Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/vOnEqOA7FIoOKkcSpInEbsKot5k.roa
File: vOnEqOA7FIoOKkcSpInEbsKot5k.roa (raw, json)
Hash identifier: f5o61NHSfFq+C4yVLh0shq4ORrVMdzvPlaThcIzchvM=
Subject key identifier: BC:E9:C4:A8:E0:3B:14:8A:0E:2A:47:12:A4:89:C4:6E:C2:A8:B7:99
Certificate issuer: /CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Certificate serial: 018220D0FC644B875DB98F415CDD043B2417
Authority key identifier: FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/vOnEqOA7FIoOKkcSpInEbsKot5k.roa
Signing time: Thu 21 Jul 2022 12:52:23 +0000
ROA not before: Thu 21 Jul 2022 12:52:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25369
IP address blocks: 185.134.20.0/22 maxlen: 22
195.140.212.0/22 maxlen: 22
109.70.144.0/21 maxlen: 21
109.70.145.0/24 maxlen: 24
109.70.149.0/24 maxlen: 24
109.70.148.0/24 maxlen: 24
134.255.243.0/24 maxlen: 24
185.16.204.0/22 maxlen: 22
128.127.148.0/22 maxlen: 22
81.19.208.0/20 maxlen: 20
81.19.208.0/23 maxlen: 23
89.46.223.0/24 maxlen: 24
89.46.222.0/23 maxlen: 23
86.106.112.0/24 maxlen: 24
109.69.104.0/21 maxlen: 21
195.234.124.0/24 maxlen: 24
195.234.124.0/23 maxlen: 24
109.69.110.0/24 maxlen: 24
195.234.127.0/24 maxlen: 24
109.230.203.0/24 maxlen: 24
109.230.209.0/24 maxlen: 24
109.230.218.0/24 maxlen: 24
109.230.215.0/24 maxlen: 24
109.230.220.0/24 maxlen: 24
188.241.120.0/24 maxlen: 24
188.241.144.0/24 maxlen: 24
188.241.156.0/23 maxlen: 23
188.241.157.0/24 maxlen: 24
193.32.208.0/22 maxlen: 22
85.204.70.0/24 maxlen: 24
86.106.158.0/24 maxlen: 24
86.106.157.0/24 maxlen: 24
188.240.58.0/24 maxlen: 24
188.240.56.0/21 maxlen: 21
188.240.56.0/24 maxlen: 24
188.240.57.0/24 maxlen: 24
188.240.71.0/24 maxlen: 24
84.247.0.0/24 maxlen: 24
195.206.165.0/24 maxlen: 24
185.125.204.0/22 maxlen: 22
195.206.166.0/23 maxlen: 23
195.206.169.0/24 maxlen: 24
195.206.170.0/23 maxlen: 23
89.38.68.0/23 maxlen: 23
195.206.180.0/22 maxlen: 22
5.226.136.0/21 maxlen: 21
77.81.191.0/24 maxlen: 24
31.14.102.0/24 maxlen: 24
193.176.28.0/22 maxlen: 22
193.176.31.0/24 maxlen: 24
185.216.144.0/22 maxlen: 22
185.61.157.0/24 maxlen: 24
185.61.156.0/24 maxlen: 24
185.61.156.0/22 maxlen: 22
89.21.64.0/24 maxlen: 24
89.21.64.0/22 maxlen: 22
217.146.80.0/20 maxlen: 20
217.146.87.0/24 maxlen: 24
185.38.148.0/22 maxlen: 22
217.146.92.0/24 maxlen: 24
185.223.232.0/22 maxlen: 22
213.166.84.0/22 maxlen: 24
89.35.28.0/22 maxlen: 22
195.20.108.0/24 maxlen: 24
195.20.108.0/23 maxlen: 23
185.121.136.0/22 maxlen: 22
185.114.224.0/24 maxlen: 24
37.10.113.0/24 maxlen: 24
37.10.114.0/24 maxlen: 24
89.40.212.0/24 maxlen: 24
188.212.154.0/24 maxlen: 24
89.37.64.0/22 maxlen: 22
185.158.241.0/24 maxlen: 24
185.158.242.0/24 maxlen: 24
89.37.173.0/24 maxlen: 24
89.34.96.0/22 maxlen: 22
178.239.160.0/20 maxlen: 20
178.239.165.0/24 maxlen: 24
178.239.167.0/24 maxlen: 24
185.44.76.0/22 maxlen: 22
178.239.173.0/24 maxlen: 24
185.3.236.0/22 maxlen: 22
185.158.240.0/22 maxlen: 24
89.37.172.0/22 maxlen: 22
2a01:4020::/32 maxlen: 32
2a01:4020:34::/48 maxlen: 48
2a01:4020:2::/48 maxlen: 48
2a00:1a30::/32 maxlen: 32
2a01:4020:32::/48 maxlen: 48
2a01:4020:33::/48 maxlen: 48
2a01:4020:30::/48 maxlen: 48
2a0b:b840::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:20:d0:fc:64:4b:87:5d:b9:8f:41:5c:dd:04:3b:24:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Validity
