Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/09012f-b4f6-4df7-b562-010cf2dd40af/1/2oD6eIedZsiwz9Jy6qDBBTIwLWo.roa
File: 2oD6eIedZsiwz9Jy6qDBBTIwLWo.roa (raw, json)
Hash identifier: K9JPfXi1Zz/ur8zdv58lIkNJjQZLDE7uHbzj7dZMP/k=
Subject key identifier: DA:80:FA:78:87:9D:66:C8:B0:CF:D2:72:EA:A0:C1:05:32:30:2D:6A
Certificate issuer: /CN=1778cfc09a363a73cc8dda362a2c9e8223d7dad6
Certificate serial: 018457A68E86363827ACE02C6E4F26C3487A
Authority key identifier: 17:78:CF:C0:9A:36:3A:73:CC:8D:DA:36:2A:2C:9E:82:23:D7:DA:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3jPwJo2OnPMjdo2KiyegiPX2tY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/09012f-b4f6-4df7-b562-010cf2dd40af/1/2oD6eIedZsiwz9Jy6qDBBTIwLWo.roa
Signing time: Tue 08 Nov 2022 14:30:44 +0000
ROA not before: Tue 08 Nov 2022 14:30:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60664
IP address blocks: 157.97.76.0/23 maxlen: 23
157.97.78.0/23 maxlen: 23
153.92.160.0/24 maxlen: 24
153.92.162.0/24 maxlen: 24
153.92.161.0/24 maxlen: 24
153.92.164.0/24 maxlen: 24
153.92.163.0/24 maxlen: 24
153.92.165.0/24 maxlen: 24
153.92.166.0/24 maxlen: 24
153.92.167.0/24 maxlen: 24
153.92.169.0/24 maxlen: 24
153.92.168.0/24 maxlen: 24
153.92.170.0/24 maxlen: 24
153.92.172.0/24 maxlen: 24
153.92.171.0/24 maxlen: 24
153.92.175.0/24 maxlen: 24
153.92.174.0/24 maxlen: 24
153.92.173.0/24 maxlen: 24
157.180.192.0/24 maxlen: 24
157.180.194.0/24 maxlen: 24
157.180.193.0/24 maxlen: 24
157.180.195.0/24 maxlen: 24
157.180.197.0/24 maxlen: 24
157.180.196.0/24 maxlen: 24
157.180.196.0/23 maxlen: 23
157.180.198.0/23 maxlen: 23
157.180.198.0/24 maxlen: 24
157.180.199.0/24 maxlen: 24
145.14.130.0/24 maxlen: 24
153.92.124.0/24 maxlen: 24
153.92.64.0/24 maxlen: 24
153.92.66.0/24 maxlen: 24
153.92.65.0/24 maxlen: 24
153.92.68.0/24 maxlen: 24
153.92.67.0/24 maxlen: 24
153.92.70.0/24 maxlen: 24
153.92.69.0/24 maxlen: 24
153.92.71.0/24 maxlen: 24
185.74.64.0/24 maxlen: 24
185.74.64.0/23 maxlen: 23
185.74.65.0/24 maxlen: 24
185.74.67.0/24 maxlen: 24
185.74.66.0/23 maxlen: 23
185.74.66.0/24 maxlen: 24
185.27.181.0/24 maxlen: 24
185.27.183.0/24 maxlen: 24
185.27.182.0/23 maxlen: 23
185.27.182.0/24 maxlen: 24
185.27.180.0/24 maxlen: 24
185.27.180.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:57:a6:8e:86:36:38:27:ac:e0:2c:6e:4f:26:c3:48:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1778cfc09a363a73cc8dda362a2c9e8223d7dad6
Validity
Not Before: Nov 8 14:30:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da80fa78879d66c8b0cfd272eaa0c10532302d6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:a8:fb:85:6a:90:9a:b4:2d:3f:93:02:56:4a:
68:89:d2:da:7b:ff:0d:fa:f7:a2:ca:0e:0c:54:49:
a3:09:6a:81:a4:50:61:f3:22:b8:f0:77:b0:55:ec:
1c:83:1f:81:6d:4f:1b:ac:f9:d4:bd:d9:49:7f:9c:
ad:21:42:0c:62:37:4e:e1:a5:93:53:7d:8e:bd:c7:
fc:cf:de:e5:53:21:0c:89:3d:0c:4b:f2:6f:85:9f:
23:fa:ee:6c:5f:a8:40:57:30:4e:30:45:25:b5:54:
6b:03:9d:2e:ac:96:5f:81:7a:99:ac:76:4d:5c:10:
11:ab:d0:dc:2e:47:6e:70:8d:0c:c1:db:ba:ef:87:
a1:1c:69:72:96:80:b8:74:69:0d:f4:e6:6b:77:27:
f7:f3:57:f1:c4:b1:fa:25:5c:6c:09:a2:97:b7:60:
eb:77:b7:03:91:f9:44:e7:11:fd:d4:73:8b:87:49:
47:2b:9f:60:4a:39:67:c3:97:c0:cb:03:29:06:cd:
c1:0b:de:a1:96:a9:bd:57:14:0e:80:e1:32:ef:bc:
33:ab:c8:c7:f0:32:f2:02:1d:1e:ad:bf:a6:4a:4b:
a7:4d:3e:ca:c4:17:9f:12:43:d2:e3:1f:40:06:8d:
23:85:cb:68:be:a5:d5:a8:ab:c4:b6:11:43:8d:8e:
15:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:80:FA:78:87:9D:66:C8:B0:CF:D2:72:EA:A0:C1:05:32:30:2D:6A
X509v3 Authority Key Identifier:
keyid:17:78:CF:C0:9A:36:3A:73:CC:8D:DA:36:2A:2C:9E:82:23:D7:DA:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3jPwJo2OnPMjdo2KiyegiPX2tY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/09012f-b4f6-4df7-b562-010cf2dd40af/1/2oD6eIedZsiwz9Jy6qDBBTIwLWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/09012f-b4f6-4df7-b562-010cf2dd40af/1/F3jPwJo2OnPMjdo2KiyegiPX2tY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.14.130.0/24
153.92.64.0/21
153.92.124.0/24
153.92.160.0/20
157.97.76.0/22
157.180.192.0/21
185.27.180.0/22
185.74.64.0/22
Signature Algorithm: sha256WithRSAEncryption
91:24:92:e4:f2:27:cf:ce:68:a6:e2:d9:f1:e5:80:68:f9:35:
be:de:47:ab:69:37:09:e4:19:0d:99:13:21:2e:dc:19:2e:6a:
75:1f:c6:91:e8:ab:cc:be:1b:4c:8e:41:a9:44:13:e2:3a:2b:
ae:d0:47:af:6d:44:01:9c:9a:64:fd:4e:29:08:f9:97:ef:d4:
1c:fb:07:b1:42:5a:af:60:82:5f:62:0a:de:91:c6:a2:e4:d9:
e8:f1:27:7d:ba:f8:b0:8f:f3:79:68:80:3d:cd:94:ce:22:13:
6f:f7:27:a9:3b:e6:a8:a7:20:5a:83:bc:16:7c:37:a0:8f:5b:
57:a5:c0:36:0c:90:e9:35:1a:6b:fb:46:22:37:ab:ec:15:c9:
b1:f5:63:1f:97:d3:09:91:79:b7:6a:1a:ae:72:19:55:83:54:
23:47:48:e8:52:e2:a2:32:04:70:a2:62:6c:32:20:36:59:63:
aa:9c:76:00:8b:00:63:c2:03:09:01:7c:07:ba:7b:99:fc:77:
e2:73:74:8a:3d:c6:ef:c2:e3:bb:bc:07:2b:19:23:a9:ee:58:
89:fb:56:7a:26:62:bf:0e:ca:43:ca:0b:1c:ed:8d:f9:73:60:
6c:49:94:57:b2:c3:15:0b:4d:16:4d:49:87:a0:3e:55:30:0b:
e9:d1:8c:49
-----BEGIN CERTIFICATE-----
MIIFJzCCBA+gAwIBAgISAYRXpo6GNjgnrOAsbk8mw0h6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3NzhjZmMwOWEzNjNhNzNjYzhkZGEzNjJhMmM5ZTgyMjNk
N2RhZDYwHhcNMjIxMTA4MTQzMDQ0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYTgwZmE3ODg3OWQ2NmM4YjBjZmQyNzJlYWEwYzEwNTMyMzAyZDZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm6j7hWqQmrQtP5MCVkpoidLae/8N
+veiyg4MVEmjCWqBpFBh8yK48HewVewcgx+BbU8brPnUvdlJf5ytIUIMYjdO4aWT
U32Ovcf8z97lUyEMiT0MS/JvhZ8j+u5sX6hAVzBOMEUltVRrA50urJZfgXqZrHZN
XBARq9DcLkducI0Mwdu674ehHGlyloC4dGkN9OZrdyf381fxxLH6JVxsCaKXt2Dr
d7cDkflE5xH91HOLh0lHK59gSjlnw5fAywMpBs3BC96hlqm9VxQOgOEy77wzq8jH
8DLyAh0erb+mSkunTT7KxBefEkPS4x9ABo0jhctovqXVqKvEthFDjY4VKQIDAQAB
o4ICMzCCAi8wHQYDVR0OBBYEFNqA+niHnWbIsM/ScuqgwQUyMC1qMB8GA1UdIwQY
MBaAFBd4z8CaNjpzzI3aNiosnoIj19rWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRjNqUHdKbzJPblBNamRvMktpeWVnaVBYMnRZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy8wOTAxMmYtYjRmNi00ZGY3LWI1NjIt
MDEwY2YyZGQ0MGFmLzEvMm9ENmVJZWRac2l3ejlKeTZxREJCVEl3TFdvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy8wOTAxMmYtYjRmNi00ZGY3LWI1NjItMDEwY2YyZGQ0MGFm
LzEvRjNqUHdKbzJPblBNamRvMktpeWVnaVBYMnRZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQAkQ6CAwQD
mVxAAwQAmVx8AwQEmVygAwQCnWFMAwQDnbTAAwQCuRu0AwQCuUpAMA0GCSqGSIb3
DQEBCwUAA4IBAQCRJJLk8ifPzmim4tnx5YBo+TW+3keraTcJ5BkNmRMhLtwZLmp1
H8aR6KvMvhtMjkGpRBPiOiuu0EevbUQBnJpk/U4pCPmX79Qc+wexQlqvYIJfYgre
kcai5Nno8Sd9uviwj/N5aIA9zZTOIhNv9yepO+aopyBag7wWfDegj1tXpcA2DJDp
NRpr+0YiN6vsFcmx9WMfl9MJkXm3ahquchlVg1QjR0joUuKiMgRwomJsMiA2WWOq
nHYAiwBjwgMJAXwHunuZ/Hfic3SKPcbvwuO7vAcrGSOp7liJ+1Z6JmK/DspDygsc
7Y35c2BsSZRXssMVC00WTUmHoD5VMAvp0YxJ
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:34 2023 by rpki-client on console-fra.rpki-client.org