Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/STY6DVgXXiK1bDmxoMNMdYapF9I.roa
File: STY6DVgXXiK1bDmxoMNMdYapF9I.roa (raw, json)
Hash identifier: IDNAXKwy5XHxb68jB54UDUw+O8p/ETtd0K4nuZLzteI=
Subject key identifier: 49:36:3A:0D:58:17:5E:22:B5:6C:39:B1:A0:C3:4C:75:86:A9:17:D2
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0184AA4F8DB4D1DFA16B1DCE4280B81DB18F
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/STY6DVgXXiK1bDmxoMNMdYapF9I.roa
Signing time: Thu 24 Nov 2022 15:44:11 +0000
ROA not before: Thu 24 Nov 2022 15:44:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204384
IP address blocks: 193.46.210.0/24 maxlen: 24
85.255.180.0/22 maxlen: 24
5.105.125.0/24 maxlen: 24
5.105.132.0/24 maxlen: 24
5.105.131.0/24 maxlen: 24
5.105.126.0/24 maxlen: 24
5.105.127.0/24 maxlen: 24
5.105.139.0/24 maxlen: 24
5.105.138.0/24 maxlen: 24
5.105.136.0/24 maxlen: 24
5.105.134.0/24 maxlen: 24
5.105.143.0/24 maxlen: 24
5.105.142.0/24 maxlen: 24
5.105.141.0/24 maxlen: 24
5.105.151.0/24 maxlen: 24
5.105.150.0/24 maxlen: 24
5.105.149.0/24 maxlen: 24
5.105.148.0/24 maxlen: 24
5.105.156.0/24 maxlen: 24
5.105.166.0/24 maxlen: 24
5.105.165.0/24 maxlen: 24
5.105.164.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.168.0/24 maxlen: 24
5.105.170.0/24 maxlen: 24
5.105.172.0/24 maxlen: 24
5.105.69.0/24 maxlen: 24
5.105.68.0/24 maxlen: 24
5.105.77.0/24 maxlen: 24
5.105.76.0/24 maxlen: 24
5.105.72.0/24 maxlen: 24
5.105.84.0/24 maxlen: 24
5.105.82.0/24 maxlen: 24
5.105.89.0/24 maxlen: 24
5.105.88.0/24 maxlen: 24
5.105.87.0/24 maxlen: 24
5.105.86.0/24 maxlen: 24
5.105.94.0/24 maxlen: 24
5.105.112.0/24 maxlen: 24
5.105.108.0/24 maxlen: 24
5.105.115.0/24 maxlen: 24
5.105.230.0/24 maxlen: 24
5.105.229.0/24 maxlen: 24
5.105.233.0/24 maxlen: 24
5.105.232.0/24 maxlen: 24
5.105.236.0/24 maxlen: 24
5.105.235.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.234.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.242.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.249.0/24 maxlen: 24
5.105.248.0/24 maxlen: 24
5.105.247.0/24 maxlen: 24
5.105.175.0/24 maxlen: 24
5.105.174.0/24 maxlen: 24
5.105.178.0/24 maxlen: 24
5.105.177.0/24 maxlen: 24
5.105.176.0/24 maxlen: 24
5.105.186.0/24 maxlen: 24
5.105.181.0/24 maxlen: 24
5.105.180.0/24 maxlen: 24
5.105.185.0/24 maxlen: 24
5.105.183.0/24 maxlen: 24
5.105.182.0/24 maxlen: 24
5.105.187.0/24 maxlen: 24
5.105.195.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.197.0/24 maxlen: 24
5.105.202.0/24 maxlen: 24
5.105.206.0/24 maxlen: 24
5.105.203.0/24 maxlen: 24
5.105.207.0/24 maxlen: 24
5.105.216.0/24 maxlen: 24
5.105.214.0/24 maxlen: 24
5.105.218.0/24 maxlen: 24
5.105.24.0/24 maxlen: 24
5.105.28.0/24 maxlen: 24
5.105.26.0/24 maxlen: 24
5.105.31.0/24 maxlen: 24
5.105.30.0/24 maxlen: 24
