Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/hDAPo2eu82UzciThx6YSGq9EGEo.roa
File: hDAPo2eu82UzciThx6YSGq9EGEo.roa (raw, json)
Hash identifier: uH+BQUxgVj+e/gHnOg1z3DWWMsknywoS0U0AeGwQzH0=
Subject key identifier: 84:30:0F:A3:67:AE:F3:65:33:72:24:E1:C7:A6:12:1A:AF:44:18:4A
Certificate issuer: /CN=352ae33b11b36a319ba81347d852480d8e74c87d
Certificate serial: 05F7F78C
Authority key identifier: 35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/hDAPo2eu82UzciThx6YSGq9EGEo.roa
Signing time: Sat 01 Jan 2022 13:55:29 +0000
ROA not before: Sat 01 Jan 2022 13:55:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12430
IP address blocks: 194.220.0.0/16 maxlen: 16
62.87.0.0/17 maxlen: 17
95.60.0.0/14 maxlen: 14
87.235.0.0/16 maxlen: 16
178.139.0.0/16 maxlen: 16
77.208.0.0/14 maxlen: 14
89.6.0.0/15 maxlen: 15
188.84.0.0/14 maxlen: 14
46.136.0.0/16 maxlen: 16
188.211.228.0/22 maxlen: 22
37.222.0.0/15 maxlen: 15
212.166.128.0/17 maxlen: 17
93.113.16.0/21 maxlen: 21
77.224.0.0/13 maxlen: 13
178.57.128.0/18 maxlen: 18
217.130.0.0/16 maxlen: 16
193.125.0.0/16 maxlen: 16
87.125.0.0/16 maxlen: 16
5.224.0.0/15 maxlen: 15
87.124.192.0/18 maxlen: 18
212.145.0.0/16 maxlen: 16
31.4.0.0/16 maxlen: 16
94.248.64.0/18 maxlen: 18
93.113.136.0/21 maxlen: 21
212.73.32.0/19 maxlen: 19
148.56.0.0/16 maxlen: 16
159.147.0.0/16 maxlen: 16
46.24.0.0/14 maxlen: 14
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100136844 (0x5f7f78c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=352ae33b11b36a319ba81347d852480d8e74c87d
Validity
Not Before: Jan 1 13:55:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=84300fa367aef365337224e1c7a6121aaf44184a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:7a:21:ce:7e:3d:a2:94:2d:9e:f4:f4:01:76:
ef:5f:2e:81:67:31:98:81:94:3f:f6:8c:a7:72:b3:
d1:f4:8e:58:6c:0e:54:0d:15:c2:5a:57:4f:86:d0:
07:3e:29:aa:73:e1:19:20:4c:00:c2:ee:5b:b5:c4:
2b:80:3d:04:0e:ee:33:49:a0:f1:ba:7d:33:e4:0a:
1c:44:52:f2:8b:ea:44:5a:a9:6d:e4:b1:c3:4e:b9:
7a:d6:21:28:6c:12:10:b1:38:79:b7:9b:c2:39:4f:
c1:81:06:2b:53:54:db:46:bb:cf:13:a9:b1:84:12:
c7:5b:c8:66:21:d2:0f:6b:11:77:36:cf:f3:b1:a8:
be:4e:c2:08:c2:d2:b3:18:75:3c:ba:5b:29:9b:2f:
d1:2a:72:cd:73:37:85:5c:7c:f4:73:0c:45:08:cf:
6a:85:57:40:11:a3:51:a5:db:5a:01:34:ae:44:80:
c6:8b:d4:54:0f:d9:26:c1:d5:d8:24:7f:b6:89:09:
e4:ff:49:c7:38:d6:0c:43:94:60:cf:1b:43:6c:a0:
8e:07:a5:50:5f:80:37:24:3f:85:33:84:75:21:60:
27:06:1a:a8:72:7e:1b:fe:74:ff:a9:6a:d6:df:63:
b0:75:6c:a6:92:2a:0b:ef:b9:d0:56:14:1f:8a:79:
51:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:30:0F:A3:67:AE:F3:65:33:72:24:E1:C7:A6:12:1A:AF:44:18:4A
X509v3 Authority Key Identifier:
keyid:35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/hDAPo2eu82UzciThx6YSGq9EGEo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/NSrjOxGzajGbqBNH2FJIDY50yH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.224.0.0/15
31.4.0.0/16
37.222.0.0/15
46.24.0.0/14
46.136.0.0/16
62.87.0.0/17
77.208.0.0/14
77.224.0.0/13
87.124.192.0-87.125.255.255
87.235.0.0/16
89.6.0.0/15
