Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/6b9ee8-924b-4a31-a464-9f99c1477fbe/1/DOcvrutsiCqVAB3TkfzdSZ57H2M.roa
File: DOcvrutsiCqVAB3TkfzdSZ57H2M.roa (raw, json)
Hash identifier: cKSd593b/CAZina1xKDA9aCiBvugZtSwkVwSsNH8m2g=
Subject key identifier: 0C:E7:2F:AE:EB:6C:88:2A:95:00:1D:D3:91:FC:DD:49:9E:7B:1F:63
Certificate issuer: /CN=681ce4d99ba8ebb91a794abfcbdd15bde09c99f8
Certificate serial: 08C48B3E
Authority key identifier: 68:1C:E4:D9:9B:A8:EB:B9:1A:79:4A:BF:CB:DD:15:BD:E0:9C:99:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aBzk2Zuo67kaeUq_y90VveCcmfg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/6b9ee8-924b-4a31-a464-9f99c1477fbe/1/DOcvrutsiCqVAB3TkfzdSZ57H2M.roa
Signing time: Wed 16 Feb 2022 16:42:40 +0000
ROA not before: Wed 16 Feb 2022 16:42:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6752
IP address blocks: 80.80.84.0/22 maxlen: 22
80.80.92.0/22 maxlen: 22
185.87.36.0/22 maxlen: 22
185.33.0.0/22 maxlen: 22
194.158.64.0/22 maxlen: 22
194.158.64.0/24 maxlen: 24
194.158.64.0/19 maxlen: 19
194.158.68.0/22 maxlen: 22
194.158.72.0/23 maxlen: 23
194.158.72.0/22 maxlen: 22
194.158.76.0/22 maxlen: 22
185.87.40.0/22 maxlen: 22
185.87.44.0/22 maxlen: 22
188.241.26.0/23 maxlen: 23
91.187.64.0/19 maxlen: 19
91.187.64.0/22 maxlen: 22
91.187.68.0/22 maxlen: 22
91.187.76.0/22 maxlen: 22
91.187.72.0/22 maxlen: 22
91.187.84.0/22 maxlen: 22
91.187.80.0/22 maxlen: 22
91.187.88.0/22 maxlen: 22
89.150.4.0/22 maxlen: 22
89.150.2.0/23 maxlen: 23
89.150.8.0/22 maxlen: 22
89.150.12.0/22 maxlen: 22
91.187.92.0/22 maxlen: 22
185.194.56.0/22 maxlen: 22
46.172.224.0/19 maxlen: 19
46.172.232.0/22 maxlen: 22
185.4.52.0/22 maxlen: 22
185.132.200.0/22 maxlen: 22
109.111.96.0/22 maxlen: 22
109.111.96.0/19 maxlen: 19
109.111.100.0/22 maxlen: 22
109.111.104.0/22 maxlen: 22
109.111.108.0/22 maxlen: 22
109.111.112.0/22 maxlen: 22
109.111.116.0/22 maxlen: 22
85.94.164.0/22 maxlen: 22
109.111.124.0/22 maxlen: 22
109.111.120.0/22 maxlen: 22
85.94.160.0/19 maxlen: 19
85.94.160.0/22 maxlen: 22
85.94.168.0/22 maxlen: 22
85.94.172.0/22 maxlen: 22
85.94.176.0/22 maxlen: 22
85.94.184.0/22 maxlen: 22
85.94.180.0/22 maxlen: 22
194.158.80.0/22 maxlen: 22
194.158.84.0/22 maxlen: 22
194.158.88.0/22 maxlen: 22
194.158.92.0/22 maxlen: 22
85.94.188.0/22 maxlen: 22
46.175.158.0/24 maxlen: 24
46.175.157.0/24 maxlen: 24
46.175.156.0/24 maxlen: 24
46.175.156.0/22 maxlen: 22
46.175.159.0/24 maxlen: 24
2a02:8060::/31 maxlen: 31
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147098430 (0x8c48b3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=681ce4d99ba8ebb91a794abfcbdd15bde09c99f8
Validity
