Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/m54lezmLtnEYhjtxZ-3CVOWU-m8.roa
File: m54lezmLtnEYhjtxZ-3CVOWU-m8.roa (raw, json)
Hash identifier: Sy5e9UqHqxG7Hun77aGoTM1AjAPF9lNPkpsejWKEjzs=
Subject key identifier: 9B:9E:25:7B:39:8B:B6:71:18:86:3B:71:67:ED:C2:54:E5:94:FA:6F
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 0182AAE6C356619521665A672B6DE3B86D7F
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/m54lezmLtnEYhjtxZ-3CVOWU-m8.roa
Signing time: Wed 17 Aug 2022 08:23:46 +0000
ROA not before: Wed 17 Aug 2022 08:23:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.134.40.0/22 maxlen: 24
212.63.118.0/24 maxlen: 24
212.63.117.0/24 maxlen: 24
212.63.116.0/22 maxlen: 24
212.63.116.0/24 maxlen: 24
212.63.121.0/24 maxlen: 24
212.63.119.0/24 maxlen: 24
212.63.123.0/24 maxlen: 24
212.63.122.0/24 maxlen: 24
185.83.104.0/22 maxlen: 24
45.144.12.0/22 maxlen: 24
188.208.20.0/22 maxlen: 24
193.32.236.0/22 maxlen: 24
45.90.52.0/22 maxlen: 24
185.94.48.0/22 maxlen: 24
91.245.200.0/21 maxlen: 24
185.93.232.0/22 maxlen: 24
185.131.12.0/22 maxlen: 22
93.92.224.0/22 maxlen: 24
85.217.132.0/24 maxlen: 24
85.217.129.0/24 maxlen: 24
85.217.139.0/24 maxlen: 24
85.217.138.0/24 maxlen: 24
85.217.137.0/24 maxlen: 24
85.217.136.0/24 maxlen: 24
85.217.135.0/24 maxlen: 24
85.217.134.0/24 maxlen: 24
85.217.133.0/24 maxlen: 24
85.217.141.0/24 maxlen: 24
85.217.143.0/24 maxlen: 24
85.217.142.0/24 maxlen: 24
85.217.152.0/24 maxlen: 24
85.217.151.0/24 maxlen: 24
85.217.150.0/24 maxlen: 24
85.217.147.0/24 maxlen: 24
85.217.146.0/24 maxlen: 24
85.217.155.0/24 maxlen: 24
85.217.154.0/24 maxlen: 24
85.217.153.0/24 maxlen: 24
85.217.159.0/24 maxlen: 24
85.217.158.0/24 maxlen: 24
85.217.157.0/24 maxlen: 24
85.217.156.0/24 maxlen: 24
185.130.24.0/23 maxlen: 24
194.49.0.0/22 maxlen: 24
185.130.26.0/23 maxlen: 24
188.241.96.0/21 maxlen: 24
45.157.56.0/22 maxlen: 24
185.234.184.0/24 maxlen: 24
185.234.186.0/23 maxlen: 23
185.234.185.0/24 maxlen: 24
185.44.233.0/24 maxlen: 24
185.44.234.0/23 maxlen: 24
185.176.84.0/22 maxlen: 24
79.142.184.0/22 maxlen: 24
185.51.108.0/22 maxlen: 24
185.162.172.0/23 maxlen: 24
185.162.175.0/24 maxlen: 24
185.162.174.0/24 maxlen: 24
195.82.105.0/24 maxlen: 24
195.82.104.0/24 maxlen: 24
195.82.106.0/24 maxlen: 24
195.82.124.0/24 maxlen: 24
185.216.216.0/22 maxlen: 22
185.216.218.0/23 maxlen: 23
185.216.217.0/24 maxlen: 24
139.28.76.0/22 maxlen: 22
185.196.203.0/24 maxlen: 24
185.196.202.0/24 maxlen: 24
185.196.200.0/23 maxlen: 24
5.226.16.0/20 maxlen: 24
91.242.144.0/22 maxlen: 24
85.117.244.0/22 maxlen: 24
185.202.188.0/22 maxlen: 24
88.98.98.0/24 maxlen: 24
88.98.96.0/20 maxlen: 24
88.98.96.0/23 maxlen: 23
88.98.104.0/23 maxlen: 24
88.98.100.0/22 maxlen: 24
88.98.99.0/24 maxlen: 24
88.98.111.0/24 maxlen: 24
88.98.110.0/24 maxlen: 24
88.98.108.0/22 maxlen: 24
88.98.106.0/23 maxlen: 24
88.98.112.0/20 maxlen: 24
141.98.52.0/22 maxlen: 24
