Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/pqN8s1jeee8yP9o_luZy_9yjNus.roa
File: pqN8s1jeee8yP9o_luZy_9yjNus.roa (raw, json)
Hash identifier: 0sBvwkixO/W/tJtUiKY8aS1QoOpluZiP3CNFnPHH1t0=
Subject key identifier: A6:A3:7C:B3:58:DE:79:EF:32:3F:DA:3F:96:E6:72:FF:DC:A3:36:EB
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 03FD5E54
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/pqN8s1jeee8yP9o_luZy_9yjNus.roa
Signing time: Thu 02 Jun 2022 11:41:27 +0000
ROA not before: Thu 02 Jun 2022 11:41:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.134.40.0/22 maxlen: 24
212.63.118.0/24 maxlen: 24
212.63.117.0/24 maxlen: 24
212.63.116.0/24 maxlen: 24
212.63.116.0/22 maxlen: 24
212.63.121.0/24 maxlen: 24
212.63.119.0/24 maxlen: 24
212.63.123.0/24 maxlen: 24
212.63.122.0/24 maxlen: 24
45.144.12.0/22 maxlen: 24
188.208.20.0/22 maxlen: 24
193.32.236.0/22 maxlen: 24
45.90.52.0/22 maxlen: 24
185.94.48.0/22 maxlen: 24
91.245.200.0/21 maxlen: 24
185.93.232.0/22 maxlen: 24
185.131.12.0/22 maxlen: 22
93.92.224.0/22 maxlen: 24
85.217.132.0/24 maxlen: 24
85.217.129.0/24 maxlen: 24
85.217.139.0/24 maxlen: 24
85.217.138.0/24 maxlen: 24
85.217.137.0/24 maxlen: 24
85.217.136.0/24 maxlen: 24
85.217.135.0/24 maxlen: 24
85.217.134.0/24 maxlen: 24
85.217.133.0/24 maxlen: 24
85.217.141.0/24 maxlen: 24
85.217.143.0/24 maxlen: 24
85.217.142.0/24 maxlen: 24
85.217.152.0/24 maxlen: 24
85.217.151.0/24 maxlen: 24
85.217.150.0/24 maxlen: 24
85.217.147.0/24 maxlen: 24
85.217.146.0/24 maxlen: 24
85.217.155.0/24 maxlen: 24
85.217.154.0/24 maxlen: 24
85.217.153.0/24 maxlen: 24
85.217.159.0/24 maxlen: 24
85.217.158.0/24 maxlen: 24
85.217.157.0/24 maxlen: 24
85.217.156.0/24 maxlen: 24
185.130.24.0/23 maxlen: 24
194.49.0.0/22 maxlen: 24
185.130.26.0/23 maxlen: 24
188.241.96.0/21 maxlen: 24
45.157.56.0/22 maxlen: 24
185.234.184.0/24 maxlen: 24
185.234.186.0/23 maxlen: 23
185.234.185.0/24 maxlen: 24
185.44.233.0/24 maxlen: 24
185.44.234.0/23 maxlen: 24
185.176.84.0/22 maxlen: 24
79.142.184.0/22 maxlen: 24
185.51.108.0/22 maxlen: 24
185.162.172.0/23 maxlen: 24
185.162.175.0/24 maxlen: 24
185.162.174.0/24 maxlen: 24
195.82.105.0/24 maxlen: 24
195.82.104.0/24 maxlen: 24
195.82.106.0/24 maxlen: 24
195.82.124.0/24 maxlen: 24
185.216.216.0/22 maxlen: 22
185.216.218.0/23 maxlen: 23
185.216.217.0/24 maxlen: 24
139.28.76.0/22 maxlen: 22
185.196.203.0/24 maxlen: 24
185.196.202.0/24 maxlen: 24
185.196.200.0/23 maxlen: 24
5.226.16.0/20 maxlen: 24
91.242.144.0/22 maxlen: 24
85.117.244.0/22 maxlen: 24
185.202.188.0/22 maxlen: 24
88.98.98.0/24 maxlen: 24
88.98.96.0/20 maxlen: 24
88.98.96.0/23 maxlen: 23
88.98.104.0/23 maxlen: 24
88.98.100.0/22 maxlen: 24
88.98.99.0/24 maxlen: 24
88.98.111.0/24 maxlen: 24
88.98.110.0/24 maxlen: 24
88.98.108.0/22 maxlen: 24
88.98.106.0/23 maxlen: 24
88.98.112.0/20 maxlen: 24
141.98.52.0/22 maxlen: 24
