Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/k0VNKA4sNHbhxtPLHKXjbEXhj14.roa
File: k0VNKA4sNHbhxtPLHKXjbEXhj14.roa (raw, json)
Hash identifier: 4lte7Uc5BlxrMHJnAIgR+J4aASQSHCK1MVmyhXHftgA=
Subject key identifier: 93:45:4D:28:0E:2C:34:76:E1:C6:D3:CB:1C:A5:E3:6C:45:E1:8F:5E
Certificate issuer: /CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Certificate serial: 0181FD5D29838365D85FB03AC7F80E594547
Authority key identifier: FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/k0VNKA4sNHbhxtPLHKXjbEXhj14.roa
Signing time: Thu 14 Jul 2022 15:39:09 +0000
ROA not before: Thu 14 Jul 2022 15:39:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25369
IP address blocks: 185.134.20.0/22 maxlen: 22
195.140.212.0/22 maxlen: 22
109.70.144.0/21 maxlen: 21
109.70.145.0/24 maxlen: 24
109.70.149.0/24 maxlen: 24
109.70.148.0/24 maxlen: 24
134.255.243.0/24 maxlen: 24
185.16.204.0/22 maxlen: 22
128.127.148.0/22 maxlen: 22
81.19.208.0/20 maxlen: 20
81.19.208.0/23 maxlen: 23
89.46.223.0/24 maxlen: 24
89.46.222.0/23 maxlen: 23
86.106.112.0/24 maxlen: 24
109.69.104.0/21 maxlen: 21
195.234.124.0/24 maxlen: 24
195.234.124.0/23 maxlen: 24
109.69.110.0/24 maxlen: 24
195.234.127.0/24 maxlen: 24
109.230.203.0/24 maxlen: 24
109.230.209.0/24 maxlen: 24
109.230.218.0/24 maxlen: 24
109.230.215.0/24 maxlen: 24
109.230.220.0/24 maxlen: 24
188.241.120.0/24 maxlen: 24
188.241.144.0/24 maxlen: 24
188.241.156.0/23 maxlen: 23
188.241.157.0/24 maxlen: 24
193.32.208.0/22 maxlen: 22
85.204.70.0/24 maxlen: 24
86.106.158.0/24 maxlen: 24
86.106.157.0/24 maxlen: 24
188.240.58.0/24 maxlen: 24
188.240.56.0/21 maxlen: 21
188.240.56.0/24 maxlen: 24
188.240.57.0/24 maxlen: 24
188.240.71.0/24 maxlen: 24
84.247.0.0/24 maxlen: 24
195.206.165.0/24 maxlen: 24
185.125.204.0/22 maxlen: 22
195.206.166.0/23 maxlen: 23
195.206.169.0/24 maxlen: 24
195.206.170.0/23 maxlen: 23
89.38.68.0/23 maxlen: 23
195.206.180.0/22 maxlen: 22
5.226.136.0/21 maxlen: 21
77.81.191.0/24 maxlen: 24
31.14.102.0/24 maxlen: 24
193.176.28.0/22 maxlen: 22
193.176.31.0/24 maxlen: 24
185.216.144.0/22 maxlen: 22
185.61.157.0/24 maxlen: 24
185.61.156.0/24 maxlen: 24
185.61.156.0/22 maxlen: 22
89.21.64.0/24 maxlen: 24
89.21.64.0/22 maxlen: 22
217.146.80.0/20 maxlen: 20
217.146.87.0/24 maxlen: 24
185.38.148.0/22 maxlen: 22
217.146.92.0/24 maxlen: 24
185.223.232.0/22 maxlen: 22
213.166.84.0/22 maxlen: 24
89.35.28.0/22 maxlen: 22
195.20.108.0/24 maxlen: 24
195.20.108.0/23 maxlen: 23
185.121.136.0/22 maxlen: 22
185.114.224.0/24 maxlen: 24
37.10.113.0/24 maxlen: 24
37.10.114.0/24 maxlen: 24
89.40.212.0/24 maxlen: 24
188.212.154.0/24 maxlen: 24
89.37.64.0/22 maxlen: 22
185.158.241.0/24 maxlen: 24
185.158.242.0/24 maxlen: 24
89.37.173.0/24 maxlen: 24
89.34.96.0/22 maxlen: 22
178.239.160.0/20 maxlen: 20
178.239.165.0/24 maxlen: 24
178.239.167.0/24 maxlen: 24
185.44.76.0/22 maxlen: 22
178.239.173.0/24 maxlen: 24
185.3.236.0/22 maxlen: 22
185.158.240.0/22 maxlen: 24
89.37.172.0/22 maxlen: 22
2a01:4020::/32 maxlen: 32
2a01:4020:34::/48 maxlen: 48
2a01:4020:2::/48 maxlen: 48
2a00:1a30::/32 maxlen: 32
2a01:4020:32::/48 maxlen: 48
2a01:4020:33::/48 maxlen: 48
2a01:4020:30::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:fd:5d:29:83:83:65:d8:5f:b0:3a:c7:f8:0e:59:45:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Validity
