Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/kGDFb1GYQc7IkkGC9rxlapf3lwE.roa
File: kGDFb1GYQc7IkkGC9rxlapf3lwE.roa (raw, json)
Hash identifier: 5koDds8Fb3ePHf7MwF+LYDE2angcBFLe43O3KDlx7GQ=
Subject key identifier: 90:60:C5:6F:51:98:41:CE:C8:92:41:82:F6:BC:65:6A:97:F7:97:01
Certificate issuer: /CN=38f9c54f19193e06548163f895c3a46b9f8bfbb5
Certificate serial: 0F97E8A8
Authority key identifier: 38:F9:C5:4F:19:19:3E:06:54:81:63:F8:95:C3:A4:6B:9F:8B:FB:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OPnFTxkZPgZUgWP4lcOka5-L-7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/kGDFb1GYQc7IkkGC9rxlapf3lwE.roa
Signing time: Sat 01 Jan 2022 06:56:26 +0000
ROA not before: Sat 01 Jan 2022 06:56:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6799
IP address blocks: 85.73.128.0/18 maxlen: 18
83.235.64.0/24 maxlen: 24
2.87.0.0/16 maxlen: 16
83.235.71.0/24 maxlen: 24
83.235.70.0/24 maxlen: 24
83.235.67.0/24 maxlen: 24
83.235.73.0/24 maxlen: 24
83.235.72.0/24 maxlen: 24
94.66.220.0/22 maxlen: 22
83.235.77.0/24 maxlen: 24
83.235.76.0/24 maxlen: 24
83.235.75.0/24 maxlen: 24
83.235.74.0/24 maxlen: 24
80.107.91.0/24 maxlen: 24
80.107.0.0/16 maxlen: 24
83.235.0.0/16 maxlen: 16
85.74.0.0/16 maxlen: 16
87.202.0.0/16 maxlen: 16
87.202.0.0/15 maxlen: 15
94.67.0.0/16 maxlen: 16
85.73.192.0/18 maxlen: 18
80.107.116.0/22 maxlen: 22
195.167.0.0/17 maxlen: 17
2.86.64.0/19 maxlen: 19
94.66.0.0/16 maxlen: 16
45.139.212.0/22 maxlen: 22
2.86.0.0/16 maxlen: 16
195.167.92.0/24 maxlen: 24
94.66.96.0/22 maxlen: 22
94.66.96.0/20 maxlen: 20
80.106.217.0/24 maxlen: 24
80.106.237.0/24 maxlen: 24
94.66.128.0/18 maxlen: 18
94.66.56.0/22 maxlen: 22
85.73.0.0/16 maxlen: 16
94.65.0.0/16 maxlen: 16
80.106.4.0/23 maxlen: 23
80.106.0.0/16 maxlen: 16
80.106.6.0/24 maxlen: 24
80.106.0.0/15 maxlen: 15
85.72.0.0/16 maxlen: 16
85.72.0.0/14 maxlen: 14
94.64.0.0/13 maxlen: 13
94.71.0.0/16 maxlen: 16
212.205.221.0/24 maxlen: 24
94.64.0.0/16 maxlen: 16
2.84.64.0/19 maxlen: 19
2.85.0.0/16 maxlen: 16
62.103.228.0/24 maxlen: 24
212.205.0.0/16 maxlen: 16
62.103.147.0/24 maxlen: 24
62.103.146.0/24 maxlen: 24
62.103.163.0/24 maxlen: 24
94.70.0.0/19 maxlen: 20
94.70.0.0/16 maxlen: 16
2.84.0.0/16 maxlen: 16
2.84.0.0/14 maxlen: 14
79.131.0.0/16 maxlen: 16
79.131.32.0/19 maxlen: 19
62.103.0.0/24 maxlen: 24
62.103.0.0/16 maxlen: 16
79.130.0.0/19 maxlen: 19
79.130.0.0/16 maxlen: 16
85.75.224.0/20 maxlen: 20
94.69.64.0/19 maxlen: 19
79.130.64.0/19 maxlen: 19
