Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/YecZrAO4cgpcyqdmD3Xwn_9I8iU.roa
File: YecZrAO4cgpcyqdmD3Xwn_9I8iU.roa (raw, json)
Hash identifier: W7NiGRdGXOVSHlYZ/lUjE1h+MMK5x3+fhk1ovvrbMzc=
Subject key identifier: 61:E7:19:AC:03:B8:72:0A:5C:CA:A7:66:0F:75:F0:9F:FF:48:F2:25
Certificate issuer: /CN=1ba51a0bc0f0afebbf6d5d927fe1f9816f52352d
Certificate serial: 02A62E8C
Authority key identifier: 1B:A5:1A:0B:C0:F0:AF:EB:BF:6D:5D:92:7F:E1:F9:81:6F:52:35:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/YecZrAO4cgpcyqdmD3Xwn_9I8iU.roa
Signing time: Sat 01 Jan 2022 13:01:17 +0000
ROA not before: Sat 01 Jan 2022 13:01:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203020
IP address blocks: 89.46.152.0/21 maxlen: 32
84.39.224.0/21 maxlen: 32
93.114.0.0/20 maxlen: 32
92.43.84.0/22 maxlen: 32
95.215.36.0/22 maxlen: 32
185.221.221.0/24 maxlen: 32
202.181.20.0/22 maxlen: 32
91.197.252.0/22 maxlen: 32
103.204.212.0/22 maxlen: 32
58.97.128.0/21 maxlen: 32
78.138.1.0/24 maxlen: 32
78.138.2.0/24 maxlen: 32
89.249.51.0/24 maxlen: 32
138.124.144.0/22 maxlen: 32
78.138.16.0/24 maxlen: 32
89.249.56.0/22 maxlen: 32
185.225.104.0/22 maxlen: 32
94.177.56.0/23 maxlen: 32
94.177.52.0/22 maxlen: 32
94.176.216.0/22 maxlen: 32
185.240.252.0/24 maxlen: 32
185.240.255.0/24 maxlen: 32
93.113.124.0/23 maxlen: 32
89.19.40.0/22 maxlen: 32
89.19.42.0/23 maxlen: 32
188.241.146.0/24 maxlen: 32
188.214.93.0/24 maxlen: 32
89.32.129.0/24 maxlen: 32
185.125.192.0/22 maxlen: 32
77.95.116.0/22 maxlen: 32
89.44.245.0/24 maxlen: 32
45.95.48.0/22 maxlen: 32
45.142.92.0/22 maxlen: 32
185.243.108.0/22 maxlen: 32
45.142.96.0/22 maxlen: 32
185.223.56.0/24 maxlen: 32
185.223.58.0/23 maxlen: 32
94.176.163.0/24 maxlen: 32
203.166.156.0/23 maxlen: 32
188.119.116.0/22 maxlen: 32
188.95.152.0/21 maxlen: 32
94.176.112.0/20 maxlen: 32
91.132.184.0/22 maxlen: 32
185.38.102.0/24 maxlen: 32
31.14.219.0/24 maxlen: 32
150.129.92.0/22 maxlen: 32
45.149.148.0/22 maxlen: 32
203.109.52.0/22 maxlen: 32
89.38.132.0/23 maxlen: 32
203.109.60.0/22 maxlen: 32
31.14.236.0/23 maxlen: 32
58.97.232.0/21 maxlen: 32
83.229.76.0/22 maxlen: 32
119.13.192.0/19 maxlen: 32
58.97.240.0/20 maxlen: 32
89.34.7.0/24 maxlen: 32
83.229.104.0/22 maxlen: 32
121.91.80.0/21 maxlen: 32
78.138.25.0/24 maxlen: 32
185.90.243.0/24 maxlen: 32
78.138.30.0/24 maxlen: 32
91.245.235.0/24 maxlen: 32
78.138.40.0/24 maxlen: 32
78.138.47.0/24 maxlen: 32
78.138.48.0/24 maxlen: 32
78.138.50.0/24 maxlen: 32
45.94.244.0/22 maxlen: 32
89.44.115.0/24 maxlen: 32
45.138.232.0/22 maxlen: 32
89.41.62.0/24 maxlen: 32
209.20.160.0/19 maxlen: 32
185.131.220.0/24 maxlen: 32
93.115.12.0/23 maxlen: 32
77.81.104.0/21 maxlen: 32
89.34.78.0/23 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44445324 (0x2a62e8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ba51a0bc0f0afebbf6d5d927fe1f9816f52352d
Validity
Not Before: Jan 1 13:01:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61e719ac03b8720a5ccaa7660f75f09fff48f225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:0f:aa:f0:85:f3:5c:2d:1c:08:36:e2:53:fa:
0e:a9:97:e8:85:5b:96:8e:b5:b8:12:29:62:8a:c0:
6f:f4:dc:1d:cf:91:8f:97:6d:f4:25:ad:ef:5d:98:
68:8a:a5:61:85:af:86:7c:be:33:7f:08:b9:75:ac:
0a:c3:37:22:20:e9:86:91:a3:82:bc:0b:75:d3:a0:
5b:5c:c0:b1:3f:19:b2:00:04:e7:ed:5b:ff:70:95:
2f:70:f3:82:b0:5e:a7:08:fd:f5:a9:c7:cb:46:fe:
d3:18:ec:0c:b0:62:e2:54:b2:fd:68:df:93:21:0f:
6f:bd:eb:50:f3:c5:9e:67:da:e2:88:16:69:49:ac:
20:ed:62:c9:2b:e2:53:74:55:9f:d5:d4:c7:46:37:
1c:a2:dd:4a:0d:e2:4a:f7:cf:41:e4:c1:d9:59:bc:
23:46:a1:ed:d2:38:e7:b3:7a:4b:2c:f0:db:f1:40:
1b:ee:3b:65:01:5a:4b:61:c3:49:7e:c1:54:17:0e:
cb:06:9b:3f:b3:25:4d:c1:32:4c:a9:12:97:4c:63:
2f:98:de:24:3e:49:68:7d:09:a6:d5:be:60:65:7d:
17:4d:80:f2:60:2b:26:0a:db:06:06:8e:21:53:5c:
de:20:db:7c:81:1f:f8:42:03:75:4c:c9:9e:f9:43:
1e:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:E7:19:AC:03:B8:72:0A:5C:CA:A7:66:0F:75:F0:9F:FF:48:F2:25
X509v3 Authority Key Identifier:
keyid:1B:A5:1A:0B:C0:F0:AF:EB:BF:6D:5D:92:7F:E1:F9:81:6F:52:35:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/YecZrAO4cgpcyqdmD3Xwn_9I8iU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.219.0/24
31.14.236.0/23
45.94.244.0/22
45.95.48.0/22
45.138.232.0/22
45.142.92.0-45.142.99.255
45.149.148.0/22
58.97.128.0/21
58.97.232.0-58.97.255.255
77.81.104.0/21
77.95.116.0/22
78.138.1.0-78.138.2.255
78.138.16.0/24
78.138.25.0/24
78.138.30.0/24
78.138.40.0/24
78.138.47.0-78.138.48.255
78.138.50.0/24
83.229.76.0/22
83.229.104.0/22
84.39.224.0/21
89.19.40.0/22
89.32.129.0/24
89.34.7.0/24
89.34.78.0/23
89.38.132.0/23
89.41.62.0/24
89.44.115.0/24
89.44.245.0/24
89.46.152.0/21
89.249.51.0/24
89.249.56.0/22
91.132.184.0/22
91.197.252.0/22
91.245.235.0/24
92.43.84.0/22
93.113.124.0/23
93.114.0.0/20
93.115.12.0/23
94.176.112.0/20
94.176.163.0/24
94.176.216.0/22
94.177.52.0-94.177.57.255
95.215.36.0/22
103.204.212.0/22
119.13.192.0/19
121.91.80.0/21
138.124.144.0/22
150.129.92.0/22
185.38.102.0/24
185.90.243.0/24
185.125.192.0/22
185.131.220.0/24
185.221.221.0/24
185.223.56.0/24
185.223.58.0/23
185.225.104.0/22
185.240.252.0/24
185.240.255.0/24
185.243.108.0/22
188.95.152.0/21
188.119.116.0/22
188.214.93.0/24
188.241.146.0/24
202.181.20.0/22
203.109.52.0/22
203.109.60.0/22
203.166.156.0/23
209.20.160.0/19
Signature Algorithm: sha256WithRSAEncryption
2e:d7:6b:2e:32:82:39:e3:d0:0d:62:58:98:be:d4:29:ca:41:
81:b6:20:69:b1:05:a6:3f:94:0e:8f:af:cd:8f:93:73:31:e5:
c4:e1:7b:f3:63:6d:b9:82:d3:56:75:73:36:7e:04:1b:2e:3f:
c4:e1:93:ff:e4:50:a3:0c:4b:5e:a3:ee:ab:ae:a1:02:6d:fa:
c0:d2:79:42:f7:ae:b1:ab:40:b9:81:ec:b9:d2:9e:85:95:a0:
ff:43:12:8e:89:d0:d3:5e:19:01:f1:43:6d:c5:1e:bf:74:0f:
2b:47:cd:ae:c5:6e:80:d7:7f:bb:2f:2f:14:61:a2:71:11:29:
67:35:55:ca:b2:e9:ff:40:f1:45:5a:d1:21:92:08:6d:11:27:
8a:09:9c:16:2b:d1:3e:64:a8:ae:92:df:5c:2c:3a:49:e6:31:
81:45:68:f4:78:a0:78:b7:86:4d:4a:56:1c:19:df:c1:06:2d:
eb:59:83:34:44:a8:bc:e9:1a:63:0d:44:40:57:74:54:be:56:
67:5d:a9:11:85:5b:3e:eb:7d:14:71:cd:7a:0f:b6:7f:11:fc:
3c:b7:c1:a3:05:cd:95:f0:99:9e:9a:3e:e2:33:73:02:db:23:
76:1a:17:0b:15:bd:1a:b8:9d:ef:b4:15:d9:5f:5d:1a:de:42:
1b:4a:82:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:17 2023 by rpki-client on console-ams.rpki-client.org