Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/OOV3m-8dIg3azhJBilZJfLZRXJo.roa
File: OOV3m-8dIg3azhJBilZJfLZRXJo.roa (raw, json)
Hash identifier: G2+sYRyYTc3DW3eb5yX2xO7nmAKIyC/pD7J+OdAOv6M=
Subject key identifier: 38:E5:77:9B:EF:1D:22:0D:DA:CE:12:41:8A:56:49:7C:B6:51:5C:9A
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 01852A65B3BB6C4172515E74038E672F9E73
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/OOV3m-8dIg3azhJBilZJfLZRXJo.roa
Signing time: Mon 19 Dec 2022 12:39:46 +0000
ROA not before: Mon 19 Dec 2022 12:39:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.228.120.0/24 maxlen: 24
185.228.123.0/24 maxlen: 24
185.228.122.0/24 maxlen: 24
185.228.121.0/24 maxlen: 24
185.228.120.0/22 maxlen: 24
185.134.40.0/22 maxlen: 24
5.181.100.0/22 maxlen: 24
45.141.4.0/22 maxlen: 24
185.93.120.0/22 maxlen: 24
185.113.186.0/24 maxlen: 24
185.113.185.0/24 maxlen: 24
185.113.184.0/24 maxlen: 24
185.113.187.0/24 maxlen: 24
188.208.20.0/22 maxlen: 24
193.32.236.0/22 maxlen: 24
188.208.21.0/24 maxlen: 24
89.47.4.0/22 maxlen: 24
185.94.48.0/22 maxlen: 24
185.93.232.0/22 maxlen: 24
176.32.54.0/24 maxlen: 24
93.92.224.0/22 maxlen: 24
185.119.236.0/22 maxlen: 24
176.32.50.0/24 maxlen: 24
188.241.96.0/21 maxlen: 24
185.120.44.0/22 maxlen: 24
185.234.186.0/23 maxlen: 23
86.106.184.0/22 maxlen: 24
185.234.184.0/24 maxlen: 24
185.234.185.0/24 maxlen: 24
185.44.233.0/24 maxlen: 24
185.44.234.0/23 maxlen: 24
185.51.108.0/22 maxlen: 24
86.105.234.0/24 maxlen: 24
188.240.204.0/22 maxlen: 24
212.104.160.0/19 maxlen: 24
5.226.16.0/20 maxlen: 24
185.131.188.0/22 maxlen: 24
85.117.245.0/24 maxlen: 24
193.91.0.0/24 maxlen: 24
85.117.244.0/22 maxlen: 24
193.91.10.0/24 maxlen: 24
185.43.252.0/22 maxlen: 24
185.77.168.0/22 maxlen: 24
88.98.98.0/24 maxlen: 24
86.105.28.0/22 maxlen: 24
88.98.96.0/20 maxlen: 24
88.98.96.0/23 maxlen: 23
88.98.99.0/24 maxlen: 24
88.98.104.0/23 maxlen: 24
88.98.100.0/22 maxlen: 24
88.98.111.0/24 maxlen: 24
88.98.110.0/24 maxlen: 24
88.98.108.0/23 maxlen: 24
88.98.108.0/22 maxlen: 24
88.98.106.0/23 maxlen: 24
88.98.112.0/20 maxlen: 24
141.98.52.0/22 maxlen: 24
212.63.116.0/22 maxlen: 24
212.63.118.0/24 maxlen: 24
212.63.117.0/24 maxlen: 24
212.63.116.0/24 maxlen: 24
212.63.121.0/24 maxlen: 24
212.63.119.0/24 maxlen: 24
212.63.123.0/24 maxlen: 24
212.63.122.0/24 maxlen: 24
185.83.104.0/22 maxlen: 24
45.144.12.0/22 maxlen: 24
45.90.52.0/22 maxlen: 24
185.158.52.0/22 maxlen: 24
91.245.200.0/21 maxlen: 24
185.131.13.0/24 maxlen: 24
185.131.12.0/22 maxlen: 24
