Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/fd_c_8eLmtRRA8fDH-jxkIx598I.roa
File: fd_c_8eLmtRRA8fDH-jxkIx598I.roa (raw, json)
Hash identifier: hK7jQAmxCHtTmB946EDXO+xI4sNnB8UxVzgJxYdOhz4=
Subject key identifier: 7D:DF:DC:FF:C7:8B:9A:D4:51:03:C7:C3:1F:E8:F1:90:8C:79:F7:C2
Certificate issuer: /CN=6f5e0230be799e44829c8720ca38347045494e20
Certificate serial: 37C84B6E
Authority key identifier: 6F:5E:02:30:BE:79:9E:44:82:9C:87:20:CA:38:34:70:45:49:4E:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b14CML55nkSCnIcgyjg0cEVJTiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/fd_c_8eLmtRRA8fDH-jxkIx598I.roa
Signing time: Thu 03 Mar 2022 11:53:33 +0000
ROA not before: Thu 03 Mar 2022 11:53:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1257
IP address blocks: 83.188.0.0/18 maxlen: 18
83.177.232.0/21 maxlen: 21
90.144.64.0/19 maxlen: 19
213.102.64.0/19 maxlen: 19
90.141.0.0/19 maxlen: 19
77.218.32.0/19 maxlen: 19
83.177.192.0/19 maxlen: 19
83.177.200.0/21 maxlen: 21
77.233.95.0/24 maxlen: 24
83.177.224.0/19 maxlen: 19
90.143.0.0/19 maxlen: 19
188.148.0.0/14 maxlen: 14
83.190.64.0/18 maxlen: 18
193.14.192.0/20 maxlen: 20
213.102.80.0/20 maxlen: 20
87.227.0.0/17 maxlen: 17
83.191.160.0/19 maxlen: 19
213.100.192.0/19 maxlen: 19
90.141.40.0/21 maxlen: 21
90.141.48.0/20 maxlen: 20
83.182.32.0/19 maxlen: 19
83.188.224.0/19 maxlen: 19
91.130.0.0/18 maxlen: 18
90.143.128.0/17 maxlen: 17
193.13.160.0/20 maxlen: 20
90.129.224.0/19 maxlen: 19
91.128.160.0/19 maxlen: 19
90.142.32.0/19 maxlen: 19
83.180.224.0/19 maxlen: 19
90.142.48.0/20 maxlen: 20
91.128.192.0/19 maxlen: 19
213.103.128.0/19 maxlen: 19
83.181.0.0/19 maxlen: 19
83.177.160.0/19 maxlen: 19
77.233.64.0/19 maxlen: 19
90.133.128.0/19 maxlen: 19
81.216.23.0/24 maxlen: 24
81.216.18.0/23 maxlen: 23
91.128.128.0/19 maxlen: 19
90.133.160.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 935873390 (0x37c84b6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f5e0230be799e44829c8720ca38347045494e20
Validity
Not Before: Mar 3 11:53:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ddfdcffc78b9ad45103c7c31fe8f1908c79f7c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:56:f0:dc:0f:cd:e0:d6:db:66:08:26:bc:76:
3b:b7:59:d9:a6:b5:a6:14:a1:e1:a2:f1:e8:23:c7:
1d:7a:ec:ff:02:f6:03:76:1e:8d:0f:f7:8d:a5:8d:
83:08:65:25:e0:ca:a7:f4:97:a1:30:f2:ce:c2:7b:
8f:8e:d8:45:a5:b2:f8:78:c9:d1:76:d1:f0:39:d3:
e9:61:86:0b:f4:83:3c:8b:0f:cb:cb:9a:ef:eb:9a:
02:1e:c3:75:32:6f:97:26:c6:33:2d:99:37:58:04:
13:62:b6:fd:54:b4:50:8e:d2:8e:36:99:e2:54:5d:
c4:b2:29:31:6b:52:82:fd:1d:c8:00:f0:47:a9:5d:
69:f6:b6:85:ea:d5:f0:a4:ab:b6:a4:29:86:b6:4b:
c3:2c:ae:fc:53:1f:0d:76:94:4b:a8:25:f9:12:03:
bc:39:df:1e:63:62:81:d8:cf:ff:a6:43:bf:69:20:
75:14:34:c1:2d:3d:74:c7:19:47:27:1e:cb:80:2b:
01:f2:a8:74:04:27:0a:07:81:4c:f2:1f:39:ac:eb:
67:42:9e:9c:fc:62:f6:15:34:68:ab:e6:59:97:35:
95:d8:6b:d8:34:1e:91:ae:07:3c:2d:c9:a9:b9:7c:
37:c5:7c:57:d1:d3:4d:ae:c4:9e:8c:5c:7a:77:ce:
f1:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:DF:DC:FF:C7:8B:9A:D4:51:03:C7:C3:1F:E8:F1:90:8C:79:F7:C2
X509v3 Authority Key Identifier:
keyid:6F:5E:02:30:BE:79:9E:44:82:9C:87:20:CA:38:34:70:45:49:4E:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b14CML55nkSCnIcgyjg0cEVJTiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/fd_c_8eLmtRRA8fDH-jxkIx598I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.218.32.0/19
