Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/DrA1SI9TmrErHbNq6f7tEkTYFmw.roa
File: DrA1SI9TmrErHbNq6f7tEkTYFmw.roa (raw, json)
Hash identifier: ghJmsQydMNilUw80wHQfm3+yb4ZSg+bxw/F4jMhuDok=
Subject key identifier: 0E:B0:35:48:8F:53:9A:B1:2B:1D:B3:6A:E9:FE:ED:12:44:D8:16:6C
Certificate issuer: /CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Certificate serial: 01832060E17A7B384A98499F29ED9F2E9590
Authority key identifier: FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/DrA1SI9TmrErHbNq6f7tEkTYFmw.roa
Signing time: Fri 09 Sep 2022 03:52:43 +0000
ROA not before: Fri 09 Sep 2022 03:52:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25369
IP address blocks: 185.134.20.0/22 maxlen: 22
195.140.212.0/22 maxlen: 22
109.70.144.0/21 maxlen: 21
109.70.145.0/24 maxlen: 24
109.70.149.0/24 maxlen: 24
109.70.148.0/24 maxlen: 24
134.255.243.0/24 maxlen: 24
185.16.204.0/22 maxlen: 22
128.127.148.0/22 maxlen: 22
81.19.208.0/20 maxlen: 20
81.19.208.0/23 maxlen: 23
81.19.216.0/24 maxlen: 24
89.46.223.0/24 maxlen: 24
89.46.222.0/23 maxlen: 23
86.106.112.0/24 maxlen: 24
109.69.104.0/21 maxlen: 21
195.234.124.0/23 maxlen: 24
195.234.124.0/24 maxlen: 24
109.69.110.0/24 maxlen: 24
195.234.127.0/24 maxlen: 24
109.230.203.0/24 maxlen: 24
109.230.209.0/24 maxlen: 24
109.230.218.0/24 maxlen: 24
109.230.215.0/24 maxlen: 24
109.230.220.0/24 maxlen: 24
188.241.120.0/24 maxlen: 24
188.241.144.0/24 maxlen: 24
185.137.36.0/22 maxlen: 22
188.241.156.0/23 maxlen: 23
188.241.157.0/24 maxlen: 24
193.32.208.0/22 maxlen: 22
85.204.70.0/24 maxlen: 24
86.106.158.0/24 maxlen: 24
86.106.157.0/24 maxlen: 24
188.240.58.0/24 maxlen: 24
188.240.56.0/21 maxlen: 21
188.240.56.0/24 maxlen: 24
188.240.57.0/24 maxlen: 24
188.240.71.0/24 maxlen: 24
84.247.0.0/24 maxlen: 24
195.206.165.0/24 maxlen: 24
185.125.204.0/22 maxlen: 22
195.206.166.0/23 maxlen: 23
195.206.169.0/24 maxlen: 24
195.206.170.0/23 maxlen: 23
89.38.68.0/23 maxlen: 23
195.206.180.0/22 maxlen: 22
5.226.136.0/21 maxlen: 21
77.81.191.0/24 maxlen: 24
31.14.102.0/24 maxlen: 24
193.176.31.0/24 maxlen: 24
193.176.28.0/22 maxlen: 22
185.216.144.0/22 maxlen: 22
185.61.157.0/24 maxlen: 24
185.61.156.0/24 maxlen: 24
185.61.156.0/22 maxlen: 22
89.21.64.0/24 maxlen: 24
89.21.64.0/22 maxlen: 22
217.146.80.0/20 maxlen: 20
217.146.87.0/24 maxlen: 24
185.38.148.0/22 maxlen: 22
217.146.92.0/24 maxlen: 24
185.223.232.0/22 maxlen: 22
213.166.84.0/22 maxlen: 24
89.35.28.0/22 maxlen: 22
195.20.108.0/24 maxlen: 24
195.20.108.0/23 maxlen: 23
185.121.136.0/22 maxlen: 22
185.114.224.0/24 maxlen: 24
37.10.113.0/24 maxlen: 24
37.10.114.0/24 maxlen: 24
89.40.212.0/24 maxlen: 24
188.212.154.0/24 maxlen: 24
89.37.64.0/22 maxlen: 22
185.158.241.0/24 maxlen: 24
185.158.242.0/24 maxlen: 24
89.37.173.0/24 maxlen: 24
89.34.96.0/22 maxlen: 22
178.239.160.0/20 maxlen: 20
178.239.165.0/24 maxlen: 24
178.239.167.0/24 maxlen: 24
185.44.76.0/22 maxlen: 22
178.239.173.0/24 maxlen: 24
185.3.236.0/22 maxlen: 22
185.158.240.0/22 maxlen: 24
89.37.172.0/22 maxlen: 22
2a01:4020::/32 maxlen: 32
2a01:4020:34::/48 maxlen: 48
2a01:4020:2::/48 maxlen: 48
2a00:1a30::/32 maxlen: 32
2a01:4020:32::/48 maxlen: 48
2a01:4020:33::/48 maxlen: 48
2a01:4020:30::/48 maxlen: 48
2a0b:b840::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:20:60:e1:7a:7b:38:4a:98:49:9f:29:ed:9f:2e:95:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Validity
