Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/73yROPB6Ay-EVOkHs5gR0jqnYYg.roa
File: 73yROPB6Ay-EVOkHs5gR0jqnYYg.roa (raw, json)
Hash identifier: a9R1Jfxl+6pXu7pDcy0WfS3/68SFsG1QasNjvaRh88w=
Subject key identifier: EF:7C:91:38:F0:7A:03:2F:84:54:E9:07:B3:98:11:D2:3A:A7:61:88
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 39500FDE
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/73yROPB6Ay-EVOkHs5gR0jqnYYg.roa
Signing time: Mon 21 Mar 2022 10:15:21 +0000
ROA not before: Mon 21 Mar 2022 10:15:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2588
IP address blocks: 83.223.128.0/19 maxlen: 19
83.223.145.0/24 maxlen: 24
91.190.32.0/19 maxlen: 19
159.148.0.0/16 maxlen: 16
159.148.10.0/24 maxlen: 24
85.254.49.0/24 maxlen: 24
85.254.58.0/24 maxlen: 24
91.190.56.0/23 maxlen: 23
91.190.52.0/24 maxlen: 24
85.254.69.0/24 maxlen: 24
159.148.49.0/24 maxlen: 24
159.148.50.0/24 maxlen: 24
46.19.200.0/21 maxlen: 21
83.223.155.0/24 maxlen: 24
185.176.116.0/22 maxlen: 22
85.254.0.0/17 maxlen: 17
159.148.116.0/24 maxlen: 24
159.148.117.0/24 maxlen: 24
80.81.32.0/19 maxlen: 19
159.148.131.0/24 maxlen: 24
217.69.112.0/20 maxlen: 20
109.205.120.0/21 maxlen: 21
159.148.63.0/24 maxlen: 24
109.205.127.0/24 maxlen: 24
159.148.78.0/24 maxlen: 24
159.148.80.0/24 maxlen: 24
85.254.128.0/18 maxlen: 18
159.148.233.0/24 maxlen: 24
159.148.229.0/24 maxlen: 24
94.101.224.0/20 maxlen: 20
185.27.92.0/22 maxlen: 22
159.148.188.0/24 maxlen: 24
2a02:610::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 961548254 (0x39500fde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Mar 21 10:15:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ef7c9138f07a032f8454e907b39811d23aa76188
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:58:c3:d1:ce:0c:cc:79:37:88:f2:9c:78:4c:
b8:04:53:af:bc:9d:9a:85:de:5b:ec:ea:ec:67:75:
92:60:59:1c:1b:52:72:3b:f0:39:82:4f:4c:8d:d9:
9e:9b:cb:9c:29:ee:d9:5f:22:52:a4:4c:f6:cd:88:
65:c9:b0:fa:c8:fd:c3:7e:2a:d3:ca:c9:31:f2:f2:
d0:f9:e3:8e:12:ba:53:b1:fc:fe:26:87:97:79:40:
53:07:71:f0:08:7a:6e:4a:80:3f:97:47:a2:2e:15:
91:be:16:83:55:52:84:05:f6:a2:f9:77:bf:47:51:
9b:3c:85:3e:8d:6c:4d:e4:c9:ba:f8:bf:76:db:89:
29:54:8e:ae:92:1d:1d:c7:4b:e5:d4:ef:b7:83:d4:
c3:01:de:01:b3:68:11:04:f9:6a:21:dd:e0:08:41:
b7:37:7b:69:9a:bd:28:27:43:04:63:3f:97:d8:cf:
43:10:20:e4:e9:db:59:78:2b:94:51:8c:89:ef:dc:
06:3b:76:01:89:2e:83:a5:2c:70:ab:7a:b5:e3:6c:
c9:9c:cd:e0:34:6d:19:fb:8c:bc:28:15:df:ed:cb:
42:40:28:bd:07:22:93:f1:d3:68:47:61:12:ed:d7:
e7:4a:37:a2:12:7c:c1:8b:3b:9f:ec:c0:9e:0a:6e:
79:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:7C:91:38:F0:7A:03:2F:84:54:E9:07:B3:98:11:D2:3A:A7:61:88
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/73yROPB6Ay-EVOkHs5gR0jqnYYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.19.200.0/21
80.81.32.0/19
83.223.128.0/19
85.254.0.0-85.254.191.255
