Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1qn-Ev6iHWXW2jyJlwFRjk7jOt8.roa
File: 1qn-Ev6iHWXW2jyJlwFRjk7jOt8.roa (raw, json)
Hash identifier: DEM/1nMnfLgzUK7/rlyQwxndVlI498Mdq0mgjoFVGUc=
Subject key identifier: D6:A9:FE:12:FE:A2:1D:65:D6:DA:3C:89:97:01:51:8E:4E:E3:3A:DF
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 0184AA6DC45AA6FEFD9F81085F1DF8B5D45A
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1qn-Ev6iHWXW2jyJlwFRjk7jOt8.roa
Signing time: Thu 24 Nov 2022 16:17:11 +0000
ROA not before: Thu 24 Nov 2022 16:17:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.134.40.0/22 maxlen: 24
188.208.21.0/24 maxlen: 24
188.208.20.0/22 maxlen: 24
193.32.236.0/22 maxlen: 24
185.94.48.0/22 maxlen: 24
185.93.232.0/22 maxlen: 24
93.92.224.0/22 maxlen: 24
185.119.236.0/22 maxlen: 24
188.241.96.0/21 maxlen: 24
185.234.184.0/24 maxlen: 24
185.234.186.0/23 maxlen: 23
185.234.185.0/24 maxlen: 24
185.44.233.0/24 maxlen: 24
185.44.234.0/23 maxlen: 24
185.51.108.0/22 maxlen: 24
86.105.234.0/24 maxlen: 24
212.104.160.0/19 maxlen: 24
5.226.16.0/20 maxlen: 24
85.117.245.0/24 maxlen: 24
85.117.244.0/22 maxlen: 24
193.91.0.0/24 maxlen: 24
193.91.10.0/24 maxlen: 24
185.43.252.0/22 maxlen: 24
88.98.98.0/24 maxlen: 24
88.98.96.0/20 maxlen: 24
88.98.96.0/23 maxlen: 23
88.98.104.0/23 maxlen: 24
88.98.100.0/22 maxlen: 24
88.98.99.0/24 maxlen: 24
88.98.111.0/24 maxlen: 24
88.98.110.0/24 maxlen: 24
88.98.108.0/23 maxlen: 24
88.98.108.0/22 maxlen: 24
88.98.106.0/23 maxlen: 24
88.98.112.0/20 maxlen: 24
141.98.52.0/22 maxlen: 24
212.63.118.0/24 maxlen: 24
212.63.117.0/24 maxlen: 24
212.63.116.0/22 maxlen: 24
212.63.116.0/24 maxlen: 24
212.63.121.0/24 maxlen: 24
212.63.119.0/24 maxlen: 24
212.63.123.0/24 maxlen: 24
212.63.122.0/24 maxlen: 24
185.83.104.0/22 maxlen: 24
45.144.12.0/22 maxlen: 24
45.90.52.0/22 maxlen: 24
91.245.200.0/21 maxlen: 24
185.131.13.0/24 maxlen: 24
185.131.12.0/22 maxlen: 24
85.217.132.0/24 maxlen: 24
85.217.129.0/24 maxlen: 24
85.217.139.0/24 maxlen: 24
85.217.138.0/24 maxlen: 24
85.217.137.0/24 maxlen: 24
85.217.136.0/24 maxlen: 24
85.217.135.0/24 maxlen: 24
85.217.134.0/24 maxlen: 24
85.217.133.0/24 maxlen: 24
85.217.141.0/24 maxlen: 24
85.217.143.0/24 maxlen: 24
85.217.142.0/24 maxlen: 24
85.217.152.0/24 maxlen: 24
85.217.151.0/24 maxlen: 24
85.217.150.0/24 maxlen: 24
85.217.147.0/24 maxlen: 24
85.217.146.0/24 maxlen: 24
85.217.155.0/24 maxlen: 24
85.217.154.0/24 maxlen: 24
85.217.153.0/24 maxlen: 24
85.217.159.0/24 maxlen: 24
85.217.158.0/24 maxlen: 24
85.217.157.0/24 maxlen: 24
85.217.156.0/24 maxlen: 24
185.130.24.0/23 maxlen: 24
194.49.0.0/22 maxlen: 24
185.130.26.0/23 maxlen: 24
45.157.56.0/22 maxlen: 24
185.176.84.0/22 maxlen: 24
185.210.16.0/22 maxlen: 24
79.142.184.0/22 maxlen: 24
185.162.172.0/23 maxlen: 24
185.162.175.0/24 maxlen: 24
185.162.174.0/24 maxlen: 24
195.82.105.0/24 maxlen: 24
195.82.104.0/24 maxlen: 24
195.82.106.0/24 maxlen: 24
195.82.124.0/24 maxlen: 24
185.216.216.0/22 maxlen: 22
185.216.218.0/23 maxlen: 23
185.216.217.0/24 maxlen: 24
139.28.76.0/22 maxlen: 22
185.196.203.0/24 maxlen: 24
185.196.202.0/24 maxlen: 24
185.196.200.0/23 maxlen: 24
