Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/4892a9-3b37-4d39-9c2b-d83ed140d28d/1/aTRVB9Egh2nPkzjmBgREpL5zQ1I.roa
File: aTRVB9Egh2nPkzjmBgREpL5zQ1I.roa (raw, json)
Hash identifier: vmjQOYSQbK353cnd28d9blk0bIC7bq0U9/ce3+wWXTw=
Subject key identifier: 69:34:55:07:D1:20:87:69:CF:93:38:E6:06:04:44:A4:BE:73:43:52
Certificate issuer: /CN=4173eeb8d02f5f64788b3fdc78d6bab8a55fd16a
Certificate serial: 12936A48
Authority key identifier: 41:73:EE:B8:D0:2F:5F:64:78:8B:3F:DC:78:D6:BA:B8:A5:5F:D1:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QXPuuNAvX2R4iz_ceNa6uKVf0Wo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/4892a9-3b37-4d39-9c2b-d83ed140d28d/1/aTRVB9Egh2nPkzjmBgREpL5zQ1I.roa
Signing time: Tue 14 Jun 2022 10:26:44 +0000
ROA not before: Tue 14 Jun 2022 10:26:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198610
IP address blocks: 45.80.68.0/24 maxlen: 24
45.80.69.0/24 maxlen: 24
45.80.70.0/24 maxlen: 24
45.80.71.0/24 maxlen: 24
45.147.176.0/24 maxlen: 24
45.147.177.0/24 maxlen: 24
45.147.178.0/24 maxlen: 24
45.147.179.0/24 maxlen: 24
5.181.109.0/24 maxlen: 24
5.181.110.0/24 maxlen: 24
5.181.111.0/24 maxlen: 24
5.181.108.0/24 maxlen: 24
45.141.77.0/24 maxlen: 24
45.141.78.0/24 maxlen: 24
45.141.76.0/24 maxlen: 24
45.67.57.0/24 maxlen: 24
45.67.58.0/24 maxlen: 24
45.141.79.0/24 maxlen: 24
45.67.56.0/24 maxlen: 24
45.67.59.0/24 maxlen: 24
185.19.204.0/24 maxlen: 24
185.19.205.0/24 maxlen: 24
185.19.206.0/24 maxlen: 24
185.19.207.0/24 maxlen: 24
193.168.46.0/24 maxlen: 24
193.168.47.0/24 maxlen: 24
193.168.48.0/24 maxlen: 24
45.12.16.0/24 maxlen: 24
45.12.17.0/24 maxlen: 24
45.12.18.0/24 maxlen: 24
45.12.19.0/24 maxlen: 24
95.214.61.0/24 maxlen: 24
95.214.62.0/24 maxlen: 24
95.214.63.0/24 maxlen: 24
95.214.60.0/24 maxlen: 24
81.200.112.0/24 maxlen: 24
81.200.113.0/24 maxlen: 24
213.139.208.0/24 maxlen: 24
81.200.114.0/24 maxlen: 24
213.139.209.0/24 maxlen: 24
81.200.115.0/24 maxlen: 24
81.200.116.0/24 maxlen: 24
81.200.118.0/24 maxlen: 24
213.139.210.0/24 maxlen: 24
213.139.211.0/24 maxlen: 24
81.200.117.0/24 maxlen: 24
81.200.119.0/24 maxlen: 24
91.106.206.0/24 maxlen: 24
91.106.200.0/21 maxlen: 21
91.106.200.0/24 maxlen: 24
91.106.201.0/24 maxlen: 24
91.106.202.0/24 maxlen: 24
91.106.203.0/24 maxlen: 24
91.106.204.0/24 maxlen: 24
91.106.205.0/24 maxlen: 24
91.106.207.0/24 maxlen: 24
62.113.97.0/24 maxlen: 24
62.113.98.0/24 maxlen: 24
62.113.96.0/24 maxlen: 24
62.113.104.0/24 maxlen: 24
62.113.105.0/24 maxlen: 24
62.113.99.0/24 maxlen: 24