85.217.132.0/24 maxlen: 24
85.217.129.0/24 maxlen: 24
85.217.139.0/24 maxlen: 24
85.217.138.0/24 maxlen: 24
85.217.137.0/24 maxlen: 24
85.217.136.0/24 maxlen: 24
85.217.135.0/24 maxlen: 24
85.217.134.0/24 maxlen: 24
85.217.133.0/24 maxlen: 24
85.217.141.0/24 maxlen: 24
85.217.143.0/24 maxlen: 24
85.217.142.0/24 maxlen: 24
85.217.152.0/24 maxlen: 24
85.217.151.0/24 maxlen: 24
85.217.150.0/24 maxlen: 24
85.217.147.0/24 maxlen: 24
85.217.146.0/24 maxlen: 24
85.217.155.0/24 maxlen: 24
85.217.154.0/24 maxlen: 24
85.217.153.0/24 maxlen: 24
85.217.159.0/24 maxlen: 24
85.217.158.0/24 maxlen: 24
85.217.157.0/24 maxlen: 24
85.217.156.0/24 maxlen: 24
185.130.24.0/23 maxlen: 24
185.75.200.0/22 maxlen: 24
194.8.140.0/22 maxlen: 24
194.49.0.0/22 maxlen: 24
185.130.26.0/23 maxlen: 24
185.123.136.0/22 maxlen: 24
45.157.56.0/22 maxlen: 24
185.48.84.0/22 maxlen: 24
185.176.84.0/22 maxlen: 24
185.210.16.0/22 maxlen: 24
79.142.184.0/22 maxlen: 24
185.162.172.0/23 maxlen: 24
185.162.175.0/24 maxlen: 24
185.162.174.0/24 maxlen: 24
195.82.105.0/24 maxlen: 24
195.82.104.0/24 maxlen: 24
195.82.106.0/24 maxlen: 24
195.82.124.0/24 maxlen: 24
195.82.123.0/24 maxlen: 24
195.82.122.0/24 maxlen: 24
195.82.121.0/24 maxlen: 24
195.82.120.0/24 maxlen: 24
185.216.216.0/22 maxlen: 22
185.216.218.0/23 maxlen: 23
185.216.217.0/24 maxlen: 24
139.28.76.0/22 maxlen: 22
185.196.200.0/23 maxlen: 24
185.196.203.0/24 maxlen: 24
185.196.202.0/24 maxlen: 24
185.229.96.0/22 maxlen: 24
91.242.144.0/22 maxlen: 24
185.229.44.0/22 maxlen: 24
185.202.188.0/22 maxlen: 24
2a06:8840::/29 maxlen: 29
2a06:8f40::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2a:65:b3:bb:6c:41:72:51:5e:74:03:8e:67:2f:9e:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Dec 19 12:39:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=38e5779bef1d220ddace12418a56497cb6515c9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:da:a4:ef:6a:a4:1e:62:db:2a:e1:cb:b4:cd:
bc:3e:30:83:5e:94:66:30:3d:3a:a3:db:5c:06:09:
58:18:a2:74:0b:b9:28:f5:ae:bd:79:6b:19:7d:df:
74:9d:0d:71:24:0c:72:46:e9:58:37:ea:a7:8d:40:
c9:19:43:c2:6b:de:f9:fe:dc:b6:69:21:6c:5b:95:
e6:5c:04:c6:c3:41:d0:1e:ae:c2:cb:17:4b:ec:5d:
3a:10:3e:e1:33:a7:43:20:fe:f2:c0:de:ba:aa:0f:
8a:b1:41:ea:ba:5f:e0:51:10:32:62:ea:a4:13:09:
b9:70:cd:c3:a8:a2:87:62:ba:bd:e1:4d:c1:85:eb:
f3:64:f3:f1:9a:4e:03:70:09:2c:70:1f:60:71:c7:
81:69:18:3e:f1:4b:f9:ee:cb:13:c7:42:14:a9:ab:
dc:aa:6c:a5:26:85:6f:86:85:65:da:2e:82:2a:4a:
81:04:fb:b4:93:ab:21:10:25:a1:d7:70:56:2f:e8:
ea:58:31:9e:9b:81:c7:b5:36:62:01:b7:76:78:4e:
35:9d:21:b2:71:84:fd:85:2b:c9:bf:32:7b:2e:ac:
7e:f0:cd:00:1a:77:ba:ea:17:76:5f:db:4f:9d:95:
e8:82:03:f0:82:ce:df:b6:ed:67:58:10:b5:62:45:
4e:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:E5:77:9B:EF:1D:22:0D:DA:CE:12:41:8A:56:49:7C:B6:51:5C:9A
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/OOV3m-8dIg3azhJBilZJfLZRXJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.100.0/22
5.226.16.0/20
45.90.52.0/22
45.141.4.0/22
45.144.12.0/22
45.157.56.0/22
79.142.184.0/22
85.117.244.0/22
85.217.129.0/24
85.217.132.0-85.217.139.255
85.217.141.0-85.217.143.255
85.217.146.0/23
85.217.150.0-85.217.159.255
86.105.28.0/22
86.105.234.0/24
86.106.184.0/22
88.98.96.0/19
89.47.4.0/22
91.242.144.0/22
91.245.200.0/21
93.92.224.0/22
139.28.76.0/22
141.98.52.0/22
176.32.50.0/24
176.32.54.0/24
185.43.252.0/22
185.44.233.0-185.44.235.255
185.48.84.0/22
185.51.108.0/22
185.75.200.0/22
185.77.168.0/22
185.83.104.0/22
185.93.120.0/22
185.93.232.0/22
185.94.48.0/22
185.113.184.0/22
185.119.236.0/22
185.120.44.0/22
185.123.136.0/22
185.130.24.0/22
185.131.12.0/22
185.131.188.0/22
185.134.40.0/22
185.158.52.0/22
185.162.172.0/22
185.176.84.0/22
185.196.200.0/22
185.202.188.0/22
185.210.16.0/22
185.216.216.0/22
185.228.120.0/22
185.229.44.0/22
185.229.96.0/22
185.234.184.0/22
188.208.20.0/22
188.240.204.0/22
188.241.96.0/21
193.32.236.0/22
193.91.0.0/24
193.91.10.0/24
194.8.140.0/22
194.49.0.0/22
195.82.104.0-195.82.106.255
195.82.120.0-195.82.124.255
212.63.116.0/22
212.63.121.0-212.63.123.255
212.104.160.0/19
IPv6:
2a06:8840::/29
2a06:8f40::/29
Signature Algorithm: sha256WithRSAEncryption
60:5c:87:42:9d:11:a6:14:e8:04:2a:92:00:4f:54:f6:f8:28:
18:36:6c:2f:f7:17:76:0a:f8:12:06:48:4d:23:f6:e0:d4:7e:
6b:47:c1:15:c4:25:46:34:b8:8e:a8:cf:56:5c:b1:5a:27:12:
4b:34:7d:9e:5a:96:2b:f4:39:42:94:4e:64:21:30:38:00:a3:
6e:72:81:13:dc:be:ec:21:95:c4:d4:c0:04:70:69:86:81:7e:
0b:05:55:5d:16:51:a5:15:70:a5:9d:c9:38:42:03:5d:da:76:
4e:75:be:78:e3:79:52:d5:bb:b4:ba:47:88:47:21:ac:90:e6:
89:d7:8f:bd:0e:98:43:47:47:0a:aa:25:07:e9:44:9a:85:ba:
ed:ff:e2:e8:4d:51:91:b5:b1:8f:65:96:e6:6a:d2:4f:ac:6b:
0f:46:5e:d2:d1:53:4f:d0:14:b7:5e:4e:f8:b7:1b:e3:a7:5f:
27:89:7e:8d:3a:3e:bc:53:35:48:8d:7d:5c:b8:d6:95:ee:94:
a8:e6:c6:ef:91:1a:9a:a6:3e:a9:3c:a6:28:f3:14:f2:2b:c3:
7a:9f:2b:4c:11:53:7a:4c:e5:ee:ca:71:23:f7:88:2e:81:2a:
f2:b4:b8:40:c7:4a:f2:c0:38:ef:9c:f4:6b:4b:6b:50:78:64:
6f:ff:79:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:36 2024 by rpki-client on console-fra.rpki-client.org