5.105.33.0/24 maxlen: 24
5.105.38.0/24 maxlen: 24
5.105.32.0/24 maxlen: 24
5.105.42.0/24 maxlen: 24
5.105.43.0/24 maxlen: 24
5.105.39.0/24 maxlen: 24
5.105.59.0/24 maxlen: 24
5.105.63.0/24 maxlen: 24
5.105.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:aa:4f:8d:b4:d1:df:a1:6b:1d:ce:42:80:b8:1d:b1:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Nov 24 15:44:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49363a0d58175e22b56c39b1a0c34c7586a917d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:43:8e:7c:74:46:a3:f4:65:29:62:27:81:05:
ee:a8:7f:5f:b2:1f:4c:e7:8f:04:36:c6:06:35:ed:
ee:f1:2c:f6:6f:0d:11:e8:86:bd:f5:10:37:e1:ad:
8c:06:4c:e5:5f:4f:5b:e2:d9:3a:29:17:dc:5b:ff:
e9:99:d5:c0:e1:31:50:6b:0b:ca:7e:58:24:09:ef:
1c:a6:63:8f:b1:c8:b8:9b:3f:8a:80:a5:e2:2e:e0:
68:19:ed:4e:63:34:cc:c6:c5:cd:75:31:25:23:e7:
99:de:97:b9:5f:92:6f:a2:43:81:1e:93:ee:17:e8:
ca:63:e2:ea:b8:f9:ad:57:eb:f9:6e:e4:2b:ed:bd:
fa:48:59:68:ae:72:0b:53:c6:f4:5b:a9:7c:c3:0c:
4b:f6:1b:77:03:b6:cd:00:41:d4:34:1d:6c:b5:07:
9a:07:39:79:3a:3d:7f:eb:c4:1c:f7:80:1e:c8:1f:
fb:7a:dd:f4:65:1f:03:65:da:cc:66:13:3d:25:b3:
26:2a:c4:65:2a:09:37:b4:18:d1:ab:38:fc:7c:10:
20:f1:95:5f:99:5b:dc:d7:33:58:ff:35:15:00:cd:
e7:f9:36:fe:e3:53:84:23:36:c0:d7:80:0e:dc:45:
ab:1c:43:3b:01:25:1a:32:8e:fe:da:86:b0:90:6a:
e2:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:36:3A:0D:58:17:5E:22:B5:6C:39:B1:A0:C3:4C:75:86:A9:17:D2
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/STY6DVgXXiK1bDmxoMNMdYapF9I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.24.0/24
5.105.26.0/24
5.105.28.0/24
5.105.30.0-5.105.33.255
5.105.38.0/23
5.105.42.0/23
5.105.59.0/24
5.105.62.0/23
5.105.68.0/23
5.105.72.0/24
5.105.76.0/23
5.105.82.0/24
5.105.84.0/24
5.105.86.0-5.105.89.255
5.105.94.0/24
5.105.108.0/24
5.105.112.0/24
5.105.115.0/24
5.105.125.0-5.105.127.255
5.105.131.0-5.105.132.255
5.105.134.0/24
5.105.136.0/24
5.105.138.0/23
5.105.141.0-5.105.143.255
5.105.148.0/22
5.105.156.0/24
5.105.162.0/24
5.105.164.0-5.105.166.255
5.105.168.0/24
5.105.170.0/24
5.105.172.0/24
5.105.174.0-5.105.178.255
5.105.180.0/22
5.105.185.0-5.105.187.255
5.105.195.0/24
5.105.197.0-5.105.199.255
5.105.202.0/23
5.105.206.0/23
5.105.214.0/24
5.105.216.0/24
5.105.218.0/24
5.105.229.0-5.105.230.255
5.105.232.0-5.105.236.255
5.105.239.0-5.105.240.255
5.105.242.0/24
5.105.244.0/23
5.105.247.0-5.105.249.255
85.255.180.0/22
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
83:c9:7c:39:5d:7e:e1:96:52:5c:62:d3:33:27:86:b5:20:78:
6b:c0:48:e9:57:81:a9:6f:66:04:2d:ea:2e:c2:15:0d:4e:da:
75:d4:5f:02:d8:36:ff:11:66:49:da:c4:87:0f:3a:96:90:c4:
13:20:5b:1c:10:bc:92:e7:03:bb:4a:88:4f:c9:01:59:8c:fa:
47:ca:6e:32:e1:91:97:06:ce:f1:db:c0:05:3a:e8:2e:cb:cb:
40:6e:a3:ff:b6:ce:a9:80:bf:8a:9f:17:e8:5f:41:c3:ee:4d:
25:18:68:11:40:f4:cf:ab:4e:05:09:54:6f:3a:db:3f:40:e2:
50:f4:6b:a8:82:67:d8:69:40:97:69:ec:1e:ba:20:bf:06:3e:
be:b3:11:11:c6:f4:01:e2:e4:a2:79:f9:77:53:ef:d1:83:17:
9a:86:76:42:5e:7d:3b:ec:e6:c9:80:d0:7e:c0:7c:81:88:2c:
be:87:a7:8c:32:56:12:f1:53:39:a6:dc:00:ee:83:28:7e:f3:
0b:a4:5a:8b:81:2c:eb:a7:24:6c:96:12:a5:bc:5b:24:c1:09:
b0:81:e2:aa:13:7a:f0:e0:4e:f1:e8:fd:76:df:d6:fb:e5:b2:
5d:28:a6:0d:20:63:5d:3f:d7:37:83:8d:db:42:22:c4:e4:6d:
a0:a5:de:ec
-----BEGIN CERTIFICATE-----
MIIGjzCCBXegAwIBAgISAYSqT4200d+hax3OQoC4HbGPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkZjhiNDUyNTRlNTQ3MGQxZDRjY2U2ZmI3ZGZkNGQwZDgz
YjVkNTkwHhcNMjIxMTI0MTU0NDExWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OTM2M2EwZDU4MTc1ZTIyYjU2YzM5YjFhMGMzNGM3NTg2YTkxN2QyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxkOOfHRGo/RlKWIngQXuqH9fsh9M
548ENsYGNe3u8Sz2bw0R6Ia99RA34a2MBkzlX09b4tk6KRfcW//pmdXA4TFQawvK
flgkCe8cpmOPsci4mz+KgKXiLuBoGe1OYzTMxsXNdTElI+eZ3pe5X5JvokOBHpPu
F+jKY+LquPmtV+v5buQr7b36SFlornILU8b0W6l8wwxL9ht3A7bNAEHUNB1stQea
Bzl5Oj1/68Qc94AeyB/7et30ZR8DZdrMZhM9JbMmKsRlKgk3tBjRqzj8fBAg8ZVf
mVvc1zNY/zUVAM3n+Tb+41OEIzbA14AO3EWrHEM7ASUaMo7+2oawkGriKQIDAQAB
o4IDmzCCA5cwHQYDVR0OBBYEFEk2Og1YF14itWw5saDDTHWGqRfSMB8GA1UdIwQY
MBaAFN34tFJU5UcNHUzOb7ff1NDYO11ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2ZpMFVsVGxSdzBkVE01dnQ5X1UwTmc3WFZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS84ZmM3NDYtZmMwOC00MjExLWJhM2It
ODkzOTA2ZmI3ODU4LzEvU1RZNkRWZ1hYaUsxYkRteG9NTk1kWWFwRjlJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS84ZmM3NDYtZmMwOC00MjExLWJhM2ItODkzOTA2ZmI3ODU4
LzEvM2ZpMFVsVGxSdzBkVE01dnQ5X1UwTmc3WFZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBrwYIKwYBBQUHAQcBAf8EggGeMIIBmjCCAZYEAgABMIIB
jgMEAAVpGAMEAAVpGgMEAAVpHDAMAwQBBWkeAwQBBWkgAwQBBWkmAwQBBWkqAwQA
BWk7AwQBBWk+AwQBBWlEAwQABWlIAwQBBWlMAwQABWlSAwQABWlUMAwDBAEFaVYD
BAEFaVgDBAAFaV4DBAAFaWwDBAAFaXADBAAFaXMwDAMEAAVpfQMEBwVpADAMAwQA
BWmDAwQABWmEAwQABWmGAwQABWmIAwQBBWmKMAwDBAAFaY0DBAQFaYADBAIFaZQD
BAAFaZwDBAAFaaIwDAMEAgVppAMEAAVppgMEAAVpqAMEAAVpqgMEAAVprDAMAwQB
BWmuAwQABWmyAwQCBWm0MAwDBAAFabkDBAIFabgDBAAFacMwDAMEAAVpxQMEAwVp
wAMEAQVpygMEAQVpzgMEAAVp1gMEAAVp2AMEAAVp2jAMAwQABWnlAwQABWnmMAwD
BAMFaegDBAAFaewwDAMEAAVp7wMEAAVp8AMEAAVp8gMEAQVp9DAMAwQABWn3AwQB
BWn4AwQCVf+0AwQAwS7SMA0GCSqGSIb3DQEBCwUAA4IBAQCDyXw5XX7hllJcYtMz
J4a1IHhrwEjpV4Gpb2YELeouwhUNTtp11F8C2Db/EWZJ2sSHDzqWkMQTIFscELyS
5wO7SohPyQFZjPpHym4y4ZGXBs7x28AFOuguy8tAbqP/ts6pgL+KnxfoX0HD7k0l
GGgRQPTPq04FCVRvOts/QOJQ9GuogmfYaUCXaeweuiC/Bj6+sxERxvQB4uSiefl3
U+/RgxeahnZCXn077ObJgNB+wHyBiCy+h6eMMlYS8VM5ptwA7oMofvMLpFqLgSzr
pyRslhKlvFskwQmwgeKqE3rw4E7x6P1239b75bJdKKYNIGNdP9c3g43bQiLE5G2g
pd7s
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:00 2023 by rpki-client on console-ams.rpki-client.org