Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/1oStTDiwEud276ApzvOR_2dpnms.roa
File: 1oStTDiwEud276ApzvOR_2dpnms.roa (raw, json)
Hash identifier: T6Cd3Fpi1+6G/3l1lW7602CfpKIXJNfr6TK4PeFaP9g=
Subject key identifier: D6:84:AD:4C:38:B0:12:E7:76:EF:A0:29:CE:F3:91:FF:67:69:9E:6B
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0184C90DE5C4EF8ADB659225E25BC035BB2E
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/1oStTDiwEud276ApzvOR_2dpnms.roa
Signing time: Wed 30 Nov 2022 15:00:41 +0000
ROA not before: Wed 30 Nov 2022 15:00:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204384
IP address blocks: 193.46.210.0/24 maxlen: 24
85.255.180.0/22 maxlen: 24
5.105.125.0/24 maxlen: 24
5.105.132.0/24 maxlen: 24
5.105.131.0/24 maxlen: 24
5.105.126.0/24 maxlen: 24
5.105.127.0/24 maxlen: 24
5.105.139.0/24 maxlen: 24
5.105.138.0/24 maxlen: 24
5.105.136.0/24 maxlen: 24
5.105.134.0/24 maxlen: 24
5.105.143.0/24 maxlen: 24
5.105.142.0/24 maxlen: 24
5.105.141.0/24 maxlen: 24
5.105.151.0/24 maxlen: 24
5.105.150.0/24 maxlen: 24
5.105.149.0/24 maxlen: 24
5.105.148.0/24 maxlen: 24
5.105.156.0/24 maxlen: 24
5.105.166.0/24 maxlen: 24
5.105.165.0/24 maxlen: 24
5.105.164.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.168.0/24 maxlen: 24
5.105.170.0/24 maxlen: 24
5.105.172.0/24 maxlen: 24
5.105.69.0/24 maxlen: 24
5.105.68.0/24 maxlen: 24
5.105.77.0/24 maxlen: 24
5.105.76.0/24 maxlen: 24
5.105.72.0/24 maxlen: 24
5.105.84.0/24 maxlen: 24
5.105.82.0/24 maxlen: 24
5.105.89.0/24 maxlen: 24
5.105.88.0/24 maxlen: 24
5.105.87.0/24 maxlen: 24
5.105.86.0/24 maxlen: 24
5.105.94.0/24 maxlen: 24
5.105.112.0/24 maxlen: 24
5.105.108.0/24 maxlen: 24
5.105.115.0/24 maxlen: 24
5.105.230.0/24 maxlen: 24
5.105.229.0/24 maxlen: 24
5.105.233.0/24 maxlen: 24
5.105.232.0/24 maxlen: 24
5.105.236.0/24 maxlen: 24
5.105.235.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.234.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.242.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.249.0/24 maxlen: 24
5.105.248.0/24 maxlen: 24
5.105.247.0/24 maxlen: 24
5.105.175.0/24 maxlen: 24
5.105.174.0/24 maxlen: 24
5.105.178.0/24 maxlen: 24
5.105.177.0/24 maxlen: 24
5.105.176.0/24 maxlen: 24
5.105.186.0/24 maxlen: 24
5.105.181.0/24 maxlen: 24
5.105.180.0/24 maxlen: 24
5.105.185.0/24 maxlen: 24
5.105.183.0/24 maxlen: 24
5.105.182.0/24 maxlen: 24
5.105.187.0/24 maxlen: 24
5.105.195.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.197.0/24 maxlen: 24
5.105.202.0/24 maxlen: 24
5.105.206.0/24 maxlen: 24
5.105.203.0/24 maxlen: 24
5.105.207.0/24 maxlen: 24
5.105.216.0/24 maxlen: 24
5.105.214.0/24 maxlen: 24
5.105.218.0/24 maxlen: 24
5.105.12.0/24 maxlen: 24
