Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/p93ayyAOYkZ98FtBTUL4cP324Po.roa
File: p93ayyAOYkZ98FtBTUL4cP324Po.roa (raw, json)
Hash identifier: eH0vGj0Uq3gkhB+xOeKLF70n55N69duU+HvbJ751uic=
Subject key identifier: A7:DD:DA:CB:20:0E:62:46:7D:F0:5B:41:4D:42:F8:70:FD:F6:E0:FA
Certificate issuer: /CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Certificate serial: 1B6F0D6E
Authority key identifier: FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/p93ayyAOYkZ98FtBTUL4cP324Po.roa
Signing time: Mon 04 Apr 2022 15:47:57 +0000
ROA not before: Mon 04 Apr 2022 15:47:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25369
IP address blocks: 185.134.20.0/22 maxlen: 22
195.140.212.0/22 maxlen: 22
109.70.144.0/21 maxlen: 21
109.70.145.0/24 maxlen: 24
109.70.149.0/24 maxlen: 24
109.70.148.0/24 maxlen: 24
134.255.243.0/24 maxlen: 24
185.16.204.0/22 maxlen: 22
128.127.148.0/22 maxlen: 22
81.19.208.0/20 maxlen: 20
81.19.208.0/23 maxlen: 23
89.46.223.0/24 maxlen: 24
89.46.222.0/23 maxlen: 23
86.106.112.0/24 maxlen: 24
109.69.104.0/21 maxlen: 21
195.234.124.0/24 maxlen: 24
195.234.124.0/23 maxlen: 24
109.69.110.0/24 maxlen: 24
195.234.127.0/24 maxlen: 24
109.230.203.0/24 maxlen: 24
109.230.209.0/24 maxlen: 24
109.230.218.0/24 maxlen: 24
109.230.215.0/24 maxlen: 24
109.230.220.0/24 maxlen: 24
188.241.120.0/24 maxlen: 24
188.241.144.0/24 maxlen: 24
188.241.156.0/23 maxlen: 23
188.241.157.0/24 maxlen: 24
193.32.208.0/22 maxlen: 22
86.106.158.0/24 maxlen: 24
86.106.157.0/24 maxlen: 24
188.240.58.0/24 maxlen: 24
188.240.56.0/21 maxlen: 21
188.240.56.0/24 maxlen: 24
188.240.57.0/24 maxlen: 24
188.240.71.0/24 maxlen: 24
195.206.165.0/24 maxlen: 24
185.125.204.0/22 maxlen: 22
195.206.166.0/23 maxlen: 23
195.206.169.0/24 maxlen: 24
195.206.170.0/23 maxlen: 23
89.38.68.0/23 maxlen: 23
195.206.180.0/22 maxlen: 22
5.226.136.0/21 maxlen: 21
77.81.191.0/24 maxlen: 24
31.14.102.0/24 maxlen: 24
193.176.28.0/22 maxlen: 22
193.176.31.0/24 maxlen: 24
185.216.144.0/22 maxlen: 22
217.146.80.0/20 maxlen: 20
217.146.87.0/24 maxlen: 24
185.38.148.0/22 maxlen: 22
217.146.92.0/24 maxlen: 24
185.223.232.0/22 maxlen: 22
213.166.84.0/22 maxlen: 24
89.35.28.0/22 maxlen: 22
195.20.108.0/24 maxlen: 24
195.20.108.0/23 maxlen: 23
185.121.136.0/22 maxlen: 22
185.114.224.0/24 maxlen: 24
37.10.113.0/24 maxlen: 24
37.10.114.0/24 maxlen: 24
89.40.212.0/24 maxlen: 24
188.212.154.0/24 maxlen: 24
89.37.64.0/22 maxlen: 22
185.158.241.0/24 maxlen: 24
185.158.242.0/24 maxlen: 24
89.37.173.0/24 maxlen: 24
89.34.96.0/22 maxlen: 22
178.239.160.0/20 maxlen: 20
178.239.165.0/24 maxlen: 24
178.239.167.0/24 maxlen: 24
185.44.76.0/22 maxlen: 22
178.239.173.0/24 maxlen: 24
185.3.236.0/22 maxlen: 22
185.158.240.0/22 maxlen: 24
89.37.172.0/22 maxlen: 22
2a01:4020::/32 maxlen: 32
2a01:4020:34::/48 maxlen: 48
2a01:4020:2::/48 maxlen: 48
2a00:1a30::/32 maxlen: 32
2a01:4020:32::/48 maxlen: 48
2a01:4020:33::/48 maxlen: 48
2a01:4020:30::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 460262766 (0x1b6f0d6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Validity
