Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/YnCCITtscFeDMP_VQWjALDNft7Q.roa
File: YnCCITtscFeDMP_VQWjALDNft7Q.roa (raw, json)
Hash identifier: LVsxw+lQ8iCRMvV/F09wkyTMmwXHijPFv3xZTcwvQxw=
Subject key identifier: 62:70:82:21:3B:6C:70:57:83:30:FF:D5:41:68:C0:2C:33:5F:B7:B4
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 089576D2
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/YnCCITtscFeDMP_VQWjALDNft7Q.roa
Signing time: Mon 21 Mar 2022 13:24:09 +0000
ROA not before: Mon 21 Mar 2022 13:24:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59504
IP address blocks: 194.113.104.114/32 maxlen: 32
95.215.110.0/23 maxlen: 23
95.215.108.0/24 maxlen: 24
95.215.108.0/23 maxlen: 23
185.197.73.0/24 maxlen: 24
185.197.72.0/24 maxlen: 24
80.76.42.0/24 maxlen: 24
80.76.40.0/24 maxlen: 24
185.156.179.0/24 maxlen: 24
185.156.178.0/24 maxlen: 24
185.156.178.0/23 maxlen: 23
185.156.177.0/24 maxlen: 24
185.156.176.0/24 maxlen: 24
185.156.176.0/22 maxlen: 22
193.38.232.0/23 maxlen: 23
193.38.234.0/24 maxlen: 24
185.254.190.0/24 maxlen: 24
185.254.189.0/24 maxlen: 24
185.254.188.0/24 maxlen: 24
194.113.104.0/24 maxlen: 24
194.113.107.0/24 maxlen: 24
185.177.115.0/24 maxlen: 24
185.177.113.0/24 maxlen: 24
185.220.35.0/24 maxlen: 24
185.220.34.0/24 maxlen: 24
185.220.33.0/24 maxlen: 24
185.220.32.0/24 maxlen: 24
185.230.142.0/24 maxlen: 24
185.230.140.0/23 maxlen: 23
84.54.36.0/24 maxlen: 24
84.54.39.0/24 maxlen: 24
185.118.64.0/24 maxlen: 24
185.118.64.0/22 maxlen: 22
185.118.66.0/24 maxlen: 24
185.118.66.0/23 maxlen: 23
185.118.65.0/24 maxlen: 24
185.246.117.0/24 maxlen: 24
185.246.116.0/24 maxlen: 24
185.246.119.0/24 maxlen: 24
2a05:fb41::/32 maxlen: 32
2a07:14c0:1::/48 maxlen: 48
2a0d:60c1::/32 maxlen: 32
2a0a:4782::/32 maxlen: 32
2a0a:4781::/32 maxlen: 32
2a0d:7747::/32 maxlen: 32
2a05:fb42::/32 maxlen: 32
2a0a:4780::/32 maxlen: 32
2a0d:60c3::/32 maxlen: 32
2a07:14c1::/32 maxlen: 32
2a0d:60c0::/32 maxlen: 32
2a0a:4783::/32 maxlen: 32
2a07:14c7::/32 maxlen: 32
2a05:fb44::/32 maxlen: 32
2a07:14c6::/32 maxlen: 32
2a07:14c0:3000::/36 maxlen: 36
2a07:14c0:4000::/36 maxlen: 36
2a07:14c0:5000::/36 maxlen: 36
2a07:14c0:1000::/36 maxlen: 36
2a07:14c0:6000::/36 maxlen: 36
2a07:14c0:d000::/36 maxlen: 36
2a0c:5241::/32 maxlen: 32
2a0d:7740::/32 maxlen: 32
2a0c:5247:f000::/36 maxlen: 36
2a0c:5247:e000::/36 maxlen: 36
2a0c:5247:d000::/36 maxlen: 36
2a0c:5247:c000::/36 maxlen: 36
2a0c:5247:7000::/36 maxlen: 36
2a0c:5245::/32 maxlen: 32
2a0a:4785::/32 maxlen: 32
2a07:14c0::/48 maxlen: 48
2a05:fb45::/32 maxlen: 32
2a07:14c2::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144013010 (0x89576d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Mar 21 13:24:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=627082213b6c70578330ffd54168c02c335fb7b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:13:ff:12:24:ab:d6:ea:e5:94:43:ad:7d:c9:
14:f5:99:2c:da:04:86:46:e0:9f:f7:7a:5f:ab:6c:
9d:af:b0:17:d5:a3:a9:13:c0:f8:02:52:c1:30:5a:
8e:c4:cb:7a:5e:6d:8f:0a:3a:04:f8:ac:f5:d7:8b:
dc:13:ee:b9:b3:ca:db:96:cf:f7:81:7f:ff:f6:67:
f0:7e:99:90:1d:32:09:2a:e8:3e:7a:a8:0f:7e:25:
00:c0:ad:db:73:e4:a8:5d:29:35:f6:70:78:0b:66:
43:b5:40:1e:3a:ec:12:4b:68:31:5a:04:c5:57:a8:
0b:29:c2:3f:a0:48:85:35:2f:38:e9:bb:9b:a8:47:
0c:3b:84:43:27:eb:9e:30:55:35:c9:a7:b2:12:de:
91:31:cc:57:ab:a3:ef:a8:86:30:a8:a3:5d:c0:52:
0b:5c:93:53:47:cb:34:ea:0f:c9:48:ba:c2:6d:f9:
a9:d8:44:65:fe:75:df:3a:46:d9:9b:17:2f:79:de:
4a:ac:b2:c3:9b:fa:ac:f1:4a:7c:3c:e7:32:f2:e8:
62:65:f7:5f:fe:4f:b1:ee:d3:2a:f8:7a:ef:35:d6:
78:59:4f:79:82:71:ff:6a:1b:2b:54:d7:74:46:32:
1f:f0:98:5d:76:e9:6c:c8:cc:5b:96:94:e0:39:22:
46:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:70:82:21:3B:6C:70:57:83:30:FF:D5:41:68:C0:2C:33:5F:B7:B4
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/YnCCITtscFeDMP_VQWjALDNft7Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.76.40.0/24
80.76.42.0/24
84.54.36.0/24
84.54.39.0/24
95.215.108.0/22
185.118.64.0/22
185.156.176.0/22
185.177.113.0/24
185.177.115.0/24
185.197.72.0/23
185.220.32.0/22
185.230.140.0-185.230.142.255
185.246.116.0/23
185.246.119.0/24
185.254.188.0-185.254.190.255
193.38.232.0-193.38.234.255
194.113.104.0/24
194.113.107.0/24
IPv6:
2a05:fb41::-2a05:fb42:ffff:ffff:ffff:ffff:ffff:ffff
2a05:fb44::/31
2a07:14c0::/47
2a07:14c0:1000::/36
2a07:14c0:3000::-2a07:14c0:6fff:ffff:ffff:ffff:ffff:ffff
2a07:14c0:d000::/36
2a07:14c1::-2a07:14c2:ffff:ffff:ffff:ffff:ffff:ffff
2a07:14c6::/31
2a0a:4780::/30
2a0a:4785::/32
2a0c:5241::/32
2a0c:5245::/32
2a0c:5247:7000::/36
2a0c:5247:c000::/34
2a0d:60c0::/31
2a0d:60c3::/32
2a0d:7740::/32
2a0d:7747::/32
Signature Algorithm: sha256WithRSAEncryption
45:f3:b7:d9:d5:07:47:0d:48:ce:e4:95:3d:71:15:4f:9c:70:
d6:16:2c:0b:50:20:e6:be:d5:0a:84:da:08:99:02:cf:55:51:
89:95:59:c7:a3:f3:13:f1:a4:7e:6c:16:19:ee:7f:aa:1b:28:
bf:3f:87:53:af:ff:e2:6c:9a:b2:79:15:89:e8:9c:5a:d8:7e:
88:b2:f9:4e:e2:35:55:92:15:47:69:a5:0d:89:59:a1:de:e5:
f9:fd:55:a2:49:9a:74:92:cb:db:ef:73:68:cd:b0:f4:b6:5c:
0d:d6:38:c8:fe:fd:d0:83:71:c6:e6:25:46:fa:02:25:a4:7a:
8f:4c:fd:49:df:3c:7e:d1:d2:c4:00:40:81:35:36:b8:d1:80:
1d:c7:de:07:a3:47:3b:38:41:39:69:2b:1d:78:e0:eb:dc:e0:
27:bc:37:de:c8:2d:4c:23:01:88:67:1f:fb:52:00:9b:13:13:
79:0e:41:c3:7e:aa:4c:d1:1b:af:97:ac:df:80:13:90:a9:41:
1c:ed:aa:9c:47:a4:03:38:29:d3:ae:ba:43:d2:19:3c:b2:e0:
02:2f:81:07:eb:67:96:b5:ef:dd:e0:2c:5b:7b:57:7d:f4:ff:
33:a9:98:7d:17:fd:28:24:1f:8f:6c:0f:b6:60:53:f6:8a:1e:
7c:3b:1b:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:58 2024 by rpki-client on console-ams.rpki-client.org