Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/d0d2fd-aa90-4207-9104-3ef02d5140b7/1/jrShuxM3lnndkloeaYb9LmsopeM.roa
File: jrShuxM3lnndkloeaYb9LmsopeM.roa (raw, json)
Hash identifier: PAkl/tEdfkZWvi5BB2qOlVWklLwUoTvG43rSfvZBYTk=
Subject key identifier: 8E:B4:A1:BB:13:37:96:79:DD:92:5A:1E:69:86:FD:2E:6B:28:A5:E3
Certificate issuer: /CN=9d066cb8488dae7e4234aa7c892430dad11fe5b1
Certificate serial: 090849F1
Authority key identifier: 9D:06:6C:B8:48:8D:AE:7E:42:34:AA:7C:89:24:30:DA:D1:1F:E5:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nQZsuEiNrn5CNKp8iSQw2tEf5bE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/d0d2fd-aa90-4207-9104-3ef02d5140b7/1/jrShuxM3lnndkloeaYb9LmsopeM.roa
Signing time: Fri 21 Jan 2022 22:25:43 +0000
ROA not before: Fri 21 Jan 2022 22:25:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20676
IP address blocks: 194.9.127.0/24 maxlen: 24
92.201.128.0/17 maxlen: 17
212.202.0.0/19 maxlen: 19
195.80.192.0/19 maxlen: 19
185.144.188.0/22 maxlen: 22
212.202.0.0/16 maxlen: 16
212.110.192.0/19 maxlen: 19
84.245.128.0/18 maxlen: 18
92.195.0.0/17 maxlen: 17
62.8.168.0/21 maxlen: 21
62.8.176.0/20 maxlen: 20
92.194.0.0/17 maxlen: 17
213.160.0.0/19 maxlen: 19
213.217.64.0/18 maxlen: 18
212.5.16.0/20 maxlen: 20
92.200.128.0/17 maxlen: 17
62.8.128.0/17 maxlen: 17
85.8.132.0/22 maxlen: 22
195.90.0.0/19 maxlen: 19
195.90.8.0/21 maxlen: 21
92.194.128.0/17 maxlen: 17
212.63.32.0/19 maxlen: 19
92.197.130.0/24 maxlen: 24
195.32.128.0/17 maxlen: 17
194.140.96.0/20 maxlen: 20
92.201.0.0/17 maxlen: 17
92.196.128.0/17 maxlen: 17
62.206.164.0/24 maxlen: 24
62.206.165.0/24 maxlen: 24
62.206.166.0/24 maxlen: 24
92.193.0.0/17 maxlen: 17
87.193.0.0/16 maxlen: 16
92.193.128.0/17 maxlen: 17
87.234.0.0/16 maxlen: 16
212.5.0.0/19 maxlen: 19
217.146.128.0/19 maxlen: 19
212.5.8.0/21 maxlen: 21
212.4.160.0/19 maxlen: 19
92.200.0.0/17 maxlen: 17
212.4.176.0/20 maxlen: 20
92.200.0.0/15 maxlen: 15
212.105.192.0/19 maxlen: 19
92.192.0.0/13 maxlen: 13
83.236.0.0/20 maxlen: 20
83.236.0.0/16 maxlen: 16
83.236.16.0/20 maxlen: 20
213.148.129.0/24 maxlen: 24
213.148.130.0/24 maxlen: 24
213.148.128.0/24 maxlen: 24
213.148.128.0/19 maxlen: 19
195.158.160.0/19 maxlen: 19
213.148.133.0/24 maxlen: 24
83.236.32.0/21 maxlen: 21
92.192.0.0/17 maxlen: 17
212.202.40.0/21 maxlen: 21
212.202.48.0/20 maxlen: 20
212.60.192.0/18 maxlen: 18
92.195.128.0/17 maxlen: 17
62.145.0.0/19 maxlen: 19
92.196.0.0/17 maxlen: 17
212.84.224.0/19 maxlen: 19
92.192.128.0/17 maxlen: 17
62.206.0.0/16 maxlen: 16
212.202.168.0/21 maxlen: 21
212.202.176.0/20 maxlen: 20
212.84.208.0/20 maxlen: 20
2001:1a80:800::/48 maxlen: 48
2001:658::/29 maxlen: 29
2001:1a80:801::/48 maxlen: 48
2001:1a81:7000::/36 maxlen: 40
2001:1a81:5000::/36 maxlen: 40
2001:1a81:6000::/36 maxlen: 40
2001:1a81:7000::/40 maxlen: 48
2001:1a81:1000::/36 maxlen: 40
2001:1a81:3000::/36 maxlen: 40
2001:1a81:6000::/40 maxlen: 48
2001:1a81:1000::/40 maxlen: 48
2001:1a81:4000::/36 maxlen: 40
2001:1a81:5000::/40 maxlen: 48
2001:1a81:2000::/36 maxlen: 40
2001:1a81:3000::/40 maxlen: 48
2001:1a81:2000::/40 maxlen: 48
2001:1a81:4000::/40 maxlen: 48
2001:1a80:802::/48 maxlen: 48