2a06:8840::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:aa:e6:c3:56:61:95:21:66:5a:67:2b:6d:e3:b8:6d:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Aug 17 08:23:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b9e257b398bb67118863b7167edc254e594fa6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:8c:44:c4:0e:19:7c:d9:1d:98:0a:3d:84:eb:
45:36:89:de:75:fa:e8:8f:02:bb:5b:1d:fe:d9:43:
46:b8:46:b8:71:bd:98:c7:2d:42:43:a1:4f:04:78:
93:e1:0f:1a:88:d5:29:63:ec:43:6e:af:6b:15:90:
22:e3:f9:92:2f:5e:95:57:66:a2:83:cf:8f:e0:46:
a6:a9:ba:bc:e7:71:fa:92:d7:4f:bd:1e:dc:63:f4:
4b:2b:06:ff:54:98:ba:93:ba:4c:91:29:2f:3a:d3:
5b:26:08:08:1c:a9:64:f2:70:13:30:5a:60:52:41:
c2:42:06:47:72:32:16:f0:09:cc:c6:2d:19:82:61:
14:f7:11:3a:d2:2f:91:ab:9a:ca:ad:dd:9c:ac:0d:
1f:c2:02:ea:68:2d:1c:62:ba:ba:e5:95:87:df:f2:
0c:f8:1f:3a:c6:0a:34:d1:b7:ec:d6:7d:36:28:ff:
5a:52:92:14:e6:11:7f:12:bc:96:ef:97:18:4e:49:
34:ec:0e:d0:b3:e2:f2:10:0d:11:a3:56:0b:56:d5:
a8:bb:d3:ab:3f:78:44:67:26:3d:1d:b7:73:8f:7a:
5f:be:a8:ef:d8:6c:2e:41:d9:ce:b9:02:af:1b:a1:
0a:f2:08:2f:0a:2c:95:94:79:a8:69:96:78:2d:aa:
a3:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:9E:25:7B:39:8B:B6:71:18:86:3B:71:67:ED:C2:54:E5:94:FA:6F
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/m54lezmLtnEYhjtxZ-3CVOWU-m8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.16.0/20
45.90.52.0/22
45.144.12.0/22
45.157.56.0/22
79.142.184.0/22
85.117.244.0/22
85.217.129.0/24
85.217.132.0-85.217.139.255
85.217.141.0-85.217.143.255
85.217.146.0/23
85.217.150.0-85.217.159.255
88.98.96.0/19
91.242.144.0/22
91.245.200.0/21
93.92.224.0/22
139.28.76.0/22
141.98.52.0/22
185.44.233.0-185.44.235.255
185.51.108.0/22
185.83.104.0/22
185.93.232.0/22
185.94.48.0/22
185.130.24.0/22
185.131.12.0/22
185.134.40.0/22
185.162.172.0/22
185.176.84.0/22
185.196.200.0/22
185.202.188.0/22
185.216.216.0/22
185.234.184.0/22
188.208.20.0/22
188.241.96.0/21
193.32.236.0/22
194.49.0.0/22
195.82.104.0-195.82.106.255
195.82.124.0/24
212.63.116.0/22
212.63.121.0-212.63.123.255
IPv6:
2a06:8840::/29
Signature Algorithm: sha256WithRSAEncryption
23:13:0b:57:75:f5:aa:c6:59:21:4d:3d:93:1a:6a:0e:e7:90:
70:a4:98:56:28:42:ef:3d:47:a0:4d:8d:fd:fa:59:14:5e:7c:
ec:95:42:15:36:29:40:c9:8c:a0:7c:77:f2:bb:be:f1:06:42:
dd:5e:6d:20:ad:c8:ed:be:90:8a:c7:3e:ea:8d:ee:99:f2:23:
42:ac:2f:a5:25:fb:9d:9e:95:41:75:0c:6f:9d:98:c5:3e:78:
cb:04:75:6e:72:be:e9:7b:b2:85:6a:c0:02:66:c9:10:dc:bd:
c9:e0:a7:58:1a:1b:93:bb:c4:a3:0c:9b:58:57:c7:ad:d8:28:
aa:92:c8:69:32:a9:bc:a2:ca:44:c5:91:b2:1d:e1:b7:2d:b0:
0d:4b:69:c3:af:ba:f7:01:23:a2:ed:5a:ff:f6:7e:ad:dc:e3:
a1:a0:d3:73:b3:ae:a2:1c:3e:f2:3a:d0:8d:9f:a1:ad:43:13:
81:9a:b3:38:66:0b:19:4f:0e:79:ef:7d:a1:1a:b0:03:74:2f:
05:de:a2:2d:5c:48:58:21:d3:36:fb:39:49:38:30:66:9b:cf:
3e:c9:9b:ac:d9:76:88:54:60:b4:42:c4:65:fd:d9:f9:e4:2e:
29:96:07:ac:fc:f1:4b:ee:ee:a7:cb:b7:0e:90:d1:dc:91:ca:
46:a2:52:a2
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:51 2024 by rpki-client on console-ams.rpki-client.org