Not Before: Apr 4 15:47:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7dddacb200e62467df05b414d42f870fdf6e0fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:9b:42:9d:d4:99:5e:36:fe:a9:db:39:af:9a:
d8:65:6b:23:84:7b:9b:0d:9a:76:25:91:ba:c2:51:
74:0b:cf:06:77:72:6e:47:41:a8:d5:76:00:9f:a4:
3a:6b:a3:9e:b3:56:82:98:2a:dd:93:21:b5:31:15:
7d:e0:42:a3:02:f2:19:08:12:96:df:32:cd:dc:0f:
69:cd:38:4b:d5:6e:53:75:87:9c:01:71:78:a5:50:
02:5a:bb:11:a7:e7:9c:00:31:c1:d2:47:f0:58:75:
f0:82:21:47:1a:02:2b:ae:03:21:82:8e:7b:52:1a:
d1:29:80:02:5f:d5:d4:7d:02:c5:ef:9f:9d:ea:d2:
0d:c2:6d:3e:d2:0e:f9:7f:a4:7c:e6:ba:c7:e7:8a:
59:40:0c:04:b1:c5:39:b0:1a:37:67:9b:65:bc:4b:
3d:2b:9a:e1:a3:c6:08:0c:88:88:df:b6:4a:af:34:
be:75:cd:af:f4:b3:ad:68:96:a8:db:c8:72:6e:c7:
4e:21:62:17:2b:a9:cd:d3:db:e9:73:e5:16:6a:4f:
d4:27:7e:8a:df:24:1a:d9:1d:a7:30:46:e5:c6:ac:
60:5e:e2:b8:e3:1c:c4:a8:10:b0:71:94:0c:15:cc:
16:26:0a:d0:87:30:f3:34:b2:33:77:b5:30:5e:1a:
45:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:DD:DA:CB:20:0E:62:46:7D:F0:5B:41:4D:42:F8:70:FD:F6:E0:FA
X509v3 Authority Key Identifier:
keyid:FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/p93ayyAOYkZ98FtBTUL4cP324Po.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_TfMjxazxsvTNGqj7WF3Hz6DrJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.136.0/21
31.14.102.0/24
37.10.113.0-37.10.114.255
77.81.191.0/24
81.19.208.0/20
86.106.112.0/24
86.106.157.0-86.106.158.255
89.34.96.0/22
89.35.28.0/22
89.37.64.0/22
89.37.172.0/22
89.38.68.0/23
89.40.212.0/24
89.46.222.0/23
109.69.104.0/21
109.70.144.0/21
109.230.203.0/24
109.230.209.0/24
109.230.215.0/24
109.230.218.0/24
109.230.220.0/24
128.127.148.0/22
134.255.243.0/24
178.239.160.0/20
185.3.236.0/22
185.16.204.0/22
185.38.148.0/22
185.44.76.0/22
185.114.224.0/24
185.121.136.0/22
185.125.204.0/22
185.134.20.0/22
185.158.240.0/22
185.216.144.0/22
185.223.232.0/22
188.212.154.0/24
188.240.56.0/21
188.240.71.0/24
188.241.120.0/24
188.241.144.0/24
188.241.156.0/23
193.32.208.0/22
193.176.28.0/22
195.20.108.0/23
195.140.212.0/22
195.206.165.0-195.206.167.255
195.206.169.0-195.206.171.255
195.206.180.0/22
195.234.124.0/23
195.234.127.0/24
213.166.84.0/22
217.146.80.0/20
IPv6:
2a00:1a30::/32
2a01:4020::/32
Signature Algorithm: sha256WithRSAEncryption
25:ab:99:89:28:17:80:34:53:b4:61:a0:49:a4:9b:2d:c2:82:
ae:0f:5b:22:a8:52:02:26:de:90:50:2b:a0:8a:24:38:30:00:
50:a6:a6:f2:03:dd:db:b2:5c:91:73:3c:9b:29:f4:64:cf:9e:
f4:4e:e7:88:11:d2:0b:09:d0:bf:23:1c:69:55:e6:4c:08:78:
89:d9:61:3e:b6:22:ff:0a:5f:cf:c5:fd:49:32:55:bc:eb:dd:
90:21:0d:f9:d6:b3:86:da:e3:c6:e7:4c:c7:89:5c:e3:42:08:
a2:5c:16:a9:ac:c2:4a:59:2b:48:6a:1d:3c:f4:01:6c:54:63:
f2:9c:29:31:cd:65:eb:fa:91:3f:f0:d8:45:0d:41:cb:3b:e4:
d2:e4:a7:c9:aa:a2:03:24:21:b4:a2:b6:27:af:b4:ab:c3:52:
98:8d:da:ef:52:29:5d:a3:ee:d4:94:18:1d:0f:88:da:de:67:
06:0a:e2:8b:10:f0:fd:9d:a5:0c:a2:3b:9c:03:90:e6:06:d1:
65:9d:94:88:70:ef:3b:a1:00:77:8a:bc:3b:d5:e8:6b:fb:22:
5e:41:4c:e3:da:de:34:cc:d4:31:8b:b2:34:28:cb:19:2b:38:
3a:6b:a4:b8:4c:9f:6b:a1:40:58:71:2b:ce:d6:a3:c4:f9:28:
9b:24:3c:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:32 2024 by rpki-client on console-ams.rpki-client.org