Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/DZor914S3KrVnAHy-q5enNlCKD4.roa
File: DZor914S3KrVnAHy-q5enNlCKD4.roa (raw, json)
Hash identifier: xz1vOAgmBgmoT1KntEDc8lq7mMbmiwyAnqPEEp4V3nk=
Subject key identifier: 0D:9A:2B:F7:5E:12:DC:AA:D5:9C:01:F2:FA:AE:5E:9C:D9:42:28:3E
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 018200BD6BB040C446AF39A2DAD7F3DF7DC6
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/DZor914S3KrVnAHy-q5enNlCKD4.roa
Signing time: Fri 15 Jul 2022 07:23:09 +0000
ROA not before: Fri 15 Jul 2022 07:23:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15557
IP address blocks: 80.124.0.0/16 maxlen: 16
217.19.192.0/20 maxlen: 20
88.141.0.0/16 maxlen: 16
212.198.0.0/16 maxlen: 16
217.70.80.0/20 maxlen: 20
79.80.0.0/12 maxlen: 12
185.147.204.0/22 maxlen: 22
77.144.0.0/12 maxlen: 12
195.3.0.0/18 maxlen: 18
77.137.196.0/22 maxlen: 22
85.168.0.0/14 maxlen: 14
77.137.200.0/21 maxlen: 21
77.137.208.0/20 maxlen: 20
194.6.128.0/19 maxlen: 19
195.146.192.0/19 maxlen: 19
84.96.0.0/13 maxlen: 13
77.136.172.0/24 maxlen: 24
88.140.0.0/16 maxlen: 16
77.136.173.0/24 maxlen: 24
77.136.175.0/24 maxlen: 24
77.136.174.0/24 maxlen: 24
87.231.0.0/16 maxlen: 16
62.39.0.0/16 maxlen: 16
77.140.0.0/14 maxlen: 14
89.2.0.0/15 maxlen: 15
62.106.128.0/17 maxlen: 17
217.112.224.0/20 maxlen: 20
194.183.192.0/19 maxlen: 19
213.245.0.0/16 maxlen: 16
62.241.64.0/18 maxlen: 18
81.220.0.0/16 maxlen: 16
89.156.0.0/14 maxlen: 14
213.169.160.0/19 maxlen: 19
109.0.0.0/11 maxlen: 11
93.0.0.0/11 maxlen: 11
81.1.0.0/18 maxlen: 18
81.65.0.0/16 maxlen: 16
77.136.63.0/24 maxlen: 24
62.129.160.0/19 maxlen: 19
78.112.0.0/12 maxlen: 12
62.8.0.0/19 maxlen: 19
77.136.0.0/16 maxlen: 16
88.136.0.0/14 maxlen: 14
77.136.47.0/24 maxlen: 24
37.64.0.0/13 maxlen: 13
77.128.0.0/13 maxlen: 13
80.236.0.0/17 maxlen: 17
212.94.160.0/19 maxlen: 19
81.185.160.0/20 maxlen: 20
80.125.0.0/16 maxlen: 16
83.141.128.0/17 maxlen: 17
84.205.128.0/19 maxlen: 19
77.134.204.0/24 maxlen: 24
84.205.144.0/20 maxlen: 20
81.64.0.0/14 maxlen: 14
213.128.32.0/19 maxlen: 19
80.118.0.0/15 maxlen: 15
194.242.176.0/20 maxlen: 20
92.88.0.0/13 maxlen: 13
91.68.0.0/22 maxlen: 22
195.132.0.0/16 maxlen: 16
85.68.0.0/15 maxlen: 15
195.98.96.0/19 maxlen: 19
213.223.0.0/16 maxlen: 16
91.68.0.0/14 maxlen: 14
84.4.0.0/14 maxlen: 14
77.192.0.0/12 maxlen: 12
86.64.0.0/12 maxlen: 12
82.216.0.0/16 maxlen: 16
195.115.0.0/16 maxlen: 16
88.142.0.0/16 maxlen: 16
2a00:7180::/32 maxlen: 32
2a02:8400::/25 maxlen: 25
2a00:6200::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:00:bd:6b:b0:40:c4:46:af:39:a2:da:d7:f3:df:7d:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jul 15 07:23:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0d9a2bf75e12dcaad59c01f2faae5e9cd942283e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:74:3a:e2:d2:9d:c8:7a:c7:a9:49:69:e9:d3:
1a:a4:ab:e7:68:6e:a4:05:86:ba:78:44:f5:90:17:
9b:94:dc:df:0b:b2:1a:9a:36:49:f4:82:14:79:ed:
19:37:bd:b7:49:47:41:60:b9:47:0c:ad:c6:ff:52:
51:2a:18:e9:42:62:c6:79:1d:0b:31:8b:f8:db:ec:
4f:de:9a:b4:65:41:37:b4:95:46:3b:75:2a:09:35:
99:66:72:ac:43:d2:16:a1:41:4e:49:1d:d6:04:8f:
86:7e:65:d3:3f:a7:c4:dc:90:d6:1d:28:23:ef:ed:
40:23:b7:6e:98:e8:68:2f:df:e3:5a:ee:9f:22:90:
e3:97:dd:fe:fb:5d:48:45:b8:2f:d0:bb:ec:88:52:
8d:9a:c1:da:3a:6b:13:9c:5c:44:19:14:68:94:39:
e4:06:c9:b8:cd:57:ed:d8:7f:c3:cc:4c:3e:19:cf:
ec:f4:6e:ee:93:7d:28:5d:e7:b5:a4:af:46:c6:b1:
59:89:a1:a0:eb:ad:95:cb:59:2b:2e:4a:51:4f:16:
8b:09:e3:4a:ae:9c:17:97:3e:31:25:04:6b:29:b1:
14:6d:e3:93:b3:e0:be:f8:89:14:1d:c0:56:8d:c3:
e6:bc:8a:5a:ee:65:d9:9e:5b:6a:2f:40:34:9c:f1:
5d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:9A:2B:F7:5E:12:DC:AA:D5:9C:01:F2:FA:AE:5E:9C:D9:42:28:3E
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/DZor914S3KrVnAHy-q5enNlCKD4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.64.0.0/13
62.8.0.0/19
62.39.0.0/16
62.106.128.0/17
62.129.160.0/19
62.241.64.0/18
77.128.0.0-77.136.255.255
77.137.196.0-77.137.223.255
77.140.0.0-77.159.255.255
77.192.0.0/12
78.112.0.0/12
79.80.0.0/12
80.118.0.0/15
80.124.0.0/15
80.236.0.0/17
81.1.0.0/18
81.64.0.0/14
81.185.160.0/20
81.220.0.0/16
82.216.0.0/16
83.141.128.0/17
84.4.0.0/14
84.96.0.0/13
84.205.128.0/19
85.68.0.0/15
85.168.0.0/14
86.64.0.0/12
87.231.0.0/16
88.136.0.0-88.142.255.255
89.2.0.0/15
89.156.0.0/14
91.68.0.0/14
92.88.0.0/13
93.0.0.0/11
109.0.0.0/11
185.147.204.0/22
194.6.128.0/19
194.183.192.0/19
194.242.176.0/20
195.3.0.0/18
195.98.96.0/19
195.115.0.0/16
195.132.0.0/16
195.146.192.0/19
212.94.160.0/19
212.198.0.0/16
213.128.32.0/19
213.169.160.0/19
213.223.0.0/16
213.245.0.0/16
217.19.192.0/20
217.70.80.0/20
217.112.224.0/20
IPv6:
2a00:6200::/29
2a00:7180::/32
2a02:8400::/25
Signature Algorithm: sha256WithRSAEncryption
70:59:03:74:ab:01:ae:e7:bf:19:f7:0e:8b:1d:a7:0e:bd:46:
e2:ef:eb:34:c6:5b:c9:60:c6:87:3c:9b:9b:07:b5:da:dd:1a:
31:24:e5:c3:11:e5:52:ee:1d:41:ca:22:b4:bd:83:f9:bc:0f:
ba:2c:1b:f4:eb:71:0d:e7:7d:0a:1f:1d:1b:51:7e:a2:8c:61:
7d:13:21:eb:cc:94:33:96:10:e9:cc:a5:bd:0c:46:87:85:42:
2e:b0:60:c3:49:8a:bb:68:db:55:b0:1c:e1:04:67:c8:ff:fe:
a6:e5:2e:ca:e5:c0:da:32:7a:ff:d9:3b:de:99:c0:61:5f:9e:
6a:e6:e6:2d:b4:83:6e:15:cc:bf:df:70:ed:57:59:59:1d:06:
9c:97:60:1d:12:48:6b:15:01:77:b5:d5:47:ed:f2:e3:c8:dc:
bd:4b:7d:a8:f5:69:94:16:44:5c:d5:db:9d:bf:a3:b9:da:19:
76:c8:7e:17:30:01:34:76:87:61:c4:e3:71:ae:63:b6:43:59:
20:42:14:43:56:6c:d5:1d:9e:4a:6d:3e:c5:9c:bf:20:33:ca:
01:1c:75:b8:e8:07:b4:57:70:1c:58:a8:41:fc:41:b0:63:1d:
86:70:67:24:fd:8e:62:0a:35:36:f8:87:52:95:fa:e3:fe:12:
12:62:78:05
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:50 2024 by rpki-client on console-ams.rpki-client.org