Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/LgCKqzsl4ttCUqcRvVDablBChek.roa
File: LgCKqzsl4ttCUqcRvVDablBChek.roa (raw, json)
Hash identifier: zlZXlXc8YV2j0BrXIMCnDC4PyPqooKFeXU4r1uuLeCs=
Subject key identifier: 2E:00:8A:AB:3B:25:E2:DB:42:52:A7:11:BD:50:DA:6E:50:42:85:E9
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 03F206E9
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/LgCKqzsl4ttCUqcRvVDablBChek.roa
Signing time: Wed 01 Jun 2022 11:56:20 +0000
ROA not before: Wed 01 Jun 2022 11:56:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.134.40.0/22 maxlen: 24
212.63.118.0/24 maxlen: 24
212.63.117.0/24 maxlen: 24
212.63.116.0/24 maxlen: 24
212.63.121.0/24 maxlen: 24
212.63.123.0/24 maxlen: 24
212.63.122.0/24 maxlen: 24
193.32.236.0/22 maxlen: 24
45.90.52.0/22 maxlen: 24
185.94.48.0/22 maxlen: 24
91.245.200.0/21 maxlen: 24
185.93.232.0/22 maxlen: 24
185.131.12.0/22 maxlen: 22
85.217.132.0/24 maxlen: 24
85.217.129.0/24 maxlen: 24
85.217.139.0/24 maxlen: 24
85.217.138.0/24 maxlen: 24
85.217.137.0/24 maxlen: 24
85.217.136.0/24 maxlen: 24
85.217.135.0/24 maxlen: 24
85.217.134.0/24 maxlen: 24
85.217.133.0/24 maxlen: 24
85.217.141.0/24 maxlen: 24
85.217.143.0/24 maxlen: 24
85.217.142.0/24 maxlen: 24
85.217.152.0/24 maxlen: 24
85.217.151.0/24 maxlen: 24
85.217.150.0/24 maxlen: 24
85.217.147.0/24 maxlen: 24
85.217.146.0/24 maxlen: 24
85.217.155.0/24 maxlen: 24
85.217.154.0/24 maxlen: 24
85.217.153.0/24 maxlen: 24
85.217.159.0/24 maxlen: 24
85.217.158.0/24 maxlen: 24
85.217.157.0/24 maxlen: 24
85.217.156.0/24 maxlen: 24
185.130.24.0/23 maxlen: 24
194.49.0.0/22 maxlen: 24
185.130.26.0/23 maxlen: 24
188.241.96.0/21 maxlen: 24
45.157.56.0/22 maxlen: 24
185.234.184.0/24 maxlen: 24
185.234.186.0/23 maxlen: 23
185.234.185.0/24 maxlen: 24
185.44.233.0/24 maxlen: 24
185.44.234.0/23 maxlen: 24
185.176.84.0/22 maxlen: 24
79.142.184.0/22 maxlen: 24
185.51.108.0/22 maxlen: 24
185.162.172.0/23 maxlen: 24
185.162.175.0/24 maxlen: 24
185.162.174.0/24 maxlen: 24
195.82.105.0/24 maxlen: 24
195.82.104.0/24 maxlen: 24
195.82.106.0/24 maxlen: 24
195.82.124.0/24 maxlen: 24
185.216.216.0/22 maxlen: 22
185.216.218.0/23 maxlen: 23
185.216.217.0/24 maxlen: 24
139.28.76.0/22 maxlen: 22
185.196.203.0/24 maxlen: 24
185.196.202.0/24 maxlen: 24
185.196.200.0/23 maxlen: 24
5.226.16.0/20 maxlen: 24
91.242.144.0/22 maxlen: 24
185.202.188.0/22 maxlen: 24
88.98.98.0/24 maxlen: 24
88.98.96.0/20 maxlen: 24
88.98.96.0/23 maxlen: 23
88.98.104.0/23 maxlen: 24
88.98.100.0/22 maxlen: 24
88.98.99.0/24 maxlen: 24
88.98.111.0/24 maxlen: 24
88.98.110.0/24 maxlen: 24
88.98.108.0/22 maxlen: 24
88.98.106.0/23 maxlen: 24
88.98.112.0/20 maxlen: 24
