Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/zia4Zhdj7vItlN7Tf0ZGZefKWU4.roa
File: zia4Zhdj7vItlN7Tf0ZGZefKWU4.roa (raw, json)
Hash identifier: f0BeaqDZtSnFBHuedYy7UCyEhsk5iVeVh5l+0Qm61uA=
Subject key identifier: CE:26:B8:66:17:63:EE:F2:2D:94:DE:D3:7F:46:46:65:E7:CA:59:4E
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 08BFC16F
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/zia4Zhdj7vItlN7Tf0ZGZefKWU4.roa
Signing time: Sat 09 Apr 2022 12:07:54 +0000
ROA not before: Sat 09 Apr 2022 12:07:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59504
IP address blocks: 194.113.104.114/32 maxlen: 32
95.215.110.0/23 maxlen: 23
95.215.108.0/24 maxlen: 24
95.215.108.0/23 maxlen: 23
185.197.73.0/24 maxlen: 24
185.197.72.0/24 maxlen: 24
80.76.42.0/24 maxlen: 24
80.76.40.0/24 maxlen: 24
185.156.179.0/24 maxlen: 24
185.156.178.0/24 maxlen: 24
185.156.178.0/23 maxlen: 23
185.156.177.0/24 maxlen: 24
185.156.176.0/24 maxlen: 24
185.156.176.0/22 maxlen: 22
193.38.232.0/23 maxlen: 23
193.38.234.0/24 maxlen: 24
185.254.190.0/24 maxlen: 24
185.254.189.0/24 maxlen: 24
185.254.188.0/24 maxlen: 24
194.113.104.0/24 maxlen: 24
194.113.107.0/24 maxlen: 24
185.177.115.0/24 maxlen: 24
185.177.113.0/24 maxlen: 24
185.220.35.0/24 maxlen: 24
185.220.34.0/24 maxlen: 24
185.220.33.0/24 maxlen: 24
185.220.32.0/24 maxlen: 24
185.230.142.0/24 maxlen: 24
185.230.140.0/23 maxlen: 23
45.142.208.0/24 maxlen: 24
84.54.36.0/24 maxlen: 24
84.54.39.0/24 maxlen: 24
185.118.64.0/24 maxlen: 24
185.118.64.0/22 maxlen: 22
185.118.66.0/24 maxlen: 24
185.118.66.0/23 maxlen: 23
185.118.65.0/24 maxlen: 24
185.246.117.0/24 maxlen: 24
185.246.116.0/24 maxlen: 24
185.246.119.0/24 maxlen: 24
2a05:fb41::/32 maxlen: 32
2a07:14c0:1::/48 maxlen: 48
2a0d:60c1::/32 maxlen: 32
2a0a:4782::/32 maxlen: 32
2a0a:4781::/32 maxlen: 32
2a0d:7747::/32 maxlen: 32
2a05:fb42::/32 maxlen: 32
2a0a:4780::/32 maxlen: 32
2a0d:60c3::/32 maxlen: 32
2a07:14c1::/32 maxlen: 32
2a0d:60c0::/32 maxlen: 32
2a0a:4783::/32 maxlen: 32
2a07:14c7::/32 maxlen: 32
2a05:fb44::/32 maxlen: 32
2a07:14c6::/32 maxlen: 32
2a07:14c0:3000::/36 maxlen: 36
2a07:14c0:4000::/36 maxlen: 36
2a07:14c0:5000::/36 maxlen: 36
2a07:14c0:1000::/36 maxlen: 36
2a07:14c0:6000::/36 maxlen: 36
2a07:14c0:d000::/36 maxlen: 36
2a0c:5241::/32 maxlen: 32
2a0d:7740::/32 maxlen: 32
2a0c:5247:f000::/36 maxlen: 36
2a0c:5247:e000::/36 maxlen: 36
2a0c:5247:d000::/36 maxlen: 36
2a0c:5247:c000::/36 maxlen: 36
2a0c:5247:7000::/36 maxlen: 36
2a0c:5245::/32 maxlen: 32
2a0a:4785::/32 maxlen: 32
2a07:14c0::/48 maxlen: 48
2a05:fb45::/32 maxlen: 32
2a07:14c2::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146784623 (0x8bfc16f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Apr 9 12:07:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce26b8661763eef22d94ded37f464665e7ca594e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a6:8d:9f:20:58:ca:67:b9:29:a7:7b:ee:64:
0c:67:bf:a2:67:c5:2b:da:6a:1c:87:2b:a7:b5:92:
df:35:0c:e3:47:b4:fb:62:74:99:32:94:67:92:20:
31:0e:6c:cb:75:35:24:e1:e3:6c:63:6d:e6:db:61:
73:1d:2d:a0:46:0e:1a:40:c7:05:ee:e9:86:4d:e7:
4c:98:ae:0d:55:9a:76:be:2d:48:7f:54:a7:ab:ab:
3c:5e:16:6c:97:a1:76:60:c9:2a:e3:ea:d7:75:8f:
10:f3:13:26:5f:3b:92:03:b6:ee:19:b2:fc:e0:f6:
7a:f2:5e:0d:26:6a:d1:7c:3f:4e:c8:b6:c7:74:84:
ce:d0:29:c9:b3:76:69:09:dd:ed:e0:8b:7f:4d:55:
0b:83:79:97:a3:53:39:e8:0e:fe:7f:a2:d1:dc:d2:
cd:33:98:a8:48:76:2b:f7:ce:45:f3:8d:48:bc:32:
d5:de:38:be:16:eb:9d:14:0e:75:4b:e6:6c:4b:da:
46:ce:71:38:5e:73:4f:42:ea:8e:62:81:f2:93:54:
82:84:dd:fb:0f:f9:12:fd:cb:df:56:f6:26:d7:2f:
55:66:d9:67:46:30:d1:0a:8a:55:57:50:c4:58:4a:
f5:6d:4b:f5:82:db:70:f9:3f:1b:12:df:50:59:05:
c1:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:26:B8:66:17:63:EE:F2:2D:94:DE:D3:7F:46:46:65:E7:CA:59:4E
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/zia4Zhdj7vItlN7Tf0ZGZefKWU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.208.0/24
80.76.40.0/24
80.76.42.0/24
84.54.36.0/24
84.54.39.0/24
95.215.108.0/22
185.118.64.0/22
185.156.176.0/22
185.177.113.0/24
185.177.115.0/24
185.197.72.0/23
185.220.32.0/22
185.230.140.0-185.230.142.255
185.246.116.0/23
185.246.119.0/24
185.254.188.0-185.254.190.255
193.38.232.0-193.38.234.255
194.113.104.0/24
194.113.107.0/24
IPv6:
2a05:fb41::-2a05:fb42:ffff:ffff:ffff:ffff:ffff:ffff
2a05:fb44::/31
2a07:14c0::/47
2a07:14c0:1000::/36
2a07:14c0:3000::-2a07:14c0:6fff:ffff:ffff:ffff:ffff:ffff
2a07:14c0:d000::/36
2a07:14c1::-2a07:14c2:ffff:ffff:ffff:ffff:ffff:ffff
2a07:14c6::/31
2a0a:4780::/30
2a0a:4785::/32
2a0c:5241::/32
2a0c:5245::/32
2a0c:5247:7000::/36
2a0c:5247:c000::/34
2a0d:60c0::/31
2a0d:60c3::/32
2a0d:7740::/32
2a0d:7747::/32
Signature Algorithm: sha256WithRSAEncryption
3e:bd:d5:64:9a:fa:68:b4:fc:6f:65:52:bf:50:70:fc:27:47:
c6:41:8a:be:a2:c3:9c:16:54:2e:87:2f:0c:b1:98:1b:d8:18:
d0:5b:bc:e0:73:60:b9:24:5f:e4:e4:8e:50:5b:99:6a:80:83:
22:e5:72:ce:a6:d8:af:7b:52:84:ba:a6:ef:f6:06:cd:bc:c9:
8b:31:fa:ac:cc:9b:99:14:b4:b8:a0:32:62:90:26:b7:cf:d7:
d9:db:40:02:cb:5c:b6:51:67:71:24:a3:dd:38:f5:7b:f1:88:
3e:75:bd:e8:9b:de:28:36:5c:23:9b:5a:14:73:a2:ff:f2:1b:
ca:5f:fd:e2:ea:3f:7a:45:0d:37:53:22:9e:85:1c:76:ae:e5:
77:b3:78:14:10:b0:b9:0a:87:5c:b6:a7:0a:c0:d6:89:04:e7:
2a:9f:10:35:12:c5:cc:67:92:d9:d8:f3:e0:4b:f3:09:e0:a2:
b4:16:21:18:4f:c6:73:21:b8:14:ed:30:dd:46:95:68:93:1d:
c8:ff:7e:ea:5e:88:4f:ef:16:5e:87:75:72:2f:b5:fc:d7:6b:
0f:95:57:9d:c8:3e:ee:73:21:45:6a:e2:b0:c0:90:60:66:b1:
3a:f8:bb:70:82:09:4b:e5:83:0e:49:69:bd:bb:9a:f2:e2:1c:
7e:18:3f:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:46 2023 by rpki-client on console-fra.rpki-client.org