Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/7cc0f6-74ef-423a-a696-4a2bf4ab199d/1/GDGp-6boKxwh6lFbJYLI-0HLjpk.roa
File: GDGp-6boKxwh6lFbJYLI-0HLjpk.roa (raw, json)
Hash identifier: nmGdQmUyJXdy9sbpSbAR48Dq7vy3yxs7hc+Der+tzOc=
Subject key identifier: 18:31:A9:FB:A6:E8:2B:1C:21:EA:51:5B:25:82:C8:FB:41:CB:8E:99
Certificate issuer: /CN=26f36b5c6ca7a1698e7421a27e3d4a6b7648148d
Certificate serial: 09285395
Authority key identifier: 26:F3:6B:5C:6C:A7:A1:69:8E:74:21:A2:7E:3D:4A:6B:76:48:14:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JvNrXGynoWmOdCGifj1Ka3ZIFI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/7cc0f6-74ef-423a-a696-4a2bf4ab199d/1/GDGp-6boKxwh6lFbJYLI-0HLjpk.roa
Signing time: Sat 01 Jan 2022 09:00:42 +0000
ROA not before: Sat 01 Jan 2022 09:00:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58243
IP address blocks: 207.89.65.0/24 maxlen: 24
207.89.66.0/23 maxlen: 23
207.89.67.0/24 maxlen: 24
207.89.64.0/18 maxlen: 18
207.89.68.0/24 maxlen: 24
207.89.70.0/23 maxlen: 23
207.89.78.0/23 maxlen: 23
207.89.74.0/23 maxlen: 23
207.89.76.0/24 maxlen: 24
207.89.77.0/24 maxlen: 24
207.89.72.0/23 maxlen: 23
207.89.72.0/22 maxlen: 22
207.89.80.0/23 maxlen: 23
207.89.80.0/20 maxlen: 20
207.89.82.0/24 maxlen: 24
207.89.83.0/24 maxlen: 24
207.89.86.0/23 maxlen: 23
207.89.88.0/22 maxlen: 22
207.89.92.0/24 maxlen: 24
207.89.92.0/22 maxlen: 22
207.89.96.0/20 maxlen: 20
207.89.96.0/19 maxlen: 24
207.89.112.0/20 maxlen: 20
5.61.176.0/20 maxlen: 20
5.61.176.0/21 maxlen: 21
5.61.184.0/23 maxlen: 23
5.61.186.0/24 maxlen: 24
5.61.187.0/24 maxlen: 24
5.61.188.0/23 maxlen: 23
5.61.190.0/23 maxlen: 23
5.61.190.0/24 maxlen: 24
5.61.132.0/22 maxlen: 24
5.61.128.0/18 maxlen: 18
5.61.128.0/19 maxlen: 19
5.61.128.0/20 maxlen: 20
5.61.128.0/23 maxlen: 23
5.61.130.0/23 maxlen: 23
5.61.130.0/24 maxlen: 24
5.61.131.0/24 maxlen: 24
5.61.134.0/23 maxlen: 23
5.61.136.0/21 maxlen: 24
5.61.138.0/23 maxlen: 23
5.61.140.0/22 maxlen: 22
5.61.144.0/24 maxlen: 24
5.61.145.0/24 maxlen: 24
5.61.144.0/20 maxlen: 24
5.61.149.0/24 maxlen: 24
5.61.150.0/24 maxlen: 24
5.61.151.0/24 maxlen: 24
5.61.152.0/22 maxlen: 22
5.61.146.0/24 maxlen: 24
5.61.147.0/24 maxlen: 24
5.61.148.0/24 maxlen: 24
5.61.156.0/24 maxlen: 24
5.61.157.0/24 maxlen: 24
5.61.158.0/23 maxlen: 23
5.61.160.0/24 maxlen: 24
5.61.160.0/19 maxlen: 19
5.61.160.0/20 maxlen: 20
5.61.163.0/24 maxlen: 24
5.61.164.0/24 maxlen: 24
5.61.164.0/22 maxlen: 22
5.61.165.0/24 maxlen: 24
5.61.168.0/23 maxlen: 23
5.61.168.0/21 maxlen: 21
5.61.166.0/23 maxlen: 23
5.61.170.0/23 maxlen: 23
5.61.172.0/22 maxlen: 22
185.78.252.0/22 maxlen: 22
207.89.64.0/24 maxlen: 24
207.89.64.0/19 maxlen: 19
207.89.64.0/20 maxlen: 20
2a01:5244::/30 maxlen: 30
2a01:5240::/29 maxlen: 29