Not Before: Feb 16 16:42:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0ce72faeeb6c882a95001dd391fcdd499e7b1f63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:49:82:08:30:90:5d:c4:37:3c:fb:e3:75:aa:
f3:90:82:71:07:05:d2:de:97:8f:db:f2:48:39:52:
ac:48:34:19:79:b0:e1:20:20:92:74:cb:12:fa:08:
b2:21:32:c5:03:66:e2:33:d9:37:3d:47:1c:39:12:
8e:6d:cc:b4:99:a6:a3:02:24:ff:07:17:84:1a:76:
ed:db:5a:2e:ec:41:b5:1a:bb:30:06:c2:ea:39:35:
89:68:cc:7f:ca:9a:f0:8c:c8:2e:81:97:d9:1d:9b:
64:a4:4c:59:88:32:f2:50:44:9a:0c:b1:b1:d1:4f:
a8:db:4f:3d:6c:ad:f8:9e:61:8a:bb:2e:b7:9c:fb:
4d:b6:3b:07:00:e7:6b:36:4c:f6:79:12:2b:10:87:
8a:8f:ab:66:b4:d6:d5:93:33:a4:f4:1f:f1:54:ac:
48:9b:c1:8a:26:7c:92:d8:0b:c5:26:c5:98:c5:d4:
fc:1d:9d:d8:2e:bc:1d:7d:e9:41:73:5b:7a:69:b8:
f9:57:27:0a:30:61:5d:8f:5b:71:fe:60:7e:0d:b3:
11:10:d9:ad:57:48:2c:54:f1:8d:5f:4f:5a:a9:60:
1a:45:90:27:32:82:9e:74:b5:06:10:20:5f:68:8a:
d8:0e:ac:71:61:ed:f5:6a:a8:b9:6f:49:a7:e7:2a:
83:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:E7:2F:AE:EB:6C:88:2A:95:00:1D:D3:91:FC:DD:49:9E:7B:1F:63
X509v3 Authority Key Identifier:
keyid:68:1C:E4:D9:9B:A8:EB:B9:1A:79:4A:BF:CB:DD:15:BD:E0:9C:99:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aBzk2Zuo67kaeUq_y90VveCcmfg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/6b9ee8-924b-4a31-a464-9f99c1477fbe/1/DOcvrutsiCqVAB3TkfzdSZ57H2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/6b9ee8-924b-4a31-a464-9f99c1477fbe/1/aBzk2Zuo67kaeUq_y90VveCcmfg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.172.224.0/19
46.175.156.0/22
80.80.84.0/22
80.80.92.0/22
85.94.160.0/19
89.150.2.0-89.150.15.255
91.187.64.0/19
109.111.96.0/19
185.4.52.0/22
185.33.0.0/22
185.87.36.0-185.87.47.255
185.132.200.0/22
185.194.56.0/22
188.241.26.0/23
194.158.64.0/19
IPv6:
2a02:8060::/31
Signature Algorithm: sha256WithRSAEncryption
aa:37:80:37:4d:5a:8f:61:f3:ca:09:7d:f9:40:58:8b:a1:f5:
f7:1a:ab:c4:6c:ad:b7:d3:d6:f6:df:46:71:2e:03:4c:56:38:
b8:f8:1b:65:d0:91:6c:8f:6f:da:8d:68:10:c9:ec:d1:d7:ca:
4a:74:cf:84:b0:76:70:6e:37:a4:7a:e2:70:d6:ec:01:56:ea:
60:93:d6:64:5d:73:21:15:62:c7:61:ff:c4:d2:31:98:df:ed:
20:b9:c6:0d:82:22:18:e5:69:67:86:82:0c:4d:9c:b9:bc:87:
d2:e4:5b:9b:eb:24:71:f8:53:53:77:54:81:9f:24:3d:42:ad:
8c:d1:20:b0:8a:68:d7:13:89:62:37:cd:d5:14:57:e2:ea:d1:
4c:fa:07:8d:11:bf:e5:fc:a8:1f:c7:0c:6c:73:31:f2:18:0a:
64:75:0c:84:cd:7a:3c:0f:ef:66:14:de:f2:b9:cd:41:91:41:
02:36:0d:97:08:d8:7d:dd:6c:55:14:43:83:a6:3e:5b:c7:3f:
6e:a9:3b:5a:ad:4d:9f:07:66:87:4e:57:4e:df:ce:eb:6c:af:
47:66:c3:e3:ff:8a:23:e2:89:54:aa:df:f3:b5:5d:46:04:db:
b5:78:55:20:9c:f0:9d:ad:f1:a7:10:73:f2:f8:09:e6:bd:28:
ab:2d:ed:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:10:04 2025 by rpki-client