Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/ZWOkNWAkv1v-wOdeC1QWhBLiOzc.roa
File: ZWOkNWAkv1v-wOdeC1QWhBLiOzc.roa (raw, json)
Hash identifier: M5SB8IUicr2C1hv7X5QRrX+dOJFPsoA8V8ygz7OlL9s=
Subject key identifier: 65:63:A4:35:60:24:BF:5B:FE:C0:E7:5E:0B:54:16:84:12:E2:3B:37
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 01845BAD70F7CE4B35D751C716390ECBB0AE
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/ZWOkNWAkv1v-wOdeC1QWhBLiOzc.roa
Signing time: Wed 09 Nov 2022 09:16:44 +0000
ROA not before: Wed 09 Nov 2022 09:16:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62206
IP address blocks: 45.151.2.0/24 maxlen: 24
45.151.0.0/23 maxlen: 23
5.181.87.0/24 maxlen: 24
195.211.188.0/22 maxlen: 24
195.211.190.0/24 maxlen: 24
2.56.108.0/22 maxlen: 22
194.242.96.0/22 maxlen: 22
194.242.97.0/24 maxlen: 24
193.57.43.0/24 maxlen: 24
193.57.41.0/24 maxlen: 24
45.144.213.0/24 maxlen: 24
45.144.212.0/24 maxlen: 24
194.15.52.0/23 maxlen: 23
77.83.39.0/24 maxlen: 24
77.83.38.0/23 maxlen: 24
45.9.29.0/24 maxlen: 24
195.177.92.0/24 maxlen: 24
195.177.95.0/24 maxlen: 24
195.177.94.0/24 maxlen: 24
195.177.93.0/24 maxlen: 24
77.83.38.0/24 maxlen: 24
77.83.37.0/24 maxlen: 24
45.88.139.0/24 maxlen: 24
45.88.136.0/24 maxlen: 24
185.200.63.0/24 maxlen: 24
185.200.62.0/24 maxlen: 24
45.132.182.0/23 maxlen: 24
45.132.181.0/24 maxlen: 24
195.62.24.0/24 maxlen: 24
45.13.191.0/24 maxlen: 24
45.94.168.0/22 maxlen: 24
45.144.215.0/24 maxlen: 24
45.144.214.0/23 maxlen: 24
185.43.248.0/24 maxlen: 24
185.43.251.0/24 maxlen: 24
185.43.249.0/24 maxlen: 24
193.30.243.0/24 maxlen: 24
85.209.120.0/23 maxlen: 24
193.30.241.0/24 maxlen: 24
193.30.242.0/24 maxlen: 24
85.209.120.0/22 maxlen: 24
85.209.123.0/24 maxlen: 24
85.209.122.0/24 maxlen: 24
85.209.121.0/24 maxlen: 24
45.81.112.0/22 maxlen: 24
45.138.180.0/22 maxlen: 24
193.30.240.0/24 maxlen: 24
2a10:dfc0::/29 maxlen: 29
2a07:9200::/29 maxlen: 29
2a11:580::/29 maxlen: 29
2a0c:a580::/29 maxlen: 29
2a01:7120::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:5b:ad:70:f7:ce:4b:35:d7:51:c7:16:39:0e:cb:b0:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Nov 9 09:16:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6563a4356024bf5bfec0e75e0b54168412e23b37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:36:d8:91:1f:21:c6:ef:22:5d:38:5b:19:ac:
2c:65:7e:90:18:0d:85:cf:b3:11:96:b2:1d:95:66:
4a:0b:aa:59:e1:ce:d1:b0:c2:d4:2f:68:20:aa:f8:
8d:b3:85:a0:de:8c:ad:a8:ff:51:d1:18:44:56:2a:
e2:64:3b:91:7f:bb:b0:c7:a1:2c:c0:ed:f2:ea:77:
a5:ab:24:59:9e:1c:03:e5:27:db:d4:25:28:fd:03:
a3:cb:0e:13:51:d4:3c:83:bb:a0:16:8c:b0:f0:54:
0a:1c:80:8f:dc:57:d9:4b:3e:e8:6b:e0:df:f3:18:
b5:eb:0f:09:48:bc:09:75:0b:9c:24:73:9c:a5:f1:
83:7a:72:53:42:c9:26:28:ef:e4:1b:0d:53:df:50:
68:e7:45:70:4a:8f:27:f1:ae:cc:fd:64:fd:4d:42:
5d:ea:5b:5f:4b:eb:09:32:b2:1e:76:79:3d:22:0f:
4f:0d:a0:cb:0e:e8:23:42:72:b8:39:f9:d0:2d:9f:
92:94:67:e3:b7:44:f6:56:aa:8a:7b:1b:cd:31:fa:
67:e7:43:f9:a7:85:f4:d1:8c:30:ea:8f:70:d6:90:
b9:87:cc:db:cc:ce:ce:d9:66:df:72:67:ac:d8:35:
81:59:a9:86:c8:9b:ce:2d:51:d1:3b:57:e9:ad:fd:
6c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:63:A4:35:60:24:BF:5B:FE:C0:E7:5E:0B:54:16:84:12:E2:3B:37
