Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/VM5NYVM7UqmPrzgMdmP-xL3C9wM.roa
File: VM5NYVM7UqmPrzgMdmP-xL3C9wM.roa (raw, json)
Hash identifier: nIXy6vrvj74k8gZM29Eix7lEFJCWe6VH6M0RkrIOWic=
Subject key identifier: 54:CE:4D:61:53:3B:52:A9:8F:AF:38:0C:76:63:FE:C4:BD:C2:F7:03
Certificate issuer: /CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Certificate serial: 01833E8B7C3FC710B5FEF2A65C2A96512F98
Authority key identifier: FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/VM5NYVM7UqmPrzgMdmP-xL3C9wM.roa
Signing time: Thu 15 Sep 2022 00:27:52 +0000
ROA not before: Thu 15 Sep 2022 00:27:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25369
IP address blocks: 185.134.20.0/22 maxlen: 22
195.140.212.0/22 maxlen: 22
109.70.144.0/21 maxlen: 21
109.70.145.0/24 maxlen: 24
109.70.149.0/24 maxlen: 24
109.70.148.0/24 maxlen: 24
134.255.243.0/24 maxlen: 24
185.16.204.0/22 maxlen: 22
128.127.148.0/22 maxlen: 22
81.19.208.0/20 maxlen: 20
81.19.208.0/23 maxlen: 23
81.19.216.0/24 maxlen: 24
89.46.223.0/24 maxlen: 24
89.46.222.0/23 maxlen: 23
86.106.112.0/24 maxlen: 24
109.69.104.0/21 maxlen: 21
195.234.124.0/24 maxlen: 24
195.234.124.0/23 maxlen: 24
109.69.110.0/24 maxlen: 24
195.234.127.0/24 maxlen: 24
109.230.203.0/24 maxlen: 24
109.230.209.0/24 maxlen: 24
109.230.218.0/24 maxlen: 24
109.230.215.0/24 maxlen: 24
109.230.220.0/24 maxlen: 24
188.241.120.0/24 maxlen: 24
188.241.144.0/24 maxlen: 24
185.137.36.0/22 maxlen: 22
188.241.156.0/23 maxlen: 23
188.241.157.0/24 maxlen: 24
193.32.208.0/22 maxlen: 22
85.204.70.0/24 maxlen: 24
86.106.158.0/24 maxlen: 24
86.106.157.0/24 maxlen: 24
188.240.58.0/24 maxlen: 24
188.240.56.0/21 maxlen: 21
188.240.56.0/24 maxlen: 24
188.240.57.0/24 maxlen: 24
188.240.71.0/24 maxlen: 24
84.247.0.0/24 maxlen: 24
195.206.165.0/24 maxlen: 24
185.125.204.0/22 maxlen: 22
195.206.166.0/23 maxlen: 23
195.206.169.0/24 maxlen: 24
195.206.170.0/23 maxlen: 23
89.38.68.0/23 maxlen: 23
195.206.180.0/22 maxlen: 22
5.226.136.0/21 maxlen: 21
77.81.191.0/24 maxlen: 24
31.14.102.0/24 maxlen: 24
193.176.28.0/22 maxlen: 22
193.176.31.0/24 maxlen: 24
185.216.144.0/22 maxlen: 22
185.61.157.0/24 maxlen: 24
185.61.156.0/24 maxlen: 24
185.61.156.0/22 maxlen: 22
89.21.64.0/24 maxlen: 24
89.21.64.0/22 maxlen: 22
217.146.80.0/20 maxlen: 20
217.146.87.0/24 maxlen: 24
185.38.148.0/22 maxlen: 22
217.146.92.0/24 maxlen: 24
185.223.232.0/22 maxlen: 22
213.166.84.0/22 maxlen: 24
89.35.28.0/22 maxlen: 22
195.20.108.0/24 maxlen: 24
195.20.108.0/23 maxlen: 23
185.121.136.0/22 maxlen: 22
185.114.224.0/24 maxlen: 24
37.10.113.0/24 maxlen: 24
37.10.114.0/24 maxlen: 24
89.40.212.0/24 maxlen: 24
188.212.154.0/24 maxlen: 24
89.37.64.0/22 maxlen: 22
185.158.241.0/24 maxlen: 24
185.158.242.0/24 maxlen: 24
89.37.173.0/24 maxlen: 24
89.34.96.0/22 maxlen: 22
178.239.160.0/20 maxlen: 20
178.239.165.0/24 maxlen: 24
178.239.167.0/24 maxlen: 24
185.44.76.0/22 maxlen: 22
178.239.173.0/24 maxlen: 24
185.3.236.0/22 maxlen: 22
185.158.240.0/22 maxlen: 24
89.37.172.0/22 maxlen: 22
2a01:4020::/32 maxlen: 32
2a01:4020:34::/48 maxlen: 48
2a01:4020:2::/48 maxlen: 48
2a01:4020:3::/48 maxlen: 48
2a00:1a30::/32 maxlen: 32
2a01:4020:32::/48 maxlen: 48
2a01:4020:33::/48 maxlen: 48
2a01:4020:30::/48 maxlen: 48
2a0b:b840::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:3e:8b:7c:3f:c7:10:b5:fe:f2:a6:5c:2a:96:51:2f:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Validity
