Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/2d36ab-dee5-469d-9216-6663faba1dd0/1/A-58KzH4sPpwX7ojoWZrKBDfJDM.roa
File: A-58KzH4sPpwX7ojoWZrKBDfJDM.roa (raw, json)
Hash identifier: 0xzrnnLBJRrfzfmV5eE0dN1M+RhJ+KuESs0bupf1fN8=
Subject key identifier: 03:EE:7C:2B:31:F8:B0:FA:70:5F:BA:23:A1:66:6B:28:10:DF:24:33
Certificate issuer: /CN=6749aeda8a8ace7ec596fc187a2fe10582a6704d
Certificate serial: 0183834349F07387622EA3A46DC375EFEE50
Authority key identifier: 67:49:AE:DA:8A:8A:CE:7E:C5:96:FC:18:7A:2F:E1:05:82:A6:70:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0mu2oqKzn7FlvwYei_hBYKmcE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/2d36ab-dee5-469d-9216-6663faba1dd0/1/A-58KzH4sPpwX7ojoWZrKBDfJDM.roa
Signing time: Wed 28 Sep 2022 08:42:48 +0000
ROA not before: Wed 28 Sep 2022 08:42:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6805
IP address blocks: 89.13.0.0/17 maxlen: 17
89.13.0.0/16 maxlen: 16
92.228.72.0/23 maxlen: 23
92.228.74.0/23 maxlen: 23
92.228.76.0/23 maxlen: 23
92.228.78.0/23 maxlen: 23
92.228.80.0/23 maxlen: 23
92.228.82.0/23 maxlen: 23
92.228.84.0/23 maxlen: 23
92.228.86.0/23 maxlen: 23
89.12.192.0/18 maxlen: 18
92.229.0.0/16 maxlen: 16
185.93.236.0/22 maxlen: 22
89.12.0.0/18 maxlen: 18
89.12.0.0/14 maxlen: 14
92.227.194.0/23 maxlen: 23
89.12.128.0/18 maxlen: 18
213.39.128.0/17 maxlen: 17
89.12.64.0/18 maxlen: 18
78.51.96.0/19 maxlen: 19
78.51.64.0/19 maxlen: 19
78.51.0.0/19 maxlen: 19
78.51.32.0/19 maxlen: 19
78.50.0.0/17 maxlen: 17
78.50.0.0/16 maxlen: 16
213.191.64.0/19 maxlen: 19
80.171.0.0/16 maxlen: 16
78.49.192.0/18 maxlen: 18
92.225.0.0/16 maxlen: 16
78.50.128.0/17 maxlen: 17
92.224.0.0/13 maxlen: 13
92.224.0.0/16 maxlen: 16
78.49.0.0/18 maxlen: 18
78.55.192.0/18 maxlen: 18
78.49.128.0/18 maxlen: 18
89.15.232.0/21 maxlen: 21
78.49.64.0/18 maxlen: 18
78.48.0.0/13 maxlen: 13
85.176.0.0/13 maxlen: 13
78.55.0.0/18 maxlen: 18
78.48.64.0/18 maxlen: 18
85.183.16.0/23 maxlen: 23
85.183.18.0/23 maxlen: 23
78.48.0.0/18 maxlen: 18
78.54.192.0/18 maxlen: 18
92.230.20.0/23 maxlen: 23
92.230.22.0/23 maxlen: 23
89.14.128.0/18 maxlen: 18
62.109.64.0/18 maxlen: 18
78.55.128.0/18 maxlen: 18
78.48.192.0/18 maxlen: 18
89.14.192.0/18 maxlen: 18
78.48.128.0/18 maxlen: 18
78.55.64.0/18 maxlen: 18
78.54.64.0/18 maxlen: 18
89.13.128.0/17 maxlen: 17
78.54.0.0/18 maxlen: 18
89.14.64.0/18 maxlen: 18
89.14.0.0/18 maxlen: 18
78.54.128.0/18 maxlen: 18
2a01:c20:7200::/47 maxlen: 47
2a01:c22:8a00::/47 maxlen: 47
2a01:c22:ce00::/47 maxlen: 47
2a01:c22:d200::/47 maxlen: 47
2a01:c22:1c00::/47 maxlen: 47
2a01:c22:7800::/47 maxlen: 47
2a01:c22:6c00::/47 maxlen: 47
2a01:c22:8e00::/47 maxlen: 47
2a01:c22:b600::/47 maxlen: 47
2a01:c22:3600::/47 maxlen: 47
2a01:c22:ca00::/47 maxlen: 47
2a01:c22:ae00::/47 maxlen: 47
2a01:c22:8600::/47 maxlen: 47
2a01:c22:b200::/47 maxlen: 47
2a01:c22:aa00::/47 maxlen: 47
2a01:c22:7400::/47 maxlen: 47
2a01:c22:be00::/47 maxlen: 47
2a01:c22:a600::/47 maxlen: 47
2a01:c22:c200::/47 maxlen: 47
2a01:c22:d600::/47 maxlen: 47
2a01:c22:7000::/47 maxlen: 47
2a01:c22:ba00::/47 maxlen: 47
2a01:c08::/47 maxlen: 47
2a01:c20:7000::/39 maxlen: 39
2a01:c22:7200::/39 maxlen: 39
2a01:c22:8c00::/39 maxlen: 39
2a01:c22:7a00::/39 maxlen: 39
2a01:c22:3400::/39 maxlen: 39
2a01:c22:1e00::/39 maxlen: 39
2a01:c22:8400::/39 maxlen: 39
2a01:c22:7600::/39 maxlen: 39