Not Before: Jul 14 15:39:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93454d280e2c3476e1c6d3cb1ca5e36c45e18f5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:23:99:a0:58:d8:54:f4:30:d2:e4:2a:1d:65:
e3:5d:99:2c:f1:a0:0a:a3:54:c9:57:89:74:b7:b7:
dc:b6:f9:a5:5f:8d:e4:bb:e9:61:70:b1:e1:51:7f:
31:3e:1d:b7:93:30:b8:1f:03:f6:27:0a:60:38:09:
c3:d2:1d:70:db:49:76:e0:19:a4:4e:69:76:de:64:
a5:ad:f0:3d:a8:31:d1:fd:9f:f8:d0:01:38:d5:91:
c8:54:57:17:13:f1:db:90:96:83:56:93:85:d1:dd:
98:29:b8:ba:cb:36:4b:5e:93:50:e9:a0:ed:53:ea:
ff:56:e0:a0:cf:22:70:b6:2e:6a:01:f9:e8:9e:23:
35:61:c4:85:dc:a2:75:18:9a:ce:31:63:de:14:c5:
5d:d2:78:4a:35:79:a7:62:3e:5b:62:22:bc:87:eb:
f3:5e:28:57:ae:c2:f2:06:e6:7c:f3:90:56:7c:04:
17:89:bd:f4:62:94:d1:be:39:6f:4a:c6:b7:26:c3:
c8:4d:e6:4b:0f:f4:a3:72:8b:f5:5e:4e:9d:0a:6c:
31:47:52:b4:40:4c:82:f4:9e:38:26:03:55:a4:4c:
2c:91:90:16:ed:7e:83:94:f2:97:c1:fa:bc:c7:2b:
2f:a5:97:1c:e2:a6:e2:22:6b:88:67:62:ac:98:48:
ef:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:45:4D:28:0E:2C:34:76:E1:C6:D3:CB:1C:A5:E3:6C:45:E1:8F:5E
X509v3 Authority Key Identifier:
keyid:FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/k0VNKA4sNHbhxtPLHKXjbEXhj14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_TfMjxazxsvTNGqj7WF3Hz6DrJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.136.0/21
31.14.102.0/24
37.10.113.0-37.10.114.255
77.81.191.0/24
81.19.208.0/20
84.247.0.0/24
85.204.70.0/24
86.106.112.0/24
86.106.157.0-86.106.158.255
89.21.64.0/22
89.34.96.0/22
89.35.28.0/22
89.37.64.0/22
89.37.172.0/22
89.38.68.0/23
89.40.212.0/24
89.46.222.0/23
109.69.104.0/21
109.70.144.0/21
109.230.203.0/24
109.230.209.0/24
109.230.215.0/24
109.230.218.0/24
109.230.220.0/24
128.127.148.0/22
134.255.243.0/24
178.239.160.0/20
185.3.236.0/22
185.16.204.0/22
185.38.148.0/22
185.44.76.0/22
185.61.156.0/22
185.114.224.0/24
185.121.136.0/22
185.125.204.0/22
185.134.20.0/22
185.158.240.0/22
185.216.144.0/22
185.223.232.0/22
188.212.154.0/24
188.240.56.0/21
188.240.71.0/24
188.241.120.0/24
188.241.144.0/24
188.241.156.0/23
193.32.208.0/22
193.176.28.0/22
195.20.108.0/23
195.140.212.0/22
195.206.165.0-195.206.167.255
195.206.169.0-195.206.171.255
195.206.180.0/22
195.234.124.0/23
195.234.127.0/24
213.166.84.0/22
217.146.80.0/20
IPv6:
2a00:1a30::/32
2a01:4020::/32
Signature Algorithm: sha256WithRSAEncryption
a6:8c:77:86:e5:ef:d4:a6:66:06:b0:4c:d4:63:ae:b0:7d:03:
b7:92:a7:4d:a6:39:94:c1:4f:78:13:1a:02:18:ff:1c:2a:e9:
00:f7:dd:d0:7b:f6:00:84:f2:f7:af:85:c9:0b:68:5b:51:13:
61:49:b5:a7:a6:89:9f:ff:af:aa:9e:18:51:c7:c1:cf:64:30:
09:0a:1c:b0:f4:1a:06:68:1f:20:ca:4a:37:f6:d5:8a:33:e1:
80:dd:a3:74:ee:f6:f9:ba:6d:5d:b3:fa:2d:b2:8c:08:db:2f:
92:e3:bd:38:f2:ff:79:ba:5a:0f:8c:93:3c:2d:77:b4:a3:b8:
46:f5:8d:a4:a0:43:87:04:87:f4:5a:17:bf:d8:bf:0c:2f:c9:
6e:0a:9e:0d:c4:f6:3d:7c:62:19:71:4f:2b:05:81:b1:57:c2:
99:26:a1:30:12:b6:ea:fe:a0:b7:18:ca:b8:92:cd:aa:e1:8c:
36:af:e8:71:23:6e:04:3b:2b:fe:bc:7d:01:b7:00:17:33:5f:
67:52:46:81:a4:58:51:78:53:49:ac:29:3e:01:aa:ee:2e:1e:
92:75:b2:66:d0:4a:e6:aa:ee:06:b1:7a:96:b5:54:b8:b0:5f:
2d:2d:ae:d1:c0:a0:c1:b4:97:99:ac:87:db:a6:65:69:c3:ed:
63:da:0b:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:32 2024 by rpki-client on console-ams.rpki-client.org