Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/r09eh85mfCj886pwI4VpO8dUeKk.roa
File: r09eh85mfCj886pwI4VpO8dUeKk.roa (raw, json)
Hash identifier: v5MtIlSYtXwitBCeey6E38kRsptN3Mu8G91ywsoeQog=
Subject key identifier: AF:4F:5E:87:CE:66:7C:28:FC:F3:AA:70:23:85:69:3B:C7:54:78:A9
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 018529D4233EB1DD6090E5D7088AE265FAE3
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/r09eh85mfCj886pwI4VpO8dUeKk.roa
Signing time: Mon 19 Dec 2022 10:00:46 +0000
ROA not before: Mon 19 Dec 2022 10:00:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.134.40.0/22 maxlen: 24
185.93.120.0/22 maxlen: 24
188.208.21.0/24 maxlen: 24
188.208.20.0/22 maxlen: 24
193.32.236.0/22 maxlen: 24
185.94.48.0/22 maxlen: 24
185.93.232.0/22 maxlen: 24
93.92.224.0/22 maxlen: 24
185.119.236.0/22 maxlen: 24
188.241.96.0/21 maxlen: 24
185.120.44.0/22 maxlen: 24
185.234.184.0/24 maxlen: 24
185.234.186.0/23 maxlen: 23
185.234.185.0/24 maxlen: 24
185.44.233.0/24 maxlen: 24
185.44.234.0/23 maxlen: 24
185.51.108.0/22 maxlen: 24
86.105.234.0/24 maxlen: 24
212.104.160.0/19 maxlen: 24
5.226.16.0/20 maxlen: 24
85.117.245.0/24 maxlen: 24
85.117.244.0/22 maxlen: 24
193.91.0.0/24 maxlen: 24
193.91.10.0/24 maxlen: 24
185.43.252.0/22 maxlen: 24
88.98.98.0/24 maxlen: 24
88.98.96.0/20 maxlen: 24
88.98.96.0/23 maxlen: 23
88.98.104.0/23 maxlen: 24
88.98.100.0/22 maxlen: 24
88.98.99.0/24 maxlen: 24
88.98.111.0/24 maxlen: 24
88.98.110.0/24 maxlen: 24
88.98.108.0/23 maxlen: 24
88.98.108.0/22 maxlen: 24
88.98.106.0/23 maxlen: 24
88.98.112.0/20 maxlen: 24
141.98.52.0/22 maxlen: 24
212.63.118.0/24 maxlen: 24
212.63.117.0/24 maxlen: 24
212.63.116.0/22 maxlen: 24
212.63.116.0/24 maxlen: 24
212.63.121.0/24 maxlen: 24
212.63.119.0/24 maxlen: 24
212.63.123.0/24 maxlen: 24
212.63.122.0/24 maxlen: 24
185.83.104.0/22 maxlen: 24
45.144.12.0/22 maxlen: 24
45.90.52.0/22 maxlen: 24
91.245.200.0/21 maxlen: 24
185.131.13.0/24 maxlen: 24
185.131.12.0/22 maxlen: 24
85.217.132.0/24 maxlen: 24
85.217.129.0/24 maxlen: 24
85.217.139.0/24 maxlen: 24
85.217.138.0/24 maxlen: 24
85.217.137.0/24 maxlen: 24
85.217.136.0/24 maxlen: 24
85.217.135.0/24 maxlen: 24
85.217.134.0/24 maxlen: 24
85.217.133.0/24 maxlen: 24
85.217.141.0/24 maxlen: 24
85.217.143.0/24 maxlen: 24
85.217.142.0/24 maxlen: 24
85.217.152.0/24 maxlen: 24
85.217.151.0/24 maxlen: 24
85.217.150.0/24 maxlen: 24
85.217.147.0/24 maxlen: 24
85.217.146.0/24 maxlen: 24
85.217.155.0/24 maxlen: 24
85.217.154.0/24 maxlen: 24
85.217.153.0/24 maxlen: 24
85.217.159.0/24 maxlen: 24
85.217.158.0/24 maxlen: 24
85.217.157.0/24 maxlen: 24
85.217.156.0/24 maxlen: 24
185.130.24.0/23 maxlen: 24
194.49.0.0/22 maxlen: 24
185.130.26.0/23 maxlen: 24
45.157.56.0/22 maxlen: 24
185.176.84.0/22 maxlen: 24
185.210.16.0/22 maxlen: 24
79.142.184.0/22 maxlen: 24
185.162.172.0/23 maxlen: 24
185.162.175.0/24 maxlen: 24
185.162.174.0/24 maxlen: 24
195.82.105.0/24 maxlen: 24
195.82.104.0/24 maxlen: 24
195.82.106.0/24 maxlen: 24
195.82.124.0/24 maxlen: 24
185.216.216.0/22 maxlen: 22
185.216.218.0/23 maxlen: 23
185.216.217.0/24 maxlen: 24
139.28.76.0/22 maxlen: 22
185.196.203.0/24 maxlen: 24
185.196.202.0/24 maxlen: 24
185.196.200.0/23 maxlen: 24
