Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/xPTulGcknTXXOaXcJ81ru4C3wB0.roa
File: xPTulGcknTXXOaXcJ81ru4C3wB0.roa (raw, json)
Hash identifier: EvtsodPXTqfQW9qDgjK8Sxbbl3K+iK5zydBpJxCoBOo=
Subject key identifier: C4:F4:EE:94:67:24:9D:35:D7:39:A5:DC:27:CD:6B:BB:80:B7:C0:1D
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 01852A2EC49F17989B2E356863EE5775A2F1
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/xPTulGcknTXXOaXcJ81ru4C3wB0.roa
Signing time: Mon 19 Dec 2022 11:39:46 +0000
ROA not before: Mon 19 Dec 2022 11:39:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.228.120.0/24 maxlen: 24
185.228.123.0/24 maxlen: 24
185.228.122.0/24 maxlen: 24
185.228.121.0/24 maxlen: 24
185.228.120.0/22 maxlen: 24
185.134.40.0/22 maxlen: 24
45.141.4.0/22 maxlen: 24
185.93.120.0/22 maxlen: 24
185.113.186.0/24 maxlen: 24
185.113.185.0/24 maxlen: 24
185.113.184.0/24 maxlen: 24
185.113.187.0/24 maxlen: 24
188.208.20.0/22 maxlen: 24
193.32.236.0/22 maxlen: 24
188.208.21.0/24 maxlen: 24
185.94.48.0/22 maxlen: 24
185.93.232.0/22 maxlen: 24
93.92.224.0/22 maxlen: 24
185.119.236.0/22 maxlen: 24
188.241.96.0/21 maxlen: 24
185.120.44.0/22 maxlen: 24
185.234.186.0/23 maxlen: 23
185.234.184.0/24 maxlen: 24
185.234.185.0/24 maxlen: 24
185.44.233.0/24 maxlen: 24
185.44.234.0/23 maxlen: 24
185.51.108.0/22 maxlen: 24
86.105.234.0/24 maxlen: 24
212.104.160.0/19 maxlen: 24
5.226.16.0/20 maxlen: 24
85.117.245.0/24 maxlen: 24
193.91.0.0/24 maxlen: 24
85.117.244.0/22 maxlen: 24
193.91.10.0/24 maxlen: 24
185.43.252.0/22 maxlen: 24
88.98.98.0/24 maxlen: 24
88.98.96.0/20 maxlen: 24
88.98.96.0/23 maxlen: 23
88.98.99.0/24 maxlen: 24
88.98.104.0/23 maxlen: 24
88.98.100.0/22 maxlen: 24
88.98.111.0/24 maxlen: 24
88.98.110.0/24 maxlen: 24
88.98.108.0/23 maxlen: 24
88.98.108.0/22 maxlen: 24
88.98.106.0/23 maxlen: 24
88.98.112.0/20 maxlen: 24
141.98.52.0/22 maxlen: 24
212.63.116.0/22 maxlen: 24
212.63.118.0/24 maxlen: 24
212.63.117.0/24 maxlen: 24
212.63.116.0/24 maxlen: 24
212.63.121.0/24 maxlen: 24
212.63.119.0/24 maxlen: 24
212.63.123.0/24 maxlen: 24
212.63.122.0/24 maxlen: 24
185.83.104.0/22 maxlen: 24
45.144.12.0/22 maxlen: 24
45.90.52.0/22 maxlen: 24
185.158.52.0/22 maxlen: 24
91.245.200.0/21 maxlen: 24
185.131.13.0/24 maxlen: 24
185.131.12.0/22 maxlen: 24
85.217.132.0/24 maxlen: 24
85.217.129.0/24 maxlen: 24
85.217.139.0/24 maxlen: 24
85.217.138.0/24 maxlen: 24
85.217.137.0/24 maxlen: 24
85.217.136.0/24 maxlen: 24
85.217.135.0/24 maxlen: 24
85.217.134.0/24 maxlen: 24
85.217.133.0/24 maxlen: 24
85.217.141.0/24 maxlen: 24
85.217.143.0/24 maxlen: 24
85.217.142.0/24 maxlen: 24
85.217.152.0/24 maxlen: 24
85.217.151.0/24 maxlen: 24
85.217.150.0/24 maxlen: 24
85.217.147.0/24 maxlen: 24
85.217.146.0/24 maxlen: 24
85.217.155.0/24 maxlen: 24
85.217.154.0/24 maxlen: 24
85.217.153.0/24 maxlen: 24
85.217.159.0/24 maxlen: 24
85.217.158.0/24 maxlen: 24
85.217.157.0/24 maxlen: 24
85.217.156.0/24 maxlen: 24
185.130.24.0/23 maxlen: 24
194.49.0.0/22 maxlen: 24
185.130.26.0/23 maxlen: 24
45.157.56.0/22 maxlen: 24
185.176.84.0/22 maxlen: 24
185.210.16.0/22 maxlen: 24
79.142.184.0/22 maxlen: 24
185.162.172.0/23 maxlen: 24
185.162.175.0/24 maxlen: 24
185.162.174.0/24 maxlen: 24
195.82.105.0/24 maxlen: 24
195.82.104.0/24 maxlen: 24
195.82.106.0/24 maxlen: 24
195.82.124.0/24 maxlen: 24
185.216.216.0/22 maxlen: 22
185.216.218.0/23 maxlen: 23
185.216.217.0/24 maxlen: 24
