Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/HfkXf9mM1cLedqbu6vzWLrLsQkg.roa
File: HfkXf9mM1cLedqbu6vzWLrLsQkg.roa (raw, json)
Hash identifier: Fwx/HQUX3+6SHlSBuD8MraY2b8aCv5AaOOwlctmzwq4=
Subject key identifier: 1D:F9:17:7F:D9:8C:D5:C2:DE:76:A6:EE:EA:FC:D6:2E:B2:EC:42:48
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 0183AC5D87A3D8AF36055F4791C181F52E45
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/HfkXf9mM1cLedqbu6vzWLrLsQkg.roa
Signing time: Thu 06 Oct 2022 08:15:54 +0000
ROA not before: Thu 06 Oct 2022 08:15:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3233
IP address blocks: 85.120.170.0/24 maxlen: 24
81.181.74.0/24 maxlen: 24
85.120.178.0/24 maxlen: 24
81.181.86.0/24 maxlen: 24
85.120.192.0/21 maxlen: 21
81.181.100.0/24 maxlen: 24
85.120.155.0/24 maxlen: 24
81.181.192.0/24 maxlen: 24
85.121.38.0/24 maxlen: 24
81.181.199.0/24 maxlen: 24
85.121.40.0/21 maxlen: 21
81.181.213.0/24 maxlen: 24
81.181.212.0/24 maxlen: 24
85.121.60.0/22 maxlen: 22
81.181.152.0/24 maxlen: 24
81.181.148.0/24 maxlen: 24
81.181.155.0/24 maxlen: 24
81.181.156.0/24 maxlen: 24
85.121.6.0/23 maxlen: 23
81.180.143.0/24 maxlen: 24
81.180.96.0/22 maxlen: 22
194.153.238.0/24 maxlen: 24
194.153.234.0/24 maxlen: 24
194.153.242.0/23 maxlen: 23
194.153.245.0/24 maxlen: 24
85.120.66.0/23 maxlen: 23
81.180.239.0/24 maxlen: 24
194.153.247.0/24 maxlen: 24
81.180.234.0/24 maxlen: 24
81.181.0.0/24 maxlen: 24
85.120.42.0/24 maxlen: 24
80.97.176.0/23 maxlen: 23
193.226.84.0/24 maxlen: 24
193.226.81.0/24 maxlen: 24
193.226.80.0/24 maxlen: 24
193.226.99.0/24 maxlen: 24
193.226.101.0/24 maxlen: 24
193.226.112.0/24 maxlen: 24
193.226.111.0/24 maxlen: 24
193.226.120.0/24 maxlen: 24
193.226.35.0/24 maxlen: 24
193.226.65.0/24 maxlen: 24
194.105.6.0/24 maxlen: 24
193.231.204.0/24 maxlen: 24
193.231.240.0/24 maxlen: 24
193.231.244.0/24 maxlen: 24
80.97.54.0/24 maxlen: 24
193.231.247.0/24 maxlen: 24
193.231.249.0/24 maxlen: 24
80.96.216.0/24 maxlen: 24
80.96.220.0/24 maxlen: 24
80.96.228.0/24 maxlen: 24
193.231.163.0/24 maxlen: 24
80.96.238.0/24 maxlen: 24
193.231.168.0/24 maxlen: 24
193.231.192.0/24 maxlen: 24
80.96.255.0/24 maxlen: 24
80.97.144.0/24 maxlen: 24
80.97.171.0/24 maxlen: 24
193.231.254.0/24 maxlen: 24
193.230.244.0/24 maxlen: 24
194.102.247.0/24 maxlen: 24
80.96.75.0/24 maxlen: 24
80.96.76.0/24 maxlen: 24
80.96.17.0/24 maxlen: 24
193.230.211.0/24 maxlen: 24
193.230.212.0/24 maxlen: 24
193.230.208.0/24 maxlen: 24
193.230.219.0/24 maxlen: 24
193.230.225.0/24 maxlen: 24
80.96.170.0/24 maxlen: 24
193.231.112.0/24 maxlen: 24
193.231.111.0/24 maxlen: 24
80.96.181.0/24 maxlen: 24
193.231.114.0/24 maxlen: 24
193.231.116.0/23 maxlen: 23
80.96.190.0/24 maxlen: 24
193.231.119.0/24 maxlen: 24
80.96.207.0/24 maxlen: 24
80.96.209.0/24 maxlen: 24
80.96.109.0/24 maxlen: 24
80.96.108.0/24 maxlen: 24
80.96.136.0/24 maxlen: 24
193.231.81.0/24 maxlen: 24
