Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/GQ9schH0It6Ltc7iCC7KJ2IOwmA.roa
File: GQ9schH0It6Ltc7iCC7KJ2IOwmA.roa (raw, json)
Hash identifier: 0gHUfYhGJRhZSzPSN4hEAbyvnt2kHOibwff/2eV86IE=
Subject key identifier: 19:0F:6C:72:11:F4:22:DE:8B:B5:CE:E2:08:2E:CA:27:62:0E:C2:60
Certificate issuer: /CN=01f3ef3e0ea95a975537d5c25d93cb76af687234
Certificate serial: 018365A5CECF699BDC817FA440F561A21BFA
Authority key identifier: 01:F3:EF:3E:0E:A9:5A:97:55:37:D5:C2:5D:93:CB:76:AF:68:72:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/GQ9schH0It6Ltc7iCC7KJ2IOwmA.roa
Signing time: Thu 22 Sep 2022 14:41:48 +0000
ROA not before: Thu 22 Sep 2022 14:41:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 23764
IP address blocks: 5.10.136.112/29 maxlen: 29
95.130.192.0/24 maxlen: 24
95.130.194.0/24 maxlen: 24
5.154.128.0/24 maxlen: 24
5.154.129.0/24 maxlen: 24
5.10.141.8/30 maxlen: 30
5.10.141.136/30 maxlen: 30
5.154.144.0/24 maxlen: 24
5.154.145.0/24 maxlen: 24
5.154.146.0/24 maxlen: 24
5.154.147.0/24 maxlen: 24
5.154.158.0/24 maxlen: 24
5.154.159.0/24 maxlen: 24
5.154.154.0/24 maxlen: 24
5.154.155.0/24 maxlen: 24
5.154.156.0/24 maxlen: 24
5.154.157.0/24 maxlen: 24
87.120.16.0/24 maxlen: 24
87.120.17.0/24 maxlen: 24
87.120.23.0/24 maxlen: 24
87.120.24.0/24 maxlen: 24
87.120.18.0/24 maxlen: 24
87.120.19.0/24 maxlen: 24
87.120.20.0/24 maxlen: 24
87.120.21.0/24 maxlen: 24
87.120.22.0/24 maxlen: 24
87.120.25.0/24 maxlen: 24
87.120.26.0/24 maxlen: 24
87.120.27.0/24 maxlen: 24
145.14.80.0/24 maxlen: 24
145.14.83.0/24 maxlen: 24
145.14.85.0/24 maxlen: 24
145.14.87.0/24 maxlen: 24
145.14.89.0/24 maxlen: 24
145.14.91.0/24 maxlen: 24
145.14.93.0/24 maxlen: 24
79.139.0.0/24 maxlen: 24
79.139.1.0/24 maxlen: 24
79.139.2.0/24 maxlen: 24
79.139.3.0/24 maxlen: 24
79.139.4.0/24 maxlen: 24
79.139.6.0/24 maxlen: 24
79.139.7.0/24 maxlen: 24
79.139.8.0/24 maxlen: 24
79.139.9.0/24 maxlen: 24
79.139.10.0/24 maxlen: 24
79.139.11.0/24 maxlen: 24
79.139.5.0/24 maxlen: 24
79.139.13.0/24 maxlen: 24
79.139.14.0/24 maxlen: 24
79.139.12.0/24 maxlen: 24
5.10.136.208/30 maxlen: 30
145.14.66.0/24 maxlen: 24
145.14.68.0/24 maxlen: 24
145.14.70.0/24 maxlen: 24
145.14.73.0/24 maxlen: 24
145.14.76.0/24 maxlen: 24
145.14.77.0/24 maxlen: 24
145.14.78.0/24 maxlen: 24
2a04:f581:a00e:a004::/64 maxlen: 64
2a04:f581:a00f::/48 maxlen: 48
2a04:f581:a00e:a003::/64 maxlen: 64
2a04:f581:110b::/48 maxlen: 48
2a04:f581:81b0::/48 maxlen: 48
2a04:f581:80b0::/48 maxlen: 48
2a04:f581:82b0::/48 maxlen: 48
2a04:f581:8170::/48 maxlen: 48
2a04:f581:8270::/48 maxlen: 48
2a04:f581:8070::/48 maxlen: 48
2a04:f580:9210::/48 maxlen: 48
2a04:f581:110a::/48 maxlen: 48
2a04:f581:8240::/48 maxlen: 48
2a04:f581:8040::/48 maxlen: 48
2a04:f581:8140::/48 maxlen: 48
2a04:f580:9030:100::/56 maxlen: 56
2a04:f581:a00e:a002::/64 maxlen: 64
2a04:f581:a00e:a001::/64 maxlen: 64
2a04:f581:8190::/48 maxlen: 48
2a04:f581:8290::/48 maxlen: 48
2a04:f581:8090::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:65:a5:ce:cf:69:9b:dc:81:7f:a4:40:f5:61:a2:1b:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01f3ef3e0ea95a975537d5c25d93cb76af687234
