Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/53e496-0097-462a-a989-d67a61d5416d/1/38m3WVe9GgPdxhXRU6S0THu8ePE.roa
File: 38m3WVe9GgPdxhXRU6S0THu8ePE.roa (raw, json)
Hash identifier: 8sw7NgW+NgysPzqcj3Or5Zs2Xo0tX3Ks3YkajfuiBNs=
Subject key identifier: DF:C9:B7:59:57:BD:1A:03:DD:C6:15:D1:53:A4:B4:4C:7B:BC:78:F1
Certificate issuer: /CN=f416539e74934d23a0572f6625dbfdb54e820873
Certificate serial: 317B1CC0
Authority key identifier: F4:16:53:9E:74:93:4D:23:A0:57:2F:66:25:DB:FD:B5:4E:82:08:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9BZTnnSTTSOgVy9mJdv9tU6CCHM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/53e496-0097-462a-a989-d67a61d5416d/1/38m3WVe9GgPdxhXRU6S0THu8ePE.roa
Signing time: Thu 21 Apr 2022 07:45:01 +0000
ROA not before: Thu 21 Apr 2022 07:45:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47394
IP address blocks: 46.255.144.0/24 maxlen: 24
46.255.144.0/22 maxlen: 22
46.255.144.0/21 maxlen: 21
46.255.145.0/24 maxlen: 24
95.107.150.0/24 maxlen: 24
95.107.146.0/23 maxlen: 23
95.107.157.0/24 maxlen: 24
95.107.159.0/24 maxlen: 24
95.107.156.0/24 maxlen: 24
95.107.162.0/24 maxlen: 24
95.107.164.0/24 maxlen: 24
95.107.165.0/24 maxlen: 24
95.107.166.0/24 maxlen: 24
95.107.160.0/22 maxlen: 22
95.107.160.0/21 maxlen: 21
95.107.160.0/24 maxlen: 24
95.107.162.0/23 maxlen: 23
95.107.164.0/22 maxlen: 22
95.107.172.0/23 maxlen: 23
95.107.168.0/22 maxlen: 22
95.107.167.0/24 maxlen: 24
95.107.168.0/23 maxlen: 23
95.107.176.0/21 maxlen: 21
95.107.174.0/24 maxlen: 24
95.107.177.0/24 maxlen: 24
95.107.184.0/22 maxlen: 22
95.107.182.0/24 maxlen: 24
95.107.184.0/21 maxlen: 21
95.107.192.0/24 maxlen: 24
95.107.188.0/22 maxlen: 22
95.107.188.0/24 maxlen: 24
95.107.192.0/22 maxlen: 22
95.107.196.0/22 maxlen: 22
95.107.195.0/24 maxlen: 24
95.107.196.0/23 maxlen: 23
95.107.196.0/24 maxlen: 24
95.107.198.0/23 maxlen: 23
95.107.193.0/24 maxlen: 24
95.107.194.0/24 maxlen: 24
95.107.194.0/23 maxlen: 23
46.255.148.0/24 maxlen: 24
46.255.149.0/24 maxlen: 24
46.255.150.0/24 maxlen: 24
46.255.151.0/24 maxlen: 24
46.255.146.0/24 maxlen: 24
46.255.147.0/24 maxlen: 24
46.255.148.0/22 maxlen: 22
95.107.128.0/21 maxlen: 21
95.107.129.0/24 maxlen: 24
95.107.132.0/24 maxlen: 24
95.107.136.0/24 maxlen: 24
95.107.135.0/24 maxlen: 24
95.107.136.0/21 maxlen: 21
95.107.144.0/23 maxlen: 23
95.107.141.0/24 maxlen: 24
185.118.148.0/22 maxlen: 22
141.8.200.0/21 maxlen: 21
185.122.228.0/24 maxlen: 24
185.122.228.0/23 maxlen: 23
185.122.228.0/22 maxlen: 22
95.107.254.0/23 maxlen: 23
95.107.200.0/24 maxlen: 24
95.107.201.0/24 maxlen: 24
95.107.200.0/21 maxlen: 21
95.107.204.0/22 maxlen: 22
95.107.202.0/23 maxlen: 23
95.107.212.0/23 maxlen: 23
95.107.212.0/24 maxlen: 24
95.107.209.0/24 maxlen: 24
95.107.212.0/22 maxlen: 22
95.107.208.0/23 maxlen: 23
95.107.208.0/21 maxlen: 21
95.107.208.0/22 maxlen: 22
95.107.208.0/20 maxlen: 20
95.107.216.0/21 maxlen: 21
95.107.216.0/22 maxlen: 22
95.107.216.0/23 maxlen: 23
95.107.218.0/23 maxlen: 23
95.107.224.0/20 maxlen: 20
95.107.224.0/22 maxlen: 22
95.107.220.0/23 maxlen: 23
95.107.222.0/23 maxlen: 23
95.107.220.0/22 maxlen: 22
95.107.228.0/24 maxlen: 24
95.107.228.0/22 maxlen: 22
