Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/48e1ae-90e8-4e42-af3d-5101be5dd615/1/4EfL67bBeGgIB3Xp8RZNI1aULIk.roa
File: 4EfL67bBeGgIB3Xp8RZNI1aULIk.roa (raw, json)
Hash identifier: h7a9YfrMjE9ep/8HzSqU7BJUhhkBIeYIuCgQmeuZUGc=
Subject key identifier: E0:47:CB:EB:B6:C1:78:68:08:07:75:E9:F1:16:4D:23:56:94:2C:89
Certificate issuer: /CN=1fd5fef692b4c2d22bdd031fabfa7110b7b36e81
Certificate serial: 0182FD38ED01E34CB63AA2DB0A0F41396200
Authority key identifier: 1F:D5:FE:F6:92:B4:C2:D2:2B:DD:03:1F:AB:FA:71:10:B7:B3:6E:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H9X-9pK0wtIr3QMfq_pxELezboE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/48e1ae-90e8-4e42-af3d-5101be5dd615/1/4EfL67bBeGgIB3Xp8RZNI1aULIk.roa
Signing time: Fri 02 Sep 2022 08:02:22 +0000
ROA not before: Fri 02 Sep 2022 08:02:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16086
IP address blocks: 87.100.128.0/17 maxlen: 17
85.23.0.0/16 maxlen: 16
62.241.192.0/18 maxlen: 18
37.130.160.0/19 maxlen: 19
212.90.64.0/19 maxlen: 19
37.33.0.0/16 maxlen: 16
159.255.224.0/19 maxlen: 19
213.141.96.0/19 maxlen: 19
188.94.64.0/21 maxlen: 21
212.50.128.0/19 maxlen: 19
85.131.0.0/17 maxlen: 17
188.67.0.0/16 maxlen: 16
193.143.94.0/23 maxlen: 23
193.143.93.0/24 maxlen: 24
176.93.0.0/16 maxlen: 16
212.86.0.0/19 maxlen: 19
193.143.70.0/23 maxlen: 23
193.143.73.0/24 maxlen: 24
193.143.80.0/21 maxlen: 21
193.143.79.0/24 maxlen: 24
193.143.91.0/24 maxlen: 24
193.143.88.0/23 maxlen: 23
83.100.0.0/17 maxlen: 17
185.15.212.0/22 maxlen: 22
194.100.0.0/16 maxlen: 16
62.113.160.0/19 maxlen: 19
82.181.0.0/16 maxlen: 16
62.197.160.0/19 maxlen: 19
178.55.0.0/16 maxlen: 16
84.253.192.0/18 maxlen: 18
212.146.0.0/18 maxlen: 18
87.92.0.0/14 maxlen: 14
213.216.192.0/18 maxlen: 18
62.78.96.0/19 maxlen: 19
83.102.0.0/17 maxlen: 17
89.166.0.0/17 maxlen: 17
213.243.128.0/18 maxlen: 18
62.44.192.0/18 maxlen: 18
62.78.128.0/17 maxlen: 17
213.139.160.0/19 maxlen: 19
213.186.224.0/19 maxlen: 19
213.186.224.0/24 maxlen: 24
62.183.128.0/17 maxlen: 17
217.78.192.0/19 maxlen: 19
212.149.128.0/17 maxlen: 17
37.136.0.0/16 maxlen: 16
82.203.128.0/17 maxlen: 17
178.75.128.0/18 maxlen: 18
109.108.0.0/19 maxlen: 19
62.236.0.0/15 maxlen: 15
88.148.128.0/17 maxlen: 17
78.27.64.0/18 maxlen: 18
81.175.128.0/17 maxlen: 17
195.10.128.0/18 maxlen: 18
192.107.200.0/21 maxlen: 21
80.64.0.0/20 maxlen: 20
192.107.208.0/20 maxlen: 20
89.27.0.0/17 maxlen: 17
37.219.0.0/16 maxlen: 16
192.107.224.0/21 maxlen: 21
91.145.64.0/18 maxlen: 18
62.165.128.0/18 maxlen: 18
82.128.128.0/17 maxlen: 17
2a01:a800::/29 maxlen: 29
2001:14b8::/29 maxlen: 29
2001:6e8::/29 maxlen: 29
2001:4078::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:fd:38:ed:01:e3:4c:b6:3a:a2:db:0a:0f:41:39:62:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fd5fef692b4c2d22bdd031fabfa7110b7b36e81
Validity
Not Before: Sep 2 08:02:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e047cbebb6c17868080775e9f1164d2356942c89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:1f:ef:1f:ee:b8:9c:b0:0e:72:fc:d2:88:4f:
ad:e8:d7:a1:18:e1:27:1c:4d:69:08:e5:d9:b4:12:
40:94:d0:2d:c1:24:91:7b:9b:41:66:f8:64:10:5d:
