Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/8357e2-a106-44ae-b866-8fa7b4c53073/1/k1K4I17h1GMJigLiyKiryLApYPc.roa
File: k1K4I17h1GMJigLiyKiryLApYPc.roa (raw, json)
Hash identifier: Urs3mmsKUP7Y4m0Z4YNnZfmWJM0+k3EMYvZUpOIk62U=
Subject key identifier: 93:52:B8:23:5E:E1:D4:63:09:8A:02:E2:C8:A8:AB:C8:B0:29:60:F7
Certificate issuer: /CN=17dd9c23af69ec2cdb6fe2b9936eb494cfd1621f
Certificate serial: 018220896C6C346608FB55B28BE467D66E5C
Authority key identifier: 17:DD:9C:23:AF:69:EC:2C:DB:6F:E2:B9:93:6E:B4:94:CF:D1:62:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F92cI69p7Czbb-K5k260lM_RYh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/8357e2-a106-44ae-b866-8fa7b4c53073/1/k1K4I17h1GMJigLiyKiryLApYPc.roa
Signing time: Thu 21 Jul 2022 11:34:13 +0000
ROA not before: Thu 21 Jul 2022 11:34:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44444
IP address blocks: 157.167.200.0/24 maxlen: 24
157.167.157.0/24 maxlen: 24
157.167.10.0/24 maxlen: 24
157.167.11.0/24 maxlen: 24
157.167.13.0/24 maxlen: 24
157.167.14.0/24 maxlen: 24
157.167.12.0/24 maxlen: 24
157.167.17.0/24 maxlen: 24
157.167.15.0/24 maxlen: 24
157.167.16.0/24 maxlen: 24
157.167.20.0/24 maxlen: 24
157.167.21.0/24 maxlen: 24
157.167.18.0/24 maxlen: 24
157.167.19.0/24 maxlen: 24
157.167.24.0/24 maxlen: 24
157.167.22.0/24 maxlen: 24
157.167.23.0/24 maxlen: 24
157.167.27.0/24 maxlen: 24
157.167.28.0/24 maxlen: 24
157.167.25.0/24 maxlen: 24
157.167.26.0/24 maxlen: 24
157.167.31.0/24 maxlen: 24
157.167.29.0/24 maxlen: 24
157.167.30.0/24 maxlen: 24
157.167.34.0/24 maxlen: 24
157.167.35.0/24 maxlen: 24
157.167.32.0/24 maxlen: 24
157.167.33.0/24 maxlen: 24
157.167.38.0/24 maxlen: 24
157.167.36.0/24 maxlen: 24
157.167.37.0/24 maxlen: 24
157.167.93.0/24 maxlen: 24
157.167.94.0/24 maxlen: 24
157.167.92.0/24 maxlen: 24
157.167.97.0/24 maxlen: 24
157.167.95.0/24 maxlen: 24
157.167.96.0/24 maxlen: 24
157.167.98.0/24 maxlen: 24
157.167.104.0/24 maxlen: 24
157.167.102.0/24 maxlen: 24
157.167.103.0/24 maxlen: 24
157.167.105.0/24 maxlen: 24
157.167.100.0/24 maxlen: 24
157.167.101.0/24 maxlen: 24
157.167.99.0/24 maxlen: 24
157.167.111.0/24 maxlen: 24
157.167.109.0/24 maxlen: 24
157.167.110.0/24 maxlen: 24
157.167.112.0/24 maxlen: 24
157.167.107.0/24 maxlen: 24
157.167.108.0/24 maxlen: 24
157.167.106.0/24 maxlen: 24
157.167.118.0/24 maxlen: 24
157.167.116.0/24 maxlen: 24
157.167.117.0/24 maxlen: 24
157.167.114.0/24 maxlen: 24
157.167.115.0/24 maxlen: 24
157.167.113.0/24 maxlen: 24
157.167.121.0/24 maxlen: 24
157.167.122.0/24 maxlen: 24
157.167.119.0/24 maxlen: 24
157.167.120.0/24 maxlen: 24
