Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/VJTyST4_KX7ZUDGqZMk3vzaKcM4.roa
File: VJTyST4_KX7ZUDGqZMk3vzaKcM4.roa (raw, json)
Hash identifier: 8C5tUNoDiIss36flz467hCLV1hgZM59mLl4QMQ9rIVI=
Subject key identifier: 54:94:F2:49:3E:3F:29:7E:D9:50:31:AA:64:C9:37:BF:36:8A:70:CE
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 03F935A6
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/VJTyST4_KX7ZUDGqZMk3vzaKcM4.roa
Signing time: Wed 01 Jun 2022 16:02:21 +0000
ROA not before: Wed 01 Jun 2022 16:02:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.134.40.0/22 maxlen: 24
212.63.118.0/24 maxlen: 24
212.63.117.0/24 maxlen: 24
212.63.116.0/22 maxlen: 24
212.63.116.0/24 maxlen: 24
212.63.121.0/24 maxlen: 24
212.63.123.0/24 maxlen: 24
212.63.122.0/24 maxlen: 24
45.144.12.0/22 maxlen: 24
188.208.20.0/22 maxlen: 24
193.32.236.0/22 maxlen: 24
45.90.52.0/22 maxlen: 24
185.94.48.0/22 maxlen: 24
91.245.200.0/21 maxlen: 24
185.93.232.0/22 maxlen: 24
185.131.12.0/22 maxlen: 22
93.92.224.0/22 maxlen: 24
85.217.132.0/24 maxlen: 24
85.217.129.0/24 maxlen: 24
85.217.139.0/24 maxlen: 24
85.217.138.0/24 maxlen: 24
85.217.137.0/24 maxlen: 24
85.217.136.0/24 maxlen: 24
85.217.135.0/24 maxlen: 24
85.217.134.0/24 maxlen: 24
85.217.133.0/24 maxlen: 24
85.217.141.0/24 maxlen: 24
85.217.143.0/24 maxlen: 24
85.217.142.0/24 maxlen: 24
85.217.152.0/24 maxlen: 24
85.217.151.0/24 maxlen: 24
85.217.150.0/24 maxlen: 24
85.217.147.0/24 maxlen: 24
85.217.146.0/24 maxlen: 24
85.217.155.0/24 maxlen: 24
85.217.154.0/24 maxlen: 24
85.217.153.0/24 maxlen: 24
85.217.159.0/24 maxlen: 24
85.217.158.0/24 maxlen: 24
85.217.157.0/24 maxlen: 24
85.217.156.0/24 maxlen: 24
185.130.24.0/23 maxlen: 24
194.49.0.0/22 maxlen: 24
185.130.26.0/23 maxlen: 24
188.241.96.0/21 maxlen: 24
45.157.56.0/22 maxlen: 24
185.234.184.0/24 maxlen: 24
185.234.186.0/23 maxlen: 23
185.234.185.0/24 maxlen: 24
185.44.233.0/24 maxlen: 24
185.44.234.0/23 maxlen: 24
185.176.84.0/22 maxlen: 24
79.142.184.0/22 maxlen: 24
185.51.108.0/22 maxlen: 24
185.162.172.0/23 maxlen: 24
185.162.175.0/24 maxlen: 24
185.162.174.0/24 maxlen: 24
195.82.105.0/24 maxlen: 24
195.82.104.0/24 maxlen: 24
195.82.106.0/24 maxlen: 24
195.82.124.0/24 maxlen: 24
185.216.216.0/22 maxlen: 22
185.216.218.0/23 maxlen: 23
185.216.217.0/24 maxlen: 24
139.28.76.0/22 maxlen: 22
185.196.203.0/24 maxlen: 24
185.196.202.0/24 maxlen: 24
185.196.200.0/23 maxlen: 24
5.226.16.0/20 maxlen: 24
91.242.144.0/22 maxlen: 24
85.117.244.0/22 maxlen: 24
185.202.188.0/22 maxlen: 24
88.98.98.0/24 maxlen: 24
88.98.96.0/20 maxlen: 24
88.98.96.0/23 maxlen: 23
88.98.104.0/23 maxlen: 24
88.98.100.0/22 maxlen: 24
88.98.99.0/24 maxlen: 24
88.98.111.0/24 maxlen: 24
88.98.110.0/24 maxlen: 24
88.98.108.0/22 maxlen: 24
88.98.106.0/23 maxlen: 24
88.98.112.0/20 maxlen: 24
141.98.52.0/22 maxlen: 24
