Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/e74cyLlreO-a5GmWy0thPUPsw-U.roa
File: e74cyLlreO-a5GmWy0thPUPsw-U.roa (raw, json)
Hash identifier: ciEcAF3poNs+oUygTzE9NxMQ0ftWGgiCTb/shh+/jkY=
Subject key identifier: 7B:BE:1C:C8:B9:6B:78:EF:9A:E4:69:96:CB:4B:61:3D:43:EC:C3:E5
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 01849E8AA1A18660EDC1FA914F06B2E0BC70
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/e74cyLlreO-a5GmWy0thPUPsw-U.roa
Signing time: Tue 22 Nov 2022 08:53:16 +0000
ROA not before: Tue 22 Nov 2022 08:53:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15557
IP address blocks: 80.124.0.0/16 maxlen: 16
80.70.32.0/20 maxlen: 20
217.19.192.0/20 maxlen: 20
88.141.0.0/16 maxlen: 16
212.198.0.0/16 maxlen: 16
91.151.112.0/20 maxlen: 20
213.144.192.0/19 maxlen: 19
217.70.80.0/20 maxlen: 20
79.80.0.0/12 maxlen: 12
185.147.204.0/22 maxlen: 22
77.144.0.0/12 maxlen: 12
79.174.192.0/18 maxlen: 18
195.3.0.0/18 maxlen: 18
77.137.196.0/22 maxlen: 22
85.168.0.0/14 maxlen: 14
77.137.200.0/21 maxlen: 21
77.137.208.0/20 maxlen: 20
79.174.232.0/21 maxlen: 21
194.6.128.0/19 maxlen: 19
195.146.192.0/19 maxlen: 19
84.96.0.0/13 maxlen: 13
77.136.172.0/24 maxlen: 24
88.140.0.0/16 maxlen: 16
77.136.173.0/24 maxlen: 24
77.136.174.0/24 maxlen: 24
87.231.0.0/16 maxlen: 16
62.39.0.0/16 maxlen: 16
77.140.0.0/14 maxlen: 14
89.2.0.0/15 maxlen: 15
62.106.128.0/17 maxlen: 17
217.112.224.0/20 maxlen: 20
194.183.192.0/19 maxlen: 19
141.170.216.0/21 maxlen: 21
212.39.128.0/19 maxlen: 19
213.245.0.0/16 maxlen: 16
62.241.64.0/18 maxlen: 18
81.220.0.0/16 maxlen: 16
89.156.0.0/14 maxlen: 14
213.169.160.0/19 maxlen: 19
93.0.0.0/11 maxlen: 11
109.0.0.0/11 maxlen: 11
81.1.0.0/18 maxlen: 18
81.65.0.0/16 maxlen: 16
84.55.128.0/18 maxlen: 18
62.129.160.0/19 maxlen: 19
78.112.0.0/12 maxlen: 12
62.8.0.0/19 maxlen: 19
77.136.0.0/16 maxlen: 16
46.35.0.0/19 maxlen: 19
88.136.0.0/14 maxlen: 14
37.64.0.0/13 maxlen: 13
77.128.0.0/13 maxlen: 13
80.236.0.0/17 maxlen: 17
212.94.160.0/19 maxlen: 19
81.185.160.0/20 maxlen: 20
80.125.0.0/16 maxlen: 16
83.141.128.0/17 maxlen: 17
84.205.128.0/19 maxlen: 19
77.134.204.0/24 maxlen: 24
84.205.144.0/20 maxlen: 20
80.118.4.0/24 maxlen: 24
81.64.0.0/14 maxlen: 14
213.128.32.0/19 maxlen: 19
80.118.0.0/15 maxlen: 15
194.242.176.0/20 maxlen: 20
92.88.0.0/13 maxlen: 13
195.7.96.0/19 maxlen: 19
91.68.0.0/22 maxlen: 22
195.132.0.0/16 maxlen: 16
85.68.0.0/15 maxlen: 15
195.98.96.0/19 maxlen: 19
213.223.0.0/16 maxlen: 16
91.68.0.0/14 maxlen: 14
84.4.0.0/14 maxlen: 14
77.192.0.0/12 maxlen: 12
86.64.0.0/12 maxlen: 12
82.216.0.0/16 maxlen: 16
195.115.0.0/16 maxlen: 16
78.155.128.0/19 maxlen: 19
88.142.0.0/16 maxlen: 16
2a00:7180::/32 maxlen: 32
2a02:8400::/25 maxlen: 25
2a00:6200::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9e:8a:a1:a1:86:60:ed:c1:fa:91:4f:06:b2:e0:bc:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Nov 22 08:53:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7bbe1cc8b96b78ef9ae46996cb4b613d43ecc3e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:24:28:66:ed:67:1e:fe:50:e2:60:d2:bd:8f:
cd:7a:a0:e1:cc:6e:67:d3:d1:a6:d7:21:b2:36:86:
9a:31:e1:48:7d:84:83:44:73:62:4a:ad:86:b2:d1:
f1:77:20:a0:1e:b7:c4:55:b2:d7:35:a8:05:77:ab:
be:af:f6:05:ea:73:5e:5d:6e:38:18:df:2f:37:8f:
23:13:e2:45:4b:bc:52:73:f0:a6:85:07:1d:de:23:
09:09:8d:6c:52:be:e0:21:86:e3:65:e8:ec:46:18:
c6:5a:d9:2e:60:f3:6c:4b:22:28:0d:79:6f:36:35:
c8:be:1b:00:cc:c4:1e:e1:af:ae:64:73:bd:02:05:
99:d3:f0:74:23:ef:ea:4a:16:e3:1e:f0:fb:78:1f:
e7:87:5b:a4:fe:c5:7e:bf:3b:ab:c6:63:b1:14:9c:
10:3d:ee:ce:9f:40:37:78:f8:a0:8f:8c:e7:c2:d8:
4b:ea:51:f9:94:d5:79:82:5e:d3:c3:f1:fa:94:6e:
cb:60:52:f0:bf:1c:14:c3:5f:d4:1b:a2:67:e6:37:
03:00:71:07:3a:3f:5c:2b:2a:91:f2:c7:98:a2:20:
c0:32:8a:c0:e9:5f:3c:5c:71:a8:32:ad:cd:e8:a7:
79:e5:0d:03:5b:54:d0:6f:33:15:eb:c7:f5:8d:67:
19:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:BE:1C:C8:B9:6B:78:EF:9A:E4:69:96:CB:4B:61:3D:43:EC:C3:E5
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/e74cyLlreO-a5GmWy0thPUPsw-U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.64.0.0/13
46.35.0.0/19
62.8.0.0/19
62.39.0.0/16
62.106.128.0/17
62.129.160.0/19
62.241.64.0/18
77.128.0.0-77.136.255.255
77.137.196.0-77.137.223.255
77.140.0.0-77.159.255.255
77.192.0.0/12
78.112.0.0/12
78.155.128.0/19
79.80.0.0/12
79.174.192.0/18
80.70.32.0/20
80.118.0.0/15
80.124.0.0/15
80.236.0.0/17
81.1.0.0/18
81.64.0.0/14
81.185.160.0/20
81.220.0.0/16
82.216.0.0/16
83.141.128.0/17
84.4.0.0/14
84.55.128.0/18
84.96.0.0/13
84.205.128.0/19
85.68.0.0/15
85.168.0.0/14
86.64.0.0/12
87.231.0.0/16
88.136.0.0-88.142.255.255
89.2.0.0/15
89.156.0.0/14
91.68.0.0/14
91.151.112.0/20
92.88.0.0/13
93.0.0.0/11
109.0.0.0/11
141.170.216.0/21
185.147.204.0/22
194.6.128.0/19
194.183.192.0/19
194.242.176.0/20
195.3.0.0/18
195.7.96.0/19
195.98.96.0/19
195.115.0.0/16
195.132.0.0/16
195.146.192.0/19
212.39.128.0/19
212.94.160.0/19
212.198.0.0/16
213.128.32.0/19
213.144.192.0/19
213.169.160.0/19
213.223.0.0/16
213.245.0.0/16
217.19.192.0/20
217.70.80.0/20
217.112.224.0/20
IPv6:
2a00:6200::/29
2a00:7180::/32
2a02:8400::/25
Signature Algorithm: sha256WithRSAEncryption
65:c5:08:b9:81:ec:5b:c7:80:65:f3:9a:db:25:dd:b2:da:f8:
d6:4f:77:bf:3e:e2:94:00:fb:37:0d:5a:50:8a:e0:ca:7c:f7:
bd:01:cb:ed:16:51:e6:d5:98:c3:52:f8:1c:68:bf:47:b5:8f:
2b:3d:c6:e2:c4:3f:fa:51:2e:e6:cc:d1:13:9b:d4:76:44:57:
36:87:16:ab:6c:e7:9a:2f:46:14:a7:e0:04:a8:58:57:24:1f:
d3:36:7a:d8:b8:c0:42:d2:ac:01:1a:60:4b:eb:3f:a6:35:8c:
84:5e:ed:b3:8f:b5:a8:43:e9:e8:7d:db:71:73:24:ca:05:8d:
e3:be:9d:59:b2:8b:23:87:a5:fb:78:7b:2e:cc:9b:69:04:69:
94:a1:a0:06:da:3b:9a:57:c2:fa:ee:18:f2:73:81:64:fa:bd:
d9:c5:87:c7:29:f4:19:fe:ea:bf:52:97:7f:21:b6:c6:af:d5:
fc:e9:7d:49:7c:02:2e:2b:5b:4f:f1:4a:89:1d:d1:bb:ad:9c:
50:6f:92:22:ab:73:c7:0e:cd:cf:32:38:81:40:7c:86:35:9e:
19:97:90:31:80:38:44:f7:26:87:20:bb:b7:85:32:23:b9:0a:
5b:0b:6f:97:d6:25:32:41:7f:45:cf:58:00:8e:8e:72:ce:7b:
d9:85:cb:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:50 2024 by rpki-client on console-ams.rpki-client.org