Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/p1k7b-kgTqHHgP_DuRe90KYmukE.roa
File: p1k7b-kgTqHHgP_DuRe90KYmukE.roa (raw, json)
Hash identifier: VY3ki4M6tVWIs1/nEpG+rKVnSA8BRIr9wcVIxtMMwMI=
Subject key identifier: A7:59:3B:6F:E9:20:4E:A1:C7:80:FF:C3:B9:17:BD:D0:A6:26:BA:41
Certificate issuer: /CN=922208b47b6a864d9d1ff33e06aa81d13819a74e
Certificate serial: 08264110
Authority key identifier: 92:22:08:B4:7B:6A:86:4D:9D:1F:F3:3E:06:AA:81:D1:38:19:A7:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kiIItHtqhk2dH_M-BqqB0TgZp04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/p1k7b-kgTqHHgP_DuRe90KYmukE.roa
Signing time: Sat 01 Jan 2022 05:54:59 +0000
ROA not before: Sat 01 Jan 2022 05:54:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203020
IP address blocks: 87.239.254.0/24 maxlen: 32
89.44.205.0/24 maxlen: 32
91.228.216.0/24 maxlen: 24
185.36.254.0/24 maxlen: 32
185.217.64.0/22 maxlen: 22
185.166.84.0/24 maxlen: 32
86.105.183.0/24 maxlen: 32
185.188.61.0/24 maxlen: 24
185.188.62.0/24 maxlen: 24
185.188.63.0/24 maxlen: 24
94.46.206.0/24 maxlen: 32
185.152.248.0/22 maxlen: 32
5.154.174.0/24 maxlen: 24
80.246.30.0/24 maxlen: 32
188.119.154.0/24 maxlen: 32
185.160.44.0/22 maxlen: 32
185.96.162.0/24 maxlen: 32
77.246.152.0/22 maxlen: 22
185.152.36.0/22 maxlen: 32
89.35.249.0/24 maxlen: 32
185.108.104.0/24 maxlen: 32
185.108.105.0/24 maxlen: 32
2a06:4a00::/29 maxlen: 32
2a05:28c0::/29 maxlen: 32
2a06:5700::/29 maxlen: 32
2a01:4740::/32 maxlen: 32
2a06:46c0::/29 maxlen: 32
2a06:5000::/29 maxlen: 32
2a05:f4c0::/29 maxlen: 29
2a06:3040::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136724752 (0x8264110)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=922208b47b6a864d9d1ff33e06aa81d13819a74e
Validity
Not Before: Jan 1 05:54:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7593b6fe9204ea1c780ffc3b917bdd0a626ba41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:4c:01:66:9d:5e:84:ed:0d:aa:61:16:39:65:
61:47:dd:25:b2:bd:1f:66:23:dd:81:b6:3b:a1:52:
e9:06:1d:18:e8:b5:b5:74:e0:69:cf:b5:11:d6:48:
2d:8a:96:48:d9:4b:13:fb:45:a0:b0:36:38:96:07:
c1:30:a0:f4:b7:e8:15:7a:3e:13:b3:3d:a8:80:b7:
8e:66:9f:05:fd:7c:2d:16:52:78:c1:68:c4:53:cd:
de:75:82:ac:c5:ae:9a:30:24:9d:ed:60:af:dd:b5:
40:f3:43:15:b8:d4:57:bd:5f:7b:a3:ea:80:4b:94:
2d:d0:ac:ff:95:f7:b8:b7:8f:ea:c2:83:81:47:da:
8e:5d:7f:a5:df:c6:b5:5d:fd:db:04:20:e8:6d:f8:
2d:79:4f:ab:68:4f:d1:55:c0:83:8c:db:db:84:d7:
1f:9d:ef:f2:d4:57:76:aa:93:a1:6e:33:fd:58:a2:
3d:ec:e1:c8:62:70:51:72:cf:20:51:8e:dc:fa:21:
3e:1f:81:b3:d9:cf:ba:dd:e0:ec:b6:23:e5:f4:60:
9b:56:14:96:3b:d6:de:af:0b:6d:03:52:52:24:49:
c5:45:ab:8a:a5:e9:70:4a:22:a1:f3:57:37:45:b6:
3e:dc:c2:ea:59:38:59:58:c4:6b:77:ee:18:ef:87:
b6:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:59:3B:6F:E9:20:4E:A1:C7:80:FF:C3:B9:17:BD:D0:A6:26:BA:41
X509v3 Authority Key Identifier:
keyid:92:22:08:B4:7B:6A:86:4D:9D:1F:F3:3E:06:AA:81:D1:38:19:A7:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kiIItHtqhk2dH_M-BqqB0TgZp04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/p1k7b-kgTqHHgP_DuRe90KYmukE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/kiIItHtqhk2dH_M-BqqB0TgZp04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.154.174.0/24
77.246.152.0/22
80.246.30.0/24
86.105.183.0/24
87.239.254.0/24
89.35.249.0/24
89.44.205.0/24
91.228.216.0/24
94.46.206.0/24
185.36.254.0/24
185.96.162.0/24
185.108.104.0/23
185.152.36.0/22
185.152.248.0/22
185.160.44.0/22
185.166.84.0/24
185.188.61.0-185.188.63.255
185.217.64.0/22
188.119.154.0/24
IPv6:
2a01:4740::/32
2a05:28c0::/29
2a05:f4c0::/29
2a06:3040::/29
2a06:46c0::/29
2a06:4a00::/29
2a06:5000::/29
2a06:5700::/29
Signature Algorithm: sha256WithRSAEncryption
57:fe:5e:af:6a:15:f9:c8:ba:05:43:d9:4c:76:79:55:12:ef:
c6:fa:55:d4:ff:00:95:53:49:0e:1b:fe:4d:36:74:76:1a:95:
56:ed:f7:58:2b:19:a9:00:38:bb:fe:5f:8f:10:80:20:37:7d:
ab:67:42:23:01:ee:02:49:21:c4:c4:00:89:47:a7:63:a0:fb:
6f:1e:a6:35:b9:62:3f:d6:f2:59:f1:5f:7f:d8:02:c0:74:4c:
9d:48:c0:74:1e:73:48:4a:6c:ca:df:79:70:e9:87:d1:43:2d:
29:52:c3:9c:c8:00:6e:c9:a5:f3:f4:48:53:97:d9:83:3f:48:
d6:92:82:5f:12:ab:a9:8d:e6:df:68:df:a9:77:7f:fa:9f:78:
b6:05:34:0d:5f:d7:9e:3f:fd:94:85:83:71:65:c6:72:ce:ab:
ef:f3:06:c5:4d:91:41:75:03:2a:05:ec:8d:5c:b5:56:11:62:
e9:ac:f1:e6:8a:aa:84:7b:4f:be:23:a3:69:f7:e5:1a:e3:5a:
ce:bc:99:16:30:d8:d2:b1:f3:13:42:c1:87:40:90:87:b4:0e:
96:f7:6c:ef:4b:64:93:f9:d8:e7:24:4b:7b:17:5e:03:ce:6a:
87:73:15:4a:3c:d1:cc:d3:24:f9:95:94:e6:15:b0:c0:c7:81:
ab:71:e7:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:12 2025 by rpki-client