Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/d3f1ba-d9e5-45c5-bca2-1619d08c6965/1/ACNHRZZoHoNmBnhwtyvGbNI_rWo.roa
File: ACNHRZZoHoNmBnhwtyvGbNI_rWo.roa (raw, json)
Hash identifier: QR5ED1sblXGLHdzhrYpTQ6BXd3c89dCdUxcmOcEw9iA=
Subject key identifier: 00:23:47:45:96:68:1E:83:66:06:78:70:B7:2B:C6:6C:D2:3F:AD:6A
Certificate issuer: /CN=95a5adf6af1fcc0570adf858fd5bfbe28791a186
Certificate serial: 0185678BC5BD9FD475E67F7607D94953FBAD
Authority key identifier: 95:A5:AD:F6:AF:1F:CC:05:70:AD:F8:58:FD:5B:FB:E2:87:91:A1:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/laWt9q8fzAVwrfhY_Vv74oeRoYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/d3f1ba-d9e5-45c5-bca2-1619d08c6965/1/ACNHRZZoHoNmBnhwtyvGbNI_rWo.roa
Signing time: Sat 31 Dec 2022 09:38:11 +0000
ROA not before: Sat 31 Dec 2022 09:38:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5413
IP address blocks: 77.73.120.0/21 maxlen: 24
212.103.224.0/19 maxlen: 24
195.70.64.0/19 maxlen: 24
78.141.0.0/18 maxlen: 24
5.22.224.0/21 maxlen: 24
217.67.48.0/20 maxlen: 24
193.242.113.0/24 maxlen: 24
193.242.116.0/24 maxlen: 24
185.3.76.0/22 maxlen: 24
193.242.115.0/24 maxlen: 24
130.185.64.0/21 maxlen: 24
62.232.0.0/16 maxlen: 24
94.30.0.0/17 maxlen: 24
194.154.160.0/19 maxlen: 24
77.107.128.0/18 maxlen: 24
185.8.204.0/22 maxlen: 24
80.234.128.0/17 maxlen: 24
109.170.128.0/17 maxlen: 24
212.102.192.0/19 maxlen: 24
195.224.0.0/16 maxlen: 24
80.89.80.0/20 maxlen: 24
62.69.32.0/19 maxlen: 24
62.72.128.0/19 maxlen: 24
195.200.128.0/19 maxlen: 24
194.1.210.0/24 maxlen: 24
212.241.128.0/17 maxlen: 24
212.19.64.0/19 maxlen: 24
194.79.240.0/22 maxlen: 24
45.83.76.0/22 maxlen: 24
80.69.128.0/20 maxlen: 24
195.147.4.0/24 maxlen: 24
194.143.160.0/19 maxlen: 24
212.35.224.0/19 maxlen: 24
195.147.0.0/16 maxlen: 24
93.95.104.0/21 maxlen: 24
195.38.64.0/19 maxlen: 24
62.105.64.0/18 maxlen: 24
89.145.192.0/18 maxlen: 24
193.41.96.0/21 maxlen: 24
93.92.120.0/21 maxlen: 24
194.126.64.0/19 maxlen: 24
193.28.154.0/24 maxlen: 24
176.35.0.0/16 maxlen: 24
78.41.208.0/21 maxlen: 24
185.196.204.0/22 maxlen: 24
194.153.0.0/19 maxlen: 24
77.44.0.0/17 maxlen: 24
193.192.64.0/19 maxlen: 24
91.236.17.0/24 maxlen: 24
82.195.96.0/19 maxlen: 24
213.205.128.0/18 maxlen: 24
193.192.34.0/23 maxlen: 24
80.64.48.0/20 maxlen: 24
83.219.32.0/19 maxlen: 24
62.44.64.0/19 maxlen: 24
195.226.32.0/19 maxlen: 24
185.138.152.0/22 maxlen: 24
212.88.32.0/19 maxlen: 24
2a00:b300::/32 maxlen: 48
2a04:b2c0::/29 maxlen: 48
2a07:2640::/29 maxlen: 48
2a03:4200::/32 maxlen: 48
2001:b98::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:67:8b:c5:bd:9f:d4:75:e6:7f:76:07:d9:49:53:fb:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95a5adf6af1fcc0570adf858fd5bfbe28791a186
Validity
Not Before: Dec 31 09:38:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0023474596681e8366067870b72bc66cd23fad6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e1:b4:20:f2:f5:4c:0e:f7:a9:d4:5d:de:92:
bd:3f:b4:60:ab:8d:9c:c1:87:86:e1:9d:69:4d:b8:
9a:38:bb:ed:6a:7d:4d:a2:c4:50:22:08:42:ed:be:
c6:fd:d6:a3:0d:38:b5:df:4e:09:1b:a7:cb:c4:24:
ba:ae:e5:4d:6c:58:53:e7:fa:79:84:ff:b2:ed:27:
24:af:1f:0c:2e:cd:03:8d:29:e7:9e:95:8a:03:4f:
43:49:01:73:c7:66:cd:26:69:3a:76:f6:1f:27:dd:
84:ea:d4:1b:5f:31:12:4c:74:58:1a:45:5f:b2:c4:
a1:94:6a:b8:5b:c5:3b:0a:f7:bb:c8:54:02:41:bb:
7a:0d:b2:2d:fd:f5:2b:44:1b:e8:61:91:ba:36:12:
90:55:5a:0b:0a:b5:f8:14:e0:63:e6:cf:0e:cd:01:
f6:51:b2:af:c8:35:62:d8:0f:a0:d2:cd:db:16:62:
5c:32:db:ef:8b:df:f2:31:bf:78:52:45:a8:5c:e3:
46:80:54:a3:b6:cb:e4:26:0f:99:07:76:0d:be:bc:
c9:bc:12:6c:5a:d5:8e:e4:cd:b1:76:c7:2e:1b:a8:
78:65:93:c8:50:0c:f3:7d:6d:9b:d1:e1:26:46:42:
c6:56:b1:60:1d:a1:36:c5:45:70:1f:e4:1d:8d:da:
4c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:23:47:45:96:68:1E:83:66:06:78:70:B7:2B:C6:6C:D2:3F:AD:6A
X509v3 Authority Key Identifier:
keyid:95:A5:AD:F6:AF:1F:CC:05:70:AD:F8:58:FD:5B:FB:E2:87:91:A1:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/laWt9q8fzAVwrfhY_Vv74oeRoYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/d3f1ba-d9e5-45c5-bca2-1619d08c6965/1/ACNHRZZoHoNmBnhwtyvGbNI_rWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/d3f1ba-d9e5-45c5-bca2-1619d08c6965/1/laWt9q8fzAVwrfhY_Vv74oeRoYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.22.224.0/21
45.83.76.0/22
62.44.64.0/19
62.69.32.0/19
62.72.128.0/19
62.105.64.0/18
62.232.0.0/16
77.44.0.0/17
77.73.120.0/21
77.107.128.0/18
78.41.208.0/21
78.141.0.0/18
80.64.48.0/20
80.69.128.0/20
80.89.80.0/20
80.234.128.0/17
82.195.96.0/19
83.219.32.0/19
89.145.192.0/18
91.236.17.0/24
93.92.120.0/21
93.95.104.0/21
94.30.0.0/17
109.170.128.0/17
130.185.64.0/21
176.35.0.0/16
185.3.76.0/22
185.8.204.0/22
185.138.152.0/22
185.196.204.0/22
193.28.154.0/24
193.41.96.0/21
193.192.34.0/23
193.192.64.0/19
193.242.113.0/24
193.242.115.0-193.242.116.255
194.1.210.0/24
194.79.240.0/22
194.126.64.0/19
194.143.160.0/19
194.153.0.0/19
194.154.160.0/19
195.38.64.0/19
195.70.64.0/19
195.147.0.0/16
195.200.128.0/19
195.224.0.0/16
195.226.32.0/19
212.19.64.0/19
212.35.224.0/19
212.88.32.0/19
212.102.192.0/19
212.103.224.0/19
212.241.128.0/17
213.205.128.0/18
217.67.48.0/20
IPv6:
2001:b98::/29
2a00:b300::/32
2a03:4200::/32
2a04:b2c0::/29
2a07:2640::/29
Signature Algorithm: sha256WithRSAEncryption
24:3c:9f:c2:9f:75:95:33:6b:9a:dd:ec:d2:d8:54:0c:6e:23:
48:d1:4c:a9:a9:ba:4b:bc:af:30:10:51:2f:e4:6f:43:34:32:
51:aa:5d:c3:9e:d5:14:2d:64:bf:4a:94:49:5e:3d:70:72:a2:
41:9c:d8:31:48:82:91:82:64:8c:23:b1:ff:bf:b2:52:fb:2b:
be:02:e8:68:25:2d:d4:30:8c:27:8f:b8:02:ee:be:65:33:b9:
1a:49:ce:82:6f:4e:b5:8d:f9:f1:f0:0e:40:19:15:83:5e:01:
36:6e:38:ae:b8:ff:d4:43:82:12:bd:bb:ce:e9:13:3c:c8:36:
bb:e7:c8:84:d6:fc:ef:4d:98:af:70:ed:4a:f1:ea:05:b0:a5:
d8:aa:bc:35:28:e8:ef:2c:8b:d8:ae:5b:4d:2c:37:76:6a:f3:
f6:81:91:c0:81:2c:d1:7c:e5:e6:f4:02:54:0a:b1:ab:de:35:
d3:60:a3:98:14:86:a7:ee:91:78:54:c7:ac:82:fc:a9:46:f1:
35:f7:70:d2:2d:41:46:3a:79:f5:11:99:2a:49:a3:19:ad:a2:
74:56:a2:4f:a6:15:03:5d:5d:e7:37:2b:4c:05:c0:11:6a:99:
0e:a2:91:64:22:db:53:30:98:b0:bb:3b:26:bb:29:5f:31:48:
fe:cc:f7:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:56 2023 by rpki-client on console.sobornost.net