Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/y3NkmUK6ZdmRivt5bYnboVZ6f_w.roa
File: y3NkmUK6ZdmRivt5bYnboVZ6f_w.roa (raw, json)
Hash identifier: aM9Vrm/ixADTeVEMoK5b/8+B9CJ5SE1qojZD8RYC58o=
Subject key identifier: CB:73:64:99:42:BA:65:D9:91:8A:FB:79:6D:89:DB:A1:56:7A:7F:FC
Certificate issuer: /CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Certificate serial: 01838595777B9E8A3B7CB0AAA00B7A7DBCC8
Authority key identifier: FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/y3NkmUK6ZdmRivt5bYnboVZ6f_w.roa
Signing time: Wed 28 Sep 2022 19:31:48 +0000
ROA not before: Wed 28 Sep 2022 19:31:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25369
IP address blocks: 185.134.20.0/22 maxlen: 22
195.140.212.0/22 maxlen: 22
134.255.243.0/24 maxlen: 24
128.127.148.0/22 maxlen: 22
81.19.208.0/20 maxlen: 20
81.19.208.0/23 maxlen: 23
81.19.216.0/24 maxlen: 24
89.46.223.0/24 maxlen: 24
89.46.222.0/23 maxlen: 23
86.106.112.0/24 maxlen: 24
195.234.124.0/24 maxlen: 24
195.234.124.0/23 maxlen: 24
195.234.127.0/24 maxlen: 24
188.241.120.0/24 maxlen: 24
188.241.144.0/24 maxlen: 24
188.241.156.0/23 maxlen: 23
188.241.157.0/24 maxlen: 24
193.32.208.0/22 maxlen: 22
86.106.158.0/24 maxlen: 24
86.106.157.0/24 maxlen: 24
188.240.58.0/24 maxlen: 24
188.240.56.0/21 maxlen: 21
188.240.56.0/24 maxlen: 24
188.240.57.0/24 maxlen: 24
188.240.71.0/24 maxlen: 24
84.247.0.0/24 maxlen: 24
195.206.165.0/24 maxlen: 24
185.125.204.0/22 maxlen: 22
195.206.166.0/23 maxlen: 23
195.206.169.0/24 maxlen: 24
195.206.170.0/23 maxlen: 23
89.38.68.0/23 maxlen: 23
195.206.180.0/22 maxlen: 22
5.226.136.0/21 maxlen: 21
217.146.80.0/20 maxlen: 20
217.146.87.0/24 maxlen: 24
185.38.148.0/22 maxlen: 22
217.146.92.0/24 maxlen: 24
213.166.84.0/22 maxlen: 24
37.10.113.0/24 maxlen: 24
37.10.114.0/24 maxlen: 24
188.212.154.0/24 maxlen: 24
194.50.234.0/23 maxlen: 23
89.37.64.0/22 maxlen: 22
185.158.241.0/24 maxlen: 24
185.158.242.0/24 maxlen: 24
89.37.173.0/24 maxlen: 24
194.50.250.0/23 maxlen: 23
178.239.160.0/20 maxlen: 20
178.239.165.0/24 maxlen: 24
178.239.167.0/24 maxlen: 24
185.44.76.0/22 maxlen: 22
178.239.173.0/24 maxlen: 24
185.3.236.0/22 maxlen: 22
185.158.240.0/22 maxlen: 24
89.37.172.0/22 maxlen: 22
109.70.144.0/21 maxlen: 21
109.70.145.0/24 maxlen: 24
109.70.149.0/24 maxlen: 24
109.70.148.0/24 maxlen: 24
185.16.204.0/22 maxlen: 22
109.69.104.0/21 maxlen: 21
109.69.110.0/24 maxlen: 24
109.230.203.0/24 maxlen: 24
109.230.209.0/24 maxlen: 24
109.230.218.0/24 maxlen: 24
109.230.215.0/24 maxlen: 24
109.230.220.0/24 maxlen: 24
185.137.36.0/24 maxlen: 24
185.137.36.0/22 maxlen: 22
85.204.70.0/24 maxlen: 24
77.81.191.0/24 maxlen: 24
31.14.102.0/24 maxlen: 24
193.176.28.0/22 maxlen: 22
193.176.31.0/24 maxlen: 24
185.216.144.0/22 maxlen: 22
185.61.157.0/24 maxlen: 24
185.61.156.0/24 maxlen: 24
185.61.156.0/22 maxlen: 22
89.21.64.0/24 maxlen: 24
89.21.64.0/22 maxlen: 22
185.223.232.0/22 maxlen: 22
89.35.28.0/22 maxlen: 22
195.20.108.0/24 maxlen: 24
195.20.108.0/23 maxlen: 23
185.121.136.0/22 maxlen: 22
185.114.224.0/24 maxlen: 24
89.40.212.0/24 maxlen: 24
89.34.96.0/22 maxlen: 22
2a01:4020:34::/48 maxlen: 48
2a01:4020:3::/48 maxlen: 48
2a01:4020::/32 maxlen: 32
2a01:4020:2::/48 maxlen: 48
2a00:1a30::/32 maxlen: 32
2a01:4020:32::/48 maxlen: 48
2a01:4020:33::/48 maxlen: 48
2a01:4020:30::/48 maxlen: 48
