Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/pyV9SAdGTFzrXDyDp4Mu5FFodLg.roa
File: pyV9SAdGTFzrXDyDp4Mu5FFodLg.roa (raw, json)
Hash identifier: ftIvuoglAMfm/0NA2biHiDCWj9vIL1bnsAxDvtLYf3E=
Subject key identifier: A7:25:7D:48:07:46:4C:5C:EB:5C:3C:83:A7:83:2E:E4:51:68:74:B8
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 01840984A12D2C384AD7969508DC04AC0F7B
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/pyV9SAdGTFzrXDyDp4Mu5FFodLg.roa
Signing time: Mon 24 Oct 2022 10:23:17 +0000
ROA not before: Mon 24 Oct 2022 10:23:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62206
IP address blocks: 45.151.2.0/24 maxlen: 24
45.151.0.0/23 maxlen: 24
5.181.87.0/24 maxlen: 24
195.211.188.0/22 maxlen: 24
195.211.190.0/24 maxlen: 24
2.56.108.0/22 maxlen: 24
45.88.139.0/24 maxlen: 24
185.200.63.0/24 maxlen: 24
185.200.62.0/24 maxlen: 24
194.242.96.0/22 maxlen: 22
194.242.97.0/24 maxlen: 24
193.57.43.0/24 maxlen: 24
193.57.41.0/24 maxlen: 24
45.144.213.0/24 maxlen: 24
45.144.212.0/24 maxlen: 24
45.132.181.0/24 maxlen: 24
195.62.24.0/24 maxlen: 24
45.13.191.0/24 maxlen: 24
45.94.168.0/22 maxlen: 24
45.144.215.0/24 maxlen: 24
45.144.214.0/23 maxlen: 24
185.43.248.0/24 maxlen: 24
185.43.251.0/24 maxlen: 24
185.43.249.0/24 maxlen: 24
85.209.120.0/22 maxlen: 24
193.30.243.0/24 maxlen: 24
193.30.242.0/24 maxlen: 24
77.83.39.0/24 maxlen: 24
77.83.38.0/23 maxlen: 23
85.209.123.0/24 maxlen: 24
85.209.122.0/24 maxlen: 24
85.209.121.0/24 maxlen: 24
193.30.241.0/24 maxlen: 24
45.9.29.0/24 maxlen: 24
195.177.92.0/24 maxlen: 24
195.177.95.0/24 maxlen: 24
195.177.94.0/24 maxlen: 24
195.177.93.0/24 maxlen: 24
45.81.112.0/22 maxlen: 24
77.83.38.0/24 maxlen: 24
77.83.37.0/24 maxlen: 24
45.138.180.0/22 maxlen: 24
193.30.240.0/24 maxlen: 24
2a10:dfc0::/29 maxlen: 29
2a07:9200::/29 maxlen: 29
2a11:580::/29 maxlen: 29
2a0c:a580::/29 maxlen: 29
2a01:7120::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:09:84:a1:2d:2c:38:4a:d7:96:95:08:dc:04:ac:0f:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Oct 24 10:23:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7257d4807464c5ceb5c3c83a7832ee4516874b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:c8:96:92:85:a8:14:c4:35:9c:22:1d:51:52:
3b:85:38:c2:10:98:f3:a5:24:07:da:47:7a:73:31:
fd:55:a1:7f:af:fb:d5:d5:73:6e:dc:ff:f1:f7:03:
06:f5:53:03:85:46:ea:bd:20:0f:9b:1e:a7:e2:6e:
19:97:02:03:a7:ad:23:ce:08:e8:1a:d6:c7:61:29:
f1:79:45:54:56:de:eb:25:82:c1:bb:81:36:0d:60:
37:71:4a:21:ec:10:e6:55:c3:e5:25:89:ed:a2:f3:
d1:bc:82:bb:21:c8:a2:80:4d:62:e9:7f:a4:8d:01:
28:d4:13:e2:de:88:0b:1a:3e:71:89:51:8a:db:5c:
4c:30:cc:12:30:18:69:55:00:cc:14:52:05:25:ab:
df:de:82:57:ed:68:e6:e3:f2:14:c9:a8:f9:b2:da:
48:3c:8f:35:7c:a6:47:91:6d:b0:6a:e7:1d:be:d3:
c1:d8:bb:51:11:0b:c1:1d:5b:48:5b:2d:5b:f7:c0:
23:67:fb:26:fd:55:d6:60:2e:6c:1f:4c:6c:f9:79:
9b:74:42:91:0d:8c:45:a0:52:4a:3f:8a:c7:f4:ff:
54:77:d4:2e:62:9a:c8:de:d8:91:74:51:16:dc:a0:
5a:a0:51:3e:2c:d8:7c:39:4c:8c:2a:b0:fc:ef:67:
d8:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:25:7D:48:07:46:4C:5C:EB:5C:3C:83:A7:83:2E:E4:51:68:74:B8
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/pyV9SAdGTFzrXDyDp4Mu5FFodLg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.108.0/22
