Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/c171ca-4b1b-4187-ba46-a4fc9e2458ec/1/hjkrv15m4LnkUE7jt3GfOnEjoCo.roa
File: hjkrv15m4LnkUE7jt3GfOnEjoCo.roa (raw, json)
Hash identifier: SwwVTO5xgjsuMT+iuRaU/BFHFD9ElHN0s02f4kP4fpk=
Subject key identifier: 86:39:2B:BF:5E:66:E0:B9:E4:50:4E:E3:B7:71:9F:3A:71:23:A0:2A
Certificate issuer: /CN=77b8cf454b0962d16a4855808fd3abc15852bbd8
Certificate serial: 3DD65185
Authority key identifier: 77:B8:CF:45:4B:09:62:D1:6A:48:55:80:8F:D3:AB:C1:58:52:BB:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d7jPRUsJYtFqSFWAj9OrwVhSu9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/c171ca-4b1b-4187-ba46-a4fc9e2458ec/1/hjkrv15m4LnkUE7jt3GfOnEjoCo.roa
Signing time: Sat 01 Jan 2022 07:58:36 +0000
ROA not before: Sat 01 Jan 2022 07:58:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8426
IP address blocks: 185.39.232.0/23 maxlen: 24
212.49.192.0/18 maxlen: 24
194.88.132.0/23 maxlen: 24
194.112.32.0/19 maxlen: 24
195.102.0.0/16 maxlen: 24
89.206.128.0/17 maxlen: 24
195.58.192.0/19 maxlen: 24
62.173.64.0/18 maxlen: 24
185.77.74.0/24 maxlen: 24
185.77.72.0/22 maxlen: 24
195.8.64.0/19 maxlen: 24
212.188.128.0/17 maxlen: 24
195.245.201.0/24 maxlen: 24
194.119.128.0/18 maxlen: 24
80.168.0.0/16 maxlen: 24
185.78.204.0/22 maxlen: 24
89.206.216.0/22 maxlen: 22
89.206.218.0/23 maxlen: 23
89.206.216.0/23 maxlen: 23
81.171.128.0/17 maxlen: 24
217.158.0.0/16 maxlen: 24
185.77.200.0/22 maxlen: 24
213.2.0.0/16 maxlen: 24
213.253.0.0/18 maxlen: 24
195.157.0.0/16 maxlen: 24
79.123.0.0/17 maxlen: 24
212.126.128.0/19 maxlen: 24
185.22.164.0/23 maxlen: 24
62.231.128.0/19 maxlen: 24
195.216.0.0/19 maxlen: 24
213.165.128.0/19 maxlen: 24
212.169.0.0/18 maxlen: 24
212.125.64.0/19 maxlen: 24
176.52.208.0/21 maxlen: 24
2001:67c:1089::/48 maxlen: 48
2001:a88::/32 maxlen: 32
2001:67c:27dc::/48 maxlen: 48
2001:67c:1088::/47 maxlen: 48
2a02:e100::/29 maxlen: 29
2a00:ed0::/32 maxlen: 32
2a00:62e0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1037455749 (0x3dd65185)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77b8cf454b0962d16a4855808fd3abc15852bbd8
Validity
Not Before: Jan 1 07:58:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86392bbf5e66e0b9e4504ee3b7719f3a7123a02a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fe:c8:5b:ae:8d:fc:4a:cc:37:72:63:5c:06:
e3:a5:b3:29:ee:62:84:b6:5f:12:83:ce:3f:36:da:
f8:ae:49:0f:e0:ee:e8:53:94:09:fb:0b:23:8b:a8:
69:ef:16:d6:75:ec:84:1d:61:92:b0:78:43:bf:6d:
74:34:e7:a9:0d:1f:4b:44:11:1d:36:10:1f:31:e8:
4e:21:46:ed:0b:b5:1a:8d:59:c9:0d:db:77:d7:0f:
b5:20:e3:fc:ea:d9:79:f5:c8:cd:96:87:35:fa:76:
f7:9f:6f:60:5b:ad:4f:cd:9b:d1:95:b9:67:ef:7f:
bb:bc:da:de:be:e6:2c:fc:4b:0c:b5:ed:03:62:a7:
3a:03:00:43:3e:75:2b:d5:ef:2e:ef:a6:99:21:1c:
79:a2:e9:53:e9:80:97:39:64:b5:0c:80:7a:a1:74:
21:ed:d9:f5:e2:1f:c6:d2:7f:24:61:a8:7e:da:4d:
ec:33:ca:7f:b9:3c:1c:74:31:e0:6e:36:01:1a:34:
26:44:6a:74:cd:da:46:56:fd:02:5a:f7:dc:91:bf:
e5:05:b4:65:0b:e9:fb:28:3f:0a:cf:2f:08:eb:a3:
b1:9e:51:58:44:34:a8:83:7c:cb:f7:b7:8d:8e:ed:
27:44:8d:9e:9c:a4:3a:69:1f:cd:e9:98:67:f0:b4:
8c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:39:2B:BF:5E:66:E0:B9:E4:50:4E:E3:B7:71:9F:3A:71:23:A0:2A
X509v3 Authority Key Identifier:
keyid:77:B8:CF:45:4B:09:62:D1:6A:48:55:80:8F:D3:AB:C1:58:52:BB:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7jPRUsJYtFqSFWAj9OrwVhSu9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/c171ca-4b1b-4187-ba46-a4fc9e2458ec/1/hjkrv15m4LnkUE7jt3GfOnEjoCo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/c171ca-4b1b-4187-ba46-a4fc9e2458ec/1/d7jPRUsJYtFqSFWAj9OrwVhSu9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.173.64.0/18
62.231.128.0/19
79.123.0.0/17
80.168.0.0/16
81.171.128.0/17
89.206.128.0/17
176.52.208.0/21
185.22.164.0/23
185.39.232.0/23
185.77.72.0/22
185.77.200.0/22
185.78.204.0/22
194.88.132.0/23
194.112.32.0/19
194.119.128.0/18
195.8.64.0/19
195.58.192.0/19
195.102.0.0/16
195.157.0.0/16
195.216.0.0/19
195.245.201.0/24
212.49.192.0/18
212.125.64.0/19
212.126.128.0/19
212.169.0.0/18
212.188.128.0/17
213.2.0.0/16
213.165.128.0/19
213.253.0.0/18
217.158.0.0/16
IPv6:
2001:67c:1088::/47
2001:67c:27dc::/48
2001:a88::/32
2a00:ed0::/32
2a00:62e0::/32
2a02:e100::/29
Signature Algorithm: sha256WithRSAEncryption
07:e1:e2:03:a2:a3:f7:98:dd:2d:d4:17:f3:41:cc:1c:93:71:
64:3a:4d:ec:41:ba:28:28:94:f0:8e:aa:f2:0b:e5:89:dd:36:
c5:63:69:3e:1a:db:07:0f:9e:16:89:a1:6c:3e:fe:f8:c1:90:
84:49:be:5e:ba:eb:f5:9b:31:5b:7f:37:f6:ea:95:96:ce:de:
13:7b:47:5c:de:50:0a:ad:c0:6d:14:29:7d:18:b6:20:8b:a1:
fe:dc:81:a9:05:c1:0d:60:8d:8e:cb:68:fb:b8:92:0d:4a:96:
1f:58:90:79:47:72:7f:1e:6b:50:c8:f9:b7:0f:00:3b:ed:50:
92:54:f4:31:5b:ad:fa:60:1c:ff:f9:6b:2a:84:a0:0f:7f:7f:
7a:d8:c9:b9:0a:eb:03:e4:4d:ac:63:28:df:9b:31:ce:73:80:
50:2b:ba:26:93:15:0c:f9:42:3d:f6:c0:2c:f4:2d:9b:98:fb:
15:0a:ca:14:e3:d5:89:a9:52:37:31:a8:d4:33:20:54:01:22:
81:e5:dd:49:43:6d:46:9f:6f:4f:39:33:3e:fa:b5:e5:79:50:
0b:3a:d8:fc:68:34:7d:f2:64:41:fb:a5:3d:7e:ad:9f:45:ab:
74:a8:85:5d:c1:93:d1:3a:d3:d4:96:bf:27:f8:8e:30:fe:ab:
c6:3d:0c:65
-----BEGIN CERTIFICATE-----
MIIF1DCCBLygAwIBAgIEPdZRhTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
N2I4Y2Y0NTRiMDk2MmQxNmE0ODU1ODA4ZmQzYWJjMTU4NTJiYmQ4MB4XDTIyMDEw
MTA3NTgzNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODYzOTJiYmY1ZTY2
ZTBiOWU0NTA0ZWUzYjc3MTlmM2E3MTIzYTAyYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALT+yFuujfxKzDdyY1wG46WzKe5ihLZfEoPOPzba+K5JD+Du
6FOUCfsLI4uoae8W1nXshB1hkrB4Q79tdDTnqQ0fS0QRHTYQHzHoTiFG7Qu1Go1Z
yQ3bd9cPtSDj/OrZefXIzZaHNfp2959vYFutT82b0ZW5Z+9/u7za3r7mLPxLDLXt
A2KnOgMAQz51K9XvLu+mmSEceaLpU+mAlzlktQyAeqF0Ie3Z9eIfxtJ/JGGoftpN
7DPKf7k8HHQx4G42ARo0JkRqdM3aRlb9Alr33JG/5QW0ZQvp+yg/Cs8vCOujsZ5R
WEQ0qIN8y/e3jY7tJ0SNnpykOmkfzemYZ/C0jM0CAwEAAaOCAu4wggLqMB0GA1Ud
DgQWBBSGOSu/XmbgueRQTuO3cZ86cSOgKjAfBgNVHSMEGDAWgBR3uM9FSwli0WpI
VYCP06vBWFK72DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2Q3alBSVXNKWXRGcVNGV0FqOU9yd1ZoU3U5Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmIvYzE3MWNhLTRiMWItNDE4Ny1iYTQ2LWE0ZmM5ZTI0NThlYy8x
L2hqa3J2MTVtNExua1VFN2p0M0dmT25Fam9Dby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmIv
YzE3MWNhLTRiMWItNDE4Ny1iYTQ2LWE0ZmM5ZTI0NThlYy8xL2Q3alBSVXNKWXRG
cVNGV0FqOU9yd1ZoU3U5Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCC
AQIGCCsGAQUFBwEHAQH/BIHyMIHvMIG2BAIAATCBrwMEBj6tQAMEBT7ngAMEB097
AAMDAFCoAwQHUauAAwQHWc6AAwQDsDTQAwQBuRakAwQBuSfoAwQCuU1IAwQCuU3I
AwQCuU7MAwQBwliEAwQFwnAgAwQGwneAAwQFwwhAAwQFwzrAAwMAw2YDAwDDnQME
BcPYAAMEAMP1yQMEBtQxwAMEBdR9QAMEBdR+gAMEBtSpAAMEB9S8gAMDANUCAwQF
1aWAAwQG1f0AAwMA2Z4wNAQCAAIwLgMHASABBnwQiAMHACABBnwn3AMFACABCogD
BQAqAA7QAwUAKgBi4AMFAyoC4QAwDQYJKoZIhvcNAQELBQADggEBAAfh4gOio/eY
3S3UF/NBzByTcWQ6TexBuigolPCOqvIL5YndNsVjaT4a2wcPnhaJoWw+/vjBkIRJ
vl666/WbMVt/N/bqlZbO3hN7R1zeUAqtwG0UKX0YtiCLof7cgakFwQ1gjY7LaPu4
kg1Klh9YkHlHcn8ea1DI+bcPADvtUJJU9DFbrfpgHP/5ayqEoA9/f3rYybkK6wPk
TaxjKN+bMc5zgFAruiaTFQz5Qj32wCz0LZuY+xUKyhTj1YmpUjcxqNQzIFQBIoHl
3UlDbUafb085Mz76teV5UAs62PxoNH3yZEH7pT1+rZ9Fq3SohV3Bk9E609SWvyf4
jjD+q8Y9DGU=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:37 2025 by rpki-client