2a06:8840::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66663846 (0x3f935a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Jun 1 16:02:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5494f2493e3f297ed95031aa64c937bf368a70ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:90:73:9e:d4:93:cf:98:d1:9c:4f:1a:a3:53:
de:6e:cb:50:73:99:cd:02:1f:06:19:ec:a9:cf:3e:
f7:be:36:22:a8:67:81:88:85:60:f4:44:01:8b:59:
fb:e1:a8:df:d0:49:40:cc:c9:fc:2b:2f:59:aa:4f:
6c:30:cd:d0:98:0a:57:1a:c1:f9:b1:62:6e:05:eb:
07:7e:d4:98:c3:6e:d0:10:dd:a7:40:0d:6b:84:69:
4f:48:1d:a3:51:74:b4:75:0a:a3:8d:95:c4:fa:6e:
df:40:ec:01:a5:a7:c7:63:68:82:f8:c4:65:44:09:
2d:a2:9c:9f:8e:d3:a9:27:45:e2:52:38:3e:65:0a:
38:fa:11:84:84:c7:6e:92:7e:88:b1:8d:b8:c0:a5:
00:50:29:4f:40:07:8e:32:ae:2f:d5:1d:07:c3:c6:
fd:29:97:f9:43:a5:1d:c4:b9:fa:30:a6:6e:39:cf:
1f:53:10:e8:d7:af:e8:4a:e2:17:3f:2b:42:79:46:
4c:b9:25:cf:4f:4d:26:aa:10:d2:34:9f:3a:92:07:
19:b4:54:5f:a8:a9:58:f0:e8:d9:0a:b6:cf:88:d5:
af:54:9a:5c:a6:d0:36:d9:64:d9:ec:0a:12:7f:1e:
72:0d:b2:a2:b1:c7:11:e5:66:8d:88:45:ba:d6:0a:
bc:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:94:F2:49:3E:3F:29:7E:D9:50:31:AA:64:C9:37:BF:36:8A:70:CE
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/VJTyST4_KX7ZUDGqZMk3vzaKcM4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.16.0/20
45.90.52.0/22
45.144.12.0/22
45.157.56.0/22
79.142.184.0/22
85.117.244.0/22
85.217.129.0/24
85.217.132.0-85.217.139.255
85.217.141.0-85.217.143.255
85.217.146.0/23
85.217.150.0-85.217.159.255
88.98.96.0/19
91.242.144.0/22
91.245.200.0/21
93.92.224.0/22
139.28.76.0/22
141.98.52.0/22
185.44.233.0-185.44.235.255
185.51.108.0/22
185.93.232.0/22
185.94.48.0/22
185.130.24.0/22
185.131.12.0/22
185.134.40.0/22
185.162.172.0/22
185.176.84.0/22
185.196.200.0/22
185.202.188.0/22
185.216.216.0/22
185.234.184.0/22
188.208.20.0/22
188.241.96.0/21
193.32.236.0/22
194.49.0.0/22
195.82.104.0-195.82.106.255
195.82.124.0/24
212.63.116.0/22
212.63.121.0-212.63.123.255
IPv6:
2a06:8840::/29
Signature Algorithm: sha256WithRSAEncryption
0d:98:b4:0e:02:68:99:43:b7:b8:7c:b3:9b:7b:21:fc:7d:8d:
3c:87:57:fe:15:8d:69:87:59:9d:3e:98:44:a3:ca:2c:5f:6c:
20:a2:7b:db:4e:0e:c2:0a:5e:54:84:c7:72:b7:2c:8d:b6:f0:
1b:df:03:74:76:40:35:24:d4:04:52:83:28:76:e6:64:91:9c:
7f:66:a6:05:c5:68:f4:5b:20:e4:80:63:f6:99:f2:2d:f7:b3:
53:22:78:e0:3b:45:66:35:ce:2e:40:e6:8f:d4:2f:5b:34:39:
b3:cf:e3:d9:4c:27:2d:fb:43:18:a5:e4:b4:4c:3d:d9:66:ff:
82:be:ed:27:d1:c4:10:35:5b:b9:f9:17:9a:65:45:59:c5:27:
a6:6e:4d:02:dc:23:12:d7:b3:55:98:7f:99:33:e6:d8:5a:62:
cb:67:ef:69:7d:0e:f5:3c:e4:3d:3a:b7:ce:9e:99:09:31:94:
31:7d:94:04:ff:9d:bf:0a:89:a7:dc:54:2b:e6:97:9f:34:a6:
17:39:ea:a3:e2:bd:7f:43:5f:c0:1d:7b:99:07:93:18:f4:75:
b1:c6:dd:8b:91:75:28:5e:05:1f:c3:d6:3b:18:02:66:eb:6a:
ea:24:de:8c:f2:d9:a7:d5:72:e0:62:b4:79:59:18:94:c2:2b:
28:9c:64:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:50 2024 by rpki-client on console-ams.rpki-client.org