93.113.16.0/21
93.113.136.0/21
94.248.64.0/18
95.60.0.0/14
148.56.0.0/16
159.147.0.0/16
178.57.128.0/18
178.139.0.0/16
188.84.0.0/14
188.211.228.0/22
193.125.0.0/16
194.220.0.0/16
212.73.32.0/19
212.145.0.0/16
212.166.128.0/17
217.130.0.0/16
Signature Algorithm: sha256WithRSAEncryption
35:b9:6c:c3:e7:6e:07:22:56:f4:95:30:81:ec:46:c9:2f:c9:
c6:7d:b2:d3:8d:24:8b:f2:90:cc:87:ae:b4:01:13:c1:6a:ef:
42:08:c6:b4:61:60:2a:be:32:92:4c:04:24:a2:43:38:35:ee:
60:02:bd:cd:71:7e:93:a5:8d:d0:1b:5a:4b:18:80:f2:52:8b:
46:0b:5f:8f:85:96:7e:23:58:f2:0f:01:0c:49:06:8b:f5:6d:
12:51:3d:a7:07:9f:69:1f:ba:27:fa:4b:f2:32:e4:76:fd:0e:
1e:03:aa:eb:5d:c4:e5:74:ad:57:2a:75:7f:44:47:17:19:38:
ca:f4:ca:fb:55:0b:dc:ec:3f:bf:db:af:41:04:4b:1d:65:8c:
a6:17:60:db:0d:1d:c5:d9:44:8f:16:e2:ec:38:c3:41:59:d2:
d5:cb:24:f8:31:b9:db:02:02:65:fe:e6:13:1a:56:97:03:89:
e1:27:f6:74:6a:df:2d:21:e0:36:be:73:38:66:8f:4c:aa:12:
b9:6a:81:65:5f:54:04:92:27:16:e0:19:cc:24:31:03:b9:89:
7e:9e:9b:fc:de:9d:11:11:c6:d2:cf:91:10:cb:3e:2a:3c:8a:
49:49:43:fe:e8:3c:18:62:75:fd:7b:b6:2b:e5:c4:56:3d:c3:
d9:d7:1d:84
-----BEGIN CERTIFICATE-----
MIIFhTCCBG2gAwIBAgIEBff3jDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NTJhZTMzYjExYjM2YTMxOWJhODEzNDdkODUyNDgwZDhlNzRjODdkMB4XDTIyMDEw
MTEzNTUyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODQzMDBmYTM2N2Fl
ZjM2NTMzNzIyNGUxYzdhNjEyMWFhZjQ0MTg0YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKJ6Ic5+PaKULZ709AF2718ugWcxmIGUP/aMp3Kz0fSOWGwO
VA0VwlpXT4bQBz4pqnPhGSBMAMLuW7XEK4A9BA7uM0mg8bp9M+QKHERS8ovqRFqp
beSxw065etYhKGwSELE4ebebwjlPwYEGK1NU20a7zxOpsYQSx1vIZiHSD2sRdzbP
87Govk7CCMLSsxh1PLpbKZsv0SpyzXM3hVx89HMMRQjPaoVXQBGjUaXbWgE0rkSA
xovUVA/ZJsHV2CR/tokJ5P9JxzjWDEOUYM8bQ2ygjgelUF+ANyQ/hTOEdSFgJwYa
qHJ+G/50/6lq1t9jsHVsppIqC++50FYUH4p5UUcCAwEAAaOCAp8wggKbMB0GA1Ud
DgQWBBSEMA+jZ67zZTNyJOHHphIar0QYSjAfBgNVHSMEGDAWgBQ1KuM7EbNqMZuo
E0fYUkgNjnTIfTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05TcmpPeEd6YWpHYnFCTkgyRkpJRFk1MHlIMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjcvYzU1YWIwLWVhMjItNGExOS04YjMzLTI1MDUwYzU5M2FhMS8x
L2hEQVBvMmV1ODJVemNpVGh4NllTR3E5RUdFby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjcv
YzU1YWIwLWVhMjItNGExOS04YjMzLTI1MDUwYzU5M2FhMS8xL05TcmpPeEd6YWpH
YnFCTkgyRkpJRFk1MHlIMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
tAYIKwYBBQUHAQcBAf8EgaQwgaEwgZ4EAgABMIGXAwMBBeADAwAfBAMDASXeAwMC
LhgDAwAuiAMEBz5XAAMDAk3QAwMDTeAwCwMEBld8wAMDAVd8AwMAV+sDAwFZBgME
A11xEAMEA11xiAMEBl74QAMDAl88AwMAlDgDAwCfkwMEBrI5gAMDALKLAwMCvFQD
BAK80+QDAwDBfQMDAMLcAwQF1EkgAwMA1JEDBAfUpoADAwDZgjANBgkqhkiG9w0B
AQsFAAOCAQEANblsw+duByJW9JUwgexGyS/Jxn2y040ki/KQzIeutAETwWrvQgjG
tGFgKr4ykkwEJKJDODXuYAK9zXF+k6WN0BtaSxiA8lKLRgtfj4WWfiNY8g8BDEkG
i/VtElE9pwefaR+6J/pL8jLkdv0OHgOq613E5XStVyp1f0RHFxk4yvTK+1UL3Ow/
v9uvQQRLHWWMphdg2w0dxdlEjxbi7DjDQVnS1csk+DG52wICZf7mExpWlwOJ4Sf2
dGrfLSHgNr5zOGaPTKoSuWqBZV9UBJInFuAZzCQxA7mJfp6b/N6dERHG0s+REMs+
KjyKSUlD/ug8GGJ1/Xu2K+XEVj3D2dcdhA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:12 2024 by rpki-client on console-ams.rpki-client.org