Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/25iBpR-rEwslVvU9Ewmnx_-_XrE.roa
File: 25iBpR-rEwslVvU9Ewmnx_-_XrE.roa (raw, json)
Hash identifier: Z6Ey8CClaMf1Pdmja/RxqqOAvFCHhlJ/xGHMyd1CFtY=
Subject key identifier: DB:98:81:A5:1F:AB:13:0B:25:56:F5:3D:13:09:A7:C7:FF:BF:5E:B1
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 01828906D274EF534CD536C6F8407116280C
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/25iBpR-rEwslVvU9Ewmnx_-_XrE.roa
Signing time: Wed 10 Aug 2022 18:31:41 +0000
ROA not before: Wed 10 Aug 2022 18:31:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59504
IP address blocks: 194.113.104.114/32 maxlen: 32
95.215.110.0/23 maxlen: 23
95.215.108.0/23 maxlen: 23
185.197.73.0/24 maxlen: 24
185.197.72.0/24 maxlen: 24
80.76.40.0/24 maxlen: 24
185.156.179.0/24 maxlen: 24
185.156.178.0/24 maxlen: 24
185.156.178.0/23 maxlen: 23
185.156.177.0/24 maxlen: 24
185.156.176.0/24 maxlen: 24
185.156.176.0/22 maxlen: 22
193.38.232.0/23 maxlen: 23
193.38.234.0/24 maxlen: 24
185.254.190.0/24 maxlen: 24
185.254.189.0/24 maxlen: 24
185.254.188.0/24 maxlen: 24
194.113.104.0/24 maxlen: 24
194.113.107.0/24 maxlen: 24
185.177.115.0/24 maxlen: 24
185.177.113.0/24 maxlen: 24
185.220.35.0/24 maxlen: 24
185.220.34.0/24 maxlen: 24
185.220.33.0/24 maxlen: 24
185.220.32.0/24 maxlen: 24
185.230.142.0/24 maxlen: 24
185.230.140.0/23 maxlen: 23
45.142.208.0/24 maxlen: 24
84.54.37.0/24 maxlen: 24
84.54.36.0/24 maxlen: 24
84.54.39.0/24 maxlen: 24
185.118.64.0/24 maxlen: 24
185.118.64.0/22 maxlen: 22
185.118.66.0/24 maxlen: 24
185.118.66.0/23 maxlen: 23
185.118.65.0/24 maxlen: 24
185.246.117.0/24 maxlen: 24
185.246.116.0/24 maxlen: 24
185.246.119.0/24 maxlen: 24
2a05:fb41::/32 maxlen: 32
2a07:14c0:1::/48 maxlen: 48
2a0d:60c1::/32 maxlen: 32
2a0a:4782::/32 maxlen: 32
2a0a:4781::/32 maxlen: 32
2a0d:7747::/32 maxlen: 32
2a05:fb42::/32 maxlen: 32
2a0a:4780::/32 maxlen: 32
2a0d:60c3::/32 maxlen: 32
2a07:14c1::/32 maxlen: 32
2a0d:60c0::/32 maxlen: 32
2a0a:4783::/32 maxlen: 32
2a07:14c7::/32 maxlen: 32
2a05:fb44::/32 maxlen: 32
2a07:14c6::/32 maxlen: 32
2a07:14c0:d000::/36 maxlen: 36
2a07:14c0:6000::/36 maxlen: 36
2a07:14c0:1000::/36 maxlen: 36
2a07:14c0:5000::/36 maxlen: 36
2a07:14c0:4000::/36 maxlen: 36
2a07:14c0:3000::/36 maxlen: 36
2a0c:5241::/32 maxlen: 32
2a0d:7740::/32 maxlen: 32
2a0c:5247:7000::/36 maxlen: 36
2a0c:5247:c000::/36 maxlen: 36
2a0c:5247:d000::/36 maxlen: 36
2a0c:5247:e000::/36 maxlen: 36
2a0c:5247:f000::/36 maxlen: 36
2a0c:5245::/32 maxlen: 32
2a0a:4785::/32 maxlen: 32
2a07:14c0::/48 maxlen: 48
2a05:fb45::/32 maxlen: 32
2a07:14c2::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:89:06:d2:74:ef:53:4c:d5:36:c6:f8:40:71:16:28:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Aug 10 18:31:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db9881a51fab130b2556f53d1309a7c7ffbf5eb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:05:bc:0f:47:30:1d:46:d7:ee:08:e9:57:e3:
8e:b3:e8:a6:fe:be:97:57:09:83:81:54:40:6c:0e:
d6:2e:6f:f0:2b:df:72:d7:aa:6c:7b:54:1e:a7:d5:
ed:37:b8:f0:87:ae:fa:fd:39:d7:e8:53:5f:8d:cf:
ac:3a:37:63:92:12:37:b6:b8:0b:db:77:ee:22:19:
83:22:24:12:a5:02:d7:09:a3:0f:06:41:c0:3e:53:
a8:62:3e:97:03:20:cc:1f:30:4d:ff:79:42:df:7d:
12:b2:c8:e4:2a:07:11:97:7c:15:bd:70:3c:bd:06:
72:a5:16:6f:7c:42:02:38:a2:e1:90:79:97:0d:d4:
fd:7f:a2:a2:ec:30:c7:90:8c:d8:ee:8b:ea:b6:94:
50:df:20:5d:0b:23:6d:fb:8a:80:b9:e0:29:74:f3:
26:99:7d:af:39:c7:71:19:52:88:5b:46:53:3b:07:
e3:22:42:b4:63:7c:91:5d:60:72:6d:f0:11:c0:17:
bc:fc:2c:f2:7f:29:a3:94:d4:ee:63:5d:86:52:4c:
2c:b9:d5:2d:c5:70:43:5e:57:c4:54:14:dd:67:43:
4a:d2:07:f7:d2:b6:e5:3b:b5:23:96:09:86:45:fd:
ec:9c:12:51:f5:70:09:6a:4f:84:a3:88:d8:b8:c5:
53:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:98:81:A5:1F:AB:13:0B:25:56:F5:3D:13:09:A7:C7:FF:BF:5E:B1
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/25iBpR-rEwslVvU9Ewmnx_-_XrE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.208.0/24
80.76.40.0/24
84.54.36.0/23
84.54.39.0/24
95.215.108.0/22
185.118.64.0/22
185.156.176.0/22
185.177.113.0/24
185.177.115.0/24
185.197.72.0/23
185.220.32.0/22
185.230.140.0-185.230.142.255
185.246.116.0/23
185.246.119.0/24
185.254.188.0-185.254.190.255
193.38.232.0-193.38.234.255
194.113.104.0/24
194.113.107.0/24
IPv6:
2a05:fb41::-2a05:fb42:ffff:ffff:ffff:ffff:ffff:ffff
2a05:fb44::/31
2a07:14c0::/47
2a07:14c0:1000::/36
2a07:14c0:3000::-2a07:14c0:6fff:ffff:ffff:ffff:ffff:ffff
2a07:14c0:d000::/36
2a07:14c1::-2a07:14c2:ffff:ffff:ffff:ffff:ffff:ffff
2a07:14c6::/31
2a0a:4780::/30
2a0a:4785::/32
2a0c:5241::/32
2a0c:5245::/32
2a0c:5247:7000::/36
2a0c:5247:c000::/34
2a0d:60c0::/31
2a0d:60c3::/32
2a0d:7740::/32
2a0d:7747::/32
Signature Algorithm: sha256WithRSAEncryption
6a:a5:30:db:3d:ed:d8:f6:27:1b:4a:a4:c9:b2:1e:8b:05:6f:
76:32:b2:29:ef:16:b7:ea:a2:1d:49:3c:51:af:a0:08:c5:c9:
7e:c6:e8:27:9e:cc:8b:ac:ea:04:c1:81:b2:b8:4a:0a:4b:5a:
0f:5e:32:00:7e:3e:cc:24:6b:31:75:39:20:33:1d:6c:3c:33:
0e:e8:94:4d:9e:02:ac:d4:85:8e:0f:86:f6:64:ca:f5:a6:45:
67:c0:c0:64:bc:27:c3:cd:44:d5:bd:30:46:e6:9f:99:d1:d6:
3a:75:b0:e0:22:45:64:7d:e6:a1:d5:0c:22:0a:f9:cd:8a:82:
db:af:ed:bd:3a:d2:eb:a4:13:0a:68:98:71:80:cf:d0:c6:5a:
6e:11:c5:ae:c8:0e:cd:f8:2f:81:61:88:69:45:05:99:69:3f:
5b:00:cb:17:77:30:94:21:ec:0e:37:e5:f6:01:04:58:cc:41:
44:a2:a7:15:eb:36:3d:e0:f3:23:da:91:86:1b:42:53:3f:25:
4c:bf:3f:61:dd:a5:45:0a:70:1e:05:af:1d:97:0d:25:d3:a4:
92:65:fd:b8:7d:5f:f8:42:79:6f:4c:60:6d:aa:30:73:0c:39:
9a:9b:ba:18:c9:fb:61:bd:42:2c:52:77:d8:fe:2a:95:39:f4:
9b:eb:a5:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:05 2024 by rpki-client on console-fra.rpki-client.org