Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/zLREh_qUk53kXZXVZMKAvI4lGnM.roa
File: zLREh_qUk53kXZXVZMKAvI4lGnM.roa (raw, json)
Hash identifier: lCcICZITCwocA/HfBNMz3ddt9nEoBcXoYxbYT/wkkZA=
Subject key identifier: CC:B4:44:87:FA:94:93:9D:E4:5D:95:D5:64:C2:80:BC:8E:25:1A:73
Certificate issuer: /CN=0b556acb5f3b961b5cc24a2995f34ee91f79dc16
Certificate serial: 2ADB0908
Authority key identifier: 0B:55:6A:CB:5F:3B:96:1B:5C:C2:4A:29:95:F3:4E:E9:1F:79:DC:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C1Vqy187lhtcwkoplfNO6R953BY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/zLREh_qUk53kXZXVZMKAvI4lGnM.roa
Signing time: Thu 09 Jun 2022 13:18:02 +0000
ROA not before: Thu 09 Jun 2022 13:18:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8708
IP address blocks: 213.157.189.0/24 maxlen: 24
213.154.100.0/24 maxlen: 24
188.26.128.0/18 maxlen: 24
212.93.128.0/19 maxlen: 24
86.127.54.0/24 maxlen: 24
86.127.59.0/24 maxlen: 24
212.93.143.0/24 maxlen: 24
213.157.160.0/19 maxlen: 24
188.26.224.0/19 maxlen: 24
82.76.0.0/14 maxlen: 24
5.12.0.0/14 maxlen: 24
93.113.40.0/22 maxlen: 24
86.120.0.0/13 maxlen: 24
82.137.16.0/20 maxlen: 24
82.137.32.0/19 maxlen: 24
188.26.0.0/17 maxlen: 24
62.231.120.0/24 maxlen: 24
5.2.128.0/17 maxlen: 24
79.117.0.0/16 maxlen: 24
62.231.64.0/18 maxlen: 24
82.137.0.0/21 maxlen: 24
82.137.0.0/18 maxlen: 24
89.46.12.0/22 maxlen: 24
79.112.0.0/13 maxlen: 24
185.129.36.0/22 maxlen: 22
31.14.104.0/21 maxlen: 24
79.112.0.0/14 maxlen: 24
82.79.10.0/24 maxlen: 24
194.102.80.0/23 maxlen: 24
194.102.81.0/24 maxlen: 24
31.14.192.0/21 maxlen: 24
81.18.64.0/19 maxlen: 24
31.14.224.0/22 maxlen: 24
84.232.128.0/17 maxlen: 24
188.27.0.0/16 maxlen: 24
79.118.0.0/15 maxlen: 24
84.232.149.0/24 maxlen: 24
81.196.0.0/16 maxlen: 24
79.118.155.0/24 maxlen: 24
193.111.232.0/24 maxlen: 24
188.24.0.0/15 maxlen: 24
212.54.96.0/19 maxlen: 24
188.27.120.0/24 maxlen: 24
212.54.122.0/24 maxlen: 24
212.54.123.0/24 maxlen: 24
212.54.120.0/24 maxlen: 24
86.121.222.0/24 maxlen: 24
2a02:2f00::/28 maxlen: 48
2a03:9c20:f000::/48 maxlen: 48
2a03:9c20:1000::/48 maxlen: 48
2a02:2f0c:8002::/48 maxlen: 48
2a03:9c20::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 718997768 (0x2adb0908)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b556acb5f3b961b5cc24a2995f34ee91f79dc16
Validity