Not Before: Sep 9 03:52:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0eb035488f539ab12b1db36ae9feed1244d8166c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:6e:69:1b:fe:f5:c7:6c:e3:2e:f3:eb:9d:bd:
00:1c:51:bd:95:4e:cd:8d:fe:ce:40:4c:2d:69:45:
36:06:42:2e:ce:0b:ca:f5:51:ee:af:c6:4d:01:6a:
6d:93:c2:d9:f0:63:b3:97:d5:62:de:bc:03:12:18:
e9:15:20:d6:ee:46:09:92:f8:42:fc:1c:8d:e5:b9:
4f:74:d0:b4:9b:87:a4:e2:f5:36:e6:c9:ed:52:31:
2b:f0:64:33:57:cd:a3:aa:6f:ca:17:e3:52:e2:52:
3a:4e:9b:10:d4:3c:f4:05:cf:cc:2b:88:a4:8d:60:
a2:40:4c:18:62:d7:9c:11:09:a5:c0:1a:a7:3c:7b:
a3:d1:4a:a0:50:98:d2:4b:8b:4b:f8:2d:8e:c5:0a:
aa:e0:06:3d:8c:3f:db:34:03:16:ca:3e:6f:0d:35:
a1:27:1b:8d:5c:2c:d9:84:da:45:7b:ac:97:6f:25:
59:2d:e4:62:b0:e0:44:99:96:e9:a3:37:93:b9:3a:
cf:01:f2:5f:9f:0f:2a:e7:10:56:62:87:fb:1b:4c:
7d:be:45:1a:b3:c9:1c:b3:50:76:81:52:53:f9:13:
63:d0:c1:2c:54:52:e6:17:61:52:37:30:42:8b:b7:
6a:c2:15:32:3b:ed:dc:ba:2b:91:db:79:11:af:78:
71:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:B0:35:48:8F:53:9A:B1:2B:1D:B3:6A:E9:FE:ED:12:44:D8:16:6C
X509v3 Authority Key Identifier:
keyid:FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/DrA1SI9TmrErHbNq6f7tEkTYFmw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_TfMjxazxsvTNGqj7WF3Hz6DrJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.136.0/21
31.14.102.0/24
37.10.113.0-37.10.114.255
77.81.191.0/24
81.19.208.0/20
84.247.0.0/24
85.204.70.0/24
86.106.112.0/24
86.106.157.0-86.106.158.255
89.21.64.0/22
89.34.96.0/22
89.35.28.0/22
89.37.64.0/22
89.37.172.0/22
89.38.68.0/23
89.40.212.0/24
89.46.222.0/23
109.69.104.0/21
109.70.144.0/21
109.230.203.0/24
109.230.209.0/24
109.230.215.0/24
109.230.218.0/24
109.230.220.0/24
128.127.148.0/22
134.255.243.0/24
178.239.160.0/20
185.3.236.0/22
185.16.204.0/22
185.38.148.0/22
185.44.76.0/22
185.61.156.0/22
185.114.224.0/24
185.121.136.0/22
185.125.204.0/22
185.134.20.0/22
185.137.36.0/22
185.158.240.0/22
185.216.144.0/22
185.223.232.0/22
188.212.154.0/24
188.240.56.0/21
188.240.71.0/24
188.241.120.0/24
188.241.144.0/24
188.241.156.0/23
193.32.208.0/22
193.176.28.0/22
195.20.108.0/23
195.140.212.0/22
195.206.165.0-195.206.167.255
195.206.169.0-195.206.171.255
195.206.180.0/22
195.234.124.0/23
195.234.127.0/24
213.166.84.0/22
217.146.80.0/20
IPv6:
2a00:1a30::/32
2a01:4020::/32
2a0b:b840::/29
Signature Algorithm: sha256WithRSAEncryption
42:8a:59:ec:5c:3b:4d:91:51:3d:52:dc:a1:9f:17:d5:20:a3:
a9:1c:b2:12:f8:e2:ca:e2:0b:b1:c6:8f:8f:9c:90:b3:f7:a1:
9a:cb:c6:19:e3:6e:2f:d3:62:30:60:c3:61:44:52:e1:8d:9b:
85:94:ed:76:6e:c9:ca:25:9f:5e:82:99:f0:7d:1c:98:2a:12:
5c:c8:66:d8:51:4e:28:6f:2f:96:32:7d:d0:e2:99:3f:dd:c8:
1f:92:f3:b8:a0:d4:7c:30:41:c9:e3:4c:32:36:53:ea:c4:2d:
a9:78:d9:6b:58:76:72:bb:40:10:aa:36:91:4b:1e:47:86:6c:
31:48:c1:14:1b:47:d8:a0:0d:5e:48:2c:9a:3e:c2:4e:9f:91:
1f:4e:89:45:e2:cf:65:0b:d0:b7:a6:8b:c9:76:ce:7e:41:ea:
4a:06:b7:00:7c:2f:d2:64:fc:60:c1:de:61:8c:82:c7:68:80:
27:41:eb:ec:2c:b1:d8:6e:b8:dc:c9:85:7b:6e:79:d6:9f:f1:
9e:c9:33:e2:e5:f5:9d:43:cd:f6:ec:23:58:ea:29:7f:57:cf:
26:d2:e1:d3:17:7c:00:26:39:40:55:53:e2:a6:43:c7:ba:f2:
9d:d7:a6:a5:c6:94:66:6c:3e:5a:35:ea:6d:4d:87:5b:b5:41:
0c:ce:40:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:00 2024 by rpki-client on console-fra.rpki-client.org