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/ZWOkNWAkv1v-wOdeC1QWhBLiOzc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.108.0/22
5.181.87.0/24
45.9.29.0/24
45.13.191.0/24
45.81.112.0/22
45.88.136.0/24
45.88.139.0/24
45.94.168.0/22
45.132.181.0-45.132.183.255
45.138.180.0/22
45.144.212.0/22
45.151.0.0-45.151.2.255
77.83.37.0-77.83.39.255
85.209.120.0/22
185.43.248.0/23
185.43.251.0/24
185.200.62.0/23
193.30.240.0/22
193.57.41.0/24
193.57.43.0/24
194.15.52.0/23
194.242.96.0/22
195.62.24.0/24
195.177.92.0/22
195.211.188.0/22
IPv6:
2a01:7120::/32
2a07:9200::/29
2a0c:a580::/29
2a10:dfc0::/29
2a11:580::/29
Signature Algorithm: sha256WithRSAEncryption
22:d1:21:c9:f3:b0:91:aa:20:ac:c0:66:29:d5:dd:fa:4a:3c:
09:e7:8f:a6:75:74:ec:20:ae:ec:c9:50:15:4e:a5:df:8c:6c:
e4:23:62:0c:fa:5d:ab:56:7b:10:02:57:a2:6d:2f:0d:bb:be:
1a:6a:a8:2e:4d:4c:54:a0:9d:61:e3:3c:58:20:e6:d7:b1:01:
c4:6a:48:40:e1:34:06:00:33:34:01:44:b6:92:d7:e1:eb:ea:
05:94:8a:46:ed:6b:6a:67:af:e3:45:d0:c6:0b:ab:7c:9d:52:
01:4d:a4:26:d7:99:c5:ec:ab:b4:b2:19:58:4c:39:f1:ac:da:
31:1f:e5:48:af:67:bf:e1:f0:0a:b2:e0:50:8b:30:30:0f:c3:
d3:1c:90:30:f9:7d:06:4d:17:d9:a8:27:19:d3:1c:f4:87:f4:
5e:0f:13:0d:04:1c:b1:dd:ad:e9:47:f3:60:b0:d8:d8:8b:d5:
74:46:9b:7c:a2:51:71:de:57:f7:53:3c:96:ed:b1:75:3f:74:
9a:54:ff:bf:55:e4:d9:0e:a4:be:a5:c1:3f:fb:f1:0e:b6:a7:
32:a4:88:ed:f2:e8:af:27:37:f4:5b:27:9c:07:86:ab:b7:1a:
1e:c9:14:b2:a0:db:bb:06:35:b9:f7:61:2e:ea:f0:97:39:0b:
46:2f:c1:9a
-----BEGIN CERTIFICATE-----
MIIF1DCCBLygAwIBAgISAYRbrXD3zks111HHFjkOy7CuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMmE0NzhiYjBiMDhlNjYxYjBiMmY5ZmJlODkzNWJjOWMy
YTI4YTEwHhcNMjIxMTA5MDkxNjQ0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NTYzYTQzNTYwMjRiZjViZmVjMGU3NWUwYjU0MTY4NDEyZTIzYjM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtDbYkR8hxu8iXThbGawsZX6QGA2F
z7MRlrIdlWZKC6pZ4c7RsMLUL2ggqviNs4Wg3oytqP9R0RhEViriZDuRf7uwx6Es
wO3y6nelqyRZnhwD5Sfb1CUo/QOjyw4TUdQ8g7ugFoyw8FQKHICP3FfZSz7oa+Df
8xi16w8JSLwJdQucJHOcpfGDenJTQskmKO/kGw1T31Bo50VwSo8n8a7M/WT9TUJd
6ltfS+sJMrIednk9Ig9PDaDLDugjQnK4OfnQLZ+SlGfjt0T2VqqKexvNMfpn50P5
p4X00Yww6o9w1pC5h8zbzM7O2Wbfcmes2DWBWamGyJvOLVHRO1fprf1sfQIDAQAB
o4IC4DCCAtwwHQYDVR0OBBYEFGVjpDVgJL9b/sDnXgtUFoQS4js3MB8GA1UdIwQY
MBaAFJ0qR4uwsI5mGwsvn76JNbycKiihMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMt
ZWVmMzUxMWY2YzYwLzEvWldPa05XQWt2MXYtd09kZUMxUVdoQkxpT3pjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMtZWVmMzUxMWY2YzYw
LzEvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIH1BggrBgEFBQcBBwEB/wSB5TCB4jCBtAQCAAEwga0DBAIC
OGwDBAAFtVcDBAAtCR0DBAAtDb8DBAItUXADBAAtWIgDBAAtWIsDBAItXqgwDAME
AC2EtQMEAy2EsAMEAi2KtAMEAi2Q1DALAwMALZcDBAAtlwIwDAMEAE1TJQMEA01T
IAMEAlXReAMEAbkr+AMEALkr+wMEAbnIPgMEAsEe8AMEAME5KQMEAME5KwMEAcIP
NAMEAsLyYAMEAMM+GAMEAsOxXAMEAsPTvDApBAIAAjAjAwUAKgFxIAMFAyoHkgAD
BQMqDKWAAwUDKhDfwAMFAyoRBYAwDQYJKoZIhvcNAQELBQADggEBACLRIcnzsJGq
IKzAZinV3fpKPAnnj6Z1dOwgruzJUBVOpd+MbOQjYgz6XatWexACV6JtLw27vhpq
qC5NTFSgnWHjPFgg5texAcRqSEDhNAYAMzQBRLaS1+Hr6gWUikbta2pnr+NF0MYL
q3ydUgFNpCbXmcXsq7SyGVhMOfGs2jEf5UivZ7/h8Aqy4FCLMDAPw9MckDD5fQZN
F9moJxnTHPSH9F4PEw0EHLHdrelH82Cw2NiL1XRGm3yiUXHeV/dTPJbtsXU/dJpU
/79V5NkOpL6lwT/78Q62pzKkiO3y6K8nN/RbJ5wHhqu3Gh7JFLKg27sGNbn3YS7q
8Jc5C0YvwZo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:31 2024 by rpki-client on console-fra.rpki-client.org