91.190.32.0/19
94.101.224.0/20
109.205.120.0/21
159.148.0.0/16
185.27.92.0/22
185.176.116.0/22
217.69.112.0/20
IPv6:
2a02:610::/32
Signature Algorithm: sha256WithRSAEncryption
5f:00:6f:0c:e2:78:3c:17:bc:ad:b6:e1:51:fc:1c:ff:08:a9:
c6:30:38:3e:38:0b:04:5d:d4:a5:85:5e:b8:dd:1d:00:11:89:
c3:41:fe:33:39:07:cd:fa:1d:29:73:1b:ee:a7:6d:dc:c4:5d:
c8:b9:db:4d:dd:0e:c2:5f:d5:e5:24:95:cb:00:3f:09:f1:34:
d9:f9:74:b6:1e:2f:1b:50:9c:10:13:4d:09:48:48:fa:97:3f:
f0:a5:4a:fc:53:ee:e8:43:72:45:eb:03:6c:f4:6d:6c:c9:b2:
14:1a:df:16:40:7b:67:18:8d:b6:d0:7d:b6:e0:75:93:0f:f0:
45:b5:c5:9e:7f:8f:69:39:b3:95:3d:a1:9d:41:94:41:17:37:
26:98:5d:c4:7e:95:cb:84:1b:ec:50:e6:5a:5e:f2:f4:4f:f1:
68:9a:25:3d:18:be:11:d6:19:9f:34:31:a8:4c:4e:a6:bd:a4:
2f:fd:fa:c9:74:85:b5:70:b5:d2:c9:94:23:82:f2:9c:78:3e:
d8:68:29:7e:af:73:f4:c5:e6:c0:03:e2:9c:cb:c3:46:c4:e2:
83:21:29:0c:e7:50:b1:e6:87:72:f9:bb:9a:72:72:85:cd:f9:
ba:78:01:db:96:89:66:c5:76:39:65:c3:04:20:6c:02:56:26:
41:e3:82:28
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIEOVAP3jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
YjA5NTJjOGJhOGRhZGIxZDM0ZGU2YzZhOTM4NjRhNjA5ZmM0MWVjMB4XDTIyMDMy
MTEwMTUyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWY3YzkxMzhmMDdh
MDMyZjg0NTRlOTA3YjM5ODExZDIzYWE3NjE4ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOdYw9HODMx5N4jynHhMuARTr7ydmoXeW+zq7Gd1kmBZHBtS
cjvwOYJPTI3ZnpvLnCnu2V8iUqRM9s2IZcmw+sj9w34q08rJMfLy0PnjjhK6U7H8
/iaHl3lAUwdx8Ah6bkqAP5dHoi4Vkb4Wg1VShAX2ovl3v0dRmzyFPo1sTeTJuvi/
dtuJKVSOrpIdHcdL5dTvt4PUwwHeAbNoEQT5aiHd4AhBtzd7aZq9KCdDBGM/l9jP
QxAg5OnbWXgrlFGMie/cBjt2AYkug6UscKt6teNsyZzN4DRtGfuMvCgV3+3LQkAo
vQcik/HTaEdhEu3X50o3ohJ8wYs7n+zAngpueVsCAwEAAaOCAlowggJWMB0GA1Ud
DgQWBBTvfJE48HoDL4RU6QezmBHSOqdhiDAfBgNVHSMEGDAWgBSrCVLIuo2tsdNN
5sapOGSmCfxB7DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3F3bFN5THFOcmJIVFRlYkdxVGhrcGduOFFldy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGUvMzU1NWZlLTEyY2QtNDAyYS1hODEwLTU1NTRkNmUxNjg2Zi8x
LzczeVJPUEI2QXktRVZPa0hzNWdSMGpxbllZZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGUv
MzU1NWZlLTEyY2QtNDAyYS1hODEwLTU1NTRkNmUxNjg2Zi8xL3F3bFN5THFOcmJI
VFRlYkdxVGhrcGduOFFldy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBw
BggrBgEFBQcBBwEB/wRhMF8wTgQCAAEwSAMEAy4TyAMEBVBRIAMEBVPfgDALAwMB
Vf4DBAZV/oADBAVbviADBAReZeADBANtzXgDAwCflAMEArkbXAMEArmwdAMEBNlF
cDANBAIAAjAHAwUAKgIGEDANBgkqhkiG9w0BAQsFAAOCAQEAXwBvDOJ4PBe8rbbh
Ufwc/wipxjA4PjgLBF3UpYVeuN0dABGJw0H+MzkHzfodKXMb7qdt3MRdyLnbTd0O
wl/V5SSVywA/CfE02fl0th4vG1CcEBNNCUhI+pc/8KVK/FPu6ENyResDbPRtbMmy
FBrfFkB7ZxiNttB9tuB1kw/wRbXFnn+PaTmzlT2hnUGUQRc3JphdxH6Vy4Qb7FDm
Wl7y9E/xaJolPRi+EdYZnzQxqExOpr2kL/36yXSFtXC10smUI4LynHg+2Ggpfq9z
9MXmwAPinMvDRsTigyEpDOdQseaHcvm7mnJyhc35ungB25aJZsV2OWXDBCBsAlYm
QeOCKA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:37 2023 by rpki-client on console-ams.rpki-client.org