03:97:3f:7f:da:e4:8f:0a:cb:42:9e:4d:4f:69:86:
47:7d:b0:25:04:68:6d:7d:66:89:1e:af:d6:86:3c:
d5:f5:bb:fc:4b:fa:d9:63:09:e2:5c:71:24:c2:1f:
31:86:cd:98:a5:57:1c:9e:a6:70:14:c5:3a:6d:a4:
4c:fe:f4:ef:4c:49:f9:00:ae:12:3b:a2:01:7c:f3:
4d:52:9f:73:37:af:43:9c:9c:6b:02:6c:4a:70:51:
dc:ff:e6:b1:4c:8e:cd:61:1f:2e:9b:f7:02:aa:fb:
55:4f:3f:03:4d:da:50:22:9c:6d:71:75:9a:d5:a4:
10:70:d9:ae:14:05:ef:16:29:58:a6:8a:0b:7d:6c:
53:86:77:0e:9f:d8:9a:c7:3a:87:04:7f:5c:44:58:
6c:de:08:79:47:e9:92:24:84:a9:5f:33:de:69:14:
42:cc:b3:d8:ad:e4:2f:1d:f5:27:d5:60:35:97:d0:
3b:58:39:c0:79:29:04:b9:c3:44:de:f8:76:aa:ce:
52:06:8d:a6:93:2b:f4:df:9a:b6:0a:48:97:6f:81:
0e:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:47:CB:EB:B6:C1:78:68:08:07:75:E9:F1:16:4D:23:56:94:2C:89
X509v3 Authority Key Identifier:
keyid:1F:D5:FE:F6:92:B4:C2:D2:2B:DD:03:1F:AB:FA:71:10:B7:B3:6E:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9X-9pK0wtIr3QMfq_pxELezboE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/48e1ae-90e8-4e42-af3d-5101be5dd615/1/4EfL67bBeGgIB3Xp8RZNI1aULIk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/48e1ae-90e8-4e42-af3d-5101be5dd615/1/H9X-9pK0wtIr3QMfq_pxELezboE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.33.0.0/16
37.130.160.0/19
37.136.0.0/16
37.219.0.0/16
62.44.192.0/18
62.78.96.0-62.78.255.255
62.113.160.0/19
62.165.128.0/18
62.183.128.0/17
62.197.160.0/19
62.236.0.0/15
62.241.192.0/18
78.27.64.0/18
80.64.0.0/20
81.175.128.0/17
82.128.128.0/17
82.181.0.0/16
82.203.128.0/17
83.100.0.0/17
83.102.0.0/17
84.253.192.0/18
85.23.0.0/16
85.131.0.0/17
87.92.0.0/14
87.100.128.0/17
88.148.128.0/17
89.27.0.0/17
89.166.0.0/17
91.145.64.0/18
109.108.0.0/19
159.255.224.0/19
176.93.0.0/16
178.55.0.0/16
178.75.128.0/18
185.15.212.0/22
188.67.0.0/16
188.94.64.0/21
192.107.200.0-192.107.231.255
193.143.70.0/23
193.143.73.0/24
193.143.79.0-193.143.89.255
193.143.91.0/24
193.143.93.0-193.143.95.255
194.100.0.0/16
195.10.128.0/18
212.50.128.0/19
212.86.0.0/19
212.90.64.0/19
212.146.0.0/18
212.149.128.0/17
213.139.160.0/19
213.141.96.0/19
213.186.224.0/19
213.216.192.0/18
213.243.128.0/18
217.78.192.0/19
IPv6:
2001:6e8::/29
2001:14b8::/29
2001:4078::/29
2a01:a800::/29
Signature Algorithm: sha256WithRSAEncryption
07:ee:b1:9b:5f:e1:41:27:a3:aa:65:b4:f4:df:a9:17:87:9f:
1f:73:17:f6:94:e3:72:d3:ad:cc:db:74:fe:33:a2:56:f1:c2:
df:85:6c:a2:71:37:06:cb:bc:5f:0d:a4:29:de:b2:1a:96:f7:
45:d4:54:3e:46:68:d6:58:d8:04:2b:c5:81:70:7b:d2:4a:d3:
b8:55:3b:a8:72:bc:39:ff:46:5c:b5:2c:65:57:a7:f5:19:3e:
1a:4c:a2:bc:00:54:be:a5:66:64:64:3e:a7:6d:8e:e4:2e:c5:
3a:01:b6:9d:1c:0d:d7:2c:26:9d:f3:20:f0:fd:62:d8:e8:df:
5a:f9:b1:5a:59:cb:47:be:d3:6d:ac:a0:ee:3e:e8:c3:89:e6:
72:74:2b:51:63:fc:1c:f8:b7:f4:a8:d3:fe:15:48:9f:84:97:
e6:90:bb:8f:fc:66:5d:d8:cd:43:e6:59:8e:3d:8e:e9:6a:80:
ad:88:74:24:7c:b1:36:68:df:3a:2b:4e:d1:92:7e:5f:80:5d:
9d:db:31:bd:54:b0:e2:38:af:f8:91:9c:b2:af:e0:74:b9:ae:
87:ce:cd:f6:93:64:23:0a:a5:de:25:e9:88:bf:47:b3:63:ec:
e8:81:83:f8:7f:bf:cf:cd:53:25:63:60:1a:dd:58:ba:58:50:
f5:67:38:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:08 2024 by rpki-client on console-fra.rpki-client.org