77.233.64.0/19
81.216.18.0/23
81.216.23.0/24
83.177.160.0-83.177.255.255
83.180.224.0-83.181.31.255
83.182.32.0/19
83.188.0.0/18
83.188.224.0/19
83.190.64.0/18
83.191.160.0/19
87.227.0.0/17
90.129.224.0/19
90.133.128.0/18
90.141.0.0/19
90.141.40.0-90.141.63.255
90.142.32.0/19
90.143.0.0/19
90.143.128.0/17
90.144.64.0/19
91.128.128.0-91.128.223.255
91.130.0.0/18
188.148.0.0/14
193.13.160.0/20
193.14.192.0/20
213.100.192.0/19
213.102.64.0/19
213.103.128.0/19
Signature Algorithm: sha256WithRSAEncryption
9c:a7:19:65:e7:f0:9d:02:8f:f5:f1:a0:18:80:50:d9:49:5a:
6d:f2:c6:f8:43:70:a2:57:f6:ac:d6:4b:a7:d1:41:b9:69:bb:
5e:03:26:a0:90:40:cd:64:bf:e5:74:4d:b4:1c:e3:6e:8e:7b:
97:4e:b5:01:10:ed:e7:cd:de:ee:d0:75:3d:b7:b5:ee:0b:6b:
47:1b:24:08:92:74:0a:23:87:48:19:8e:70:27:e8:b9:0d:b4:
06:34:8b:9e:20:28:fd:8c:0b:e6:07:a4:e4:11:2a:01:85:bc:
25:59:d9:e0:7e:7b:98:59:90:37:4f:ba:ee:97:f2:6a:d3:a4:
8f:41:86:a8:7a:a8:ad:b7:22:fd:d3:39:f3:12:00:9e:b7:77:
77:75:16:80:2e:54:db:a7:2d:18:48:a3:f7:dc:e6:9a:06:91:
e3:fb:6b:dd:2f:99:a8:31:84:49:45:2c:6b:5b:1c:86:05:b5:
9e:9c:64:35:b0:5e:36:4b:17:64:ba:b8:78:d3:9a:24:a4:33:
f3:36:29:a6:b5:c1:ae:d6:f9:4e:a2:91:e1:9a:ad:28:92:15:
7a:79:4f:aa:73:06:f5:fa:e2:98:92:af:8f:ec:62:30:f9:ed:
31:7f:f3:5b:84:be:6f:fd:61:55:52:c6:11:3d:41:3e:5a:a1:
aa:a7:ec:69
-----BEGIN CERTIFICATE-----
MIIFtDCCBJygAwIBAgIEN8hLbjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
ZjVlMDIzMGJlNzk5ZTQ0ODI5Yzg3MjBjYTM4MzQ3MDQ1NDk0ZTIwMB4XDTIyMDMw
MzExNTMzM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2RkZmRjZmZjNzhi
OWFkNDUxMDNjN2MzMWZlOGYxOTA4Yzc5ZjdjMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANxW8NwPzeDW22YIJrx2O7dZ2aa1phSh4aLx6CPHHXrs/wL2
A3YejQ/3jaWNgwhlJeDKp/SXoTDyzsJ7j47YRaWy+HjJ0XbR8DnT6WGGC/SDPIsP
y8ua7+uaAh7DdTJvlybGMy2ZN1gEE2K2/VS0UI7SjjaZ4lRdxLIpMWtSgv0dyADw
R6ldafa2herV8KSrtqQphrZLwyyu/FMfDXaUS6gl+RIDvDnfHmNigdjP/6ZDv2kg
dRQ0wS09dMcZRycey4ArAfKodAQnCgeBTPIfOazrZ0KenPxi9hU0aKvmWZc1ldhr
2DQeka4HPC3Jqbl8N8V8V9HTTa7EnoxcenfO8XcCAwEAAaOCAs4wggLKMB0GA1Ud
DgQWBBR939z/x4ua1FEDx8Mf6PGQjHn3wjAfBgNVHSMEGDAWgBRvXgIwvnmeRIKc
hyDKODRwRUlOIDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2IxNENNTDU1bmtTQ25JY2d5amcwY0VWSlRpQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjcvNzBjY2VmLTE3ZjMtNDkyOC05YzBiLWJhN2M3ZDgxOTBjYS8x
L2ZkX2NfOGVMbXRSUkE4ZkRILWp4a0l4NTk4SS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjcv
NzBjY2VmLTE3ZjMtNDkyOC05YzBiLWJhN2M3ZDgxOTBjYS8xL2IxNENNTDU1bmtT
Q25JY2d5amcwY0VWSlRpQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
4wYIKwYBBQUHAQcBAf8EgdMwgdAwgc0EAgABMIHGAwQFTdogAwQFTelAAwQBUdgS
AwQAUdgXMAsDBAVTsaADAwFTsDAMAwQFU7TgAwQFU7UAAwQFU7YgAwQGU7wAAwQF
U7zgAwQGU75AAwQFU7+gAwQHV+MAAwQFWoHgAwQGWoWAAwQFWo0AMAwDBANajSgD
BAZajQADBAVajiADBAVajwADBAdaj4ADBAVakEAwDAMEB1uAgAMEBVuAwAMEBluC
AAMDAryUAwQEwQ2gAwQEwQ7AAwQF1WTAAwQF1WZAAwQF1WeAMA0GCSqGSIb3DQEB
CwUAA4IBAQCcpxll5/CdAo/18aAYgFDZSVpt8sb4Q3CiV/as1kun0UG5abteAyag
kEDNZL/ldE20HONujnuXTrUBEO3nzd7u0HU9t7XuC2tHGyQIknQKI4dIGY5wJ+i5
DbQGNIueICj9jAvmB6TkESoBhbwlWdngfnuYWZA3T7rul/Jq06SPQYaoeqittyL9
0znzEgCet3d3dRaALlTbpy0YSKP33OaaBpHj+2vdL5moMYRJRSxrWxyGBbWenGQ1
sF42Sxdkurh405okpDPzNimmtcGu1vlOopHhmq0okhV6eU+qcwb1+uKYkq+P7GIw
+e0xf/NbhL5v/WFVUsYRPUE+WqGqp+xp
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:58 2023 by rpki-client on console-ams.rpki-client.org