87.203.64.0/18 maxlen: 18
85.75.80.0/21 maxlen: 21
85.75.0.0/18 maxlen: 18
87.203.0.0/16 maxlen: 16
85.75.0.0/16 maxlen: 16
79.129.0.0/16 maxlen: 16
195.170.2.0/24 maxlen: 24
195.170.0.0/24 maxlen: 24
195.170.0.0/19 maxlen: 19
94.69.0.0/16 maxlen: 16
85.75.112.0/21 maxlen: 21
87.202.96.0/19 maxlen: 19
87.202.128.0/18 maxlen: 18
80.107.204.0/24 maxlen: 24
79.128.0.0/16 maxlen: 16
79.128.0.0/14 maxlen: 14
94.67.128.0/17 maxlen: 17
217.195.128.0/21 maxlen: 21
217.195.128.0/20 maxlen: 20
217.195.128.0/22 maxlen: 22
85.74.192.0/19 maxlen: 19
94.68.0.0/16 maxlen: 16
79.128.177.0/24 maxlen: 24
79.128.176.0/24 maxlen: 24
79.128.179.0/24 maxlen: 24
79.128.178.0/24 maxlen: 24
79.128.186.0/24 maxlen: 24
79.128.185.0/24 maxlen: 24
79.128.184.0/24 maxlen: 24
79.128.183.0/24 maxlen: 24
79.128.182.0/24 maxlen: 24
79.128.181.0/24 maxlen: 24
79.128.180.0/24 maxlen: 24
79.128.191.0/24 maxlen: 24
79.128.190.0/24 maxlen: 24
79.128.188.0/24 maxlen: 24
79.128.187.0/24 maxlen: 24
79.128.192.0/24 maxlen: 24
79.128.199.0/24 maxlen: 24
79.128.198.0/24 maxlen: 24
79.128.197.0/24 maxlen: 24
79.128.196.0/24 maxlen: 24
79.128.195.0/24 maxlen: 24
79.128.194.0/24 maxlen: 24
79.128.193.0/24 maxlen: 24
79.128.203.0/24 maxlen: 24
79.128.202.0/24 maxlen: 24
79.128.201.0/24 maxlen: 24
79.128.200.0/24 maxlen: 24
85.74.160.0/20 maxlen: 20
2a02:587:4800::/38 maxlen: 38
2a02:587:8400::/40 maxlen: 40
2a02:587:5400::/38 maxlen: 38
2a02:587:5800::/38 maxlen: 38
2a02:587:5c00::/38 maxlen: 38
2a02:587:1800::/38 maxlen: 38
2a02:587:6000::/38 maxlen: 38
2a02:587:3000::/36 maxlen: 36
2a02:587:8000::/34 maxlen: 34
2a02:587::/35 maxlen: 35
2a02:587:6400::/38 maxlen: 38
2a02:587:2000::/36 maxlen: 36
2a02:587:c000::/34 maxlen: 34
2a02:587:4000::/34 maxlen: 34
2a02:587:4c00::/38 maxlen: 38
2a02:587:50f7::/48 maxlen: 48
2a02:587:50fa::/48 maxlen: 48
2a02:586:2000::/36 maxlen: 36
2a02:586:3000::/36 maxlen: 36
2a02:586::/35 maxlen: 35
2a02:586:c000::/34 maxlen: 34
2a02:586:8000::/34 maxlen: 34
2a02:586:4000::/34 maxlen: 34
2a02:587:501e::/48 maxlen: 48
2a02:582:5800::/38 maxlen: 38
2a02:582:1800::/38 maxlen: 38
2a02:582:7000::/38 maxlen: 38
2a02:582:4800::/38 maxlen: 38
2a02:587:50da::/48 maxlen: 48
2a02:587:501d::/48 maxlen: 48
2a02:580::/29 maxlen: 29
2a02:587:501a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 261613736 (0xf97e8a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38f9c54f19193e06548163f895c3a46b9f8bfbb5
Validity