157.167.125.0/24 maxlen: 24
157.167.123.0/24 maxlen: 24
157.167.124.0/24 maxlen: 24
157.167.128.0/24 maxlen: 24
157.167.126.0/24 maxlen: 24
157.167.127.0/24 maxlen: 24
157.167.41.0/24 maxlen: 24
157.167.42.0/24 maxlen: 24
157.167.39.0/24 maxlen: 24
157.167.40.0/24 maxlen: 24
157.167.43.0/24 maxlen: 24
157.167.44.0/24 maxlen: 24
157.167.48.0/24 maxlen: 24
157.167.49.0/24 maxlen: 24
157.167.46.0/24 maxlen: 24
157.167.47.0/24 maxlen: 24
157.167.50.0/24 maxlen: 24
157.167.51.0/24 maxlen: 24
157.167.45.0/24 maxlen: 24
157.167.55.0/24 maxlen: 24
157.167.56.0/24 maxlen: 24
157.167.53.0/24 maxlen: 24
157.167.54.0/24 maxlen: 24
157.167.58.0/24 maxlen: 24
157.167.57.0/24 maxlen: 24
157.167.52.0/24 maxlen: 24
157.167.62.0/24 maxlen: 24
157.167.63.0/24 maxlen: 24
157.167.60.0/24 maxlen: 24
157.167.61.0/24 maxlen: 24
157.167.64.0/24 maxlen: 24
157.167.59.0/24 maxlen: 24
157.167.65.0/24 maxlen: 24
157.167.66.0/24 maxlen: 24
157.167.69.0/24 maxlen: 24
157.167.70.0/24 maxlen: 24
157.167.67.0/24 maxlen: 24
157.167.68.0/24 maxlen: 24
157.167.71.0/24 maxlen: 24
157.167.76.0/24 maxlen: 24
157.167.77.0/24 maxlen: 24
157.167.74.0/24 maxlen: 24
157.167.75.0/24 maxlen: 24
157.167.78.0/24 maxlen: 24
157.167.72.0/24 maxlen: 24
157.167.73.0/24 maxlen: 24
157.167.79.0/24 maxlen: 24
157.167.80.0/24 maxlen: 24
157.167.83.0/24 maxlen: 24
157.167.84.0/24 maxlen: 24
157.167.81.0/24 maxlen: 24
157.167.82.0/24 maxlen: 24
157.167.85.0/24 maxlen: 24
157.167.90.0/24 maxlen: 24
157.167.88.0/24 maxlen: 24
157.167.89.0/24 maxlen: 24
157.167.91.0/24 maxlen: 24
157.167.86.0/24 maxlen: 24
157.167.87.0/24 maxlen: 24
86.111.222.0/24 maxlen: 24
86.111.223.0/24 maxlen: 24
85.115.39.0/24 maxlen: 24
85.115.44.0/24 maxlen: 24
85.115.41.0/24 maxlen: 24
85.115.42.0/24 maxlen: 24
85.115.49.0/24 maxlen: 24
85.115.46.0/24 maxlen: 24
85.115.47.0/24 maxlen: 24
85.115.45.0/24 maxlen: 24
85.115.53.0/24 maxlen: 24
85.115.54.0/24 maxlen: 24
85.115.52.0/24 maxlen: 24
85.115.56.0/24 maxlen: 24
85.115.58.0/24 maxlen: 24
85.115.62.0/24 maxlen: 24
85.115.63.0/24 maxlen: 24
85.115.60.0/24 maxlen: 24
85.115.61.0/24 maxlen: 24
85.115.36.0/24 maxlen: 24
85.115.37.0/24 maxlen: 24
85.115.34.0/24 maxlen: 24
85.115.35.0/24 maxlen: 24
85.115.38.0/24 maxlen: 24
85.115.32.0/24 maxlen: 24
85.115.33.0/24 maxlen: 24
2001:4010::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:20:89:6c:6c:34:66:08:fb:55:b2:8b:e4:67:d6:6e:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17dd9c23af69ec2cdb6fe2b9936eb494cfd1621f
Validity