5.105.24.0/24 maxlen: 24
5.105.26.0/24 maxlen: 24
5.105.43.0/24 maxlen: 24
5.105.59.0/24 maxlen: 24
5.105.63.0/24 maxlen: 24
5.105.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c9:0d:e5:c4:ef:8a:db:65:92:25:e2:5b:c0:35:bb:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Nov 30 15:00:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d684ad4c38b012e776efa029cef391ff67699e6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:6e:40:c8:fd:1d:51:81:c4:c4:37:08:2d:16:
3c:0c:36:66:5c:37:14:4c:ce:0c:28:0f:03:af:c5:
d7:5a:b3:30:ea:8a:ce:35:b8:62:f0:40:8d:cf:6b:
7d:33:71:61:23:9f:b8:8c:d1:fd:ea:a5:5b:50:de:
0a:ac:83:e0:45:f0:bb:78:72:98:9f:7c:8e:b1:26:
35:3b:4f:7e:e2:02:13:77:f3:10:8b:49:16:2b:be:
0e:e5:cc:1f:0b:dd:33:2a:f9:5c:9b:61:a4:c8:e3:
57:93:79:39:b1:a7:ec:4a:24:78:a4:97:fe:fc:f6:
ff:38:d1:91:05:c5:bb:3a:94:8a:58:f4:a6:98:85:
19:1b:84:cc:3a:81:9b:45:8a:e5:e0:3d:2e:c8:a0:
64:cd:80:2f:61:78:e0:1a:70:bd:8e:e0:88:ab:8a:
ff:e2:f8:5b:ed:91:fd:98:45:4d:e4:62:a0:9c:e1:
83:99:55:61:f9:54:ee:09:96:ba:0e:1e:4b:a6:93:
a0:ee:5b:fe:f2:97:b8:f0:75:37:ba:57:db:e9:b9:
b9:1f:e5:dc:91:6a:4d:19:34:ee:9f:79:00:58:10:
55:25:94:4c:af:49:cc:22:81:fe:df:50:e7:79:df:
cf:8e:35:5b:2e:36:fd:79:15:14:49:b7:af:f8:7c:
9d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:84:AD:4C:38:B0:12:E7:76:EF:A0:29:CE:F3:91:FF:67:69:9E:6B
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/1oStTDiwEud276ApzvOR_2dpnms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.12.0/24
5.105.24.0/24
5.105.26.0/24
5.105.43.0/24
5.105.59.0/24
5.105.62.0/23
5.105.68.0/23
5.105.72.0/24
5.105.76.0/23
5.105.82.0/24
5.105.84.0/24
5.105.86.0-5.105.89.255
5.105.94.0/24
5.105.108.0/24
5.105.112.0/24
5.105.115.0/24
5.105.125.0-5.105.127.255
5.105.131.0-5.105.132.255
5.105.134.0/24
5.105.136.0/24
5.105.138.0/23
5.105.141.0-5.105.143.255
5.105.148.0/22
5.105.156.0/24
5.105.162.0/24
5.105.164.0-5.105.166.255
5.105.168.0/24
5.105.170.0/24
5.105.172.0/24
5.105.174.0-5.105.178.255
5.105.180.0/22
5.105.185.0-5.105.187.255
5.105.195.0/24
5.105.197.0-5.105.199.255
5.105.202.0/23
5.105.206.0/23
5.105.214.0/24
5.105.216.0/24
5.105.218.0/24
5.105.229.0-5.105.230.255
5.105.232.0-5.105.236.255
5.105.239.0-5.105.240.255
5.105.242.0/24
5.105.244.0/23
5.105.247.0-5.105.249.255
85.255.180.0/22
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:d5:ed:36:32:71:a7:16:f8:1f:45:25:2e:10:0d:c4:76:2c:
0b:ce:35:bf:46:88:9f:98:aa:b3:b1:5d:c4:fe:fc:34:80:1f:
85:1a:62:8c:17:5b:3f:79:3c:f7:a5:87:a3:fa:93:39:7f:62:
f1:88:ec:e3:9a:7b:0a:e6:f4:e3:ae:49:af:80:12:5d:e8:64:
65:7f:a9:5c:2c:d9:00:3e:c6:01:aa:a5:a8:49:ec:7a:22:10:
4c:9b:5c:56:62:44:11:80:64:d5:7d:e6:b0:bb:b2:12:53:bc:
8a:dd:9d:78:66:5f:e9:11:6c:9a:11:2f:14:14:2b:f8:c9:45:
3c:88:98:8e:d9:03:ad:bb:26:58:72:47:40:47:2a:01:8c:ba:
3b:6f:d9:0c:9f:de:6f:f0:31:1f:dd:1c:3b:de:30:57:87:e4:
3d:ed:6e:e0:91:c9:c6:19:7f:ff:07:fb:88:f7:ce:f9:cb:88:
28:eb:1f:1d:8d:b8:51:dc:ba:81:c3:9c:2c:25:4a:1f:ed:4e:
2f:0b:60:f1:9d:93:89:ac:89:c4:6e:f4:51:f8:c3:bd:ec:d9:
7c:d2:21:96:0e:e3:f2:0d:a9:40:3f:c8:d5:9e:fd:61:4f:f2:
97:b4:9a:27:bb:19:b3:3a:bb:2f:b3:5c:07:25:41:95:3a:de:
1b:9c:5b:d4
-----BEGIN CERTIFICATE-----
MIIGezCCBWOgAwIBAgISAYTJDeXE74rbZZIl4lvANbsuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkZjhiNDUyNTRlNTQ3MGQxZDRjY2U2ZmI3ZGZkNGQwZDgz
YjVkNTkwHhcNMjIxMTMwMTUwMDQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNjg0YWQ0YzM4YjAxMmU3NzZlZmEwMjljZWYzOTFmZjY3Njk5ZTZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr25AyP0dUYHExDcILRY8DDZmXDcU
TM4MKA8Dr8XXWrMw6orONbhi8ECNz2t9M3FhI5+4jNH96qVbUN4KrIPgRfC7eHKY
n3yOsSY1O09+4gITd/MQi0kWK74O5cwfC90zKvlcm2GkyONXk3k5safsSiR4pJf+
/Pb/ONGRBcW7OpSKWPSmmIUZG4TMOoGbRYrl4D0uyKBkzYAvYXjgGnC9juCIq4r/
4vhb7ZH9mEVN5GKgnOGDmVVh+VTuCZa6Dh5LppOg7lv+8pe48HU3ulfb6bm5H+Xc
kWpNGTTun3kAWBBVJZRMr0nMIoH+31Dned/PjjVbLjb9eRUUSbev+Hyd0QIDAQAB
o4IDhzCCA4MwHQYDVR0OBBYEFNaErUw4sBLndu+gKc7zkf9naZ5rMB8GA1UdIwQY
MBaAFN34tFJU5UcNHUzOb7ff1NDYO11ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2ZpMFVsVGxSdzBkVE01dnQ5X1UwTmc3WFZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS84ZmM3NDYtZmMwOC00MjExLWJhM2It
ODkzOTA2ZmI3ODU4LzEvMW9TdFREaXdFdWQyNzZBcHp2T1JfMmRwbm1zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS84ZmM3NDYtZmMwOC00MjExLWJhM2ItODkzOTA2ZmI3ODU4
LzEvM2ZpMFVsVGxSdzBkVE01dnQ5X1UwTmc3WFZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBmwYIKwYBBQUHAQcBAf8EggGKMIIBhjCCAYIEAgABMIIB
egMEAAVpDAMEAAVpGAMEAAVpGgMEAAVpKwMEAAVpOwMEAQVpPgMEAQVpRAMEAAVp
SAMEAQVpTAMEAAVpUgMEAAVpVDAMAwQBBWlWAwQBBWlYAwQABWleAwQABWlsAwQA
BWlwAwQABWlzMAwDBAAFaX0DBAcFaQAwDAMEAAVpgwMEAAVphAMEAAVphgMEAAVp
iAMEAQVpijAMAwQABWmNAwQEBWmAAwQCBWmUAwQABWmcAwQABWmiMAwDBAIFaaQD
BAAFaaYDBAAFaagDBAAFaaoDBAAFaawwDAMEAQVprgMEAAVpsgMEAgVptDAMAwQA
BWm5AwQCBWm4AwQABWnDMAwDBAAFacUDBAMFacADBAEFacoDBAEFac4DBAAFadYD
BAAFadgDBAAFadowDAMEAAVp5QMEAAVp5jAMAwQDBWnoAwQABWnsMAwDBAAFae8D
BAAFafADBAAFafIDBAEFafQwDAMEAAVp9wMEAQVp+AMEAlX/tAMEAMEu0jANBgkq
hkiG9w0BAQsFAAOCAQEArNXtNjJxpxb4H0UlLhANxHYsC841v0aIn5iqs7FdxP78
NIAfhRpijBdbP3k896WHo/qTOX9i8Yjs45p7Cub0465Jr4ASXehkZX+pXCzZAD7G
AaqlqEnseiIQTJtcVmJEEYBk1X3msLuyElO8it2deGZf6RFsmhEvFBQr+MlFPIiY
jtkDrbsmWHJHQEcqAYy6O2/ZDJ/eb/AxH90cO94wV4fkPe1u4JHJxhl//wf7iPfO
+cuIKOsfHY24Udy6gcOcLCVKH+1OLwtg8Z2TiayJxG70UfjDvezZfNIhlg7j8g2p
QD/I1Z79YU/yl7SaJ7sZszq7L7NcByVBlTreG5xb1A==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:59 2023 by rpki-client on console-ams.rpki-client.org