Validity
Not Before: Sep 22 14:41:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=190f6c7211f422de8bb5cee2082eca27620ec260
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:3e:ef:02:69:bb:19:bb:3c:66:50:9f:13:d0:
6b:70:99:dd:b2:77:6f:b7:50:de:d8:0f:3a:9c:4a:
03:87:cf:7c:9d:03:46:5e:4c:1d:04:b5:a6:d5:7d:
4c:28:30:65:9b:3e:41:8e:a0:12:ff:f5:fe:ae:21:
83:ce:f8:90:70:10:8d:73:74:fe:24:b6:44:2e:f6:
2c:d1:45:05:e5:1d:4e:50:fb:27:af:68:9a:ad:25:
de:9e:3e:47:4b:fc:eb:4e:4b:69:ff:73:57:4b:27:
f6:cd:8a:94:29:e4:e3:48:b2:56:de:c3:18:7a:01:
19:ba:61:79:db:27:1f:52:76:c0:d7:74:27:3d:6d:
43:b2:cb:f1:32:a0:7f:5f:3e:d7:e0:ea:69:b7:a6:
7e:c4:cf:80:a1:b7:4c:10:3e:a2:98:79:c9:e3:e0:
f2:d3:e6:e2:34:d5:c4:56:d9:0b:b2:65:82:8f:59:
d0:31:69:5a:e2:fa:28:8e:74:3e:71:dd:4e:d1:2d:
0e:a0:de:83:e5:5b:ae:18:0c:eb:af:ef:a3:78:c2:
a3:f5:81:23:7b:09:a1:92:95:3f:c3:ae:9f:8d:9c:
92:4e:21:20:34:3a:3d:ef:3e:9b:c6:5d:a6:0b:0b:
7b:28:80:a7:fb:05:d6:6f:3e:1e:ed:66:0b:23:06:
dd:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:0F:6C:72:11:F4:22:DE:8B:B5:CE:E2:08:2E:CA:27:62:0E:C2:60
X509v3 Authority Key Identifier:
keyid:01:F3:EF:3E:0E:A9:5A:97:55:37:D5:C2:5D:93:CB:76:AF:68:72:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/GQ9schH0It6Ltc7iCC7KJ2IOwmA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.10.136.112/29
5.10.136.208/30
5.10.141.8/30
5.10.141.136/30
5.154.128.0/23
5.154.144.0/22
5.154.154.0-5.154.159.255
79.139.0.0-79.139.14.255
87.120.16.0-87.120.27.255
95.130.192.0/24
95.130.194.0/24
145.14.66.0/24
145.14.68.0/24
145.14.70.0/24
145.14.73.0/24
145.14.76.0-145.14.78.255
145.14.80.0/24
145.14.83.0/24
145.14.85.0/24
145.14.87.0/24
145.14.89.0/24
145.14.91.0/24
145.14.93.0/24
IPv6:
2a04:f580:9030:100::/56
2a04:f580:9210::/48
2a04:f581:110a::/47
2a04:f581:8040::/48
2a04:f581:8070::/48
2a04:f581:8090::/48
2a04:f581:80b0::/48
2a04:f581:8140::/48
2a04:f581:8170::/48
2a04:f581:8190::/48
2a04:f581:81b0::/48
2a04:f581:8240::/48
2a04:f581:8270::/48
2a04:f581:8290::/48
2a04:f581:82b0::/48
2a04:f581:a00e:a001::-2a04:f581:a00e:a004:ffff:ffff:ffff:ffff
2a04:f581:a00f::/48
Signature Algorithm: sha256WithRSAEncryption
c7:e8:0f:fb:4e:25:61:d7:73:db:25:84:17:1f:eb:a1:a2:30:
24:d2:c0:a3:45:fd:91:1b:16:80:3a:20:f4:3d:89:37:80:af:
0a:ca:ff:05:b4:9a:7a:24:b5:3a:6e:b9:45:49:c8:e2:26:c8:
f7:92:83:80:85:12:7f:f9:23:38:e8:58:28:f2:bb:7c:ef:c9:
1d:0d:d7:e8:ef:90:6d:9c:30:55:bb:45:df:36:83:5a:9a:6d:
57:88:89:2b:27:a7:3e:31:be:f7:bb:32:16:4e:32:aa:77:56:
64:b6:00:c9:b1:61:7e:fa:05:9a:08:2e:82:38:76:d3:fa:90:
15:6d:06:bb:b4:3d:74:30:bc:ac:f2:12:40:ca:86:57:ea:1f:
33:e4:75:5e:de:eb:30:a6:b3:09:44:8c:04:b3:29:83:08:e0:
51:e6:ad:15:47:ae:d1:b0:3f:1b:5b:37:ce:6a:c4:7d:ff:e0:
aa:58:93:96:0e:87:d8:75:67:fd:e8:5c:ef:5e:08:aa:ea:11:
38:29:c6:04:dd:2a:54:c1:6b:21:05:e3:e1:a4:20:12:5c:36:
b3:eb:27:20:e6:17:bb:a2:eb:45:f9:f4:6a:2d:da:61:9d:86:
02:25:a7:1e:5f:fd:b1:46:fb:ba:5f:0e:21:11:72:21:9c:72:
b3:d0:90:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:16 2023 by rpki-client on console-fra.rpki-client.org