2a0b:b840::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:85:95:77:7b:9e:8a:3b:7c:b0:aa:a0:0b:7a:7d:bc:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Validity
Not Before: Sep 28 19:31:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb73649942ba65d9918afb796d89dba1567a7ffc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:7c:4a:3e:79:af:a3:11:14:3c:86:dc:1b:f5:
7d:c5:6d:0f:8f:d7:4b:97:25:6f:2b:9a:03:3f:3a:
17:dc:ff:86:f6:97:15:09:b8:a9:5f:b9:ad:5c:8c:
bc:29:be:1b:97:80:6f:d4:de:69:d1:21:1c:72:4e:
a4:69:46:f3:21:66:b4:a2:a2:f0:14:99:2f:8b:ab:
e4:df:d2:e3:9a:a1:4f:df:cc:d5:15:d4:70:6d:f9:
ff:24:b7:db:93:7c:8f:97:85:5e:73:53:99:90:c2:
13:88:40:82:20:4a:f4:76:71:0d:e5:bc:e9:88:9b:
22:60:b6:5e:b9:e0:d0:3b:a0:20:4e:f0:b0:c0:b4:
1e:ec:3b:4c:c4:3e:a3:f2:3f:b7:44:c5:16:39:05:
43:07:a4:d0:59:d7:b1:14:69:60:fb:5f:ec:b5:b9:
92:24:b5:98:4a:36:33:0a:1a:84:6b:e2:9a:03:31:
a1:d5:6d:f0:3a:10:6f:cb:12:47:55:76:bb:df:d5:
63:ae:01:e8:be:d6:25:ef:db:ad:75:7c:db:93:24:
c7:bb:b6:72:1d:86:c1:e0:80:2a:e3:40:3f:cc:43:
67:9e:9c:9c:cf:58:33:94:37:4e:a3:52:70:46:58:
df:05:93:6c:cb:92:e8:df:26:45:11:c4:42:a4:3c:
64:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:73:64:99:42:BA:65:D9:91:8A:FB:79:6D:89:DB:A1:56:7A:7F:FC
X509v3 Authority Key Identifier:
keyid:FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/y3NkmUK6ZdmRivt5bYnboVZ6f_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_TfMjxazxsvTNGqj7WF3Hz6DrJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.136.0/21
31.14.102.0/24
37.10.113.0-37.10.114.255
77.81.191.0/24
81.19.208.0/20
84.247.0.0/24
85.204.70.0/24
86.106.112.0/24
86.106.157.0-86.106.158.255
89.21.64.0/22
89.34.96.0/22
89.35.28.0/22
89.37.64.0/22
89.37.172.0/22
89.38.68.0/23
89.40.212.0/24
89.46.222.0/23
109.69.104.0/21
109.70.144.0/21
109.230.203.0/24
109.230.209.0/24
109.230.215.0/24
109.230.218.0/24
109.230.220.0/24
128.127.148.0/22
134.255.243.0/24
178.239.160.0/20
185.3.236.0/22
185.16.204.0/22
185.38.148.0/22
185.44.76.0/22
185.61.156.0/22
185.114.224.0/24
185.121.136.0/22
185.125.204.0/22
185.134.20.0/22
185.137.36.0/22
185.158.240.0/22
185.216.144.0/22
185.223.232.0/22
188.212.154.0/24
188.240.56.0/21
188.240.71.0/24
188.241.120.0/24
188.241.144.0/24
188.241.156.0/23
193.32.208.0/22
193.176.28.0/22
194.50.234.0/23
194.50.250.0/23
195.20.108.0/23
195.140.212.0/22
195.206.165.0-195.206.167.255
195.206.169.0-195.206.171.255
195.206.180.0/22
195.234.124.0/23
195.234.127.0/24
213.166.84.0/22
217.146.80.0/20
IPv6:
2a00:1a30::/32
2a01:4020::/32
2a0b:b840::/29
Signature Algorithm: sha256WithRSAEncryption
72:b0:f4:22:15:42:8d:d7:a9:a0:8a:62:fc:f6:fa:be:2d:a1:
c8:40:40:8f:64:57:43:2a:27:5b:fb:bb:e8:76:c9:bb:a5:ac:
be:c3:9f:ca:1f:ea:14:18:a9:9e:2b:e2:3a:a1:f9:86:20:19:
33:49:20:c8:86:bd:7f:a7:7b:b0:77:68:e3:ba:28:85:c1:3e:
f1:07:69:1a:3c:77:7e:c9:0e:d9:07:39:58:ff:1e:b7:09:6a:
35:dd:66:a3:0a:3e:24:13:ed:a5:07:81:27:59:35:d7:62:d4:
6e:29:59:da:4d:a1:b6:c4:f4:60:9c:f4:c8:fa:82:75:ee:d8:
5f:4b:6c:80:5d:cb:c5:37:c6:d4:e4:74:84:70:34:7e:e7:2e:
5b:7f:3b:c6:c6:c2:4e:2a:87:7e:40:34:f7:cc:bf:b7:93:fe:
9b:df:76:c8:a6:49:55:0d:fd:54:1a:85:5d:cd:c8:26:2e:e6:
84:af:72:36:bd:52:2b:de:7b:00:d3:6b:cc:33:58:63:cc:d8:
26:14:84:91:8e:bb:bb:b8:18:a4:a8:2f:b4:e4:7c:b4:a7:34:
53:b8:00:dc:a0:6f:cf:6f:16:48:f1:4e:fa:83:1c:8b:48:a9:
fe:01:a8:c7:9c:78:60:0d:32:5b:08:51:d2:04:77:98:8c:5a:
06:dd:41:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:32 2024 by rpki-client on console-ams.rpki-client.org