139.28.76.0/22 maxlen: 22
185.196.200.0/23 maxlen: 24
185.196.203.0/24 maxlen: 24
185.196.202.0/24 maxlen: 24
91.242.144.0/22 maxlen: 24
185.202.188.0/22 maxlen: 24
2a06:8840::/29 maxlen: 29
2a06:8f40::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2a:2e:c4:9f:17:98:9b:2e:35:68:63:ee:57:75:a2:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Dec 19 11:39:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c4f4ee9467249d35d739a5dc27cd6bbb80b7c01d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f1:37:6b:56:46:2d:7a:28:61:86:e1:fd:2e:
e3:2c:33:d2:7e:cb:b5:01:4d:2f:7d:80:20:13:ee:
87:43:0e:5c:28:2d:3a:f8:18:f4:f5:0e:6a:f4:40:
27:2f:98:c3:10:84:5a:93:1a:e7:87:f8:f7:0e:50:
a3:a5:0d:96:b3:b6:39:f7:82:7a:fe:78:37:75:f0:
6a:d1:17:1c:a6:bc:72:83:3e:ea:9d:9f:01:5b:88:
0e:a1:6e:72:88:ff:35:af:d1:58:c7:44:b8:6e:b1:
96:08:6a:83:eb:e5:2f:f6:7e:35:85:31:2d:83:ce:
22:24:6d:9a:9c:38:32:b0:9f:74:20:d2:9f:4b:93:
e6:92:5f:7c:8f:87:11:b6:76:65:4e:06:e5:5e:ba:
07:3c:eb:58:68:76:4f:ea:9b:d6:f6:e8:08:68:3a:
2d:66:7f:b0:b0:1a:29:ae:ac:ba:0c:d5:33:d6:8a:
b6:63:33:f0:88:77:0c:22:4b:cc:59:53:d0:a6:50:
02:7a:a4:c2:0c:73:4d:2e:ab:4f:c4:3e:3d:ff:08:
57:0b:3a:9f:19:7f:48:e3:3b:ca:c0:a0:b9:d4:1c:
b2:b3:20:32:86:bd:0d:9f:6c:35:c5:b3:8b:3c:1d:
45:4e:99:89:65:22:b2:b4:e0:89:1d:0e:7c:17:ec:
aa:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:F4:EE:94:67:24:9D:35:D7:39:A5:DC:27:CD:6B:BB:80:B7:C0:1D
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/xPTulGcknTXXOaXcJ81ru4C3wB0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.16.0/20
45.90.52.0/22
45.141.4.0/22
45.144.12.0/22
45.157.56.0/22
79.142.184.0/22
85.117.244.0/22
85.217.129.0/24
85.217.132.0-85.217.139.255
85.217.141.0-85.217.143.255
85.217.146.0/23
85.217.150.0-85.217.159.255
86.105.234.0/24
88.98.96.0/19
91.242.144.0/22
91.245.200.0/21
93.92.224.0/22
139.28.76.0/22
141.98.52.0/22
185.43.252.0/22
185.44.233.0-185.44.235.255
185.51.108.0/22
185.83.104.0/22
185.93.120.0/22
185.93.232.0/22
185.94.48.0/22
185.113.184.0/22
185.119.236.0/22
185.120.44.0/22
185.130.24.0/22
185.131.12.0/22
185.134.40.0/22
185.158.52.0/22
185.162.172.0/22
185.176.84.0/22
185.196.200.0/22
185.202.188.0/22
185.210.16.0/22
185.216.216.0/22
185.228.120.0/22
185.234.184.0/22
188.208.20.0/22
188.241.96.0/21
193.32.236.0/22
193.91.0.0/24
193.91.10.0/24
194.49.0.0/22
195.82.104.0-195.82.106.255
195.82.124.0/24
212.63.116.0/22
212.63.121.0-212.63.123.255
212.104.160.0/19
IPv6:
2a06:8840::/29
2a06:8f40::/29
Signature Algorithm: sha256WithRSAEncryption
80:5c:ff:99:6b:5f:4e:98:3d:ab:50:97:01:92:29:f8:e8:ab:
24:8a:60:8e:9b:48:eb:76:b5:47:80:d1:92:f0:6d:f2:fb:fd:
33:18:aa:ea:af:93:d6:63:76:27:73:55:00:f3:c3:7d:d7:00:
ec:e2:40:a4:5a:05:e1:e0:d8:b0:42:f1:58:66:f5:ce:dd:fd:
c3:a5:2e:09:6c:58:42:6e:8a:40:d2:4d:93:f3:ea:e5:40:a8:
ae:c1:a8:17:b9:6e:a0:fb:5e:35:11:82:00:98:19:b0:be:9a:
f8:d9:07:9f:8d:6d:df:9b:a1:2d:fb:9e:71:df:ba:00:c2:a1:
c8:36:81:8c:56:a3:91:bb:7c:a4:59:8e:22:89:ac:f5:b5:90:
05:b8:c0:de:89:2a:07:c0:43:70:ab:ab:1e:9b:a0:d1:b8:2a:
17:9c:94:aa:55:a8:e2:77:09:91:73:ba:40:4f:82:9e:54:19:
67:30:d6:57:93:40:02:80:70:d2:9c:f5:38:31:c7:6e:3e:14:
c8:33:1b:b0:b0:7d:2b:d1:9a:42:6f:4e:36:ce:23:ce:c8:7f:
39:2f:f8:64:54:2f:a8:21:05:fc:4f:32:95:d5:0a:ab:b4:da:
02:a0:99:b3:b1:86:63:e4:3d:e9:89:38:32:9c:ff:7b:28:3f:
d1:6c:9a:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:37 2024 by rpki-client on console-fra.rpki-client.org