Not Before: Jun 9 13:18:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ccb44487fa94939de45d95d564c280bc8e251a73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:2c:10:b7:f5:6b:27:57:a5:e7:a9:3c:36:2c:
9b:15:74:97:88:37:a0:10:50:69:95:bc:a6:6a:bf:
87:56:10:ae:0a:8d:8c:04:0d:f8:97:d2:b9:4d:1a:
5d:a7:84:7d:b9:eb:ea:2f:5e:4d:ff:1b:64:2c:28:
17:eb:0f:61:47:85:fa:f6:ba:54:5b:48:78:9d:fd:
82:31:e1:d0:07:db:a6:c4:e2:b3:59:d9:e7:60:31:
27:f3:e8:1b:ff:e3:8b:9c:05:16:08:ea:5a:cd:a7:
db:e5:ec:c9:0c:de:f0:6c:bc:d0:87:b8:eb:95:ff:
b6:ef:a0:f6:8e:62:47:4f:06:39:67:5b:e6:c2:c2:
24:f1:67:2b:b6:11:57:4b:e1:4d:74:aa:06:f5:5f:
63:85:09:e1:2d:5a:95:21:11:db:da:f5:3d:a5:fb:
ac:78:65:8c:a4:1e:a3:91:db:af:a3:81:c5:25:9c:
27:81:ac:1a:cd:21:ec:25:d0:dc:0c:14:06:d4:a7:
15:41:54:5d:06:1d:2d:ef:00:d3:09:c1:16:97:ec:
43:3a:c8:96:c4:a1:7e:ee:07:d5:8f:9d:ce:d4:e5:
c7:77:c3:1c:49:ab:9d:6b:12:ac:df:d0:e2:53:91:
8a:04:9d:8c:f5:3b:56:84:0d:a2:37:ee:db:4d:5d:
a9:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:B4:44:87:FA:94:93:9D:E4:5D:95:D5:64:C2:80:BC:8E:25:1A:73
X509v3 Authority Key Identifier:
keyid:0B:55:6A:CB:5F:3B:96:1B:5C:C2:4A:29:95:F3:4E:E9:1F:79:DC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1Vqy187lhtcwkoplfNO6R953BY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/zLREh_qUk53kXZXVZMKAvI4lGnM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/C1Vqy187lhtcwkoplfNO6R953BY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.2.128.0/17
5.12.0.0/14
31.14.104.0/21
31.14.192.0/21
31.14.224.0/22
62.231.64.0/18
79.112.0.0/13
81.18.64.0/19
81.196.0.0/16
82.76.0.0/14
82.137.0.0/18
84.232.128.0/17
86.120.0.0/13
89.46.12.0/22
93.113.40.0/22
185.129.36.0/22
188.24.0.0-188.26.191.255
188.26.224.0-188.27.255.255
193.111.232.0/24
194.102.80.0/23
212.54.96.0/19
212.93.128.0/19
213.154.100.0/24
213.157.160.0/19
IPv6:
2a02:2f00::/28
2a03:9c20::/32
Signature Algorithm: sha256WithRSAEncryption
79:0c:7f:a6:15:4b:31:8c:a5:0c:5b:7d:55:23:44:8d:19:66:
40:91:f6:47:d3:30:e5:d4:99:ac:56:c2:87:f7:c3:77:66:ee:
5f:79:8e:4c:98:28:6d:f0:ad:f0:12:59:82:4c:8b:7a:6d:9d:
08:88:0b:66:f8:51:da:b7:46:a3:3e:01:b1:25:4e:a9:d1:33:
50:9e:7f:2a:b7:83:10:0c:3d:f6:95:41:1d:fe:2c:08:00:37:
39:2e:a7:66:25:74:ef:92:fb:fb:c2:17:dd:40:74:49:91:ed:
a6:78:6c:e9:24:8a:04:38:ce:b3:37:bb:99:a5:5f:fa:42:a4:
d4:b1:33:d8:21:16:ca:24:0d:05:d5:fb:90:5a:23:5c:27:6d:
7a:aa:84:aa:a1:89:c6:b1:dd:ae:21:c5:fb:c9:fa:14:fd:1c:
75:5c:c9:d1:76:bf:be:bc:e8:a6:77:28:4c:1d:af:83:d4:04:
b1:1a:c0:d4:4f:96:39:25:d1:d5:f2:70:f5:30:80:91:39:0b:
68:15:a2:ed:8f:77:88:28:d5:4d:31:52:f2:9d:96:5f:a7:14:
2b:af:4e:f9:44:5c:52:9a:43:84:ca:3a:e9:77:09:c2:e7:ef:
3d:b2:1f:40:63:c1:74:f3:d1:0b:1a:2e:fb:eb:f5:68:6e:6f:
3f:0b:48:88
-----BEGIN CERTIFICATE-----
MIIFnTCCBIWgAwIBAgIEKtsJCDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
YjU1NmFjYjVmM2I5NjFiNWNjMjRhMjk5NWYzNGVlOTFmNzlkYzE2MB4XDTIyMDYw
OTEzMTgwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2NiNDQ0ODdmYTk0
OTM5ZGU0NWQ5NWQ1NjRjMjgwYmM4ZTI1MWE3MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALksELf1aydXpeepPDYsmxV0l4g3oBBQaZW8pmq/h1YQrgqN
jAQN+JfSuU0aXaeEfbnr6i9eTf8bZCwoF+sPYUeF+va6VFtIeJ39gjHh0AfbpsTi
s1nZ52AxJ/PoG//ji5wFFgjqWs2n2+XsyQze8Gy80Ie465X/tu+g9o5iR08GOWdb
5sLCJPFnK7YRV0vhTXSqBvVfY4UJ4S1alSER29r1PaX7rHhljKQeo5Hbr6OBxSWc
J4GsGs0h7CXQ3AwUBtSnFUFUXQYdLe8A0wnBFpfsQzrIlsShfu4H1Y+dztTlx3fD
HEmrnWsSrN/Q4lORigSdjPU7VoQNojfu201dqT8CAwEAAaOCArcwggKzMB0GA1Ud
DgQWBBTMtESH+pSTneRdldVkwoC8jiUaczAfBgNVHSMEGDAWgBQLVWrLXzuWG1zC
SimV807pH3ncFjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0MxVnF5MTg3bGh0Y3drb3BsZk5PNlI5NTNCWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmUvODI5ZmRmLWJhNjMtNGMyMy05MWQxLWQyYmJmMzdkYWJiNC8x
L3pMUkVoX3FVazUza1haWFZaTUtBdkk0bEduTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmUv
ODI5ZmRmLWJhNjMtNGMyMy05MWQxLWQyYmJmMzdkYWJiNC8xL0MxVnF5MTg3bGh0
Y3drb3BsZk5PNlI5NTNCWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
zAYIKwYBBQUHAQcBAf8EgbwwgbkwgaAEAgABMIGZAwQHBQKAAwMCBQwDBAMfDmgD
BAMfDsADBAIfDuADBAY+50ADAwNPcAMEBVESQAMDAFHEAwMCUkwDBAZSiQADBAdU
6IADAwNWeAMEAlkuDAMEAl1xKAMEArmBJDALAwMDvBgDBAa8GoAwCwMEBbwa4AMD
ArwYAwQAwW/oAwQBwmZQAwQF1DZgAwQF1F2AAwQA1ZpkAwQF1Z2gMBQEAgACMA4D
BQQqAi8AAwUAKgOcIDANBgkqhkiG9w0BAQsFAAOCAQEAeQx/phVLMYylDFt9VSNE
jRlmQJH2R9Mw5dSZrFbCh/fDd2buX3mOTJgobfCt8BJZgkyLem2dCIgLZvhR2rdG
oz4BsSVOqdEzUJ5/KreDEAw99pVBHf4sCAA3OS6nZiV075L7+8IX3UB0SZHtpnhs
6SSKBDjOsze7maVf+kKk1LEz2CEWyiQNBdX7kFojXCdteqqEqqGJxrHdriHF+8n6
FP0cdVzJ0Xa/vrzopncoTB2vg9QEsRrA1E+WOSXR1fJw9TCAkTkLaBWi7Y93iCjV
TTFS8p2WX6cUK69O+URcUppDhMo66XcJwufvPbIfQGPBdPPRCxou++v1aG5vPwtI
iA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:49 2024 by rpki-client on console-ams.rpki-client.org