Not Before: Jul 21 12:52:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bce9c4a8e03b148a0e2a4712a489c46ec2a8b799
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:ce:41:3b:83:2a:6b:ac:a4:79:ce:ec:36:8d:
02:94:ef:fe:3f:9b:f8:98:2d:89:2e:5f:d1:8f:81:
78:a5:fe:d9:75:42:78:cd:f5:0d:dd:ab:c2:5a:f7:
a2:63:c4:e8:9e:a6:9e:c4:d1:98:8f:1e:4a:f2:57:
0b:6c:17:48:9b:6a:01:05:ca:70:83:be:ed:1a:22:
b6:0d:51:b4:78:3b:23:a5:7d:88:2c:13:d4:d7:28:
9f:b5:9f:c6:46:9d:46:01:7c:b6:cc:33:d8:58:9b:
da:10:43:ea:66:45:ab:b3:06:d5:84:4e:0d:3d:ee:
33:d6:66:27:d5:3d:94:62:d0:13:bc:22:08:b4:a4:
23:0d:45:55:b5:39:74:c9:3c:95:13:15:66:1a:73:
3c:49:c7:9d:f9:a2:2a:c2:07:cf:39:00:cf:18:ca:
4b:23:88:39:1f:80:fe:f2:0e:b0:e3:56:df:35:d1:
cc:39:5e:e6:84:f9:84:1e:99:75:dc:b8:6a:8d:bb:
0a:e2:e5:bf:98:00:43:ff:0a:38:25:6a:b7:ed:3c:
e0:16:ea:a1:cd:53:48:46:81:12:ea:09:16:cf:5a:
9c:9a:17:8a:fd:b8:b3:04:d7:3a:c7:b4:fc:62:d2:
61:74:d4:76:52:80:30:5f:70:af:c7:0a:2e:1c:58:
8e:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:E9:C4:A8:E0:3B:14:8A:0E:2A:47:12:A4:89:C4:6E:C2:A8:B7:99
X509v3 Authority Key Identifier:
keyid:FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/vOnEqOA7FIoOKkcSpInEbsKot5k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_TfMjxazxsvTNGqj7WF3Hz6DrJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.136.0/21
31.14.102.0/24
37.10.113.0-37.10.114.255
77.81.191.0/24
81.19.208.0/20
84.247.0.0/24
85.204.70.0/24
86.106.112.0/24
86.106.157.0-86.106.158.255
89.21.64.0/22
89.34.96.0/22
89.35.28.0/22
89.37.64.0/22
89.37.172.0/22
89.38.68.0/23
89.40.212.0/24
89.46.222.0/23
109.69.104.0/21
109.70.144.0/21
109.230.203.0/24
109.230.209.0/24
109.230.215.0/24
109.230.218.0/24
109.230.220.0/24
128.127.148.0/22
134.255.243.0/24
178.239.160.0/20
185.3.236.0/22
185.16.204.0/22
185.38.148.0/22
185.44.76.0/22
185.61.156.0/22
185.114.224.0/24
185.121.136.0/22
185.125.204.0/22
185.134.20.0/22
185.158.240.0/22
185.216.144.0/22
185.223.232.0/22
188.212.154.0/24
188.240.56.0/21
188.240.71.0/24
188.241.120.0/24
188.241.144.0/24
188.241.156.0/23
193.32.208.0/22
193.176.28.0/22
195.20.108.0/23
195.140.212.0/22
195.206.165.0-195.206.167.255
195.206.169.0-195.206.171.255
195.206.180.0/22
195.234.124.0/23
195.234.127.0/24
213.166.84.0/22
217.146.80.0/20
IPv6:
2a00:1a30::/32
2a01:4020::/32
2a0b:b840::/29
Signature Algorithm: sha256WithRSAEncryption
1b:a1:39:4a:8e:96:14:70:1a:f5:2d:db:0f:ea:5c:d2:54:08:
8c:49:99:29:e0:ab:93:32:d8:52:ca:48:45:44:54:f0:0e:7f:
93:e8:ab:ae:dc:fb:18:54:ef:29:9e:b6:c6:2d:a3:14:ab:bb:
f8:40:89:0e:78:a5:44:95:0e:c2:36:74:67:76:00:20:33:d0:
a2:71:2a:e9:db:9d:6c:91:6e:2c:28:8f:46:ed:da:30:88:f3:
af:82:87:f2:33:0b:1b:5c:60:e8:92:1b:ac:bf:af:26:42:73:
dd:76:0e:74:16:db:e3:90:02:d2:8a:81:fa:30:89:2c:2d:ef:
6e:ec:74:ec:9c:95:8a:52:74:ca:53:c0:77:d3:5f:c6:2b:0d:
e3:18:53:2b:e0:7b:5a:c2:62:e3:69:15:14:cd:1f:23:80:be:
90:1e:c9:4e:7f:0d:69:57:0c:b9:8d:38:e4:08:6a:f4:68:15:
c6:64:2e:7f:bc:a5:0d:fc:1e:02:e8:31:f2:92:d0:75:33:f7:
8b:af:89:1b:a0:06:ac:33:21:c9:48:08:bf:18:ad:b5:db:b6:
53:f0:ff:7a:0f:ac:40:72:16:f9:e5:4d:7c:3b:c2:7d:91:0f:
f8:77:c3:c9:fd:48:3f:00:e3:e7:96:e2:57:4f:70:f0:9e:c1:
c0:93:f9:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:32 2024 by rpki-client on console-ams.rpki-client.org