2a01:c22:8800::/39 maxlen: 39
2a01:c22:6e00::/39 maxlen: 39
2a01:c23:c600::/47 maxlen: 47
2a01:c23:6a00::/47 maxlen: 47
2a01:c23:ba00::/47 maxlen: 47
2a01:c23:6200::/47 maxlen: 47
2a01:c23:7600::/47 maxlen: 47
2a01:c23:8a00::/47 maxlen: 47
2a01:c23:9200::/47 maxlen: 47
2a01:c23:c200::/47 maxlen: 47
2a01:c23:7200::/47 maxlen: 47
2a01:c23:8e00::/47 maxlen: 47
2a01:c23:5e00::/47 maxlen: 47
2a01:c23:6e00::/47 maxlen: 47
2a01:c23:be00::/47 maxlen: 47
2a01:c23:9600::/47 maxlen: 47
2a01:c23:6600::/47 maxlen: 47
2a01:c00::/26 maxlen: 39
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:83:43:49:f0:73:87:62:2e:a3:a4:6d:c3:75:ef:ee:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6749aeda8a8ace7ec596fc187a2fe10582a6704d
Validity
Not Before: Sep 28 08:42:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=03ee7c2b31f8b0fa705fba23a1666b2810df2433
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:15:bc:5b:07:b2:d6:e5:30:7b:8a:d3:16:25:
4e:b6:88:74:1f:3f:5d:a3:a1:b6:93:82:95:d0:7d:
30:ed:39:12:4a:18:ea:88:e7:b8:2e:36:8b:06:d1:
00:ac:21:98:f0:c2:cb:dd:9e:4a:8f:ed:58:06:b0:
d5:b7:d9:1b:25:5e:16:37:43:b7:01:16:47:63:05:
44:2b:04:c3:ac:11:83:e4:61:14:b7:3b:4d:6c:49:
c8:a3:71:42:03:15:01:ad:ed:13:88:51:05:d7:5b:
e5:66:15:73:d9:e4:18:c6:2d:b1:e7:0f:b0:fe:6d:
18:89:b3:75:90:11:c6:ef:d9:18:f2:18:13:3f:a6:
b0:18:40:28:c2:75:2b:27:32:48:b5:cb:ab:a7:c1:
e8:d0:47:48:08:d4:2a:d6:40:05:cc:b5:af:74:5a:
27:5b:ea:b5:f6:d4:b8:45:94:44:31:78:16:c3:2f:
38:a8:b1:d0:b8:7e:07:6c:30:82:fd:39:24:47:f1:
71:3a:54:15:17:39:6d:c2:c6:4f:43:66:aa:fc:c5:
7e:e9:d8:ca:fc:63:40:ab:65:b7:d2:ea:c0:f2:15:
35:8b:fe:d7:6f:06:6f:59:75:ee:db:99:50:f8:ad:
79:d2:2f:3d:bb:d9:58:a3:52:9c:a4:e9:c3:f4:09:
23:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:EE:7C:2B:31:F8:B0:FA:70:5F:BA:23:A1:66:6B:28:10:DF:24:33
X509v3 Authority Key Identifier:
keyid:67:49:AE:DA:8A:8A:CE:7E:C5:96:FC:18:7A:2F:E1:05:82:A6:70:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0mu2oqKzn7FlvwYei_hBYKmcE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2d36ab-dee5-469d-9216-6663faba1dd0/1/A-58KzH4sPpwX7ojoWZrKBDfJDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2d36ab-dee5-469d-9216-6663faba1dd0/1/Z0mu2oqKzn7FlvwYei_hBYKmcE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.109.64.0/18
78.48.0.0/13
80.171.0.0/16
85.176.0.0/13
89.12.0.0/14
92.224.0.0/13
185.93.236.0/22
213.39.128.0/17
213.191.64.0/19
IPv6:
2a01:c00::/26
Signature Algorithm: sha256WithRSAEncryption
53:fd:48:eb:fa:00:f4:dc:cc:da:17:ad:4f:bd:ec:24:90:fb:
8e:3a:6d:ae:db:7c:c6:1a:4f:8f:8d:49:f5:5c:bf:d7:55:8d:
e9:01:2b:bb:df:93:00:50:14:7a:1d:af:b3:9b:47:13:19:d1:
64:fe:bf:74:3a:66:4c:b6:33:db:43:61:f8:2c:28:1c:f5:f8:
b0:9a:02:62:92:ef:c3:25:cd:52:9e:9d:86:c5:f5:70:45:54:
b4:2f:81:d5:5f:3b:26:9f:7e:93:6d:3b:e9:3e:67:45:c2:4a:
27:69:7d:00:b3:a2:66:67:14:7e:75:91:e8:13:54:36:12:1a:
fc:27:1c:54:de:38:7c:25:ff:45:ed:41:90:f9:71:d7:82:0a:
b2:2a:59:cc:fa:6e:48:3c:19:9f:b4:d7:91:25:ed:1a:1f:7e:
d2:7c:0b:3d:f8:a9:62:c6:a5:52:8b:92:3d:4b:b9:fc:72:28:
c9:a0:16:2a:fb:cb:60:71:a0:b0:e6:fa:6f:c1:76:5b:e0:44:
2c:48:b6:51:08:33:f0:6b:30:3d:28:a7:c0:08:5e:4d:95:18:
67:80:2b:6c:92:35:72:46:8b:f2:df:14:1c:2e:37:6d:b7:49:
f1:a4:7e:ce:71:55:cb:4f:40:52:be:58:38:d2:46:51:f6:5f:
b0:0e:63:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:05 2023 by rpki-client on console.sobornost.net