95.107.232.0/22 maxlen: 22
95.107.240.0/23 maxlen: 23
95.107.238.0/23 maxlen: 23
95.107.240.0/22 maxlen: 22
95.107.234.0/23 maxlen: 23
95.107.236.0/22 maxlen: 22
95.107.240.0/20 maxlen: 20
95.107.244.0/22 maxlen: 22
95.107.252.0/22 maxlen: 22
95.107.248.0/24 maxlen: 24
95.107.248.0/23 maxlen: 23
95.107.248.0/22 maxlen: 22
2a03:8480::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 830151872 (0x317b1cc0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f416539e74934d23a0572f6625dbfdb54e820873
Validity
Not Before: Apr 21 07:45:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dfc9b75957bd1a03ddc615d153a4b44c7bbc78f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:05:e1:1a:15:b4:71:55:5d:ed:14:5d:06:7f:
b8:f5:ac:1b:02:e9:cf:88:fb:63:9d:5d:25:c7:48:
aa:8f:69:9e:76:28:06:70:fe:58:58:67:25:e6:65:
28:58:f5:a4:45:be:67:e7:89:b4:e8:82:cd:82:21:
12:20:80:97:02:a3:ea:38:d5:30:67:2e:f4:85:2f:
d2:c6:d0:da:0e:52:b7:1e:2e:08:9d:d5:4c:da:85:
cd:d5:3c:35:72:36:77:1b:1c:d3:57:2e:12:7f:7e:
07:71:d0:a4:2c:1b:b1:63:ec:32:df:f9:b0:50:9d:
77:8b:34:84:dd:e1:67:87:64:87:fd:64:dd:90:1b:
e1:e6:0b:88:96:9f:58:44:70:4e:10:da:e7:87:e5:
07:2b:8f:a6:ca:9f:78:25:e8:83:0b:db:64:15:dc:
47:39:04:dd:32:50:73:ea:97:f7:9f:89:02:09:0c:
95:21:80:27:91:d1:a3:96:94:5e:96:58:49:87:82:
e4:c4:21:96:8c:1b:20:66:c2:0d:85:21:86:ff:37:
61:1d:98:95:3d:99:b7:6c:c2:f9:32:0a:86:fa:02:
0e:7d:2a:7a:48:4d:06:0f:ad:27:7e:e9:41:3e:b3:
71:7d:e6:61:46:cf:d8:87:de:6a:8b:d5:c7:93:c0:
f1:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:C9:B7:59:57:BD:1A:03:DD:C6:15:D1:53:A4:B4:4C:7B:BC:78:F1
X509v3 Authority Key Identifier:
keyid:F4:16:53:9E:74:93:4D:23:A0:57:2F:66:25:DB:FD:B5:4E:82:08:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9BZTnnSTTSOgVy9mJdv9tU6CCHM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/53e496-0097-462a-a989-d67a61d5416d/1/38m3WVe9GgPdxhXRU6S0THu8ePE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/53e496-0097-462a-a989-d67a61d5416d/1/9BZTnnSTTSOgVy9mJdv9tU6CCHM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.255.144.0/21
95.107.128.0-95.107.147.255
95.107.150.0/24
95.107.156.0/23
95.107.159.0-95.107.174.255
95.107.176.0-95.107.255.255
141.8.200.0/21
185.118.148.0/22
185.122.228.0/22
IPv6:
2a03:8480::/32
Signature Algorithm: sha256WithRSAEncryption
87:8c:e6:7d:80:20:33:15:44:80:dc:36:af:59:67:6b:d0:d2:
f3:78:ea:d9:10:6b:0e:8f:18:a9:b0:54:07:a3:95:a5:78:10:
6c:4c:33:6f:ed:33:3d:f4:65:9c:42:7a:c8:d3:ce:06:1f:be:
b1:57:37:26:ea:61:90:e5:d0:90:cd:85:99:9d:a4:c8:6c:a5:
30:b0:e8:0c:e3:d8:f6:4c:6e:86:15:36:2d:b9:fd:72:1c:0f:
32:14:9c:19:7c:97:e4:56:0f:87:0a:4c:9c:7d:63:8e:68:eb:
97:23:55:d1:c3:88:80:38:f0:b7:d4:19:25:fe:23:22:f3:13:
6e:7e:c2:77:9c:19:55:3a:b0:30:b5:06:b3:8e:69:5a:88:47:
53:ec:d1:d6:68:49:8c:dd:ba:25:e7:22:ef:b9:66:d5:69:22:
ff:04:e8:2c:86:42:99:72:90:32:76:b1:93:f8:5b:0e:fb:86:
51:58:3c:1c:b6:6f:67:c1:c2:2f:b6:30:e3:a3:52:3f:0e:8f:
82:9d:4e:a2:f2:05:b5:4a:46:72:f5:71:bf:f8:45:9b:85:ab:
38:e4:bb:33:43:3d:1f:d9:60:0f:8d:6f:d4:8e:5e:2f:36:a3:
ab:3e:81:8a:59:ce:92:1d:6c:01:36:1a:ca:23:2c:4c:14:bb:
ae:75:7e:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:21 2023 by rpki-client on console-ams.rpki-client.org