Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/d3f1ba-d9e5-45c5-bca2-1619d08c6965/1/0tJfhccOfQIP5WAsbNz88M6gkiU.roa
File: 0tJfhccOfQIP5WAsbNz88M6gkiU.roa (raw, json)
Hash identifier: jpKFKKZejTiEpTemrgblcS9QH4pfZclFaB0RaCZheW4=
Subject key identifier: D2:D2:5F:85:C7:0E:7D:02:0F:E5:60:2C:6C:DC:FC:F0:CE:A0:92:25
Certificate issuer: /CN=95a5adf6af1fcc0570adf858fd5bfbe28791a186
Certificate serial: 0185679564655B81579EA763F206113B6BEB
Authority key identifier: 95:A5:AD:F6:AF:1F:CC:05:70:AD:F8:58:FD:5B:FB:E2:87:91:A1:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/laWt9q8fzAVwrfhY_Vv74oeRoYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/d3f1ba-d9e5-45c5-bca2-1619d08c6965/1/0tJfhccOfQIP5WAsbNz88M6gkiU.roa
Signing time: Sat 31 Dec 2022 09:48:41 +0000
ROA not before: Sat 31 Dec 2022 09:48:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5413
IP address blocks: 77.73.120.0/21 maxlen: 24
212.103.224.0/19 maxlen: 24
195.70.64.0/19 maxlen: 24
78.141.0.0/18 maxlen: 24
5.22.224.0/21 maxlen: 24
217.67.48.0/20 maxlen: 24
193.242.113.0/24 maxlen: 24
193.242.116.0/24 maxlen: 24
185.3.76.0/22 maxlen: 24
193.242.115.0/24 maxlen: 24
130.185.64.0/21 maxlen: 24
62.232.0.0/16 maxlen: 24
94.30.0.0/17 maxlen: 24
194.154.160.0/19 maxlen: 24
77.107.128.0/18 maxlen: 24
185.8.204.0/22 maxlen: 24
80.234.128.0/17 maxlen: 24
109.170.128.0/17 maxlen: 24
212.102.192.0/19 maxlen: 24
195.224.0.0/16 maxlen: 24
80.89.80.0/20 maxlen: 24
62.69.32.0/19 maxlen: 24
62.72.128.0/19 maxlen: 24
195.200.128.0/19 maxlen: 24
194.1.210.0/24 maxlen: 24
212.241.128.0/17 maxlen: 24
212.19.64.0/19 maxlen: 24
194.79.240.0/22 maxlen: 24
45.83.76.0/22 maxlen: 24
80.69.128.0/20 maxlen: 24
194.143.160.0/19 maxlen: 24
212.35.224.0/19 maxlen: 24
195.147.0.0/16 maxlen: 24
93.95.104.0/21 maxlen: 24
193.38.52.0/24 maxlen: 24
195.38.64.0/19 maxlen: 24
62.105.64.0/18 maxlen: 24
89.145.192.0/18 maxlen: 24
193.41.96.0/21 maxlen: 24
93.92.120.0/21 maxlen: 24
194.126.64.0/19 maxlen: 24
193.28.154.0/24 maxlen: 24
176.35.0.0/16 maxlen: 24
78.41.208.0/21 maxlen: 24
185.196.204.0/22 maxlen: 24
194.153.0.0/19 maxlen: 24
77.44.0.0/17 maxlen: 24
193.192.64.0/19 maxlen: 24
91.236.17.0/24 maxlen: 24
82.195.96.0/19 maxlen: 24
213.205.128.0/18 maxlen: 24
193.192.34.0/23 maxlen: 24
80.64.48.0/20 maxlen: 24
83.219.32.0/19 maxlen: 24
62.44.64.0/19 maxlen: 24
195.226.32.0/19 maxlen: 24
185.138.152.0/22 maxlen: 24
212.88.32.0/19 maxlen: 24
2a00:b300::/32 maxlen: 48
2a04:b2c0::/29 maxlen: 48
2a07:2640::/29 maxlen: 48
2a03:4200::/32 maxlen: 48
2001:b98::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:67:95:64:65:5b:81:57:9e:a7:63:f2:06:11:3b:6b:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95a5adf6af1fcc0570adf858fd5bfbe28791a186
Validity
