Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/BWUIfFjQ6GZOtNzLU5BTUPpEl1g.roa
File: BWUIfFjQ6GZOtNzLU5BTUPpEl1g.roa (raw, json)
Hash identifier: 8XhbaSvIh+fxc8RDUclXIFd76ivNFbPPuxa2JC9ZnVQ=
Subject key identifier: 05:65:08:7C:58:D0:E8:66:4E:B4:DC:CB:53:90:53:50:FA:44:97:58
Certificate issuer: /CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Certificate serial: 01842D02D4864325B2BB37C68E1E23783A48
Authority key identifier: 4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/BWUIfFjQ6GZOtNzLU5BTUPpEl1g.roa
Signing time: Mon 31 Oct 2022 07:47:50 +0000
ROA not before: Mon 31 Oct 2022 07:47:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12975
IP address blocks: 103.215.4.0/22 maxlen: 22
43.255.108.0/22 maxlen: 22
182.161.60.0/22 maxlen: 22
213.6.0.0/16 maxlen: 24
188.161.0.0/16 maxlen: 24
188.161.134.0/23 maxlen: 23
46.60.64.0/18 maxlen: 24
185.19.223.0/24 maxlen: 24
185.19.222.0/24 maxlen: 24
185.19.221.0/24 maxlen: 24
185.19.220.0/24 maxlen: 24
185.19.220.0/22 maxlen: 22
45.127.179.0/24 maxlen: 24
45.127.178.0/24 maxlen: 24
45.127.177.0/24 maxlen: 24
45.127.176.0/24 maxlen: 24
45.127.176.0/22 maxlen: 22
188.161.112.0/22 maxlen: 22
188.161.116.0/22 maxlen: 22
158.140.16.0/20 maxlen: 20
158.140.112.0/22 maxlen: 22
158.140.108.0/22 maxlen: 22
158.140.116.0/22 maxlen: 22
158.140.124.0/22 maxlen: 22
158.140.120.0/22 maxlen: 22
43.241.159.0/24 maxlen: 24
43.241.158.0/24 maxlen: 24
43.241.157.0/24 maxlen: 24
43.241.156.0/24 maxlen: 24
43.241.156.0/22 maxlen: 22
103.53.4.0/24 maxlen: 24
103.53.4.0/22 maxlen: 24
158.140.64.0/22 maxlen: 22
158.140.68.0/23 maxlen: 23
158.140.64.0/18 maxlen: 24
103.248.38.0/24 maxlen: 24
103.248.37.0/24 maxlen: 24
103.248.36.0/24 maxlen: 24
193.227.236.0/23 maxlen: 23
103.248.36.0/22 maxlen: 22
45.113.111.0/24 maxlen: 24
45.113.110.0/24 maxlen: 24
45.113.109.0/24 maxlen: 24
45.113.108.0/24 maxlen: 24
103.248.39.0/24 maxlen: 24
45.113.108.0/22 maxlen: 22
158.140.104.0/22 maxlen: 22
158.140.100.0/22 maxlen: 22
5.11.40.0/21 maxlen: 21
5.11.47.0/24 maxlen: 24
5.11.46.0/24 maxlen: 24
103.206.108.0/22 maxlen: 22
176.65.0.0/21 maxlen: 24
176.65.8.0/22 maxlen: 22
103.193.132.0/22 maxlen: 22
103.239.96.0/22 maxlen: 22
103.37.85.0/24 maxlen: 24
103.37.84.0/24 maxlen: 24
103.37.84.0/22 maxlen: 22
103.37.87.0/24 maxlen: 24
103.37.86.0/24 maxlen: 24
86.104.188.0/22 maxlen: 22
113.212.64.0/22 maxlen: 22
203.30.104.0/22 maxlen: 22
103.57.108.0/22 maxlen: 22
103.57.111.0/24 maxlen: 24
103.57.110.0/24 maxlen: 24
103.57.109.0/24 maxlen: 24
103.57.108.0/24 maxlen: 24
1.179.40.0/21 maxlen: 21
103.206.36.0/22 maxlen: 22
1.179.72.0/21 maxlen: 21
82.213.0.0/18 maxlen: 24
1.179.88.0/21 maxlen: 21
77.91.128.0/18 maxlen: 24
77.91.128.0/21 maxlen: 21
77.91.136.0/21 maxlen: 21