Not Before: Sep 15 00:27:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=54ce4d61533b52a98faf380c7663fec4bdc2f703
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:17:fa:e4:54:48:a2:83:ca:5e:98:84:5b:ce:
d6:f3:88:fa:7a:31:ff:8c:49:7b:02:4c:70:74:1f:
10:96:b8:d4:d8:14:ec:24:fe:53:28:14:aa:3c:0e:
b4:49:e3:62:2b:ae:8f:8a:4f:b3:ac:22:4c:bd:c1:
32:ec:f0:37:ee:91:fe:e7:3b:95:29:17:17:45:92:
02:7f:52:d0:bf:0e:1a:cf:a4:98:c7:9d:15:5d:0c:
f7:0c:45:97:c2:5a:6d:ca:fd:69:8f:a9:60:60:5d:
0a:60:b4:23:1b:2f:c6:94:77:09:a0:b6:d0:ea:24:
8c:01:04:7a:2c:c2:1b:21:b2:3d:b0:3d:e4:78:37:
83:b9:0e:42:99:37:f4:e2:63:b4:d1:a8:67:d2:c3:
66:04:a0:b7:e3:87:7b:72:83:ae:47:97:79:de:3b:
91:67:5b:21:29:84:32:4d:c4:a7:5d:8d:c1:b3:d1:
83:1c:3a:0d:72:d6:56:be:ad:c7:13:61:e3:05:2b:
48:13:6a:ae:39:05:fd:3a:87:65:3d:4b:98:a7:13:
eb:ca:e7:9c:d7:e3:39:a9:8a:6c:34:c8:69:d9:a9:
00:27:b6:9b:aa:43:f5:5b:4a:ef:d9:e9:4e:ea:ff:
7f:ef:a0:63:a0:d3:ed:40:75:ee:d1:89:d0:06:87:
d8:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:CE:4D:61:53:3B:52:A9:8F:AF:38:0C:76:63:FE:C4:BD:C2:F7:03
X509v3 Authority Key Identifier:
keyid:FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/VM5NYVM7UqmPrzgMdmP-xL3C9wM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_TfMjxazxsvTNGqj7WF3Hz6DrJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.136.0/21
31.14.102.0/24
37.10.113.0-37.10.114.255
77.81.191.0/24
81.19.208.0/20
84.247.0.0/24
85.204.70.0/24
86.106.112.0/24
86.106.157.0-86.106.158.255
89.21.64.0/22
89.34.96.0/22
89.35.28.0/22
89.37.64.0/22
89.37.172.0/22
89.38.68.0/23
89.40.212.0/24
89.46.222.0/23
109.69.104.0/21
109.70.144.0/21
109.230.203.0/24
109.230.209.0/24
109.230.215.0/24
109.230.218.0/24
109.230.220.0/24
128.127.148.0/22
134.255.243.0/24
178.239.160.0/20
185.3.236.0/22
185.16.204.0/22
185.38.148.0/22
185.44.76.0/22
185.61.156.0/22
185.114.224.0/24
185.121.136.0/22
185.125.204.0/22
185.134.20.0/22
185.137.36.0/22
185.158.240.0/22
185.216.144.0/22
185.223.232.0/22
188.212.154.0/24
188.240.56.0/21
188.240.71.0/24
188.241.120.0/24
188.241.144.0/24
188.241.156.0/23
193.32.208.0/22
193.176.28.0/22
195.20.108.0/23
195.140.212.0/22
195.206.165.0-195.206.167.255
195.206.169.0-195.206.171.255
195.206.180.0/22
195.234.124.0/23
195.234.127.0/24
213.166.84.0/22
217.146.80.0/20
IPv6:
2a00:1a30::/32
2a01:4020::/32
2a0b:b840::/29
Signature Algorithm: sha256WithRSAEncryption
1a:40:4d:5a:46:30:56:dc:cd:7d:df:f8:35:46:ba:c9:3c:88:
a6:35:2d:74:25:6d:35:bc:81:b8:fa:e7:fd:15:0f:2f:31:50:
51:85:39:00:13:61:fb:52:c3:0a:33:3a:bf:45:6b:96:2e:2d:
e5:32:af:e2:ca:b6:6c:d6:a5:3c:5c:33:f2:a8:dc:46:b8:9c:
a3:f9:bd:19:a2:58:22:62:94:67:5e:c2:92:22:a6:86:52:9f:
7a:52:07:d2:5f:c1:c9:5a:5e:87:1b:64:5b:89:d4:f6:78:12:
e4:ee:e2:10:ab:d8:b4:1a:63:ec:ec:05:70:39:7b:55:54:8c:
8d:92:f2:35:4b:31:71:d6:6d:40:04:64:4e:51:c3:69:c9:03:
35:48:ce:c1:6b:03:77:3a:07:d1:15:2e:ce:bf:f8:1e:9c:ec:
c8:8e:20:00:2d:3a:f7:93:af:c0:37:e9:8c:32:6f:52:f2:81:
11:3d:d4:83:7b:96:dd:1d:8f:5e:47:07:9e:76:21:b2:85:8e:
f1:93:b9:ff:f5:47:b4:e8:58:13:0e:97:64:03:6e:ae:65:3f:
c0:1b:d2:83:8e:bc:87:7d:12:2e:81:d1:de:6b:08:aa:db:c9:
72:d1:c6:8f:23:83:04:ce:e3:db:de:05:3f:97:be:7f:c0:6e:
3c:82:7d:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:32 2024 by rpki-client on console-ams.rpki-client.org