Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/k1vCrjBJaTvzSOuJSiVTFGB7aw0.roa
File: k1vCrjBJaTvzSOuJSiVTFGB7aw0.roa (raw, json)
Hash identifier: aYvwaKa+Mggy+ZS3t6juL3FtmXP016xBidnIWu3lEgI=
Subject key identifier: 93:5B:C2:AE:30:49:69:3B:F3:48:EB:89:4A:25:53:14:60:7B:6B:0D
Certificate issuer: /CN=c5a2f42407f21c9d7690fb30fd8cdb2bfdf6d030
Certificate serial: 07FF3C0E
Authority key identifier: C5:A2:F4:24:07:F2:1C:9D:76:90:FB:30:FD:8C:DB:2B:FD:F6:D0:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaL0JAfyHJ12kPsw_YzbK_320DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/k1vCrjBJaTvzSOuJSiVTFGB7aw0.roa
Signing time: Wed 06 Apr 2022 12:19:45 +0000
ROA not before: Wed 06 Apr 2022 12:19:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15967
IP address blocks: 77.55.208.0/20 maxlen: 20
77.55.224.0/20 maxlen: 20
77.55.240.0/22 maxlen: 22
77.55.244.0/23 maxlen: 23
77.55.246.0/24 maxlen: 24
77.55.248.0/22 maxlen: 22
77.55.252.0/23 maxlen: 23
77.55.247.0/24 maxlen: 24
77.55.152.0/22 maxlen: 22
77.55.159.0/24 maxlen: 24
77.55.158.0/24 maxlen: 24
77.55.156.0/23 maxlen: 23
77.55.155.0/24 maxlen: 24
77.55.166.0/24 maxlen: 24
77.55.160.0/23 maxlen: 23
77.55.160.0/20 maxlen: 20
77.55.164.0/23 maxlen: 23
77.55.162.0/23 maxlen: 23
77.55.167.0/24 maxlen: 24
77.55.168.0/21 maxlen: 21
77.55.176.0/23 maxlen: 23
77.55.176.0/21 maxlen: 21
77.55.186.0/23 maxlen: 23
77.55.181.0/24 maxlen: 24
77.55.180.0/23 maxlen: 23
77.55.184.0/23 maxlen: 23
77.55.182.0/23 maxlen: 23
77.55.192.0/20 maxlen: 20
77.55.188.0/23 maxlen: 23
77.55.190.0/23 maxlen: 23
77.55.254.0/23 maxlen: 23
77.55.0.0/18 maxlen: 18
77.55.0.0/16 maxlen: 16
31.172.170.0/23 maxlen: 23
31.172.169.0/24 maxlen: 24
31.172.168.0/24 maxlen: 24
31.172.168.0/22 maxlen: 22
77.55.96.0/20 maxlen: 20
77.55.118.0/23 maxlen: 23
77.55.116.0/23 maxlen: 23
77.55.114.0/23 maxlen: 23
77.55.122.0/23 maxlen: 23
77.55.121.0/24 maxlen: 24
77.55.120.0/24 maxlen: 24
77.55.125.0/24 maxlen: 24
77.55.124.0/24 maxlen: 24
77.55.126.0/24 maxlen: 24
77.55.128.0/20 maxlen: 20
77.55.127.0/24 maxlen: 24
77.55.144.0/21 maxlen: 21
77.55.64.0/19 maxlen: 19
77.55.76.0/23 maxlen: 23
77.55.78.0/23 maxlen: 23
77.55.72.0/22 maxlen: 22
85.128.160.0/19 maxlen: 19
85.128.192.0/18 maxlen: 18
85.128.130.0/24 maxlen: 24
85.128.129.0/24 maxlen: 24