Not Before: Dec 31 09:48:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d2d25f85c70e7d020fe5602c6cdcfcf0cea09225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:92:98:ad:08:a2:4c:ec:b0:16:34:91:9f:94:
c0:05:e6:40:41:9b:ff:2b:0a:f3:5e:3c:bd:75:e4:
04:ab:58:84:cc:d5:27:d7:d9:23:83:bd:8d:4e:51:
3c:24:a5:14:ba:3b:44:ad:33:19:61:be:9a:6c:e2:
31:fe:9c:d1:ee:7f:57:dc:4f:b6:a9:32:73:b7:2d:
9f:a7:be:d8:b6:fd:f9:c3:b5:ff:0d:46:0c:6f:17:
9a:a5:d8:e0:d3:c3:a6:09:58:f3:ad:09:59:75:64:
c7:a4:a8:b0:a5:d5:28:2c:24:f9:03:ad:4c:ba:76:
43:74:c4:1e:24:18:e2:76:ef:71:10:f6:97:5f:30:
85:62:fb:91:ce:dd:51:01:ba:21:c7:68:18:0b:5d:
e4:28:cd:da:b9:90:19:8d:b2:e1:6e:f2:cd:50:e0:
76:53:9e:d0:72:55:63:89:59:b1:33:50:05:08:09:
73:fe:d1:95:4f:16:51:f8:4b:83:f1:c4:b0:c5:28:
9a:ff:3a:e1:4d:27:fa:bf:6b:94:e0:c0:56:21:69:
94:26:e6:ca:d9:29:5e:80:de:a4:80:a0:b4:0f:4a:
b4:40:e7:4e:4a:75:41:22:c0:65:fa:f8:07:52:2b:
ec:46:b2:94:ad:13:29:d9:c9:40:13:bd:e7:14:4d:
8e:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:D2:5F:85:C7:0E:7D:02:0F:E5:60:2C:6C:DC:FC:F0:CE:A0:92:25
X509v3 Authority Key Identifier:
keyid:95:A5:AD:F6:AF:1F:CC:05:70:AD:F8:58:FD:5B:FB:E2:87:91:A1:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/laWt9q8fzAVwrfhY_Vv74oeRoYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/d3f1ba-d9e5-45c5-bca2-1619d08c6965/1/0tJfhccOfQIP5WAsbNz88M6gkiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/d3f1ba-d9e5-45c5-bca2-1619d08c6965/1/laWt9q8fzAVwrfhY_Vv74oeRoYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.22.224.0/21
45.83.76.0/22
62.44.64.0/19
62.69.32.0/19
62.72.128.0/19
62.105.64.0/18
62.232.0.0/16
77.44.0.0/17
77.73.120.0/21
77.107.128.0/18
78.41.208.0/21
78.141.0.0/18
80.64.48.0/20
80.69.128.0/20
80.89.80.0/20
80.234.128.0/17
82.195.96.0/19
83.219.32.0/19
89.145.192.0/18
91.236.17.0/24
93.92.120.0/21
93.95.104.0/21
94.30.0.0/17
109.170.128.0/17
130.185.64.0/21
176.35.0.0/16
185.3.76.0/22
185.8.204.0/22
185.138.152.0/22
185.196.204.0/22
193.28.154.0/24
193.38.52.0/24
193.41.96.0/21
193.192.34.0/23
193.192.64.0/19
193.242.113.0/24
193.242.115.0-193.242.116.255
194.1.210.0/24
194.79.240.0/22
194.126.64.0/19
194.143.160.0/19
194.153.0.0/19
194.154.160.0/19
195.38.64.0/19
195.70.64.0/19
195.147.0.0/16
195.200.128.0/19
195.224.0.0/16
195.226.32.0/19
212.19.64.0/19
212.35.224.0/19
212.88.32.0/19
212.102.192.0/19
212.103.224.0/19
212.241.128.0/17
213.205.128.0/18
217.67.48.0/20
IPv6:
2001:b98::/29
2a00:b300::/32
2a03:4200::/32
2a04:b2c0::/29
2a07:2640::/29
Signature Algorithm: sha256WithRSAEncryption
e4:ed:28:22:ea:1e:3d:76:b7:e7:57:b7:b3:15:d7:cb:13:c8:
ce:66:c6:38:bc:d5:e3:92:a4:f9:79:d7:73:57:9f:31:da:2b:
fa:64:56:0f:f2:57:f6:86:36:74:a7:6b:76:78:bc:2c:f1:ed:
12:98:23:51:be:56:9a:54:04:4d:bd:f1:83:87:53:9f:af:90:
bd:ac:bd:1b:e6:8a:1d:72:0f:5d:8b:2a:b2:76:0d:cb:90:80:
44:71:d0:f3:fb:ab:fa:e6:2f:2a:2d:3c:8d:a3:33:a1:7f:93:
de:f1:22:97:b4:d7:53:60:28:ec:eb:5c:64:8f:e1:99:7f:e0:
2b:62:f3:c9:58:c2:8f:41:64:5d:15:42:f6:0e:b8:0f:37:4a:
47:86:bd:f0:e4:f9:f7:c3:47:74:55:68:34:3c:2b:32:42:6e:
0c:e9:59:26:b6:94:f8:dc:65:2a:10:91:f9:d7:25:df:5a:b6:
f9:8e:ed:d4:e1:89:c1:81:dc:2b:d1:35:12:26:36:3e:01:c5:
a4:b9:86:20:47:f4:9b:c7:8b:0d:b0:47:c2:c5:92:d5:68:aa:
2c:a2:21:87:c9:73:19:6b:b8:8e:d0:e8:c6:f4:91:95:43:44:
ad:61:75:0d:f5:39:7a:ca:09:8d:6b:3c:a7:93:d6:77:c1:72:
b5:e5:3a:10
-----BEGIN CERTIFICATE-----
MIIGhjCCBW6gAwIBAgISAYVnlWRlW4FXnqdj8gYRO2vrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1YTVhZGY2YWYxZmNjMDU3MGFkZjg1OGZkNWJmYmUyODc5
MWExODYwHhcNMjIxMjMxMDk0ODQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMmQyNWY4NWM3MGU3ZDAyMGZlNTYwMmM2Y2RjZmNmMGNlYTA5MjI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlZKYrQiiTOywFjSRn5TABeZAQZv/
KwrzXjy9deQEq1iEzNUn19kjg72NTlE8JKUUujtErTMZYb6abOIx/pzR7n9X3E+2
qTJzty2fp77Ytv35w7X/DUYMbxeapdjg08OmCVjzrQlZdWTHpKiwpdUoLCT5A61M
unZDdMQeJBjidu9xEPaXXzCFYvuRzt1RAbohx2gYC13kKM3auZAZjbLhbvLNUOB2
U57QclVjiVmxM1AFCAlz/tGVTxZR+EuD8cSwxSia/zrhTSf6v2uU4MBWIWmUJubK
2SlegN6kgKC0D0q0QOdOSnVBIsBl+vgHUivsRrKUrRMp2clAE73nFE2ONQIDAQAB
o4IDkjCCA44wHQYDVR0OBBYEFNLSX4XHDn0CD+VgLGzc/PDOoJIlMB8GA1UdIwQY
MBaAFJWlrfavH8wFcK34WP1b++KHkaGGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGFXdDlxOGZ6QVZ3cmZoWV9Wdjc0b2VSb1lZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9kM2YxYmEtZDllNS00NWM1LWJjYTIt
MTYxOWQwOGM2OTY1LzEvMHRKZmhjY09mUUlQNVdBc2JOejg4TTZna2lVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni9kM2YxYmEtZDllNS00NWM1LWJjYTItMTYxOWQwOGM2OTY1
LzEvbGFXdDlxOGZ6QVZ3cmZoWV9Wdjc0b2VSb1lZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBpgYIKwYBBQUHAQcBAf8EggGVMIIBkTCCAWIEAgABMIIB
WgMEAwUW4AMEAi1TTAMEBT4sQAMEBT5FIAMEBT5IgAMEBj5pQAMDAD7oAwQHTSwA
AwQDTUl4AwQGTWuAAwQDTinQAwQGTo0AAwQEUEAwAwQEUEWAAwQEUFlQAwQHUOqA
AwQFUsNgAwQFU9sgAwQGWZHAAwQAW+wRAwQDXVx4AwQDXV9oAwQHXh4AAwQHbaqA
AwQDgrlAAwMAsCMDBAK5A0wDBAK5CMwDBAK5ipgDBAK5xMwDBADBHJoDBADBJjQD
BAPBKWADBAHBwCIDBAXBwEADBADB8nEwDAMEAMHycwMEAMHydAMEAMIB0gMEAsJP
8AMEBcJ+QAMEBcKPoAMEBcKZAAMEBcKaoAMEBcMmQAMEBcNGQAMDAMOTAwQFw8iA
AwMAw+ADBAXD4iADBAXUE0ADBAXUI+ADBAXUWCADBAXUZsADBAXUZ+ADBAfU8YAD
BAbVzYADBATZQzAwKQQCAAIwIwMFAyABC5gDBQAqALMAAwUAKgNCAAMFAyoEssAD
BQMqByZAMA0GCSqGSIb3DQEBCwUAA4IBAQDk7Sgi6h49drfnV7ezFdfLE8jOZsY4
vNXjkqT5eddzV58x2iv6ZFYP8lf2hjZ0p2t2eLws8e0SmCNRvlaaVARNvfGDh1Of
r5C9rL0b5oodcg9diyqydg3LkIBEcdDz+6v65i8qLTyNozOhf5Pe8SKXtNdTYCjs
61xkj+GZf+ArYvPJWMKPQWRdFUL2DrgPN0pHhr3w5Pn3w0d0VWg0PCsyQm4M6Vkm
tpT43GUqEJH51yXfWrb5ju3U4YnBgdwr0TUSJjY+AcWkuYYgR/Sbx4sNsEfCxZLV
aKosoiGHyXMZa7iO0OjG9JGVQ0StYXUN9Tl6ygmNazynk9Z3wXK15ToQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:34 2024 by rpki-client on console-ams.rpki-client.org