Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/d0d2fd-aa90-4207-9104-3ef02d5140b7/1/v_8CgGwE68H4fSretzirlYHyjl0.roa
File: v_8CgGwE68H4fSretzirlYHyjl0.roa (raw, json)
Hash identifier: U4TNEGCgrxDIEc8dyOjt4o0pCooxvwcqR0rZEv6NaTA=
Subject key identifier: BF:FF:02:80:6C:04:EB:C1:F8:7D:2A:DE:B7:38:AB:95:81:F2:8E:5D
Certificate issuer: /CN=9d066cb8488dae7e4234aa7c892430dad11fe5b1
Certificate serial: 0184CD1C1561B44854BFF1C7DE3F51C97A1C
Authority key identifier: 9D:06:6C:B8:48:8D:AE:7E:42:34:AA:7C:89:24:30:DA:D1:1F:E5:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nQZsuEiNrn5CNKp8iSQw2tEf5bE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/d0d2fd-aa90-4207-9104-3ef02d5140b7/1/v_8CgGwE68H4fSretzirlYHyjl0.roa
Signing time: Thu 01 Dec 2022 09:54:40 +0000
ROA not before: Thu 01 Dec 2022 09:54:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20676
IP address blocks: 194.9.127.0/24 maxlen: 24
92.201.128.0/17 maxlen: 17
212.202.0.0/19 maxlen: 19
195.80.192.0/19 maxlen: 19
185.144.188.0/22 maxlen: 22
212.202.0.0/16 maxlen: 16
212.110.192.0/19 maxlen: 19
84.245.128.0/18 maxlen: 18
92.195.0.0/17 maxlen: 17
62.8.168.0/21 maxlen: 21
62.8.176.0/20 maxlen: 20
92.194.0.0/17 maxlen: 17
213.160.0.0/19 maxlen: 19
213.217.64.0/18 maxlen: 18
212.5.16.0/20 maxlen: 20
92.200.128.0/17 maxlen: 17
62.8.128.0/17 maxlen: 17
85.8.132.0/22 maxlen: 22
195.90.0.0/19 maxlen: 19
195.90.8.0/21 maxlen: 21
92.194.128.0/17 maxlen: 17
212.63.32.0/19 maxlen: 19
92.197.130.0/24 maxlen: 24
195.32.128.0/17 maxlen: 17
194.140.96.0/20 maxlen: 20
92.201.0.0/17 maxlen: 17
92.196.128.0/17 maxlen: 17
62.206.164.0/24 maxlen: 24
62.206.165.0/24 maxlen: 24
62.206.166.0/24 maxlen: 24
92.193.0.0/17 maxlen: 17
87.193.0.0/16 maxlen: 16
92.193.128.0/17 maxlen: 17
87.234.0.0/16 maxlen: 16
212.5.0.0/19 maxlen: 19
217.146.128.0/19 maxlen: 19
212.5.8.0/21 maxlen: 21
212.4.160.0/19 maxlen: 19
92.200.0.0/17 maxlen: 17
212.4.176.0/20 maxlen: 20
92.200.0.0/15 maxlen: 15
212.105.192.0/19 maxlen: 19
92.192.0.0/13 maxlen: 13
83.236.0.0/20 maxlen: 20
83.236.0.0/16 maxlen: 16
83.236.16.0/20 maxlen: 20
213.148.129.0/24 maxlen: 24
213.148.130.0/24 maxlen: 24
213.148.128.0/24 maxlen: 24
213.148.128.0/19 maxlen: 19
195.158.160.0/19 maxlen: 19
213.148.133.0/24 maxlen: 24
83.236.32.0/21 maxlen: 21
92.192.0.0/17 maxlen: 17
92.198.192.0/18 maxlen: 18
212.202.40.0/21 maxlen: 21
212.202.48.0/20 maxlen: 20
212.60.192.0/18 maxlen: 18
92.195.128.0/17 maxlen: 17
62.145.0.0/19 maxlen: 19
92.196.0.0/17 maxlen: 17
212.84.224.0/19 maxlen: 19
92.192.128.0/17 maxlen: 17
62.206.0.0/16 maxlen: 16
212.202.168.0/21 maxlen: 21
212.202.176.0/20 maxlen: 20
212.84.208.0/20 maxlen: 20
2001:1a80:800::/48 maxlen: 48
2001:658::/29 maxlen: 29
2001:1a80:801::/48 maxlen: 48
2001:1a81:2000::/36 maxlen: 40
2001:1a81:4000::/36 maxlen: 40
2001:1a81:3000::/36 maxlen: 40
2001:1a81:6000::/40 maxlen: 48
2001:1a81:1000::/40 maxlen: 48
2001:1a81:1000::/36 maxlen: 40
2001:1a81:6000::/36 maxlen: 40
2001:1a81:4000::/40 maxlen: 48
2001:1a81:7000::/40 maxlen: 48
2001:1a81:5000::/36 maxlen: 40
2001:1a81:7000::/36 maxlen: 40
2001:1a81:5000::/40 maxlen: 48
2001:1a81:2000::/40 maxlen: 48
2001:1a81:3000::/40 maxlen: 48
2001:1a80:802::/48 maxlen: 48