45.117.40.0/22 maxlen: 22
45.117.43.0/24 maxlen: 24
45.117.42.0/24 maxlen: 24
45.117.41.0/24 maxlen: 24
45.117.40.0/24 maxlen: 24
1.178.112.0/20 maxlen: 20
1.178.128.0/20 maxlen: 20
213.244.121.0/24 maxlen: 24
139.190.176.0/20 maxlen: 20
37.75.208.0/21 maxlen: 21
37.75.211.0/24 maxlen: 24
213.244.71.0/24 maxlen: 24
213.244.70.0/24 maxlen: 24
213.244.70.0/23 maxlen: 24
213.244.64.0/18 maxlen: 24
83.244.75.0/24 maxlen: 24
83.244.78.0/24 maxlen: 24
213.244.76.0/24 maxlen: 24
144.48.236.0/22 maxlen: 22
83.244.74.0/24 maxlen: 24
83.244.73.0/24 maxlen: 24
213.244.73.0/24 maxlen: 24
213.244.72.0/24 maxlen: 24
213.244.72.0/21 maxlen: 24
83.244.79.0/24 maxlen: 24
24.42.64.0/18 maxlen: 18
139.190.128.0/18 maxlen: 24
103.231.104.0/22 maxlen: 22
103.231.105.0/24 maxlen: 24
103.231.104.0/24 maxlen: 24
195.123.163.0/24 maxlen: 24
195.123.160.0/21 maxlen: 21
195.123.160.0/23 maxlen: 23
195.123.160.0/24 maxlen: 24
195.123.166.0/24 maxlen: 24
195.123.165.0/24 maxlen: 24
195.123.164.0/24 maxlen: 24
195.123.162.0/24 maxlen: 24
195.123.161.0/24 maxlen: 24
103.231.107.0/24 maxlen: 24
103.231.106.0/24 maxlen: 24
195.123.167.0/24 maxlen: 24
195.123.112.0/24 maxlen: 24
195.123.118.0/24 maxlen: 24
195.123.117.0/24 maxlen: 24
195.123.116.0/24 maxlen: 24
195.123.115.0/24 maxlen: 24
195.123.114.0/24 maxlen: 24
195.123.113.0/24 maxlen: 24
195.123.112.0/21 maxlen: 21
195.123.119.0/24 maxlen: 24
103.196.120.0/22 maxlen: 22
203.28.19.0/24 maxlen: 24
194.176.98.0/23 maxlen: 23
43.243.95.0/24 maxlen: 24
43.243.94.0/24 maxlen: 24
43.243.93.0/24 maxlen: 24
43.243.92.0/24 maxlen: 24
43.243.92.0/22 maxlen: 22
83.244.0.0/17 maxlen: 24
193.223.252.0/23 maxlen: 23
203.189.236.0/22 maxlen: 22
194.169.188.0/23 maxlen: 23
212.14.224.0/19 maxlen: 24
45.134.202.0/23 maxlen: 23
45.134.203.0/24 maxlen: 24
45.134.202.0/24 maxlen: 24
45.121.104.0/22 maxlen: 22
45.121.105.0/24 maxlen: 24
45.121.106.0/23 maxlen: 23
43.243.24.0/22 maxlen: 22
103.27.144.0/22 maxlen: 22
43.243.32.0/22 maxlen: 22
43.243.35.0/24 maxlen: 24
43.243.34.0/24 maxlen: 24
43.243.32.0/24 maxlen: 24
2a00:d2c0:1e::/48 maxlen: 48
2a00:d2c0:32::/48 maxlen: 48
2a00:d2c0:4::/48 maxlen: 48
2a00:d2c0:31::/48 maxlen: 48
2a00:d2c0:1d::/48 maxlen: 48
2a00:d2c0:33::/48 maxlen: 48
2a00:d2c0:30::/48 maxlen: 48
2a00:d2c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:2d:02:d4:86:43:25:b2:bb:37:c6:8e:1e:23:78:3a:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Validity
Not Before: Oct 31 07:47:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0565087c58d0e8664eb4dccb53905350fa449758
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:a0:31:20:4b:93:cd:c0:a3:b9:b2:90:4a:6e:
3e:6e:8f:46:62:94:bd:b5:43:2a:63:dc:6e:77:b0:
db:06:fa:fa:06:f5:71:d4:bc:59:ef:de:ba:9a:e9:
99:8e:90:a1:25:e7:49:27:a2:0d:6a:94:33:55:12:
c8:8b:a6:78:dc:c2:39:db:1a:0d:a9:1f:c5:3f:85:
37:67:0c:bd:27:50:0a:f6:f1:62:b0:77:4f:b1:e9:
31:de:f8:ff:57:18:38:12:7a:9f:24:b3:16:8e:9f:
32:b4:b6:6c:ab:96:b3:5d:5c:6a:39:ac:62:c0:b0:
ef:93:55:15:48:21:80:79:69:a0:bc:f1:ba:55:58:
a1:de:c3:5b:5e:36:c3:cd:7e:6e:67:2c:c0:e3:ba:
d0:d1:37:5f:dd:9b:70:3d:11:53:5b:ee:a1:6e:7c:
fa:a4:2a:0f:db:d9:cf:a8:38:16:c5:6e:7c:20:8d:
fa:d3:88:45:5e:04:fc:9a:10:19:f1:a1:ec:17:8d:
9c:02:fb:30:fc:12:13:d9:cc:53:29:f6:92:97:0c:
84:ee:dc:43:c2:8b:30:2e:02:9e:53:0b:8c:a0:81:
a5:22:58:b2:52:9e:c8:fb:ca:c5:cf:a9:79:d9:b5:
85:fd:06:b0:ff:33:a5:f1:eb:7c:2e:04:a0:0a:7c:
dd:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:65:08:7C:58:D0:E8:66:4E:B4:DC:CB:53:90:53:50:FA:44:97:58
X509v3 Authority Key Identifier:
keyid:4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/BWUIfFjQ6GZOtNzLU5BTUPpEl1g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
1.178.112.0-1.178.143.255
1.179.40.0/21
1.179.72.0/21
1.179.88.0/21
5.11.40.0/21
24.42.64.0/18
37.75.208.0/21
43.241.156.0/22
43.243.24.0/22
43.243.32.0/22
43.243.92.0/22
43.255.108.0/22
45.113.108.0/22
45.117.40.0/22
45.121.104.0/22
45.127.176.0/22
45.134.202.0/23
46.60.64.0/18
77.91.128.0/18
82.213.0.0/18
83.244.0.0/17
86.104.188.0/22
103.27.144.0/22
103.37.84.0/22
103.53.4.0/22
103.57.108.0/22
103.193.132.0/22
103.196.120.0/22
103.206.36.0/22
103.206.108.0/22
103.215.4.0/22
103.231.104.0/22
103.239.96.0/22
103.248.36.0/22
113.212.64.0/22
139.190.128.0/18
144.48.236.0/22
158.140.16.0/20
158.140.64.0/18
176.65.0.0-176.65.11.255
182.161.60.0/22
185.19.220.0/22
188.161.0.0/16
193.223.252.0/23
193.227.236.0/23
194.169.188.0/23
194.176.98.0/23
195.123.112.0/21
195.123.160.0/21
203.28.19.0/24
203.30.104.0/22
203.189.236.0/22
212.14.224.0/19
213.6.0.0/16
213.244.64.0/18
IPv6:
2a00:d2c0::/32
Signature Algorithm: sha256WithRSAEncryption
73:43:1d:ca:26:d1:e7:1b:9c:57:cc:e5:c7:74:42:da:55:8c:
18:69:50:01:27:31:54:32:fb:2a:b4:55:a0:89:2c:ae:3e:7f:
11:89:e7:dc:d1:c1:63:84:54:94:47:82:7d:13:63:39:38:8e:
34:0a:bc:87:74:6e:3a:f0:43:9f:52:51:d2:fb:3c:2e:1a:23:
15:16:5c:2c:82:1a:7d:84:f1:33:44:20:ac:fc:04:e7:bb:44:
d2:ec:8f:ca:d9:3c:9f:b0:b4:9e:a1:fa:35:39:5b:3a:fa:86:
13:45:ce:55:82:f7:b8:71:11:9b:56:ab:9a:a1:a1:88:4b:fe:
5b:ae:1c:3f:28:52:69:8c:00:65:8d:f6:7c:e5:e1:df:b6:51:
78:73:c2:a2:f5:e7:27:95:b0:d9:f0:34:cc:a3:ac:86:f7:45:
3e:56:a0:a8:a7:64:70:b3:0d:50:e0:f6:4f:3f:51:7f:ec:fd:
24:80:9c:f8:3b:1e:46:dc:bf:53:15:78:7c:f2:68:88:0c:62:
d9:a5:f7:98:ab:cb:12:43:b0:24:b6:5d:b3:d8:1f:b1:ce:5a:
07:8f:a3:e3:3a:6c:14:8b:e9:6a:00:5d:4e:82:46:d7:28:c7:
79:6e:f7:4e:d7:d4:ad:db:f7:3f:71:0a:be:f5:78:17:bd:ab:
9d:11:42:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:09 2024 by rpki-client on console-ams.rpki-client.org