91.242.144.0/22 maxlen: 24
185.202.188.0/22 maxlen: 24
2a06:8840::/29 maxlen: 29
2a06:8f40::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:29:d4:23:3e:b1:dd:60:90:e5:d7:08:8a:e2:65:fa:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Dec 19 10:00:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af4f5e87ce667c28fcf3aa702385693bc75478a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:bc:0b:f1:73:54:e1:89:25:91:16:a0:21:27:
24:b6:20:85:8c:a2:25:b9:9b:80:32:1f:55:58:ca:
b7:03:97:cd:c1:c5:ec:13:35:43:3b:26:8a:3a:ae:
d8:fe:b3:e6:ad:53:4c:2d:5e:a2:93:4a:ff:a1:28:
c7:02:2e:b9:41:d2:8f:f2:8c:a4:d3:90:85:37:6c:
ed:0c:a4:f5:14:73:19:54:e7:92:a7:31:f3:3b:59:
08:95:2c:99:80:28:00:09:64:02:c8:ec:ca:95:b7:
8c:dd:d4:3a:41:f1:a8:b3:ad:40:bf:52:3d:0b:f0:
37:54:8d:47:83:4e:e1:28:80:d4:fc:6e:d9:8b:41:
b2:e6:cd:27:85:36:6f:b3:0e:80:1e:63:f8:5f:2e:
5f:3b:8b:46:90:f7:e0:50:c7:6e:3d:03:5a:25:bd:
b8:b5:2a:c2:38:c7:ea:28:f8:9b:27:11:e2:42:09:
b7:43:18:48:e6:e1:87:ef:0a:43:13:c6:c7:04:e7:
56:bf:c1:6e:8a:06:de:73:e4:17:83:f4:5c:14:8a:
fe:0a:93:3d:31:18:0d:2a:1c:01:85:c5:85:cc:b7:
f8:86:63:f8:01:4b:fa:35:38:25:0c:dc:13:9a:e6:
9a:15:81:8c:dc:d9:93:71:07:ca:e8:82:25:fe:ec:
a8:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:4F:5E:87:CE:66:7C:28:FC:F3:AA:70:23:85:69:3B:C7:54:78:A9
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/r09eh85mfCj886pwI4VpO8dUeKk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.16.0/20
45.90.52.0/22
45.144.12.0/22
45.157.56.0/22
79.142.184.0/22
85.117.244.0/22
85.217.129.0/24
85.217.132.0-85.217.139.255
85.217.141.0-85.217.143.255
85.217.146.0/23
85.217.150.0-85.217.159.255
86.105.234.0/24
88.98.96.0/19
91.242.144.0/22
91.245.200.0/21
93.92.224.0/22
139.28.76.0/22
141.98.52.0/22
185.43.252.0/22
185.44.233.0-185.44.235.255
185.51.108.0/22
185.83.104.0/22
185.93.120.0/22
185.93.232.0/22
185.94.48.0/22
185.119.236.0/22
185.120.44.0/22
185.130.24.0/22
185.131.12.0/22
185.134.40.0/22
185.162.172.0/22
185.176.84.0/22
185.196.200.0/22
185.202.188.0/22
185.210.16.0/22
185.216.216.0/22
185.234.184.0/22
188.208.20.0/22
188.241.96.0/21
193.32.236.0/22
193.91.0.0/24
193.91.10.0/24
194.49.0.0/22
195.82.104.0-195.82.106.255
195.82.124.0/24
212.63.116.0/22
212.63.121.0-212.63.123.255
212.104.160.0/19
IPv6:
2a06:8840::/29
2a06:8f40::/29
Signature Algorithm: sha256WithRSAEncryption
a7:90:62:42:a5:97:a7:e5:bf:c9:de:e5:d0:4e:e7:c6:24:a1:
75:43:45:d5:63:e9:62:3f:aa:19:5d:30:a1:ed:cb:32:80:d9:
0f:50:d7:37:a2:3c:4a:05:80:bd:01:8c:e6:1d:64:9a:a3:11:
af:cf:d4:af:9d:10:04:46:d5:1c:f9:85:ee:4c:d5:57:78:81:
7c:b8:7f:4a:a6:0e:7c:36:3f:58:b4:6a:96:39:a5:24:12:8a:
c6:c9:1e:b5:93:37:b0:ac:70:31:60:90:36:34:19:94:7b:f4:
b4:e5:9f:2f:c5:51:98:7c:b2:c6:a4:c4:6a:07:7b:b4:9e:9b:
5c:ec:aa:b8:4f:7d:f0:9e:2e:e9:81:fe:27:42:52:91:e8:a0:
93:0f:05:31:25:45:9e:26:a6:16:dc:95:41:49:e5:93:9a:cc:
ea:e3:64:c1:4e:c8:aa:10:63:22:63:44:86:cf:ed:10:7c:de:
27:89:c5:6d:59:41:37:0b:fe:d9:6e:8e:6e:74:0c:5f:b1:cd:
27:73:96:68:18:6a:43:c9:63:7e:f3:7b:f2:60:63:17:0a:fa:
6e:48:87:88:6f:14:95:0f:0a:8b:aa:5f:2b:56:77:aa:65:10:
e4:f8:3c:c9:93:bd:9b:77:81:ae:9f:06:72:bf:71:4d:e8:2c:
eb:2c:1f:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:37 2024 by rpki-client on console-fra.rpki-client.org