Not Before: Jan 1 06:56:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9060c56f519841cec8924182f6bc656a97f79701
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:29:a1:c1:99:a9:97:f2:f3:86:d2:85:08:72:
20:12:ca:03:13:29:fe:53:84:2a:4d:06:8f:f3:21:
5c:1a:96:48:50:7b:bd:6c:2c:0c:89:0f:d5:7e:5a:
21:ca:b0:89:06:94:79:f8:36:06:87:a2:fc:1d:5c:
1e:19:c8:f3:e8:8a:67:24:c5:83:e4:55:a6:91:5f:
6a:ee:05:12:54:52:a0:88:1b:d0:6c:ea:6f:15:82:
bf:06:c5:a7:6a:df:16:33:bb:e8:c3:41:38:73:3a:
33:bb:e1:8b:5d:ff:cb:c7:7e:72:80:82:4c:93:e4:
e0:e9:44:36:0f:8e:25:6d:f6:cf:b0:c4:ae:6f:71:
44:13:7e:55:4f:51:0f:55:50:2f:86:9b:b0:96:a7:
01:b8:40:5e:5d:e4:01:70:d2:6e:90:e9:a2:62:bb:
13:cb:70:bf:d2:6f:52:38:45:3c:a8:75:a9:67:be:
c1:9f:50:4d:63:9a:99:42:80:48:a9:2d:4f:9b:a5:
43:8e:56:d7:4d:dd:15:6c:68:23:46:e6:1b:90:16:
1a:80:ce:f9:cd:f2:8e:c5:13:38:5f:c6:1b:9b:2a:
d3:cc:2b:50:de:5d:21:dd:b1:a8:51:8e:ac:65:6c:
53:92:0f:38:21:92:55:54:3e:f1:b3:42:ab:26:5b:
38:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:60:C5:6F:51:98:41:CE:C8:92:41:82:F6:BC:65:6A:97:F7:97:01
X509v3 Authority Key Identifier:
keyid:38:F9:C5:4F:19:19:3E:06:54:81:63:F8:95:C3:A4:6B:9F:8B:FB:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OPnFTxkZPgZUgWP4lcOka5-L-7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/kGDFb1GYQc7IkkGC9rxlapf3lwE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.84.0.0/14
45.139.212.0/22
62.103.0.0/16
79.128.0.0/14
80.106.0.0/15
83.235.0.0/16
85.72.0.0/14
87.202.0.0/15
94.64.0.0/13
195.167.0.0/17
195.170.0.0/19
212.205.0.0/16
217.195.128.0/20
IPv6:
2a02:580::/29
Signature Algorithm: sha256WithRSAEncryption
27:e3:5b:fd:ce:e9:e0:96:45:a0:93:a1:68:8e:d8:15:e9:a7:
94:5b:ba:38:eb:d7:39:44:84:70:f2:bd:be:97:87:d7:a5:c0:
2e:61:13:f9:a7:1e:92:81:39:6c:a0:95:22:08:73:28:53:26:
ea:50:7f:ec:cc:c8:b1:cf:f4:fc:1d:c8:d4:07:31:ad:08:36:
d5:9d:2f:12:3d:15:6c:18:29:da:31:8c:b8:e5:f8:1e:a8:51:
ec:39:27:c3:a1:7b:da:5e:b6:5f:ab:ee:eb:58:f5:34:83:ee:
0a:9d:a0:b8:82:f7:06:9c:04:40:8a:a4:57:ed:47:13:aa:1f:
d3:87:61:b5:1c:92:b5:9d:0b:da:f4:6f:6c:ed:03:67:2c:43:
ce:f8:2b:86:69:46:d7:25:16:1e:0f:87:fa:7f:d1:56:e5:e3:
68:bc:c0:42:c3:07:9f:ad:9b:d5:a6:ea:b8:95:b1:eb:82:b1:
63:1b:49:a5:f6:f5:fa:35:af:de:55:84:e2:83:cc:20:3b:4d:
9b:ac:46:91:7a:69:11:2c:f7:ad:49:17:07:e1:63:ab:a5:2b:
62:ee:aa:52:12:a4:89:d6:e8:6e:47:2c:c8:d2:bb:21:dc:34:
9f:b2:af:51:10:3e:39:96:4a:d6:80:cb:4b:42:c6:ab:6e:7a:
31:22:dc:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:32 2023 by rpki-client on console.sobornost.net