85.122.83.0/24 maxlen: 24
217.156.0.0/24 maxlen: 24
217.156.2.0/24 maxlen: 24
217.156.11.0/24 maxlen: 24
217.156.7.0/24 maxlen: 24
217.156.6.0/24 maxlen: 24
217.156.15.0/24 maxlen: 24
217.156.13.0/24 maxlen: 24
217.156.19.0/24 maxlen: 24
85.122.106.0/24 maxlen: 24
85.122.114.0/24 maxlen: 24
217.156.35.0/24 maxlen: 24
217.156.37.0/24 maxlen: 24
194.102.65.0/24 maxlen: 24
217.156.49.0/24 maxlen: 24
217.156.50.0/24 maxlen: 24
217.156.51.0/24 maxlen: 24
193.230.0.0/17 maxlen: 17
217.156.106.0/24 maxlen: 24
193.230.134.0/23 maxlen: 23
217.156.108.0/24 maxlen: 24
194.102.135.0/24 maxlen: 24
193.230.143.0/24 maxlen: 24
193.230.141.0/24 maxlen: 24
194.102.143.0/24 maxlen: 24
217.156.119.0/24 maxlen: 24
194.102.157.0/24 maxlen: 24
194.102.154.0/24 maxlen: 24
193.230.164.0/23 maxlen: 23
194.102.163.0/24 maxlen: 24
194.102.176.0/24 maxlen: 24
194.102.177.0/24 maxlen: 24
193.230.184.0/24 maxlen: 24
193.230.185.0/24 maxlen: 24
194.102.183.0/24 maxlen: 24
217.156.57.0/24 maxlen: 24
217.156.62.0/24 maxlen: 24
217.156.59.0/24 maxlen: 24
217.156.71.0/24 maxlen: 24
217.156.66.0/24 maxlen: 24
217.156.67.0/24 maxlen: 24
217.156.77.0/24 maxlen: 24
194.102.106.0/24 maxlen: 24
217.156.93.0/24 maxlen: 24
85.122.182.0/23 maxlen: 23
217.156.101.0/24 maxlen: 24
85.121.156.0/22 maxlen: 22
192.162.16.0/24 maxlen: 24
81.181.244.0/24 maxlen: 24
85.121.88.0/21 maxlen: 21
85.121.252.0/22 maxlen: 22
85.121.198.0/24 maxlen: 24
85.121.220.0/22 maxlen: 22
2a03:5e80::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ac:5d:87:a3:d8:af:36:05:5f:47:91:c1:81:f5:2e:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Oct 6 08:15:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1df9177fd98cd5c2de76a6eeeafcd62eb2ec4248
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:53:a2:a5:91:6c:4a:d9:7c:04:7f:74:fc:29:
b3:5c:e3:d5:fe:57:94:ce:58:5f:d3:78:91:b5:e3:
26:4d:25:c5:7d:d5:72:ad:1e:30:e4:6f:67:9f:bf:
18:d6:ef:42:0f:fa:98:2e:d8:5f:30:26:33:5e:bc:
ee:ce:fa:6b:a6:0b:dd:80:95:0c:60:de:42:a3:b0:
c4:3c:db:e9:04:c2:59:ed:51:6d:be:2a:47:a3:9e:
72:23:b7:cb:f2:a3:d2:0f:ba:5b:a7:42:df:99:dc:
59:3d:1c:d2:c9:21:a5:91:fb:85:81:05:34:9a:f8:
91:65:9d:d0:30:41:6c:2c:14:c6:30:64:38:91:10:
05:88:d7:23:ce:e1:56:49:b7:26:5a:b1:f6:38:c4:
7a:8b:b4:4d:92:aa:fd:68:bc:b9:c1:34:36:17:8f:
89:9c:84:cd:ff:64:60:ad:2a:f8:97:1e:26:7b:8c:
2b:92:e1:79:ff:a3:af:91:63:94:4a:aa:69:8a:f4:
7e:96:9f:a8:50:51:63:6d:5a:fa:f9:39:b5:f8:5a:
cb:1c:6b:49:e5:28:5c:c2:c4:19:83:c3:b2:0e:22:
b6:64:bb:b0:60:1e:86:47:e8:3e:a4:25:fc:72:18:
65:08:27:ef:9c:19:91:f8:42:d4:f4:f2:a7:0d:e3:
41:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:F9:17:7F:D9:8C:D5:C2:DE:76:A6:EE:EA:FC:D6:2E:B2:EC:42:48
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/HfkXf9mM1cLedqbu6vzWLrLsQkg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.17.0/24
80.96.75.0-80.96.76.255
80.96.108.0/23
80.96.136.0/24
80.96.170.0/24
80.96.181.0/24
80.96.190.0/24
