Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/009074-66f6-4d4d-974a-da2ec8cfb888/1/HERvQAw44AmkenXw5ZzX5b86HY8.roa
File: HERvQAw44AmkenXw5ZzX5b86HY8.roa (raw, json)
Hash identifier: vXir1VmY4FmCSlprWlg0fjKmjnbCs9AuRxC6DXu0o4c=
Subject key identifier: 1C:44:6F:40:0C:38:E0:09:A4:7A:75:F0:E5:9C:D7:E5:BF:3A:1D:8F
Certificate issuer: /CN=81812385b82dda0fd4826abb7aefeb0df3eb8ffd
Certificate serial: 018244048528F28F1CAF6DC3E524E8733AEA
Authority key identifier: 81:81:23:85:B8:2D:DA:0F:D4:82:6A:BB:7A:EF:EB:0D:F3:EB:8F:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gYEjhbgt2g_Ugmq7eu_rDfPrj_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/009074-66f6-4d4d-974a-da2ec8cfb888/1/HERvQAw44AmkenXw5ZzX5b86HY8.roa
Signing time: Thu 28 Jul 2022 08:55:23 +0000
ROA not before: Thu 28 Jul 2022 08:55:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21430
IP address blocks: 82.208.52.0/22 maxlen: 22
82.208.57.0/24 maxlen: 24
82.208.59.0/24 maxlen: 24
109.123.200.0/23 maxlen: 23
82.208.0.0/22 maxlen: 22
109.123.204.0/24 maxlen: 24
109.123.212.0/23 maxlen: 23
82.208.13.0/24 maxlen: 24
82.208.15.0/24 maxlen: 24
82.208.24.0/23 maxlen: 23
109.123.226.0/24 maxlen: 24
82.208.19.0/24 maxlen: 24
82.208.30.0/23 maxlen: 23
82.208.36.0/23 maxlen: 23
82.208.38.0/24 maxlen: 24
82.208.42.0/23 maxlen: 23
82.208.51.0/24 maxlen: 24
82.208.45.0/24 maxlen: 24
185.33.136.0/22 maxlen: 22
217.11.255.0/24 maxlen: 24
217.11.226.0/24 maxlen: 24
217.11.231.0/24 maxlen: 24
217.11.234.0/24 maxlen: 24
217.11.237.0/24 maxlen: 24
217.11.238.0/23 maxlen: 23
217.11.240.0/23 maxlen: 23
217.11.244.0/24 maxlen: 24
217.11.250.0/24 maxlen: 24
217.11.252.0/23 maxlen: 23
31.7.240.0/21 maxlen: 21
85.239.254.0/23 maxlen: 23
77.78.80.0/21 maxlen: 21
81.0.216.0/24 maxlen: 24
81.0.215.0/24 maxlen: 24
77.78.88.0/22 maxlen: 22
81.0.222.0/23 maxlen: 23
81.0.224.0/24 maxlen: 24
77.78.92.0/23 maxlen: 23
81.0.227.0/24 maxlen: 24
81.0.229.0/24 maxlen: 24
81.0.244.0/23 maxlen: 23
81.0.252.0/23 maxlen: 23
81.0.251.0/24 maxlen: 24
77.78.122.0/24 maxlen: 24
85.239.224.0/23 maxlen: 23
85.239.226.0/24 maxlen: 24
85.239.228.0/23 maxlen: 23
80.250.0.0/19 maxlen: 19
81.0.196.0/23 maxlen: 23
81.0.198.0/24 maxlen: 24
77.78.64.0/22 maxlen: 22
81.0.200.0/22 maxlen: 22
77.78.68.0/23 maxlen: 23
81.0.204.0/23 maxlen: 23
77.78.74.0/23 maxlen: 23
81.0.210.0/23 maxlen: 23
85.239.251.0/24 maxlen: 24
2a01:6400::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:44:04:85:28:f2:8f:1c:af:6d:c3:e5:24:e8:73:3a:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81812385b82dda0fd4826abb7aefeb0df3eb8ffd
Validity
Not Before: Jul 28 08:55:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c446f400c38e009a47a75f0e59cd7e5bf3a1d8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:5a:dc:d9:06:3d:83:5c:55:a7:80:27:55:8e:
f2:ce:23:f8:e1:e1:a0:8b:23:52:d0:f1:3f:ab:0a:
5f:82:80:be:3f:fd:ca:9f:a1:ca:f1:ed:46:97:ee:
77:7f:7f:04:ca:54:60:e6:c8:9f:da:06:5c:86:30:
d0:3a:01:f4:bf:0a:d5:5e:cd:06:58:7d:ba:e2:22:
37:78:d5:2c:9b:35:04:cd:20:71:59:8f:78:c9:da:
88:a8:be:3f:07:44:56:6d:96:c5:fa:8e:17:ab:f2:
dd:29:58:01:eb:10:2c:98:99:73:f0:7b:25:85:24:
ea:44:1c:c3:ed:24:29:a6:20:45:3f:50:3e:7d:bf:
1a:c2:62:6c:e3:c0:56:a7:43:36:33:1d:74:59:12:
0d:34:3e:e7:1f:ef:2d:da:ed:81:d8:6b:a5:b6:e0:
95:0a:f4:39:c8:57:40:60:3f:3a:1c:e5:5f:8e:4f:
02:44:0d:07:aa:9e:3c:16:b9:53:04:ad:fb:5b:7b:
09:5e:6b:af:42:ef:e6:ce:98:58:e8:9d:67:84:ae:
af:49:06:29:10:aa:b8:ff:d5:1a:d4:5c:6a:d7:77:
d3:65:77:1e:25:0d:92:49:19:52:d2:45:5e:d1:2c:
a1:78:2e:4e:7e:d6:0f:c5:c9:a6:1d:c1:39:6f:57:
03:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:44:6F:40:0C:38:E0:09:A4:7A:75:F0:E5:9C:D7:E5:BF:3A:1D:8F
X509v3 Authority Key Identifier:
keyid:81:81:23:85:B8:2D:DA:0F:D4:82:6A:BB:7A:EF:EB:0D:F3:EB:8F:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gYEjhbgt2g_Ugmq7eu_rDfPrj_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/009074-66f6-4d4d-974a-da2ec8cfb888/1/HERvQAw44AmkenXw5ZzX5b86HY8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/009074-66f6-4d4d-974a-da2ec8cfb888/1/gYEjhbgt2g_Ugmq7eu_rDfPrj_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.7.240.0/21
77.78.64.0-77.78.69.255
77.78.74.0/23
77.78.80.0-77.78.93.255
77.78.122.0/24
80.250.0.0/19
81.0.196.0-81.0.198.255
81.0.200.0-81.0.205.255
81.0.210.0/23
81.0.215.0-81.0.216.255
81.0.222.0-81.0.224.255
81.0.227.0/24
81.0.229.0/24
81.0.244.0/23
81.0.251.0-81.0.253.255
82.208.0.0/22
82.208.13.0/24
82.208.15.0/24
82.208.19.0/24
82.208.24.0/23
82.208.30.0/23
82.208.36.0-82.208.38.255
82.208.42.0/23
82.208.45.0/24
82.208.51.0-82.208.55.255
82.208.57.0/24
82.208.59.0/24
85.239.224.0-85.239.226.255
85.239.228.0/23
85.239.251.0/24
85.239.254.0/23
109.123.200.0/23
109.123.204.0/24
109.123.212.0/23
109.123.226.0/24
185.33.136.0/22
217.11.226.0/24
217.11.231.0/24
217.11.234.0/24
217.11.237.0-217.11.241.255
217.11.244.0/24
217.11.250.0/24
217.11.252.0/23
217.11.255.0/24
IPv6:
2a01:6400::/32
Signature Algorithm: sha256WithRSAEncryption
6d:72:99:51:42:41:ec:ad:f1:8e:ad:00:76:37:88:f2:bb:3f:
b6:0f:52:06:a3:3c:3c:5b:ad:62:3b:aa:e6:8a:9e:12:29:6d:
76:f5:ce:d6:6b:67:54:9c:23:e4:75:3c:d8:b0:b6:96:67:f4:
db:3d:31:f9:5f:46:15:d0:d1:e2:12:ae:e7:8d:f4:2a:c7:62:
ea:95:00:9e:b3:0b:ff:d4:81:45:8d:65:23:87:51:81:85:8a:
e9:da:98:15:cc:c6:c3:0b:81:52:06:8d:32:a7:8a:66:d5:8d:
b6:ee:7d:73:da:cd:53:3b:24:77:85:dc:5c:94:6f:19:98:8e:
97:ec:66:85:73:c6:84:48:9b:99:59:0b:2c:04:c0:0f:c6:3d:
c9:59:bd:1f:3f:3a:f2:f1:7d:5d:7d:ce:6c:cd:b4:1d:05:6b:
66:aa:3c:c6:7b:11:1e:9f:1a:b1:20:fa:18:5e:94:df:ca:94:
26:92:4a:ea:83:03:6e:51:49:cc:8d:5b:a3:7e:05:67:20:27:
04:d7:09:32:78:1a:78:f2:83:c4:d2:66:53:a0:10:5d:6f:70:
68:4b:67:eb:c6:6d:83:ec:22:53:71:9b:2b:74:d7:41:18:99:
6b:c2:42:dc:3f:b9:6d:2e:e8:aa:fd:5c:80:fa:75:74:c5:29:
1c:06:15:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:07 2024 by rpki-client on console-fra.rpki-client.org