:16:b8:85:d0:07:b7:41:9f:52:42:0c:6d:d3:8d:c7:
71:71:4a:9a:2c:1b:fd:98:80:d9:41:31:8d:23:59:09:ac:98:
97:43:16:cf:b7:56:24:9a:96:16:e4:8e:13:bf:ca:95:7a:56:
54:6c:f4:74:34:9f:27:be:66:4e:2c:cc:57:9c:10:f1:4c:a7:
8a:d1:8b:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:36 2023 by rpki-client on console-ams.rpki-client.org