5.181.87.0/24
45.9.29.0/24
45.13.191.0/24
45.81.112.0/22
45.88.139.0/24
45.94.168.0/22
45.132.181.0/24
45.138.180.0/22
45.144.212.0/22
45.151.0.0-45.151.2.255
77.83.37.0-77.83.39.255
85.209.120.0/22
185.43.248.0/23
185.43.251.0/24
185.200.62.0/23
193.30.240.0/22
193.57.41.0/24
193.57.43.0/24
194.242.96.0/22
195.62.24.0/24
195.177.92.0/22
195.211.188.0/22
IPv6:
2a01:7120::/32
2a07:9200::/29
2a0c:a580::/29
2a10:dfc0::/29
2a11:580::/29
Signature Algorithm: sha256WithRSAEncryption
32:06:b2:5a:99:0b:f3:bd:2b:41:03:ac:9a:bb:60:10:40:49:
70:62:04:8a:08:83:7e:f2:ed:61:8f:e1:21:52:d6:cc:63:66:
e8:b4:28:49:2e:a7:99:5c:4f:19:ed:f2:39:63:8f:e4:53:69:
73:48:89:ff:4a:69:bb:78:8a:33:cf:a6:8e:84:2f:fd:8b:b1:
ac:8e:a2:10:87:01:f8:95:a5:72:8b:f2:26:d5:7a:29:e4:31:
76:27:5b:e7:89:a1:b7:ff:e1:89:e7:2e:81:48:6a:71:c2:b5:
38:c2:b7:d9:51:1f:2b:f9:f6:cc:3c:37:f4:ed:e0:71:28:26:
7e:47:08:b6:61:c6:55:af:f5:a2:bf:3c:8f:bf:35:fe:9c:bd:
5d:51:8b:f6:ad:4b:f6:e9:4a:47:cc:27:87:d6:d1:b0:40:58:
81:c8:8a:1d:38:bd:4b:eb:2b:a6:bf:de:36:06:cf:62:7b:94:
3c:44:37:28:4b:f7:0b:99:1f:71:97:33:29:dc:1b:59:2a:ff:
82:eb:e4:eb:e6:34:a6:a1:e6:f8:07:21:5b:4e:6f:f8:41:6b:
4d:d5:7b:06:80:f8:55:69:87:67:42:7a:86:cb:40:46:e9:07:
7c:9a:07:d8:56:38:61:cd:1b:5a:ac:84:61:d9:ee:19:be:34:
d5:9f:5f:db
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgISAYQJhKEtLDhK15aVCNwErA97MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMmE0NzhiYjBiMDhlNjYxYjBiMmY5ZmJlODkzNWJjOWMy
YTI4YTEwHhcNMjIxMDI0MTAyMzE3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNzI1N2Q0ODA3NDY0YzVjZWI1YzNjODNhNzgzMmVlNDUxNjg3NGI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApMiWkoWoFMQ1nCIdUVI7hTjCEJjz
pSQH2kd6czH9VaF/r/vV1XNu3P/x9wMG9VMDhUbqvSAPmx6n4m4ZlwIDp60jzgjo
GtbHYSnxeUVUVt7rJYLBu4E2DWA3cUoh7BDmVcPlJYntovPRvIK7IciigE1i6X+k
jQEo1BPi3ogLGj5xiVGK21xMMMwSMBhpVQDMFFIFJavf3oJX7Wjm4/IUyaj5stpI
PI81fKZHkW2waucdvtPB2LtREQvBHVtIWy1b98AjZ/sm/VXWYC5sH0xs+XmbdEKR
DYxFoFJKP4rH9P9Ud9QuYprI3tiRdFEW3KBaoFE+LNh8OUyMKrD872fYQQIDAQAB
o4ICzDCCAsgwHQYDVR0OBBYEFKclfUgHRkxc61w8g6eDLuRRaHS4MB8GA1UdIwQY
MBaAFJ0qR4uwsI5mGwsvn76JNbycKiihMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMt
ZWVmMzUxMWY2YzYwLzEvcHlWOVNBZEdURnpyWER5RHA0TXU1RkZvZExnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMtZWVmMzUxMWY2YzYw
LzEvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHhBggrBgEFBQcBBwEB/wSB0TCBzjCBoAQCAAEwgZkDBAIC
OGwDBAAFtVcDBAAtCR0DBAAtDb8DBAItUXADBAAtWIsDBAItXqgDBAAthLUDBAIt
irQDBAItkNQwCwMDAC2XAwQALZcCMAwDBABNUyUDBANNUyADBAJV0XgDBAG5K/gD
BAC5K/sDBAG5yD4DBALBHvADBADBOSkDBADBOSsDBALC8mADBADDPhgDBALDsVwD
BALD07wwKQQCAAIwIwMFACoBcSADBQMqB5IAAwUDKgylgAMFAyoQ38ADBQMqEQWA
MA0GCSqGSIb3DQEBCwUAA4IBAQAyBrJamQvzvStBA6yau2AQQElwYgSKCIN+8u1h
j+EhUtbMY2botChJLqeZXE8Z7fI5Y4/kU2lzSIn/Smm7eIozz6aOhC/9i7GsjqIQ
hwH4laVyi/Im1Xop5DF2J1vniaG3/+GJ5y6BSGpxwrU4wrfZUR8r+fbMPDf07eBx
KCZ+Rwi2YcZVr/WivzyPvzX+nL1dUYv2rUv26UpHzCeH1tGwQFiByIodOL1L6yum
v942Bs9ie5Q8RDcoS/cLmR9xlzMp3BtZKv+C6+Tr5jSmoeb4ByFbTm/4QWtN1XsG
gPhVaYdnQnqGy0BG6Qd8mgfYVjhhzRtarIRh2e4ZvjTVn1/b
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:32 2024 by rpki-client on console-fra.rpki-client.org