2001:1a80::/29 maxlen: 29
2a09:7100::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:cd:1c:15:61:b4:48:54:bf:f1:c7:de:3f:51:c9:7a:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d066cb8488dae7e4234aa7c892430dad11fe5b1
Validity
Not Before: Dec 1 09:54:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bfff02806c04ebc1f87d2adeb738ab9581f28e5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:cd:40:a1:6f:a1:7c:48:5d:29:41:36:c1:02:
9b:ab:ef:ff:9c:a3:4a:b4:fd:16:bc:71:45:f3:1d:
87:47:dc:d4:ee:04:b9:31:12:54:86:00:cd:65:ca:
5c:3a:cd:f3:b7:b3:61:06:92:ef:43:02:94:ee:b7:
ee:81:71:89:9e:ce:82:1e:6b:75:2f:16:f1:e8:82:
82:4e:33:b3:cc:7d:07:19:9c:05:e3:26:85:ea:05:
0c:d2:90:39:7a:3e:e1:4c:b7:7e:75:c8:82:b0:19:
ed:37:e3:27:f4:d8:f9:75:42:29:e0:2c:1f:50:7d:
fe:c0:a9:9b:d4:c0:96:b5:d0:49:4f:3e:9d:7c:ff:
4d:9c:56:96:f5:09:b0:a1:d8:de:c5:7b:2f:b9:98:
7d:c7:71:a8:b8:3f:37:4b:fc:6d:18:8c:1e:3d:50:
58:ff:71:33:ef:d5:03:bd:b5:a9:d0:28:24:ad:14:
f7:a3:2d:eb:28:6e:24:aa:43:45:00:be:08:2a:ae:
1f:fc:94:b7:17:12:0e:27:7d:04:b0:20:64:f4:c5:
55:3a:64:c6:a9:cc:ec:3b:68:15:eb:2c:23:48:da:
c3:3a:6e:69:b2:01:c2:9e:94:0d:e0:12:29:dd:2b:
cb:7f:0b:8c:06:ce:ee:6b:c5:0c:02:fe:69:12:59:
06:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:FF:02:80:6C:04:EB:C1:F8:7D:2A:DE:B7:38:AB:95:81:F2:8E:5D
X509v3 Authority Key Identifier:
keyid:9D:06:6C:B8:48:8D:AE:7E:42:34:AA:7C:89:24:30:DA:D1:1F:E5:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nQZsuEiNrn5CNKp8iSQw2tEf5bE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/d0d2fd-aa90-4207-9104-3ef02d5140b7/1/v_8CgGwE68H4fSretzirlYHyjl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/d0d2fd-aa90-4207-9104-3ef02d5140b7/1/nQZsuEiNrn5CNKp8iSQw2tEf5bE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.8.128.0/17
62.145.0.0/19
62.206.0.0/16
83.236.0.0/16
84.245.128.0/18
85.8.132.0/22
87.193.0.0/16
87.234.0.0/16
92.192.0.0-92.201.255.255
185.144.188.0/22
194.9.127.0/24
194.140.96.0/20
195.32.128.0/17
195.80.192.0/19
195.90.0.0/19
195.158.160.0/19
212.4.160.0/19
212.5.0.0/19
212.60.192.0/18
212.63.32.0/19
212.84.208.0-212.84.255.255
212.105.192.0/19
212.110.192.0/19
212.202.0.0/16
213.148.128.0/19
213.160.0.0/19
213.217.64.0/18
217.146.128.0/19
IPv6:
2001:658::/29
2001:1a80::/29
2a09:7100::/29
Signature Algorithm: sha256WithRSAEncryption
39:1b:6a:de:15:72:dc:73:14:9c:f4:fa:74:07:f8:09:38:1c:
7b:b5:51:3a:73:71:b9:92:5a:bd:62:80:4a:49:24:ce:d3:fc:
d5:1d:b6:18:8c:6e:44:3f:a2:99:f1:77:5e:f8:cf:b9:ef:5b:
37:8b:1e:71:aa:17:80:02:a8:a2:91:5d:02:8b:a0:47:5e:fc:
7e:73:74:e7:9a:47:5f:27:79:d1:af:84:76:ee:9e:ce:26:5e:
18:cf:bd:a3:33:43:a9:66:f8:01:0f:48:3b:42:8f:80:62:d8:
46:e6:28:ef:76:99:db:39:d3:3a:de:83:f4:20:fc:e0:b5:d0:
02:96:41:2b:b1:48:e3:7e:20:50:f0:81:d4:2f:f0:17:39:ac:
71:f1:02:21:06:a2:fa:15:80:63:3d:78:4d:a2:21:ff:89:f1:
81:a8:cd:ee:5f:24:db:42:04:cd:68:6e:a6:cc:c4:1d:f6:77:
2c:e4:75:4b:03:b4:66:0f:63:51:15:04:ca:8c:ec:8f:cd:88:
4e:21:b1:02:4b:3a:9f:62:84:94:54:a0:d4:58:18:0b:ea:65:
c3:29:39:78:c5:42:e0:cf:32:52:ed:d9:22:f3:f3:9c:b3:ec:
c6:d1:d1:64:c2:89:ef:b3:e2:3b:05:ee:68:19:81:54:22:62:
9b:4e:6e:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:22 2023 by rpki-client on console.sobornost.net