Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/d3f1ba-d9e5-45c5-bca2-1619d08c6965/1/upYjrcy5aeQLkdn9Tlbq0BtyC_g.roa
File: upYjrcy5aeQLkdn9Tlbq0BtyC_g.roa (raw, json)
Hash identifier: RHa0cJNAqOR8WStqrQfhciuWfGzMEwWMWdV5hvazjjs=
Subject key identifier: BA:96:23:AD:CC:B9:69:E4:0B:91:D9:FD:4E:56:EA:D0:1B:72:0B:F8
Certificate issuer: /CN=95a5adf6af1fcc0570adf858fd5bfbe28791a186
Certificate serial: 01856589B5CE36DD2805429AAB1B5B92FD1C
Authority key identifier: 95:A5:AD:F6:AF:1F:CC:05:70:AD:F8:58:FD:5B:FB:E2:87:91:A1:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/laWt9q8fzAVwrfhY_Vv74oeRoYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/d3f1ba-d9e5-45c5-bca2-1619d08c6965/1/upYjrcy5aeQLkdn9Tlbq0BtyC_g.roa
Signing time: Sat 31 Dec 2022 00:16:41 +0000
ROA not before: Sat 31 Dec 2022 00:16:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5413
IP address blocks: 77.73.120.0/21 maxlen: 24
212.103.224.0/19 maxlen: 24
195.70.64.0/19 maxlen: 24
78.141.0.0/18 maxlen: 24
5.22.224.0/21 maxlen: 24
217.67.48.0/20 maxlen: 24
193.242.113.0/24 maxlen: 24
193.242.116.0/24 maxlen: 24
185.3.76.0/22 maxlen: 24
193.242.115.0/24 maxlen: 24
130.185.64.0/21 maxlen: 24
62.232.0.0/16 maxlen: 24
94.30.0.0/17 maxlen: 24
194.154.160.0/19 maxlen: 24
77.107.128.0/18 maxlen: 24
185.8.204.0/22 maxlen: 24
80.234.128.0/17 maxlen: 24
109.170.128.0/17 maxlen: 24
212.102.192.0/19 maxlen: 24
195.224.0.0/16 maxlen: 24
80.89.80.0/20 maxlen: 24
62.69.32.0/19 maxlen: 24
62.72.128.0/19 maxlen: 24
195.200.128.0/19 maxlen: 24
194.1.210.0/24 maxlen: 24
212.241.128.0/17 maxlen: 24
212.19.64.0/19 maxlen: 24
194.79.240.0/22 maxlen: 24
45.83.76.0/22 maxlen: 24
80.69.128.0/20 maxlen: 24
195.147.4.0/24 maxlen: 24
194.143.160.0/19 maxlen: 24
212.35.224.0/19 maxlen: 24
195.147.0.0/16 maxlen: 24
93.95.104.0/21 maxlen: 24
195.38.64.0/19 maxlen: 24
62.105.64.0/18 maxlen: 24
89.145.192.0/18 maxlen: 24
193.41.96.0/21 maxlen: 24
93.92.120.0/21 maxlen: 24
194.126.64.0/19 maxlen: 24
193.28.154.0/24 maxlen: 24
176.35.0.0/16 maxlen: 24
78.41.208.0/21 maxlen: 24
185.196.204.0/22 maxlen: 24
194.153.0.0/19 maxlen: 24
77.44.0.0/17 maxlen: 24
193.192.64.0/19 maxlen: 24
91.236.17.0/24 maxlen: 24
82.195.96.0/19 maxlen: 24
213.205.128.0/18 maxlen: 24
193.192.34.0/23 maxlen: 24
80.64.48.0/20 maxlen: 24
83.219.32.0/19 maxlen: 24
62.44.64.0/19 maxlen: 24
195.226.32.0/19 maxlen: 24
185.138.152.0/22 maxlen: 24
212.88.32.0/19 maxlen: 24
2a00:b300::/32 maxlen: 48
2a04:b2c0::/29 maxlen: 48
2001:b98:204::/48 maxlen: 48
2a03:4200::/32 maxlen: 48
2001:b98::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:65:89:b5:ce:36:dd:28:05:42:9a:ab:1b:5b:92:fd:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95a5adf6af1fcc0570adf858fd5bfbe28791a186
Validity
Not Before: Dec 31 00:16:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba9623adccb969e40b91d9fd4e56ead01b720bf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:94:48:47:95:7b:9d:ab:2c:ba:bb:d2:e3:ec:
81:86:77:b2:1e:7d:75:1b:ae:3e:7a:1d:18:f8:14:
f3:cf:73:a0:f7:d7:76:37:db:93:e3:e0:ff:1e:e4:
c2:67:1f:aa:df:7c:4d:6e:a5:11:a5:55:ae:5d:42:
f0:ed:cd:4e:fe:a2:0a:b9:36:75:d5:36:e8:e5:ec:
d7:7d:92:1b:65:c1:61:3d:b9:e2:54:f9:15:0a:78:
f2:28:78:ec:fb:a4:d4:a2:30:c3:78:60:08:dd:92:
b2:06:d2:01:b0:3f:ff:c6:fb:1e:e9:aa:c8:66:97:
4c:c8:71:34:3a:d8:24:da:df:2c:a9:32:47:87:a1:
f3:a3:9a:ad:94:d7:42:5d:14:53:b3:e0:a6:c8:5a:
00:88:63:34:1c:9a:0d:d5:6b:51:4d:eb:13:a6:63:
a4:01:d4:ae:f8:50:5a:85:07:4c:98:32:f5:8a:cb:
9a:55:4c:a1:13:a3:e0:82:24:18:aa:af:aa:9e:a6:
08:8d:fd:b3:63:23:c5:21:7f:72:9e:0e:cf:b9:ee:
8e:0d:4f:be:58:a6:b6:51:38:bf:21:3b:d0:ba:72:
71:b7:33:62:df:f5:e7:40:35:80:6c:78:e7:5c:3d:
31:e6:ce:52:af:9d:72:c6:5d:77:1a:de:11:c9:03:
7d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:96:23:AD:CC:B9:69:E4:0B:91:D9:FD:4E:56:EA:D0:1B:72:0B:F8
X509v3 Authority Key Identifier:
keyid:95:A5:AD:F6:AF:1F:CC:05:70:AD:F8:58:FD:5B:FB:E2:87:91:A1:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/laWt9q8fzAVwrfhY_Vv74oeRoYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/d3f1ba-d9e5-45c5-bca2-1619d08c6965/1/upYjrcy5aeQLkdn9Tlbq0BtyC_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/d3f1ba-d9e5-45c5-bca2-1619d08c6965/1/laWt9q8fzAVwrfhY_Vv74oeRoYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.22.224.0/21
45.83.76.0/22
62.44.64.0/19
62.69.32.0/19
62.72.128.0/19
62.105.64.0/18
62.232.0.0/16
77.44.0.0/17
77.73.120.0/21
77.107.128.0/18
78.41.208.0/21
78.141.0.0/18
80.64.48.0/20
80.69.128.0/20
80.89.80.0/20
80.234.128.0/17
82.195.96.0/19
83.219.32.0/19
89.145.192.0/18
91.236.17.0/24
93.92.120.0/21
93.95.104.0/21
94.30.0.0/17
109.170.128.0/17
130.185.64.0/21
176.35.0.0/16
185.3.76.0/22
185.8.204.0/22
185.138.152.0/22
185.196.204.0/22
193.28.154.0/24
193.41.96.0/21
193.192.34.0/23
193.192.64.0/19
193.242.113.0/24
193.242.115.0-193.242.116.255
194.1.210.0/24
194.79.240.0/22
194.126.64.0/19
194.143.160.0/19
194.153.0.0/19
194.154.160.0/19
195.38.64.0/19
195.70.64.0/19
195.147.0.0/16
195.200.128.0/19
195.224.0.0/16
195.226.32.0/19
212.19.64.0/19
212.35.224.0/19
212.88.32.0/19
212.102.192.0/19
212.103.224.0/19
212.241.128.0/17
213.205.128.0/18
217.67.48.0/20
IPv6:
2001:b98::/29
2a00:b300::/32
2a03:4200::/32
2a04:b2c0::/29
Signature Algorithm: sha256WithRSAEncryption
a6:f8:76:00:98:77:05:ee:3d:ce:a3:4b:2a:1a:5c:b3:ba:9a:
e5:3d:06:07:d6:6b:11:63:29:28:6e:34:c7:b8:af:87:25:49:
ac:00:2a:f2:4e:bd:a7:96:09:b2:9a:dd:9b:a2:63:97:e9:6e:
c5:2d:24:cc:c0:e6:0b:8e:58:fe:13:3f:d2:d8:44:aa:74:bc:
31:f2:96:35:c3:d2:16:d9:44:08:ae:f3:95:8f:cd:27:be:52:
f0:23:5b:a0:e9:20:53:62:9b:22:0e:17:d7:c9:3a:98:73:b4:
ac:d5:5e:c4:90:c8:5e:d6:10:36:d6:80:20:d7:3f:81:56:c3:
d0:f4:1e:0c:6a:ba:ee:e7:80:db:2d:10:fa:7c:ee:68:a7:32:
0a:26:1c:df:e1:1d:71:76:e0:cb:21:40:aa:f8:61:58:07:48:
d2:37:95:2c:56:01:6d:66:de:cf:68:f3:94:fa:09:0e:65:22:
16:08:45:a9:10:d2:b6:fd:9e:de:ce:c5:8f:ef:81:22:41:16:
5f:45:8c:53:8f:3d:dc:58:4e:15:10:44:a3:62:1f:9a:66:d5:
f0:72:12:d1:cc:ad:ab:f8:21:13:f8:cc:33:1c:07:d7:ca:a6:
e9:f4:56:6d:82:fe:5c:44:9c:63:d8:fc:9d:73:c8:01:a7:60:
0a:74:ea:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:20 2023 by rpki-client on console-ams.rpki-client.org