2a01:5240::/30 maxlen: 30
2a01:5241::/39 maxlen: 39
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153637781 (0x9285395)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26f36b5c6ca7a1698e7421a27e3d4a6b7648148d
Validity
Not Before: Jan 1 09:00:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1831a9fba6e82b1c21ea515b2582c8fb41cb8e99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ef:88:0d:9a:6e:f0:d3:95:31:15:6a:ad:64:
68:b4:57:1c:df:63:cf:c6:95:25:04:4b:8c:47:f8:
5c:2d:2d:2e:2a:b7:c5:b3:04:c9:45:bf:23:5a:15:
60:08:0b:bc:42:e6:b2:96:bf:ce:3b:a4:e8:ba:65:
b6:db:86:cc:29:b9:ec:6d:ef:da:c7:f3:a2:b8:93:
bb:08:42:dc:bd:68:67:f7:a1:d6:cb:e3:70:3f:0b:
41:a4:38:cb:42:2b:9d:83:bd:55:79:38:67:da:9d:
df:56:26:f7:e9:bc:0c:b1:00:8e:6a:53:78:95:6d:
0c:14:cf:37:0c:73:42:a7:6c:c7:88:b2:48:11:1f:
4c:e1:2f:5e:6b:13:55:5d:4a:cb:02:4c:4e:d8:b8:
7b:b9:e6:38:99:d6:fd:92:6d:df:dc:79:f9:a2:fa:
58:b8:77:ef:64:1b:c2:a9:e7:f9:47:4a:6c:ee:59:
5f:2f:27:87:ae:03:47:98:e1:b0:df:13:92:85:12:
0f:0b:85:80:03:31:53:c1:7d:7f:b8:e5:14:7c:92:
cc:69:c9:6c:b8:9f:c9:d9:5a:29:9b:17:40:e6:fd:
8e:de:ed:d5:6c:da:0a:19:61:b3:a9:20:79:86:2c:
70:e2:47:97:e7:2b:0f:d2:13:24:25:e0:3c:bb:df:
ac:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:31:A9:FB:A6:E8:2B:1C:21:EA:51:5B:25:82:C8:FB:41:CB:8E:99
X509v3 Authority Key Identifier:
keyid:26:F3:6B:5C:6C:A7:A1:69:8E:74:21:A2:7E:3D:4A:6B:76:48:14:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JvNrXGynoWmOdCGifj1Ka3ZIFI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/7cc0f6-74ef-423a-a696-4a2bf4ab199d/1/GDGp-6boKxwh6lFbJYLI-0HLjpk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/7cc0f6-74ef-423a-a696-4a2bf4ab199d/1/JvNrXGynoWmOdCGifj1Ka3ZIFI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.61.128.0/18
185.78.252.0/22
207.89.64.0/18
IPv6:
2a01:5240::/29
Signature Algorithm: sha256WithRSAEncryption
4f:71:55:1d:ab:53:0c:9b:01:9c:ab:30:32:4f:3d:65:a9:60:
66:a5:bf:c4:a8:40:63:99:64:5c:29:b0:6d:60:25:7f:ac:c6:
d8:0f:5b:e3:dc:0d:ba:06:67:93:ef:d0:70:a5:b0:3c:61:2e:
17:bc:ea:01:ae:3a:3b:19:6f:d8:5e:61:3e:61:4c:95:99:ba:
2f:a0:84:f1:c3:73:e6:97:f2:62:46:5d:92:f6:db:5d:da:f2:
c7:b5:f3:cc:10:38:79:3d:6c:a9:bd:28:6f:58:33:a1:71:33:
e9:e6:47:2c:0b:67:55:05:29:ea:00:9f:4e:a9:eb:67:11:92:
a5:22:98:73:d7:de:17:aa:61:e9:f1:d7:3f:08:b6:4f:1f:02:
b1:8b:93:7b:5e:eb:b4:06:3b:ee:a8:e7:65:1a:fa:36:56:6a:
9e:05:9b:77:36:9c:d4:f8:c3:9e:9b:80:96:ff:a9:ae:13:c3:
45:66:15:22:e2:3b:d3:72:74:dd:03:0e:24:4a:5c:69:a4:0c:
87:68:42:9f:1f:fc:14:42:f8:ec:fc:75:2e:78:f3:5d:65:fb:
22:3f:11:02:fc:fd:15:dd:de:7b:f8:16:93:6d:71:9e:cb:0f:
76:34:59:09:7f:06:23:32:1a:f6:44:b1:9f:41:8b:14:2d:52:
40:8d:1e:d9
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:48 2024 by rpki-client on console-fra.rpki-client.org