Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/3d2a14-6b79-4689-9579-39480285a948/1/5gIyjSFrcrTb3LfSfVRCIj4iyYU.roa
File: 5gIyjSFrcrTb3LfSfVRCIj4iyYU.roa (raw, json)
Hash identifier: lZC6fdTf2beWDSggPtHO8IwRXl+/mSWeEgG11lctfmU=
Subject key identifier: E6:02:32:8D:21:6B:72:B4:DB:DC:B7:D2:7D:54:42:22:3E:22:C9:85
Certificate issuer: /CN=7dc4acedcb86cddfed7f6de8cadfca00469bbc8e
Certificate serial: 19FEB8C2
Authority key identifier: 7D:C4:AC:ED:CB:86:CD:DF:ED:7F:6D:E8:CA:DF:CA:00:46:9B:BC:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fcSs7cuGzd_tf23oyt_KAEabvI4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/3d2a14-6b79-4689-9579-39480285a948/1/5gIyjSFrcrTb3LfSfVRCIj4iyYU.roa
Signing time: Sat 01 Jan 2022 01:56:48 +0000
ROA not before: Sat 01 Jan 2022 01:56:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2116
IP address blocks: 85.252.0.0/16 maxlen: 16
194.29.200.0/22 maxlen: 22
213.160.224.0/20 maxlen: 20
213.160.240.0/21 maxlen: 21
31.185.24.0/21 maxlen: 21
81.175.0.0/20 maxlen: 20
178.74.0.0/18 maxlen: 18
81.175.24.0/21 maxlen: 22
81.175.20.0/22 maxlen: 22
213.151.128.0/19 maxlen: 19
81.175.32.0/19 maxlen: 19
217.77.32.0/20 maxlen: 20
195.204.0.0/16 maxlen: 16
85.221.0.0/17 maxlen: 17
217.8.128.0/19 maxlen: 19
86.62.128.0/18 maxlen: 18
62.63.0.0/18 maxlen: 18
89.191.0.0/19 maxlen: 19
81.191.0.0/16 maxlen: 16
193.90.0.0/16 maxlen: 16
80.241.80.0/20 maxlen: 20
194.19.0.0/17 maxlen: 17
212.62.224.0/19 maxlen: 19
85.196.64.0/18 maxlen: 18
193.75.0.0/17 maxlen: 17
195.139.0.0/16 maxlen: 16
213.172.192.0/19 maxlen: 19
78.24.144.0/21 maxlen: 21
109.199.192.0/19 maxlen: 19
195.1.0.0/16 maxlen: 16
213.52.0.0/17 maxlen: 17
185.35.80.0/22 maxlen: 22
193.69.0.0/16 maxlen: 16
195.18.128.0/17 maxlen: 17
185.8.16.0/22 maxlen: 22
85.112.128.0/19 maxlen: 19
82.196.192.0/19 maxlen: 19
217.118.32.0/19 maxlen: 19
79.135.0.0/19 maxlen: 19
91.135.32.0/20 maxlen: 20
217.144.224.0/19 maxlen: 19
77.40.128.0/17 maxlen: 17
185.67.116.0/22 maxlen: 24
213.239.64.0/18 maxlen: 18
87.118.0.0/18 maxlen: 18
84.20.96.0/19 maxlen: 19
77.88.64.0/18 maxlen: 18
195.159.0.0/16 maxlen: 16
62.101.192.0/18 maxlen: 18
80.64.192.0/20 maxlen: 20
88.84.160.0/19 maxlen: 19
194.54.96.0/19 maxlen: 19
81.0.128.0/18 maxlen: 18
212.71.64.0/19 maxlen: 19
195.0.128.0/17 maxlen: 17
217.14.0.0/20 maxlen: 20
193.91.128.0/17 maxlen: 17
213.158.224.0/19 maxlen: 19
2a02:270::/32 maxlen: 32
2a03:c000::/29 maxlen: 29
2001:8c0::/29 maxlen: 29
2a01:520::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 436123842 (0x19feb8c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7dc4acedcb86cddfed7f6de8cadfca00469bbc8e
Validity
Not Before: Jan 1 01:56:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e602328d216b72b4dbdcb7d27d5442223e22c985
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ad:cb:7a:4c:7e:7a:95:2a:c9:c5:50:49:c5:
dc:d8:a4:15:8b:48:16:84:b6:89:a1:85:93:73:ac:
47:58:71:8b:3b:15:57:23:71:2f:13:95:3d:06:5f:
4a:9b:6b:3e:31:36:87:83:05:40:05:ce:82:7e:61:
89:17:43:91:dc:73:93:4f:b9:77:6e:d9:9e:03:a7:
cc:91:dc:16:10:17:32:25:89:57:f2:f9:fe:17:72:
34:8d:a5:03:66:b6:db:1f:8a:24:b9:e0:da:c2:c7:
73:b7:81:7e:bb:08:ba:bf:4b:a5:b7:23:dc:a4:90:
18:ec:59:5d:41:09:39:fd:14:90:3a:17:66:04:84:
1a:4d:a2:6d:64:5b:98:60:f6:94:0b:2f:8a:88:a6:
42:d6:08:2b:68:f6:12:1a:ef:80:df:07:57:03:2f:
ff:b7:4f:3f:06:f9:f5:a3:b4:8c:a5:f6:fb:01:97:
b2:58:5b:ad:1a:ed:ae:26:92:47:4f:45:9e:87:40:
4c:59:01:38:8f:7e:37:78:12:c3:39:41:b0:7f:88:
a7:32:ed:05:ea:7b:99:27:7d:7f:c3:52:8e:66:1b:
09:43:de:ad:11:a4:31:7e:f7:09:90:7d:f8:10:22:
81:65:c1:29:05:84:71:ad:98:c1:50:d0:55:ca:14:
35:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:02:32:8D:21:6B:72:B4:DB:DC:B7:D2:7D:54:42:22:3E:22:C9:85
X509v3 Authority Key Identifier:
keyid:7D:C4:AC:ED:CB:86:CD:DF:ED:7F:6D:E8:CA:DF:CA:00:46:9B:BC:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fcSs7cuGzd_tf23oyt_KAEabvI4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/3d2a14-6b79-4689-9579-39480285a948/1/5gIyjSFrcrTb3LfSfVRCIj4iyYU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/3d2a14-6b79-4689-9579-39480285a948/1/fcSs7cuGzd_tf23oyt_KAEabvI4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.185.24.0/21
62.63.0.0/18
62.101.192.0/18
77.40.128.0/17
77.88.64.0/18
78.24.144.0/21
79.135.0.0/19
80.64.192.0/20
80.241.80.0/20
81.0.128.0/18
81.175.0.0/20
81.175.20.0-81.175.63.255
81.191.0.0/16
82.196.192.0/19
84.20.96.0/19
85.112.128.0/19
85.196.64.0/18
85.221.0.0/17
85.252.0.0/16
86.62.128.0/18
87.118.0.0/18
88.84.160.0/19
89.191.0.0/19
91.135.32.0/20
109.199.192.0/19
178.74.0.0/18
185.8.16.0/22
185.35.80.0/22
185.67.116.0/22
193.69.0.0/16
193.75.0.0/17
193.90.0.0/16
193.91.128.0/17
194.19.0.0/17
194.29.200.0/22
194.54.96.0/19
195.0.128.0-195.1.255.255
195.18.128.0/17
195.139.0.0/16
195.159.0.0/16
195.204.0.0/16
212.62.224.0/19
212.71.64.0/19
213.52.0.0/17
213.151.128.0/19
213.158.224.0/19
213.160.224.0-213.160.247.255
213.172.192.0/19
213.239.64.0/18
217.8.128.0/19
217.14.0.0/20
217.77.32.0/20
217.118.32.0/19
217.144.224.0/19
IPv6:
2001:8c0::/29
2a01:520::/32
2a02:270::/32
2a03:c000::/29
Signature Algorithm: sha256WithRSAEncryption
7d:51:cb:5b:50:64:9b:32:af:ed:c6:5e:0c:62:88:b1:5f:73:
90:86:29:8e:64:a8:2f:79:f7:1f:7f:04:af:f4:5f:e0:33:81:
42:d6:6c:38:9c:81:ec:84:0f:77:63:82:72:20:76:c4:18:08:
c4:b5:bd:88:54:d2:61:4a:79:49:96:b5:21:14:26:0f:65:04:
0d:d0:e3:b1:e1:7c:94:a2:86:eb:ab:27:4a:a2:a2:82:00:6b:
c7:9a:69:76:1a:b8:d3:06:71:5b:88:b4:01:b8:13:9c:6b:81:
4c:29:b0:67:3e:ea:26:57:af:29:87:88:c2:8d:42:4f:ac:f0:
57:f9:5a:d8:ed:30:1f:09:97:56:06:36:4a:82:0b:4c:6f:3e:
05:2f:02:58:f7:90:2c:d3:39:a2:e2:e5:bd:97:f0:7e:7b:4d:
87:76:9f:04:74:48:73:b4:99:62:9f:a0:5d:a1:eb:75:46:fb:
94:ff:7b:38:db:b7:73:a8:d4:5b:8b:d3:40:08:f7:57:fa:c5:
9e:fe:65:b0:c1:6b:e1:d8:ae:17:8b:88:ff:47:ba:78:5f:4e:
a0:a4:f9:51:bf:37:ff:b4:1c:2a:43:b3:a7:31:c6:fa:69:96:
dc:5d:2b:e9:03:37:01:b0:19:c4:c1:bf:4a:ea:a1:cf:a8:9c:
c9:af:39:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:07 2024 by rpki-client on console-fra.rpki-client.org