2a06:8840::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66936404 (0x3fd5e54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Jun 2 11:41:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a6a37cb358de79ef323fda3f96e672ffdca336eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f5:13:6e:ed:4d:79:ad:8f:06:93:03:07:60:
e9:8e:f9:27:46:3f:0e:ab:03:19:4d:86:cb:df:9d:
79:5c:f6:db:1d:ae:d5:e4:2a:ab:e9:66:8e:41:db:
71:7c:41:12:52:16:e2:9b:3c:6e:a4:1e:a7:55:a1:
10:a7:b3:ad:5e:30:b9:4e:85:55:84:01:30:ad:4e:
6b:04:90:e2:91:65:2c:0d:55:50:fc:3d:15:9f:87:
bb:e2:24:22:36:17:ce:4d:0d:8a:cc:8f:92:8a:d0:
ab:86:e2:ed:4d:5b:9f:84:34:84:65:28:b9:d2:e2:
f1:ee:97:70:04:4b:d3:e9:b1:e3:04:b4:cf:b0:f4:
3d:74:3f:11:e6:06:8a:c6:2e:4c:98:1c:9a:dc:d4:
2a:ee:49:2b:97:b3:05:6a:b2:a0:65:b6:9c:ad:41:
f6:17:10:74:98:7f:44:3d:5d:ab:02:d4:ee:2e:a9:
f8:2a:fd:7c:9e:49:b5:85:e8:f0:2a:cc:6d:f9:f6:
f0:d4:b1:09:05:4c:45:e6:ba:90:f3:ab:c8:41:96:
9e:3c:2e:b4:f4:11:43:26:e4:73:7c:a2:58:ca:b8:
bd:2c:d2:ea:b6:4e:7d:16:93:bf:c4:00:4c:aa:6d:
76:de:d7:74:7e:7c:7e:b4:aa:b4:04:f5:50:6b:46:
9b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:A3:7C:B3:58:DE:79:EF:32:3F:DA:3F:96:E6:72:FF:DC:A3:36:EB
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/pqN8s1jeee8yP9o_luZy_9yjNus.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.16.0/20
45.90.52.0/22
45.144.12.0/22
45.157.56.0/22
79.142.184.0/22
85.117.244.0/22
85.217.129.0/24
85.217.132.0-85.217.139.255
85.217.141.0-85.217.143.255
85.217.146.0/23
85.217.150.0-85.217.159.255
88.98.96.0/19
91.242.144.0/22
91.245.200.0/21
93.92.224.0/22
139.28.76.0/22
141.98.52.0/22
185.44.233.0-185.44.235.255
185.51.108.0/22
185.93.232.0/22
185.94.48.0/22
185.130.24.0/22
185.131.12.0/22
185.134.40.0/22
185.162.172.0/22
185.176.84.0/22
185.196.200.0/22
185.202.188.0/22
185.216.216.0/22
185.234.184.0/22
188.208.20.0/22
188.241.96.0/21
193.32.236.0/22
194.49.0.0/22
195.82.104.0-195.82.106.255
195.82.124.0/24
212.63.116.0/22
212.63.121.0-212.63.123.255
IPv6:
2a06:8840::/29
Signature Algorithm: sha256WithRSAEncryption
9b:f5:d2:2c:a3:66:e1:d1:e7:25:90:06:71:27:0c:7e:50:b1:
31:e7:60:58:3b:9f:55:47:39:ad:f4:74:0c:51:e3:18:f9:24:
be:83:78:9b:bd:91:64:e4:8d:05:86:8e:99:30:f3:b5:de:02:
21:1b:3e:52:39:fe:5e:91:46:44:a2:e9:68:3b:1d:73:21:12:
ef:bd:58:22:6b:2a:8a:ad:46:b3:83:f1:e7:08:8d:41:00:54:
7d:b8:ea:01:f6:10:79:e5:25:c5:be:ef:ab:a8:19:62:b1:a6:
a6:0a:9f:83:06:c4:1c:3b:b5:cf:81:27:11:ee:8a:1d:48:e3:
99:3b:44:36:9a:5a:d0:76:d3:dc:e2:3e:13:5b:52:5a:6e:c2:
c1:8a:0c:d4:80:d2:8f:cb:11:55:79:0f:41:c4:1d:08:21:04:
58:35:cf:bd:78:d8:42:c4:5a:a8:2f:f9:95:c9:17:bc:35:9b:
59:01:e3:bd:61:87:f5:6a:9f:69:57:21:93:df:b7:ca:29:4b:
4a:af:84:c5:2a:9e:78:83:c1:30:4a:8f:48:5d:2c:8e:24:49:
65:4f:b9:51:69:fc:28:62:b5:5e:73:98:d2:0c:b5:a9:c1:fd:
c2:d3:18:b1:9e:a5:ef:ad:05:41:76:2a:78:13:50:48:c6:52:
8b:09:dd:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:51 2024 by rpki-client on console-ams.rpki-client.org