91.242.144.0/22 maxlen: 24
185.202.188.0/22 maxlen: 24
2a06:8840::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:aa:6d:c4:5a:a6:fe:fd:9f:81:08:5f:1d:f8:b5:d4:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Nov 24 16:17:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d6a9fe12fea21d65d6da3c899701518e4ee33adf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:24:dd:df:66:37:19:9c:2d:22:94:52:82:3e:
74:a9:e1:d5:61:12:86:78:2a:9e:8a:c8:e1:e2:a6:
be:52:57:c1:ca:5d:63:88:1d:5d:5c:65:13:3f:43:
8c:3c:d5:29:a6:ae:ab:ac:d7:c6:20:09:95:1b:2e:
41:75:d5:52:62:2c:29:ba:10:a5:54:a8:1b:31:26:
0d:de:5e:44:8e:49:83:a1:05:d9:83:99:54:75:80:
d3:96:d1:da:c8:29:22:ba:f9:43:b5:0c:42:3d:03:
27:af:f3:0c:5c:15:2b:a5:dd:c7:e1:3c:c9:ab:5f:
fc:60:eb:78:17:b3:89:2f:a8:23:03:c9:89:84:1a:
fb:62:37:db:ef:e8:95:e6:06:46:d2:cc:14:0b:5b:
88:7b:00:77:0e:95:89:a2:af:53:26:26:8c:ff:8b:
50:78:32:aa:7c:cd:eb:29:73:84:3c:9f:1f:70:4f:
de:75:4e:b8:a0:05:86:22:a1:69:4b:88:dd:20:90:
6a:9e:4d:a2:3d:5f:d8:4c:bd:ed:eb:ac:74:30:59:
6e:a8:2f:53:5d:9f:8d:4a:ab:2c:e8:a8:33:b7:1c:
62:c4:af:8f:ad:c6:a1:08:c3:10:d8:9a:12:38:0b:
61:5e:95:a9:23:f4:cc:fc:90:3e:d0:db:05:1d:b1:
b4:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:A9:FE:12:FE:A2:1D:65:D6:DA:3C:89:97:01:51:8E:4E:E3:3A:DF
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1qn-Ev6iHWXW2jyJlwFRjk7jOt8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.16.0/20
45.90.52.0/22
45.144.12.0/22
45.157.56.0/22
79.142.184.0/22
85.117.244.0/22
85.217.129.0/24
85.217.132.0-85.217.139.255
85.217.141.0-85.217.143.255
85.217.146.0/23
85.217.150.0-85.217.159.255
86.105.234.0/24
88.98.96.0/19
91.242.144.0/22
91.245.200.0/21
93.92.224.0/22
139.28.76.0/22
141.98.52.0/22
185.43.252.0/22
185.44.233.0-185.44.235.255
185.51.108.0/22
185.83.104.0/22
185.93.232.0/22
185.94.48.0/22
185.119.236.0/22
185.130.24.0/22
185.131.12.0/22
185.134.40.0/22
185.162.172.0/22
185.176.84.0/22
185.196.200.0/22
185.202.188.0/22
185.210.16.0/22
185.216.216.0/22
185.234.184.0/22
188.208.20.0/22
188.241.96.0/21
193.32.236.0/22
193.91.0.0/24
193.91.10.0/24
194.49.0.0/22
195.82.104.0-195.82.106.255
195.82.124.0/24
212.63.116.0/22
212.63.121.0-212.63.123.255
212.104.160.0/19
IPv6:
2a06:8840::/29
Signature Algorithm: sha256WithRSAEncryption
34:d1:ea:f2:e9:2d:f4:b8:25:31:2b:a8:f0:d7:f0:1f:33:97:
cd:5e:90:9a:17:02:fc:70:ab:59:27:db:22:d7:ed:b2:48:15:
e4:12:aa:01:f2:d1:fb:c5:86:38:85:a4:f4:77:84:03:69:db:
6b:f9:c1:b2:7e:4b:97:29:09:c5:69:6b:8e:ab:80:f8:b6:66:
6b:88:b3:d7:38:a7:b7:e4:ef:38:bb:0d:53:9a:5e:89:d6:30:
5d:31:fa:82:83:e7:5a:00:ff:17:57:d3:22:f1:1e:18:4a:0a:
70:bb:67:4f:dd:29:fb:6f:37:89:56:ac:68:46:8a:23:99:07:
ea:4f:1f:a4:98:4f:e9:d2:f6:18:80:7c:24:28:68:20:ca:0b:
14:40:7c:bf:7d:3d:c6:d9:a3:2a:4b:fa:e2:c6:1b:63:4f:9e:
e7:5d:83:e8:6a:51:87:22:2c:6d:80:36:eb:51:24:73:a7:44:
a7:1d:00:5e:fc:fe:71:85:43:3f:8d:da:ca:dc:a5:46:db:82:
a1:e2:1c:6e:ff:91:d2:48:fb:d8:cf:db:c1:93:0d:8b:99:49:
d1:b8:66:39:0a:15:b1:36:de:49:ed:bb:11:fd:47:59:12:b1:
ee:4e:49:ba:ff:15:14:e1:d7:ce:50:75:47:1b:34:50:41:ab:
24:e0:50:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:50 2024 by rpki-client on console-ams.rpki-client.org