80.96.207.0/24
80.96.209.0/24
80.96.216.0/24
80.96.220.0/24
80.96.228.0/24
80.96.238.0/24
80.96.255.0/24
80.97.54.0/24
80.97.144.0/24
80.97.171.0/24
80.97.176.0/23
81.180.96.0/22
81.180.143.0/24
81.180.234.0/24
81.180.239.0/24
81.181.0.0/24
81.181.74.0/24
81.181.86.0/24
81.181.100.0/24
81.181.148.0/24
81.181.152.0/24
81.181.155.0-81.181.156.255
81.181.192.0/24
81.181.199.0/24
81.181.212.0/23
81.181.244.0/24
85.120.42.0/24
85.120.66.0/23
85.120.155.0/24
85.120.170.0/24
85.120.178.0/24
85.120.192.0/21
85.121.6.0/23
85.121.38.0/24
85.121.40.0/21
85.121.60.0/22
85.121.88.0/21
85.121.156.0/22
85.121.198.0/24
85.121.220.0/22
85.121.252.0/22
85.122.83.0/24
85.122.106.0/24
85.122.114.0/24
85.122.182.0/23
192.162.16.0/24
193.226.35.0/24
193.226.65.0/24
193.226.80.0/23
193.226.84.0/24
193.226.99.0/24
193.226.101.0/24
193.226.111.0-193.226.112.255
193.226.120.0/24
193.230.0.0/17
193.230.134.0/23
193.230.141.0/24
193.230.143.0/24
193.230.164.0/23
193.230.184.0/23
193.230.208.0/24
193.230.211.0-193.230.212.255
193.230.219.0/24
193.230.225.0/24
193.230.244.0/24
193.231.81.0/24
193.231.111.0-193.231.112.255
193.231.114.0/24
193.231.116.0/23
193.231.119.0/24
193.231.163.0/24
193.231.168.0/24
193.231.192.0/24
193.231.204.0/24
193.231.240.0/24
193.231.244.0/24
193.231.247.0/24
193.231.249.0/24
193.231.254.0/24
194.102.65.0/24
194.102.106.0/24
194.102.135.0/24
194.102.143.0/24
194.102.154.0/24
194.102.157.0/24
194.102.163.0/24
194.102.176.0/23
194.102.183.0/24
194.102.247.0/24
194.105.6.0/24
194.153.234.0/24
194.153.238.0/24
194.153.242.0/23
194.153.245.0/24
194.153.247.0/24
217.156.0.0/24
217.156.2.0/24
217.156.6.0/23
217.156.11.0/24
217.156.13.0/24
217.156.15.0/24
217.156.19.0/24
217.156.35.0/24
217.156.37.0/24
217.156.49.0-217.156.51.255
217.156.57.0/24
217.156.59.0/24
217.156.62.0/24
217.156.66.0/23
217.156.71.0/24
217.156.77.0/24
217.156.93.0/24
217.156.101.0/24
217.156.106.0/24
217.156.108.0/24
217.156.119.0/24
IPv6:
2a03:5e80::/29
Signature Algorithm: sha256WithRSAEncryption
6c:1a:b3:1e:dd:de:fc:f0:a6:e6:ee:99:87:2e:0b:ad:b0:74:
16:af:8b:2f:24:83:b6:5b:66:02:8c:59:75:88:e1:e3:fe:0a:
42:26:c1:0d:0d:bd:c3:5e:3e:c9:b7:cb:ba:d2:e7:e1:06:5f:
87:a0:2a:f5:e1:6f:25:9a:6f:77:98:09:d7:c2:f6:dc:b0:50:
fa:41:ba:fe:87:18:f2:ae:bb:c9:9b:63:a6:51:47:21:3d:c4:
8a:98:aa:25:9d:41:fb:76:fa:59:6c:6c:a0:9c:f3:20:09:de:
38:ce:01:9b:c8:b2:16:b3:f3:7e:77:67:87:24:b8:1e:6f:34:
fc:c8:8d:ff:42:ad:cd:ee:25:50:24:cf:28:95:15:50:42:43:
7c:83:ca:1e:32:1a:40:f6:b3:1b:f6:f7:79:3d:9c:fa:4a:78:
98:79:d6:8f:e7:b0:c0:d0:a8:9b:75:b9:f9:85:4e:a5:15:de:
70:41:11:cd:88:35:09:d6:2c:07:09:a5:56:84:98:0b:8c:b1:
a7:98:24:cb:bf:2d:05:0e:c6:0b:4c:69:86:5c:e7:86:6b:b3:
b8:6d:e9:c2:1b:dd:1e:12:e3:03:0d:7a:47:42:d8:3d:01:76:
c3:bd:d3:1b:fe:f0:70:b9:2c:d5:7a:83:39:0f:40:63:2c:8b:
57:b2:00:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:28 2023 by rpki-client on console-fra.rpki-client.org