85.128.128.0/24 maxlen: 24
85.128.128.0/17 maxlen: 17
85.128.132.0/23 maxlen: 23
85.128.131.0/24 maxlen: 24
85.128.136.0/22 maxlen: 22
85.128.135.0/24 maxlen: 24
85.128.134.0/24 maxlen: 24
85.128.144.0/20 maxlen: 20
85.128.143.0/24 maxlen: 24
85.128.142.0/24 maxlen: 24
85.128.140.0/23 maxlen: 23
2a01:6100::/32 maxlen: 32
2a01:6100::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134167566 (0x7ff3c0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a2f42407f21c9d7690fb30fd8cdb2bfdf6d030
Validity
Not Before: Apr 6 12:19:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=935bc2ae3049693bf348eb894a255314607b6b0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:3f:cf:59:76:a0:09:33:5f:ec:66:23:e8:20:
78:6b:2c:55:0f:55:ef:2b:ef:f3:70:75:f8:d2:e8:
96:2e:29:b8:f1:cf:8a:a6:48:ed:5b:e5:9d:10:f6:
97:f0:6a:79:0d:d1:92:44:cd:41:d6:8a:79:1d:ab:
39:d3:ba:1a:87:8d:ea:3b:59:05:55:79:15:2d:a8:
7a:68:5e:e5:24:b3:77:8b:87:d5:87:66:34:9a:8d:
75:88:3c:75:9d:d1:e4:13:a7:b7:31:62:89:40:5f:
5e:46:a1:f2:d9:b5:c4:8c:f0:76:aa:ae:de:58:b4:
12:6e:b6:39:93:be:67:ed:a1:86:c0:e3:3b:a4:45:
4f:df:ca:18:5f:32:de:d4:d4:26:7a:da:f8:bc:2a:
a5:4c:a9:46:4f:f4:3c:24:28:4f:1e:5c:ee:af:ed:
fd:77:4a:78:89:d3:70:09:22:cd:d1:df:63:58:99:
d1:6d:43:9c:b2:21:c9:c4:ce:ca:7a:d9:c4:50:73:
fe:6a:48:37:1e:ba:df:dd:20:22:ea:a4:84:65:25:
d9:4a:a1:e1:fa:0d:00:c1:fd:3a:46:91:8d:ea:0d:
18:b5:1e:00:7d:a0:ed:96:58:ca:fd:dd:7f:bc:05:
74:19:d8:fd:4e:b4:fe:c2:77:76:f8:28:dc:d9:8b:
24:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:5B:C2:AE:30:49:69:3B:F3:48:EB:89:4A:25:53:14:60:7B:6B:0D
X509v3 Authority Key Identifier:
keyid:C5:A2:F4:24:07:F2:1C:9D:76:90:FB:30:FD:8C:DB:2B:FD:F6:D0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaL0JAfyHJ12kPsw_YzbK_320DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/k1vCrjBJaTvzSOuJSiVTFGB7aw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.172.168.0/22
77.55.0.0/16
85.128.128.0/17
IPv6:
2a01:6100::/32
Signature Algorithm: sha256WithRSAEncryption
42:e5:1c:08:55:46:5b:bf:34:4e:16:83:25:eb:6b:52:93:fc:
b8:50:de:9a:2b:f1:6c:eb:ce:b7:54:8d:ea:33:2a:00:82:85:
e0:1e:01:db:35:26:c9:b2:b6:04:90:2d:11:e3:e4:8d:bc:39:
89:32:61:11:a5:44:23:3d:59:56:ba:04:7a:29:23:8d:ae:ae:
8d:17:c5:be:d2:43:cd:2e:da:81:df:3e:b4:05:7e:95:35:30:
01:9f:98:fd:43:f6:3e:b2:fa:87:d2:19:f0:23:0a:57:2c:ed:
b6:22:93:42:28:ec:8d:54:3f:08:d5:82:a8:14:4e:86:72:d5:
74:75:35:ed:5a:aa:d7:cd:0c:e2:1f:67:20:1c:2b:b1:39:ee:
cc:27:c9:b8:68:04:c4:b8:b5:e9:42:37:07:7e:92:53:2d:ff:
95:a1:5e:4e:af:3f:fa:31:66:43:97:a1:5a:a9:ad:6c:d1:dd:
c4:bc:bc:27:cd:7b:bc:35:a2:27:13:07:d7:72:93:8c:99:df:
5e:7e:cb:b3:38:c6:02:71:e4:18:ee:f0:c0:8d:04:76:64:38:
c9:fb:10:b2:2f:a8:03:94:57:66:df:ad:78:82:ee:ee:9e:3a:
c9:cf:d4:fa:46:c8:a2:b0:d8:41:ae:10:83:87:e8:7b:03:cd:
cd:69:a7:14
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgIEB/88DjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NWEyZjQyNDA3ZjIxYzlkNzY5MGZiMzBmZDhjZGIyYmZkZjZkMDMwMB4XDTIyMDQw
NjEyMTk0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTM1YmMyYWUzMDQ5
NjkzYmYzNDhlYjg5NGEyNTUzMTQ2MDdiNmIwZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALY/z1l2oAkzX+xmI+ggeGssVQ9V7yvv83B1+NLoli4puPHP
iqZI7VvlnRD2l/BqeQ3RkkTNQdaKeR2rOdO6GoeN6jtZBVV5FS2oemhe5SSzd4uH
1YdmNJqNdYg8dZ3R5BOntzFiiUBfXkah8tm1xIzwdqqu3li0Em62OZO+Z+2hhsDj
O6RFT9/KGF8y3tTUJnra+LwqpUypRk/0PCQoTx5c7q/t/XdKeInTcAkizdHfY1iZ
0W1DnLIhycTOynrZxFBz/mpINx66390gIuqkhGUl2Uqh4foNAMH9OkaRjeoNGLUe
AH2g7ZZYyv3df7wFdBnY/U60/sJ3dvgo3NmLJCUCAwEAAaOCAiMwggIfMB0GA1Ud
DgQWBBSTW8KuMElpO/NI64lKJVMUYHtrDTAfBgNVHSMEGDAWgBTFovQkB/IcnXaQ
+zD9jNsr/fbQMDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hhTDBKQWZ5SEoxMmtQc3dfWXpiS18zMjBEQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWQvMWExOGUxLTY3YzgtNDkyZS04ZmJhLWZiNWM2MmU0MmY2Yi8x
L2sxdkNyakJKYVR2elNPdUpTaVZURkdCN2F3MC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWQv
MWExOGUxLTY3YzgtNDkyZS04ZmJhLWZiNWM2MmU0MmY2Yi8xL3hhTDBKQWZ5SEox
MmtQc3dfWXpiS18zMjBEQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA5
BggrBgEFBQcBBwEB/wQqMCgwFwQCAAEwEQMEAh+sqAMDAE03AwQHVYCAMA0EAgAC
MAcDBQAqAWEAMA0GCSqGSIb3DQEBCwUAA4IBAQBC5RwIVUZbvzROFoMl62tSk/y4
UN6aK/Fs6863VI3qMyoAgoXgHgHbNSbJsrYEkC0R4+SNvDmJMmERpUQjPVlWugR6
KSONrq6NF8W+0kPNLtqB3z60BX6VNTABn5j9Q/Y+svqH0hnwIwpXLO22IpNCKOyN
VD8I1YKoFE6GctV0dTXtWqrXzQziH2cgHCuxOe7MJ8m4aATEuLXpQjcHfpJTLf+V
oV5Orz/6MWZDl6Faqa1s0d3EvLwnzXu8NaInEwfXcpOMmd9efsuzOMYCceQY7vDA
jQR2ZDjJ+xCyL6gDlFdm3614gu7unjrJz9T6RsiisNhBrhCDh+h7A83NaacU
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:10 2024 by rpki-client on console-ams.rpki-client.org