Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/D_huMHv7IwlM6UEtUD2t0yNzwOY.roa
File: D_huMHv7IwlM6UEtUD2t0yNzwOY.roa (raw, json)
Hash identifier: 2TjTMrUiruIv/wKmiOfamX1cGyJOlIX9gTTaDrq+yY8=
Subject key identifier: 0F:F8:6E:30:7B:FB:23:09:4C:E9:41:2D:50:3D:AD:D3:23:73:C0:E6
Certificate issuer: /CN=f51369ccbf86b1e84e1aeb46e6d336d39f752ae7
Certificate serial: 44D500BE
Authority key identifier: F5:13:69:CC:BF:86:B1:E8:4E:1A:EB:46:E6:D3:36:D3:9F:75:2A:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9RNpzL-GsehOGutG5tM20591Kuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/D_huMHv7IwlM6UEtUD2t0yNzwOY.roa
Signing time: Sat 01 Jan 2022 14:06:51 +0000
ROA not before: Sat 01 Jan 2022 14:06:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49685
IP address blocks: 185.110.172.0/22 maxlen: 24
93.191.128.0/21 maxlen: 24
185.110.173.0/24 maxlen: 24
83.96.216.0/22 maxlen: 24
83.96.224.0/19 maxlen: 24
83.96.236.0/22 maxlen: 24
83.96.240.0/22 maxlen: 24
83.96.244.0/22 maxlen: 24
83.96.252.0/22 maxlen: 24
213.187.240.0/21 maxlen: 24
193.93.172.0/22 maxlen: 24
171.33.128.0/21 maxlen: 24
81.30.32.0/20 maxlen: 24
171.33.128.0/24 maxlen: 24
193.242.119.0/24 maxlen: 24
80.255.240.0/20 maxlen: 24
185.110.200.0/22 maxlen: 24
91.205.32.0/22 maxlen: 24
79.170.88.0/21 maxlen: 24
217.21.240.0/20 maxlen: 24
83.96.204.0/22 maxlen: 24
83.96.200.0/22 maxlen: 24
83.96.212.0/22 maxlen: 24
185.15.248.0/22 maxlen: 24
83.96.128.0/17 maxlen: 24
83.96.157.0/24 maxlen: 24
89.31.96.0/21 maxlen: 24
81.4.112.0/22 maxlen: 24
91.216.162.0/24 maxlen: 24
81.4.112.0/21 maxlen: 24
80.246.192.0/20 maxlen: 24
81.4.64.0/19 maxlen: 24
80.246.207.0/24 maxlen: 24
185.95.68.0/22 maxlen: 24
81.4.84.0/22 maxlen: 24
37.17.208.0/20 maxlen: 24
81.4.96.0/22 maxlen: 24
178.18.80.0/20 maxlen: 24
91.142.240.0/20 maxlen: 24
185.21.188.0/22 maxlen: 24
217.149.128.0/20 maxlen: 24
31.223.160.0/20 maxlen: 24
81.21.136.0/21 maxlen: 24
37.230.96.0/21 maxlen: 24
31.3.96.0/21 maxlen: 24
194.60.207.0/24 maxlen: 24
141.138.192.0/20 maxlen: 24
80.84.224.0/20 maxlen: 24
80.84.224.0/19 maxlen: 24
85.158.248.0/21 maxlen: 24
193.138.204.0/22 maxlen: 24
78.108.128.0/20 maxlen: 24
80.84.240.0/20 maxlen: 24
176.74.224.0/19 maxlen: 24
185.3.208.0/22 maxlen: 24
37.34.48.0/21 maxlen: 24
85.10.160.0/19 maxlen: 24
85.222.224.0/21 maxlen: 24
85.10.176.0/22 maxlen: 24
2001:4cb8::/29 maxlen: 48
2001:4cb8:40b::/48 maxlen: 48
2001:4cb8:e::/48 maxlen: 48
2a02:348::/32 maxlen: 48
2a02:348:28::/48 maxlen: 48
2a02:348:29::/48 maxlen: 48
2001:828::/32 maxlen: 48
2a02:348:7d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1154810046 (0x44d500be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f51369ccbf86b1e84e1aeb46e6d336d39f752ae7
Validity
Not Before: Jan 1 14:06:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0ff86e307bfb23094ce9412d503dadd32373c0e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:6a:f1:d1:b3:7f:8b:18:58:0f:15:5e:50:86:
04:d8:b3:ea:40:d2:ec:2b:95:31:6b:33:34:bb:2b:
3a:5f:e7:95:1d:e3:18:04:3c:7f:53:5d:1d:cb:21:
9c:7f:44:8c:34:47:98:d1:f6:71:f8:a8:17:69:53:
71:48:6e:26:1f:99:df:0d:a7:be:5c:b1:27:e4:c7:
86:cb:4a:72:18:0d:76:50:8c:fc:3c:8a:fe:df:a8:
e5:2d:b3:44:39:29:94:d0:6a:86:0a:e2:52:b9:2f:
ac:22:7a:4e:a9:f5:1d:f0:9e:56:6b:3c:b9:3c:c5:
5d:d9:c4:34:e7:1d:a9:2b:55:1f:07:4d:2b:52:3b:
0d:06:80:b6:72:b0:5f:82:61:8f:8c:56:32:e6:14:
56:79:d0:32:e1:a2:95:0f:5b:70:ba:1c:b7:86:3d:
24:5b:45:82:53:87:2b:a1:61:af:b9:91:b6:e5:62:
50:85:09:72:b5:5e:87:0f:6e:f1:f0:53:05:c0:4d:
f9:f5:05:ac:48:4a:76:b4:24:b2:c6:6b:e4:0f:c6:
8e:bc:3e:12:6f:c4:2e:4d:6c:8a:a6:59:85:f3:53:
92:3b:e8:e4:c9:83:07:83:b0:68:bd:26:48:37:98:
6b:22:43:34:20:98:cd:af:e1:fb:5e:bf:14:82:d4:
03:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:F8:6E:30:7B:FB:23:09:4C:E9:41:2D:50:3D:AD:D3:23:73:C0:E6
X509v3 Authority Key Identifier:
keyid:F5:13:69:CC:BF:86:B1:E8:4E:1A:EB:46:E6:D3:36:D3:9F:75:2A:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9RNpzL-GsehOGutG5tM20591Kuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/D_huMHv7IwlM6UEtUD2t0yNzwOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/9RNpzL-GsehOGutG5tM20591Kuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.3.96.0/21
31.223.160.0/20
37.17.208.0/20
37.34.48.0/21
37.230.96.0/21
78.108.128.0/20
79.170.88.0/21
80.84.224.0/19
80.246.192.0/20
80.255.240.0/20
81.4.64.0-81.4.99.255
81.4.112.0/21
81.21.136.0/21
81.30.32.0/20
83.96.128.0/17
85.10.160.0/19
85.158.248.0/21
85.222.224.0/21
89.31.96.0/21
91.142.240.0/20
91.205.32.0/22
91.216.162.0/24
93.191.128.0/21
141.138.192.0/20
171.33.128.0/21
176.74.224.0/19
178.18.80.0/20
185.3.208.0/22
185.15.248.0/22
185.21.188.0/22
185.95.68.0/22
185.110.172.0/22
185.110.200.0/22
193.93.172.0/22
193.138.204.0/22
193.242.119.0/24
194.60.207.0/24
213.187.240.0/21
217.21.240.0/20
217.149.128.0/20
IPv6:
2001:828::/32
2001:4cb8::/29
2a02:348::/32
Signature Algorithm: sha256WithRSAEncryption
8a:f1:32:f2:e5:f4:4b:e7:5e:df:59:03:5b:8f:53:46:c2:fc:
ca:d9:35:d9:f0:af:0a:b8:cc:c2:ab:16:8c:0f:b1:c4:68:fe:
85:3b:86:5b:e7:1b:f3:69:ef:c3:db:eb:ec:94:8e:3e:e3:55:
7e:19:23:20:1d:f0:59:af:06:67:90:d5:f5:7e:c3:35:cc:51:
2c:fe:51:5d:d7:b7:6f:d7:1e:89:82:02:33:1f:50:53:9b:87:
08:a2:e3:b4:cd:ba:69:2a:cc:91:55:b5:77:c8:51:f6:17:51:
62:1d:01:05:f5:85:80:d1:30:ea:04:c6:cf:61:e6:1d:6d:4d:
0f:2f:f7:a1:6b:4e:6e:cb:3e:ca:de:ac:f7:68:9e:2d:2d:b0:
de:07:39:01:e0:31:74:f9:4a:a9:04:eb:97:c0:b7:2d:95:57:
d3:fc:4d:75:f1:71:b0:43:e3:90:02:62:18:00:d8:2f:da:e1:
46:ae:99:fe:c6:3b:6e:80:ee:10:c0:f2:22:c3:8e:4e:1a:26:
f6:a3:cc:5f:61:4f:47:fd:eb:be:a3:71:80:0c:13:45:ae:ac:
5a:66:8a:f9:ce:79:d4:e3:51:2d:56:2c:10:d7:3b:88:45:b6:
20:d7:7f:79:14:54:18:99:32:d2:dc:57:f2:e7:ba:ec:61:54:
b6:be:d2:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:01 2024 by rpki-client on console-fra.rpki-client.org