141.98.52.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66193129 (0x3f206e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Jun 1 11:56:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e008aab3b25e2db4252a711bd50da6e504285e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:06:b7:65:d3:7c:71:a9:13:5a:e4:bf:08:b7:
27:3d:3d:93:83:01:dd:88:c0:e5:f9:cf:75:af:43:
e2:c0:7a:65:3f:9c:37:4b:86:70:95:66:72:c7:3e:
af:22:4a:e5:80:ff:8e:60:39:85:09:5c:25:a3:f9:
f1:4c:e8:af:79:89:8f:a6:5b:88:1d:b2:e5:d0:2c:
1f:ef:94:47:35:6e:b1:88:5f:20:b6:f0:b4:66:1b:
4b:1e:5b:47:66:16:01:d0:23:cb:28:0c:dc:bd:a3:
91:27:0e:b2:5c:80:ef:16:d8:87:da:8f:91:8f:4d:
9d:2c:ac:38:e2:c9:1b:ba:24:e6:f8:e7:47:6b:90:
85:af:e4:22:d4:f5:3e:23:bb:9d:56:71:ef:8f:02:
a7:68:07:d2:ba:49:f0:f6:19:4f:c1:31:94:73:0d:
93:87:87:09:b2:d0:44:c0:9d:07:33:5e:f4:77:0c:
ca:47:fa:19:52:b7:dc:5f:d5:89:cf:2f:33:90:2a:
61:ef:47:44:de:e0:09:1d:87:61:ae:bf:78:25:a2:
74:ee:f0:3b:fd:62:29:9b:f6:c4:25:77:59:dd:29:
6b:c4:d2:1d:31:a6:7f:53:9a:03:c5:e5:19:63:e6:
72:88:73:c3:98:0e:e4:78:d0:b3:d9:39:45:53:f0:
5c:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:00:8A:AB:3B:25:E2:DB:42:52:A7:11:BD:50:DA:6E:50:42:85:E9
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/LgCKqzsl4ttCUqcRvVDablBChek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.16.0/20
45.90.52.0/22
45.157.56.0/22
79.142.184.0/22
85.217.129.0/24
85.217.132.0-85.217.139.255
85.217.141.0-85.217.143.255
85.217.146.0/23
85.217.150.0-85.217.159.255
88.98.96.0/19
91.242.144.0/22
91.245.200.0/21
139.28.76.0/22
141.98.52.0/22
185.44.233.0-185.44.235.255
185.51.108.0/22
185.93.232.0/22
185.94.48.0/22
185.130.24.0/22
185.131.12.0/22
185.134.40.0/22
185.162.172.0/22
185.176.84.0/22
185.196.200.0/22
185.202.188.0/22
185.216.216.0/22
185.234.184.0/22
188.241.96.0/21
193.32.236.0/22
194.49.0.0/22
195.82.104.0-195.82.106.255
195.82.124.0/24
212.63.116.0-212.63.118.255
212.63.121.0-212.63.123.255
Signature Algorithm: sha256WithRSAEncryption
b2:4e:fd:f0:9a:ce:a3:b1:c7:4a:a4:56:45:02:98:05:7b:18:
86:ac:2b:fb:73:61:dd:63:f4:20:0d:8b:da:7b:1f:18:c9:06:
25:ad:36:d7:22:4a:8c:91:45:e9:c3:0c:c2:11:96:c9:cd:72:
87:30:dd:f5:91:25:1e:51:b1:f6:1d:fc:64:cb:d2:9b:c1:61:
ff:61:e0:94:ae:12:f1:42:7d:0f:2f:12:44:db:52:ca:81:03:
f9:e4:d8:ee:14:8d:f6:95:bd:b8:09:f8:b1:92:c2:f1:45:10:
65:34:29:1b:dd:13:ab:e4:eb:5e:e3:c2:a2:99:3b:13:bf:02:
be:3c:ef:14:68:46:6f:55:54:82:d7:d4:e5:c5:17:18:f0:2b:
81:70:d7:f5:65:03:b6:e9:08:71:92:9d:c5:96:30:09:41:0f:
cf:c4:43:ff:07:54:37:35:f8:9c:74:be:4e:9b:ba:3e:f6:3e:
99:0b:25:f4:4a:1a:16:93:f6:55:21:e5:11:64:a6:d0:f2:ec:
8c:49:74:2e:94:fd:a7:e4:95:1a:31:09:36:de:e8:7b:e0:70:
ae:63:00:14:13:f3:84:42:35:fa:8c:60:93:0b:1c:0a:42:2e:
7b:a2:a2:f3:74:91:bc:a0:a1:6c:07:5c:36:a5:af:18:bc:d1:
2f:3a:e3:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:50 2024 by rpki-client on console-ams.rpki-client.org