2001:1a80::/29 maxlen: 29
2a09:7100::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151538161 (0x90849f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d066cb8488dae7e4234aa7c892430dad11fe5b1
Validity
Not Before: Jan 21 22:25:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8eb4a1bb13379679dd925a1e6986fd2e6b28a5e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:39:70:35:0c:5b:39:4d:40:24:f1:ff:5d:f9:
52:b7:34:fb:f7:3e:5a:a3:4d:d1:b3:29:25:c2:55:
4c:f1:02:fe:3b:8f:80:1f:49:6d:e6:85:56:2e:8f:
4b:87:64:2d:fd:4e:0a:cf:0d:72:5a:d8:0e:b6:5d:
04:d1:d4:55:32:eb:f3:49:ea:3f:04:a1:9d:e7:fd:
73:b6:e8:b3:43:ab:be:a1:86:a1:dc:2f:a2:f6:5f:
03:94:e8:01:ac:16:06:d5:d5:93:e5:03:1e:e9:7e:
4c:a0:d5:40:e6:25:50:fd:87:67:f6:d6:de:bb:49:
fd:0a:9d:02:ad:42:31:f3:d1:1f:35:49:02:1f:18:
8d:90:ff:2f:52:ee:9e:82:b4:d7:5f:53:41:4b:7b:
1c:dd:72:20:38:1f:c7:74:da:58:78:e7:45:dc:7f:
fd:96:7c:da:b2:1b:74:df:11:77:30:5f:d1:36:b0:
11:63:d1:63:7a:3c:f1:b0:99:e4:43:e7:fc:a9:34:
70:ca:ef:fc:75:2f:9a:c2:01:fd:72:26:73:e1:29:
6f:b0:3d:f8:52:9b:58:06:04:14:b4:88:2a:4f:1b:
e7:f3:78:51:8e:63:6e:f5:41:cb:d3:1f:40:60:9f:
e0:01:fc:88:23:56:90:ac:4b:90:45:a0:91:7c:c1:
9f:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:B4:A1:BB:13:37:96:79:DD:92:5A:1E:69:86:FD:2E:6B:28:A5:E3
X509v3 Authority Key Identifier:
keyid:9D:06:6C:B8:48:8D:AE:7E:42:34:AA:7C:89:24:30:DA:D1:1F:E5:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nQZsuEiNrn5CNKp8iSQw2tEf5bE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/d0d2fd-aa90-4207-9104-3ef02d5140b7/1/jrShuxM3lnndkloeaYb9LmsopeM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/d0d2fd-aa90-4207-9104-3ef02d5140b7/1/nQZsuEiNrn5CNKp8iSQw2tEf5bE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.8.128.0/17
62.145.0.0/19
62.206.0.0/16
83.236.0.0/16
84.245.128.0/18
85.8.132.0/22
87.193.0.0/16
87.234.0.0/16
92.192.0.0-92.201.255.255
185.144.188.0/22
194.9.127.0/24
194.140.96.0/20
195.32.128.0/17
195.80.192.0/19
195.90.0.0/19
195.158.160.0/19
212.4.160.0/19
212.5.0.0/19
212.60.192.0/18
212.63.32.0/19
212.84.208.0-212.84.255.255
212.105.192.0/19
212.110.192.0/19
212.202.0.0/16
213.148.128.0/19
213.160.0.0/19
213.217.64.0/18
217.146.128.0/19
IPv6:
2001:658::/29
2001:1a80::/29
2a09:7100::/29
Signature Algorithm: sha256WithRSAEncryption
58:88:26:2e:91:a7:bb:19:68:1a:bc:64:da:9f:c4:6d:dd:09:
5d:df:ad:f4:6d:89:3f:e4:eb:1a:bf:65:6a:ac:19:ca:cd:09:
07:cf:66:98:41:1a:64:f6:a0:4b:50:9b:b4:fc:bc:82:a0:11:
13:4b:c0:42:6e:d5:25:09:f2:1a:b9:d1:59:e4:1f:99:82:1c:
31:15:3d:93:21:7b:d1:bd:f4:14:e0:a8:a6:5d:06:2d:fc:63:
af:9f:2b:ed:d2:b9:4e:0b:94:5b:14:d7:8b:67:ba:5b:bc:b1:
a7:54:86:ca:dd:a1:d9:df:a3:4e:08:a2:4c:90:61:19:9b:54:
cd:70:09:cb:10:75:c7:04:4d:9e:4e:0c:d1:6f:7d:b6:b6:f4:
b3:70:87:bb:58:c6:bb:f3:54:61:8f:67:bb:c4:eb:11:0e:79:
8d:8c:2b:2f:30:74:78:f3:99:20:d0:79:46:73:ad:71:b5:1a:
9d:c5:49:d7:9b:53:4e:d0:26:e2:21:bc:88:39:7a:9a:d4:c1:
91:e4:2a:b3:19:42:3a:93:16:e3:76:42:1b:e8:bb:be:cc:c6:
7d:a5:2d:ff:5f:41:98:d3:35:ac:c9:fe:a4:44:9d:58:17:85:
23:29:29:d2:ab:10:61:4f:fb:dc:84:4b:e8:ad:28:31:96:a3:
d6:28:20:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:22 2023 by rpki-client on console.sobornost.net