Not Before: Jul 21 11:34:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9352b8235ee1d463098a02e2c8a8abc8b02960f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:25:4d:88:d0:27:26:0b:51:2b:8a:19:f7:1b:
ee:11:68:12:fb:a0:a4:fe:e0:c5:f2:e8:32:a5:9c:
b2:70:b5:6d:a6:1b:83:1b:90:a8:cd:5b:1e:0f:29:
47:70:2e:6d:6e:d3:f3:59:9e:12:40:9f:ef:d3:9a:
ed:53:53:0c:c0:40:07:9c:13:4d:89:a8:03:34:61:
1c:89:0a:7d:6c:c3:78:b8:e8:79:5a:2b:9e:bf:bf:
97:d4:d3:8c:92:ad:4e:04:9f:d7:29:7f:35:b9:f6:
dd:91:3c:39:ed:bb:73:ab:da:b5:4a:8c:7f:19:ed:
74:f5:08:11:3a:08:1a:9d:c0:ec:93:1d:95:df:2e:
b9:ff:c6:e7:4d:c7:95:36:69:b5:37:63:94:e9:3e:
3c:56:2a:1e:d5:6d:44:31:e3:3e:d6:64:25:00:3d:
f8:ce:1d:3e:0c:1c:df:db:70:52:0b:c6:cb:8d:88:
6a:d7:68:76:90:f2:7c:17:4b:9b:a5:a3:fa:d4:ab:
bc:89:80:7b:03:bf:c1:fb:6c:7f:4c:59:43:bd:26:
d5:09:35:86:dc:30:4b:bd:35:7f:60:70:0d:09:53:
00:8e:f4:2f:74:d3:96:2e:cd:c4:e0:ae:db:cf:f2:
eb:0d:9e:8c:41:b5:a1:fb:65:91:e9:d1:63:48:7c:
49:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:52:B8:23:5E:E1:D4:63:09:8A:02:E2:C8:A8:AB:C8:B0:29:60:F7
X509v3 Authority Key Identifier:
keyid:17:DD:9C:23:AF:69:EC:2C:DB:6F:E2:B9:93:6E:B4:94:CF:D1:62:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F92cI69p7Czbb-K5k260lM_RYh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/8357e2-a106-44ae-b866-8fa7b4c53073/1/k1K4I17h1GMJigLiyKiryLApYPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/8357e2-a106-44ae-b866-8fa7b4c53073/1/F92cI69p7Czbb-K5k260lM_RYh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.32.0/21
85.115.41.0-85.115.42.255
85.115.44.0/22
85.115.49.0/24
85.115.52.0-85.115.54.255
85.115.56.0/24
85.115.58.0/24
85.115.60.0/22
86.111.222.0/23
157.167.10.0-157.167.128.255
157.167.157.0/24
157.167.200.0/24
IPv6:
2001:4010::/32
Signature Algorithm: sha256WithRSAEncryption
00:ad:4c:fd:91:b6:72:0f:e6:70:24:06:b8:ee:8f:88:34:e7:
23:15:2a:3b:8a:8d:84:73:7c:1a:78:32:3c:75:bb:9f:72:e5:
ad:a1:4f:e8:b1:68:fb:79:1c:36:54:f5:5c:a6:cd:81:88:99:
e4:b8:ec:e9:b4:ab:cb:ea:e6:bb:86:8d:65:f5:11:fa:1d:20:
3f:19:7e:04:ba:44:e1:05:67:9c:22:3f:5d:67:ce:61:88:9c:
2b:62:8c:ee:e0:1f:a7:af:81:58:df:82:a8:37:36:1d:a4:94:
17:8b:19:66:a0:e9:bb:30:02:29:80:e8:86:43:3d:dc:58:46:
ea:84:d1:43:19:2b:64:6a:23:83:56:f6:de:81:98:58:81:8e:
c2:e6:0f:5e:ae:d5:a9:20:27:30:da:99:5e:05:b6:c3:05:aa:
20:c6:91:26:ce:b0:1f:b8:1b:42:f3:4f:13:d0:04:8a:25:56:
46:54:06:c3:60:ea:6a:a2:f3:18:e1:3e:75:09:82:d7:36:7a:
e7:af:dd:68:25:da:c3:4e:a9:33:65:18:73:73:5d:9e:e0:5d:
52:12:42:60:5b:4e:0c:cb:0d:26:e7:ce:72:ce:9f:c9:9c:56:
8c:02:2c:61:d7:91:4e:80:5a:01:1d:63:7e:e9:f3:dd:61:6a:
69:dd:8c:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:21 2024 by rpki-client on console-fra.rpki-client.org