Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/Pq7ec7hO2jKw4WHSRmxDiKkSMyQ.roa
File: Pq7ec7hO2jKw4WHSRmxDiKkSMyQ.roa (raw, json)
Hash identifier: xpD/w/m/rV/gq0utrI+22yD49VKiJ2rXIR1Be5FBaFM=
Subject key identifier: 3E:AE:DE:73:B8:4E:DA:32:B0:E1:61:D2:46:6C:43:88:A9:12:33:24
Certificate issuer: /CN=9da140e8028e6d537600e0888a9af5a971c5db46
Certificate serial: 43198833
Authority key identifier: 9D:A1:40:E8:02:8E:6D:53:76:00:E0:88:8A:9A:F5:A9:71:C5:DB:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/naFA6AKObVN2AOCIipr1qXHF20Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/Pq7ec7hO2jKw4WHSRmxDiKkSMyQ.roa
Signing time: Sat 01 Jan 2022 05:05:26 +0000
ROA not before: Sat 01 Jan 2022 05:05:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1759
IP address blocks: 81.16.64.0/20 maxlen: 20
194.252.0.0/16 maxlen: 24
194.215.0.0/16 maxlen: 24
86.114.0.0/16 maxlen: 16
192.83.96.0/22 maxlen: 24
213.140.160.0/19 maxlen: 19
212.83.96.0/19 maxlen: 24
141.208.0.0/16 maxlen: 16
192.83.100.0/24 maxlen: 24
193.208.0.0/14 maxlen: 24
194.111.0.0/16 maxlen: 24
195.165.0.0/16 maxlen: 24
192.194.0.0/16 maxlen: 24
192.130.0.0/16 maxlen: 24
213.173.128.0/19 maxlen: 19
194.251.0.0/16 maxlen: 24
131.177.0.0/16 maxlen: 16
192.103.92.0/24 maxlen: 24
192.103.105.0/24 maxlen: 24
192.103.106.0/24 maxlen: 24
192.103.112.0/22 maxlen: 24
62.73.32.0/19 maxlen: 24
192.83.64.0/19 maxlen: 24
217.140.128.0/17 maxlen: 17
192.103.116.0/24 maxlen: 24
192.83.0.0/18 maxlen: 24
84.248.0.0/14 maxlen: 24
188.238.0.0/16 maxlen: 24
192.103.85.0/24 maxlen: 24
194.137.0.0/16 maxlen: 24
192.103.86.0/24 maxlen: 24
192.103.91.0/24 maxlen: 24
88.86.128.0/19 maxlen: 24
192.58.80.0/21 maxlen: 24
212.149.64.0/18 maxlen: 18
192.58.88.0/23 maxlen: 24
195.156.0.0/16 maxlen: 24
213.28.0.0/16 maxlen: 24
80.220.0.0/14 maxlen: 24
109.240.0.0/16 maxlen: 24
212.182.192.0/18 maxlen: 24
192.58.42.0/23 maxlen: 24
192.58.44.0/22 maxlen: 24
192.58.48.0/20 maxlen: 24
192.58.64.0/20 maxlen: 24
93.106.0.0/16 maxlen: 24
194.197.0.0/16 maxlen: 24
176.72.0.0/16 maxlen: 24
194.89.0.0/16 maxlen: 24
192.89.0.0/16 maxlen: 24
62.71.0.0/16 maxlen: 24
84.34.0.0/16 maxlen: 16
193.178.133.0/24 maxlen: 24
88.192.0.0/14 maxlen: 24
80.74.192.0/19 maxlen: 24
46.132.0.0/16 maxlen: 24
212.213.0.0/16 maxlen: 24
86.115.0.0/16 maxlen: 24
194.142.0.0/16 maxlen: 24
2001:8b8::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1125746739 (0x43198833)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9da140e8028e6d537600e0888a9af5a971c5db46
Validity
Not Before: Jan 1 05:05:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3eaede73b84eda32b0e161d2466c4388a9123324
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:0b:2f:43:45:97:81:db:0f:33:6c:78:05:bb:
f4:99:ee:61:2a:8c:cc:17:09:a2:d4:a9:78:85:20:
bd:62:09:5b:3a:40:8f:ed:ef:8a:17:39:51:6a:ba:
6f:d4:af:4a:3a:c3:0c:74:37:ad:6a:b5:8a:4e:3b:
9f:cc:76:26:a9:4b:c6:ca:c7:d1:a1:f2:61:51:14:
ed:e2:14:5e:a8:96:d2:38:37:9c:eb:a7:e1:6c:20:
54:22:d9:d8:3c:c9:7b:bd:bc:dd:e6:21:25:5a:c6:
0d:69:12:31:41:d3:64:a7:a0:86:96:ba:2a:e3:44:
36:5b:5a:70:6d:9c:63:e3:30:a1:80:4f:8e:e1:aa:
d8:d7:06:c4:f2:83:8c:24:72:2c:cf:9d:8b:cc:b9:
84:f4:42:50:02:aa:9d:e4:b9:62:57:da:6a:9a:d6:
9d:10:a2:7f:4e:26:99:0d:23:dc:3a:32:14:f3:da:
f1:6f:c1:82:18:4a:36:87:e1:e6:0f:f9:43:74:a8:
e5:29:97:aa:8f:85:3b:b1:42:3c:d5:0f:74:b6:7c:
26:09:0a:2d:5e:32:b4:28:70:e1:14:77:e2:9f:be:
ad:1c:3f:ce:78:78:f7:a3:c0:94:46:6c:cf:c5:23:
e7:f9:9d:14:67:9e:45:a0:99:92:ca:a3:5a:f2:dd:
8b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:AE:DE:73:B8:4E:DA:32:B0:E1:61:D2:46:6C:43:88:A9:12:33:24
X509v3 Authority Key Identifier:
keyid:9D:A1:40:E8:02:8E:6D:53:76:00:E0:88:8A:9A:F5:A9:71:C5:DB:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/naFA6AKObVN2AOCIipr1qXHF20Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/Pq7ec7hO2jKw4WHSRmxDiKkSMyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/naFA6AKObVN2AOCIipr1qXHF20Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.132.0.0/16
62.71.0.0/16
62.73.32.0/19
80.74.192.0/19
80.220.0.0/14
81.16.64.0/20
84.34.0.0/16
84.248.0.0/14
86.114.0.0/15
88.86.128.0/19
88.192.0.0/14
93.106.0.0/16
109.240.0.0/16
131.177.0.0/16
141.208.0.0/16
176.72.0.0/16
188.238.0.0/16
192.58.42.0-192.58.89.255
192.83.0.0-192.83.100.255
192.89.0.0/16
192.103.85.0-192.103.86.255
192.103.91.0-192.103.92.255
192.103.105.0-192.103.106.255
192.103.112.0-192.103.116.255
192.130.0.0/16
192.194.0.0/16
193.178.133.0/24
193.208.0.0/14
194.89.0.0/16
194.111.0.0/16
194.137.0.0/16
194.142.0.0/16
194.197.0.0/16
194.215.0.0/16
194.251.0.0-194.252.255.255
195.156.0.0/16
195.165.0.0/16
212.83.96.0/19
212.149.64.0/18
212.182.192.0/18
212.213.0.0/16
213.28.0.0/16
213.140.160.0/19
213.173.128.0/19
217.140.128.0/17
IPv6:
2001:8b8::/29
Signature Algorithm: sha256WithRSAEncryption
b1:61:3d:e4:30:cb:c6:24:4e:dd:8e:34:8d:5f:6a:b7:6a:3c:
d7:66:ec:cd:59:f1:fc:8a:9a:cf:a7:81:2c:e7:ba:02:17:20:
29:a7:f5:2c:a6:49:d1:e7:c5:84:50:3a:5e:67:8c:a2:af:ac:
5d:4d:09:14:9f:4c:68:f9:f7:45:8a:72:35:80:f6:d4:d1:73:
6d:bf:21:04:42:30:17:53:ec:c7:84:40:2d:fb:c3:f6:5a:fa:
99:e4:8f:53:72:60:02:e1:78:17:aa:64:b0:94:25:69:82:b7:
8a:c8:5e:97:48:3a:e5:27:d2:42:cc:11:90:18:df:aa:4b:29:
79:f5:12:0a:fc:2c:03:9c:fa:d8:7a:90:9c:24:f6:ea:71:79:
28:f8:e5:01:52:01:46:4f:de:b1:8e:75:30:5f:73:b6:f5:1f:
0d:89:a6:90:c7:0b:9f:f4:44:76:63:f4:8b:af:49:73:a7:00:
2d:9d:94:50:55:d2:c1:dc:fd:d8:d6:93:5d:08:64:22:e3:19:
a5:2f:9c:c3:72:4f:40:0b:ff:98:e9:e5:fd:6f:39:43:a0:52:
26:d2:48:8d:26:9c:d1:fa:d9:c1:ab:04:fa:ce:7f:2d:13:4e:
b6:e7:bd:47:3a:49:ef:b5:97:fe:5e:62:d8:34:8e:57:34:7b:
67:23:e1:a4
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:12 2024 by rpki-client on console-fra.rpki-client.org