62.113.100.0/24 maxlen: 24
62.113.101.0/24 maxlen: 24
62.113.102.0/24 maxlen: 24
62.113.103.0/24 maxlen: 24
62.113.110.0/24 maxlen: 24
62.113.111.0/24 maxlen: 24
62.113.106.0/24 maxlen: 24
62.113.107.0/24 maxlen: 24
62.113.108.0/24 maxlen: 24
62.113.109.0/24 maxlen: 24
193.200.72.0/24 maxlen: 24
193.200.73.0/24 maxlen: 24
193.200.74.0/24 maxlen: 24
193.200.75.0/24 maxlen: 24
217.172.24.0/24 maxlen: 24
217.172.27.0/24 maxlen: 24
217.172.25.0/24 maxlen: 24
217.172.26.0/24 maxlen: 24
185.78.30.0/24 maxlen: 24
185.78.28.0/22 maxlen: 22
185.78.31.0/24 maxlen: 24
185.78.28.0/24 maxlen: 24
185.78.29.0/24 maxlen: 24
45.84.224.0/24 maxlen: 24
45.84.225.0/24 maxlen: 24
45.84.226.0/24 maxlen: 24
45.84.227.0/24 maxlen: 24
185.225.34.0/24 maxlen: 24
185.225.35.0/24 maxlen: 24
185.225.32.0/24 maxlen: 24
185.225.33.0/24 maxlen: 24
185.50.24.0/24 maxlen: 24
185.50.24.0/22 maxlen: 22
45.90.32.0/24 maxlen: 24
45.90.33.0/24 maxlen: 24
45.90.34.0/24 maxlen: 24
45.90.35.0/24 maxlen: 24
5.101.153.244/32 maxlen: 32
87.236.17.122/32 maxlen: 32
5.101.153.242/32 maxlen: 32
185.50.25.0/24 maxlen: 24
185.50.26.0/24 maxlen: 24
185.50.27.0/24 maxlen: 24
45.130.42.0/24 maxlen: 24
45.130.43.0/24 maxlen: 24
45.130.40.0/24 maxlen: 24
45.130.41.0/24 maxlen: 24
193.176.76.0/24 maxlen: 24
193.176.77.0/24 maxlen: 24
193.176.78.0/24 maxlen: 24
193.176.79.0/24 maxlen: 24
5.101.154.191/32 maxlen: 32
31.129.98.0/24 maxlen: 24
31.129.96.0/24 maxlen: 24
87.236.16.0/24 maxlen: 24
87.236.17.0/24 maxlen: 24
87.236.16.0/21 maxlen: 21
87.236.21.0/24 maxlen: 24
87.236.22.0/24 maxlen: 24
87.236.23.0/24 maxlen: 24
87.236.18.0/24 maxlen: 24
87.236.19.0/24 maxlen: 24
87.236.20.0/24 maxlen: 24
185.155.118.0/24 maxlen: 24
5.101.152.0/24 maxlen: 24
5.101.152.0/21 maxlen: 21
5.101.153.0/24 maxlen: 24
5.101.154.0/24 maxlen: 24
5.101.155.0/24 maxlen: 24
5.101.156.0/24 maxlen: 24
5.101.157.0/24 maxlen: 24
5.101.158.0/24 maxlen: 24
5.101.159.0/24 maxlen: 24
2a04:bac0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 311650888 (0x12936a48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4173eeb8d02f5f64788b3fdc78d6bab8a55fd16a
Validity
Not Before: Jun 14 10:26:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=69345507d1208769cf9338e6060444a4be734352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:00:22:f3:ce:c8:47:1f:54:c6:83:48:be:bb:
ad:58:eb:c3:cd:27:a4:43:63:bf:3a:58:eb:98:e9:
e1:84:15:a2:fe:c7:e7:bc:f1:05:19:5f:e7:8e:54:
72:e6:5b:57:19:38:bd:1a:90:d2:78:5f:cc:46:69:
46:16:fd:dc:1b:c0:20:9b:5d:f3:66:80:9a:b4:36:
1a:8d:f4:20:7e:11:a7:25:7d:71:b5:d8:6d:6a:8f:
5b:99:90:0f:8e:d9:68:7e:89:c0:8f:09:f2:7e:31:
3e:d7:e8:bd:09:21:d0:25:e7:56:eb:18:26:2d:3a:
9e:74:00:aa:ec:66:76:19:86:30:e2:e2:c3:b8:ac:
72:d5:41:9a:06:66:c8:b0:fe:ff:9e:fc:a0:9c:46:
d6:91:a6:89:17:8c:1a:27:61:82:f7:17:5f:ab:d3:
24:f1:ea:78:16:0f:2c:05:1d:f9:f3:36:92:1a:98:
77:3f:1f:38:37:2c:11:8e:72:53:19:67:0e:d0:45:
3b:d5:29:7e:3f:76:b3:77:65:6a:33:6b:a6:8a:be:
69:6b:7d:ba:be:d4:12:c5:f6:e4:25:de:59:c1:ab:
9b:57:f4:18:74:1c:02:dc:56:2c:3c:11:57:c6:df:
1d:db:f1:7b:fa:a1:d9:1b:7b:e4:02:73:f1:00:90:
ce:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:34:55:07:D1:20:87:69:CF:93:38:E6:06:04:44:A4:BE:73:43:52
X509v3 Authority Key Identifier:
keyid:41:73:EE:B8:D0:2F:5F:64:78:8B:3F:DC:78:D6:BA:B8:A5:5F:D1:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QXPuuNAvX2R4iz_ceNa6uKVf0Wo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4892a9-3b37-4d39-9c2b-d83ed140d28d/1/aTRVB9Egh2nPkzjmBgREpL5zQ1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4892a9-3b37-4d39-9c2b-d83ed140d28d/1/QXPuuNAvX2R4iz_ceNa6uKVf0Wo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.101.152.0/21
5.181.108.0/22
31.129.96.0/24
31.129.98.0/24
45.12.16.0/22
45.67.56.0/22
45.80.68.0/22
45.84.224.0/22
45.90.32.0/22
45.130.40.0/22
45.141.76.0/22
45.147.176.0/22
62.113.96.0/20
81.200.112.0/21
87.236.16.0/21
91.106.200.0/21
95.214.60.0/22
185.19.204.0/22
185.50.24.0/22
185.78.28.0/22
185.155.118.0/24
185.225.32.0/22
193.168.46.0-193.168.48.255
193.176.76.0/22
193.200.72.0/22
213.139.208.0/22
217.172.24.0/22
IPv6:
2a04:bac0::/29
Signature Algorithm: sha256WithRSAEncryption
95:c5:73:c6:94:e9:b8:81:f1:a9:dd:40:ae:ae:29:26:be:8a:
3a:20:b6:e7:3c:fb:d1:4b:ff:19:04:e6:40:ce:f5:1f:49:bc:
6c:8b:c3:e2:c7:4e:39:35:c7:1b:00:08:02:06:55:29:df:a1:
ec:39:13:4c:20:c3:45:a7:5e:4f:06:f4:ca:50:97:b7:00:4d:
7d:d0:bc:1b:32:4b:ee:45:8c:83:74:45:c0:76:1f:0d:58:4c:
6e:84:f5:d3:c0:9d:f1:ee:b8:48:93:d1:90:fe:22:a3:57:c4:
a8:74:8a:89:b7:d5:75:b6:fa:3d:33:be:c4:34:e5:81:c6:e4:
bd:52:29:54:70:94:03:8a:74:39:0c:b1:eb:41:a2:c4:c1:e4:
f3:e0:ec:d8:7f:30:4b:cd:92:3c:cf:2e:26:db:25:65:36:fa:
47:a5:68:98:4b:39:b2:22:34:dc:d3:e4:f9:23:ab:87:44:e5:
4d:e6:fb:1a:c1:bc:24:5b:43:e8:aa:fa:f9:c5:8e:e1:31:26:
3d:bd:4d:54:4d:fd:53:e9:64:79:76:0e:29:3d:f7:93:85:39:
3d:6b:44:7e:07:1b:23:43:fd:83:75:db:cf:74:7d:06:e5:9e:
f9:55:c7:87:99:56:2f:fa:26:76:2a:f3:c6:df:18:71:86:6c:
d9:0f:dd:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:33:31 2025 by rpki-client