Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/9c78b9-da39-450f-bb96-07804aff490f/1/OV-ahmMrz57GHCxBpP7HO1uWpl8.roa
File: OV-ahmMrz57GHCxBpP7HO1uWpl8.roa (raw, json)
Hash identifier: GQJ4dK6+auAyIDVeJfAIwIvxauFwrx+WgaJg3b/oj0s=
Subject key identifier: 39:5F:9A:86:63:2B:CF:9E:C6:1C:2C:41:A4:FE:C7:3B:5B:96:A6:5F
Certificate issuer: /CN=0c2625bdffa9437dc2b96d8ae023100bc88e6fe3
Certificate serial: 14168A08
Authority key identifier: 0C:26:25:BD:FF:A9:43:7D:C2:B9:6D:8A:E0:23:10:0B:C8:8E:6F:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DCYlvf-pQ33CuW2K4CMQC8iOb-M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/9c78b9-da39-450f-bb96-07804aff490f/1/OV-ahmMrz57GHCxBpP7HO1uWpl8.roa
Signing time: Sat 01 Jan 2022 02:56:04 +0000
ROA not before: Sat 01 Jan 2022 02:56:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19905
IP address blocks: 89.33.15.0/24 maxlen: 24
89.43.49.0/24 maxlen: 24
84.247.1.0/24 maxlen: 24
85.204.192.0/24 maxlen: 24
217.19.128.0/20 maxlen: 24
89.40.64.0/24 maxlen: 24
86.104.64.0/24 maxlen: 24
89.43.172.0/23 maxlen: 24
89.35.82.0/23 maxlen: 24
62.68.160.0/19 maxlen: 24
86.104.12.0/24 maxlen: 24
212.30.0.0/19 maxlen: 24
92.114.55.0/24 maxlen: 24
46.102.107.0/24 maxlen: 24
93.114.188.0/23 maxlen: 24
188.241.17.0/24 maxlen: 24
91.190.160.0/21 maxlen: 24
89.42.115.0/24 maxlen: 24
188.214.59.0/24 maxlen: 24
185.3.100.0/22 maxlen: 24
89.37.59.0/24 maxlen: 24
89.44.107.0/24 maxlen: 24
88.81.128.0/19 maxlen: 24
85.204.135.0/24 maxlen: 24
85.204.144.0/24 maxlen: 24
89.47.253.0/24 maxlen: 24
89.32.207.0/24 maxlen: 24
89.47.248.0/24 maxlen: 24
77.81.75.0/24 maxlen: 24
85.204.71.0/24 maxlen: 24
89.42.174.0/23 maxlen: 24
89.42.179.0/24 maxlen: 24
78.111.192.0/20 maxlen: 24
86.105.10.0/23 maxlen: 24
93.187.144.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 337021448 (0x14168a08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c2625bdffa9437dc2b96d8ae023100bc88e6fe3
Validity
Not Before: Jan 1 02:56:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=395f9a86632bcf9ec61c2c41a4fec73b5b96a65f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:a4:6e:01:98:cf:b4:77:db:00:96:04:9b:be:
22:32:8b:d3:b1:5a:0f:43:fb:df:05:b8:24:22:75:
77:a8:63:96:63:a6:fd:f9:bf:42:32:1a:29:e0:60:
1a:4b:06:b6:63:17:48:a7:16:45:00:bd:f4:17:95:
91:f0:f0:47:a1:ea:0b:46:70:b1:a0:aa:49:3a:50:
2e:8a:26:08:ae:59:a2:fb:3e:6f:fe:06:8d:a7:d8:
d9:21:53:ca:cd:d3:7a:71:d3:2f:f4:a0:3a:7f:21:
2f:24:5d:97:02:02:07:43:09:14:b6:27:c7:4f:24:
41:66:29:05:35:cf:78:23:e9:2d:a9:27:21:85:2f:
72:95:8e:9b:87:8b:e5:52:05:f2:1e:f9:3f:b7:94:
02:00:72:b8:90:7c:48:00:ad:b0:94:39:bc:de:c8:
31:2a:3d:17:bd:a7:77:4f:44:26:75:1a:de:5b:e7:
f3:62:2c:f5:ec:a2:c3:30:34:25:59:12:84:72:e2:
c3:97:7a:66:17:e5:af:cf:72:71:4e:46:72:38:f2:
f7:df:de:d2:0a:84:4f:a0:d6:68:85:1f:ba:21:ec:
06:1a:dd:24:89:2f:4a:d2:f7:8b:65:02:fc:46:ac:
04:40:c1:60:e7:9a:f8:02:70:86:6f:ca:54:8b:a2:
3a:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:5F:9A:86:63:2B:CF:9E:C6:1C:2C:41:A4:FE:C7:3B:5B:96:A6:5F
X509v3 Authority Key Identifier:
keyid:0C:26:25:BD:FF:A9:43:7D:C2:B9:6D:8A:E0:23:10:0B:C8:8E:6F:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DCYlvf-pQ33CuW2K4CMQC8iOb-M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/9c78b9-da39-450f-bb96-07804aff490f/1/OV-ahmMrz57GHCxBpP7HO1uWpl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/9c78b9-da39-450f-bb96-07804aff490f/1/DCYlvf-pQ33CuW2K4CMQC8iOb-M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.107.0/24
62.68.160.0/19
77.81.75.0/24
78.111.192.0/20
84.247.1.0/24
85.204.71.0/24
85.204.135.0/24
85.204.144.0/24
85.204.192.0/24
86.104.12.0/24
86.104.64.0/24
86.105.10.0/23
88.81.128.0/19
89.32.207.0/24
89.33.15.0/24
89.35.82.0/23
89.37.59.0/24
89.40.64.0/24
89.42.115.0/24
89.42.174.0/23
89.42.179.0/24
89.43.49.0/24
89.43.172.0/23
89.44.107.0/24
89.47.248.0/24
89.47.253.0/24
91.190.160.0/21
92.114.55.0/24
93.114.188.0/23
93.187.144.0/21
185.3.100.0/22
188.214.59.0/24
188.241.17.0/24
212.30.0.0/19
217.19.128.0/20
Signature Algorithm: sha256WithRSAEncryption
7b:e4:c3:d5:0b:bd:0c:e7:e3:b3:2d:47:15:a9:74:9e:07:f6:
6d:c7:6d:fd:09:dd:0d:07:56:28:14:69:b2:fb:b2:2a:98:6f:
ae:89:5f:72:c7:94:46:ae:06:06:ac:92:9a:8c:01:3e:59:7f:
01:fa:5c:aa:8d:b7:3f:a9:83:cf:e3:36:11:fb:82:ee:0a:b2:
07:5a:64:26:bc:a7:d6:21:c9:a6:94:09:ba:bd:59:da:ee:e5:
19:31:39:35:5d:3a:ca:ca:56:8b:4d:9b:88:ce:c2:ff:32:6c:
7f:89:c5:81:ca:58:8b:52:b6:a3:49:60:28:d0:3b:70:7a:00:
d3:fa:dd:9d:0a:2c:b4:68:ca:dd:39:fa:f0:01:a3:09:50:8e:
44:8d:39:c1:a0:cb:dc:8e:fd:6e:5d:01:1c:09:aa:96:eb:ff:
a0:0b:50:bf:6a:c7:61:f3:84:14:f8:fd:c8:9f:72:d0:ec:87:
a5:11:95:c9:3e:df:b3:27:16:47:9c:78:d7:45:45:f8:04:c4:
09:04:6b:48:27:a8:a6:26:66:f0:8d:10:c5:bc:23:de:a7:89:
f2:a8:59:d8:0f:34:13:8d:6f:9e:b4:90:17:62:33:15:89:c0:
60:9d:d2:15:4d:68:aa:cf:ff:d9:da:db:94:43:dd:bb:ac:e7:
d1:28:34:21
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIEFBaKCDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
YzI2MjViZGZmYTk0MzdkYzJiOTZkOGFlMDIzMTAwYmM4OGU2ZmUzMB4XDTIyMDEw
MTAyNTYwNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzk1ZjlhODY2MzJi
Y2Y5ZWM2MWMyYzQxYTRmZWM3M2I1Yjk2YTY1ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOWkbgGYz7R32wCWBJu+IjKL07FaD0P73wW4JCJ1d6hjlmOm
/fm/QjIaKeBgGksGtmMXSKcWRQC99BeVkfDwR6HqC0ZwsaCqSTpQLoomCK5Zovs+
b/4GjafY2SFTys3TenHTL/SgOn8hLyRdlwICB0MJFLYnx08kQWYpBTXPeCPpLakn
IYUvcpWOm4eL5VIF8h75P7eUAgByuJB8SACtsJQ5vN7IMSo9F72nd09EJnUa3lvn
82Is9eyiwzA0JVkShHLiw5d6Zhflr89ycU5Gcjjy99/e0gqET6DWaIUfuiHsBhrd
JIkvStL3i2UC/EasBEDBYOea+AJwhm/KVIuiOg8CAwEAAaOCAtowggLWMB0GA1Ud
DgQWBBQ5X5qGYyvPnsYcLEGk/sc7W5amXzAfBgNVHSMEGDAWgBQMJiW9/6lDfcK5
bYrgIxALyI5v4zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0RDWWx2Zi1wUTMzQ3VXMks0Q01RQzhpT2ItTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjAvOWM3OGI5LWRhMzktNDUwZi1iYjk2LTA3ODA0YWZmNDkwZi8x
L09WLWFobU1yejU3R0hDeEJwUDdITzF1V3BsOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjAv
OWM3OGI5LWRhMzktNDUwZi1iYjk2LTA3ODA0YWZmNDkwZi8xL0RDWWx2Zi1wUTMz
Q3VXMks0Q01RQzhpT2ItTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
7wYIKwYBBQUHAQcBAf8Egd8wgdwwgdkEAgABMIHSAwQALmZrAwQFPkSgAwQATVFL
AwQETm/AAwQAVPcBAwQAVcxHAwQAVcyHAwQAVcyQAwQAVczAAwQAVmgMAwQAVmhA
AwQBVmkKAwQFWFGAAwQAWSDPAwQAWSEPAwQBWSNSAwQAWSU7AwQAWShAAwQAWSpz
AwQBWSquAwQAWSqzAwQAWSsxAwQBWSusAwQAWSxrAwQAWS/4AwQAWS/9AwQDW76g
AwQAXHI3AwQBXXK8AwQDXbuQAwQCuQNkAwQAvNY7AwQAvPERAwQF1B4AAwQE2ROA
MA0GCSqGSIb3DQEBCwUAA4IBAQB75MPVC70M5+OzLUcVqXSeB/Ztx239Cd0NB1Yo
FGmy+7IqmG+uiV9yx5RGrgYGrJKajAE+WX8B+lyqjbc/qYPP4zYR+4LuCrIHWmQm
vKfWIcmmlAm6vVna7uUZMTk1XTrKylaLTZuIzsL/Mmx/icWByliLUrajSWAo0Dtw
egDT+t2dCiy0aMrdOfrwAaMJUI5EjTnBoMvcjv1uXQEcCaqW6/+gC1C/asdh84QU
+P3In3LQ7IelEZXJPt+zJxZHnHjXRUX4BMQJBGtIJ6imJmbwjRDFvCPep4nyqFnY
DzQTjW+etJAXYjMVicBgndIVTWiqz//Z2tuUQ927rOfRKDQh
-----END CERTIFICATE-----
Generated at Fri Apr 18 01:35:20 2025 by rpki-client