Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/dFVV9RQY7OY5OcVn7Gzu5AwtR3E.roa
File: dFVV9RQY7OY5OcVn7Gzu5AwtR3E.roa (raw, json)
Hash identifier: BkPFDBDfsvyJkM0hb89i/F8huvOo3dLXn30xyGxNhMo=
Subject key identifier: 74:55:55:F5:14:18:EC:E6:39:39:C5:67:EC:6C:EE:E4:0C:2D:47:71
Certificate issuer: /CN=0b556acb5f3b961b5cc24a2995f34ee91f79dc16
Certificate serial: 2A4468AB
Authority key identifier: 0B:55:6A:CB:5F:3B:96:1B:5C:C2:4A:29:95:F3:4E:E9:1F:79:DC:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C1Vqy187lhtcwkoplfNO6R953BY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/dFVV9RQY7OY5OcVn7Gzu5AwtR3E.roa
Signing time: Thu 07 Apr 2022 01:12:44 +0000
ROA not before: Thu 07 Apr 2022 01:12:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8708
IP address blocks: 79.112.0.0/13 maxlen: 24
213.157.189.0/24 maxlen: 24
185.129.36.0/22 maxlen: 22
188.26.128.0/18 maxlen: 24
212.93.128.0/19 maxlen: 24
86.127.54.0/24 maxlen: 24
86.127.59.0/24 maxlen: 24
212.93.143.0/24 maxlen: 24
31.14.104.0/21 maxlen: 24
79.112.0.0/14 maxlen: 24
213.157.160.0/19 maxlen: 24
188.26.224.0/19 maxlen: 24
194.102.81.0/24 maxlen: 24
31.14.192.0/21 maxlen: 24
81.18.64.0/19 maxlen: 24
31.14.224.0/22 maxlen: 24
82.76.0.0/14 maxlen: 24
5.12.0.0/14 maxlen: 24
93.113.40.0/22 maxlen: 24
84.232.128.0/17 maxlen: 24
188.27.0.0/16 maxlen: 24
79.118.0.0/15 maxlen: 24
86.120.0.0/13 maxlen: 24
82.137.16.0/20 maxlen: 24
81.196.0.0/16 maxlen: 24
82.137.32.0/19 maxlen: 24
188.26.0.0/17 maxlen: 24
5.2.128.0/17 maxlen: 24
79.117.0.0/16 maxlen: 24
188.24.0.0/15 maxlen: 24
212.54.96.0/19 maxlen: 24
62.231.64.0/18 maxlen: 24
212.54.122.0/24 maxlen: 24
212.54.123.0/24 maxlen: 24
212.54.120.0/24 maxlen: 24
82.137.0.0/21 maxlen: 24
82.137.0.0/18 maxlen: 24
89.46.12.0/22 maxlen: 24
2a02:2f00::/28 maxlen: 48
2a02:2f0c:8002::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 709126315 (0x2a4468ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b556acb5f3b961b5cc24a2995f34ee91f79dc16
Validity
Not Before: Apr 7 01:12:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=745555f51418ece63939c567ec6ceee40c2d4771
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:a5:dd:06:66:d4:c8:f5:76:ea:d2:30:8e:8d:
16:2c:8d:f5:32:5b:49:e3:f8:bb:31:27:8d:2b:70:
c1:3c:82:3e:a2:6f:70:03:03:db:3a:8c:58:41:54:
37:23:c0:aa:b5:6f:84:cd:0e:72:2b:46:1b:9b:d4:
5b:5b:87:a0:76:f4:64:3f:f4:2c:e5:7b:36:cd:f3:
06:07:46:65:89:aa:ac:58:2c:48:bd:cb:b1:7c:2f:
e8:f5:e2:86:06:a3:7e:f9:0d:bf:81:a9:22:47:27:
f1:8d:3c:e5:9b:6f:cc:d0:f5:d6:ae:11:75:b4:e0:
c3:90:6b:06:4e:33:bb:f2:17:67:b9:be:46:b5:13:
98:b9:c8:2b:9f:b9:dc:3d:72:e6:41:3b:03:41:2f:
6a:c3:6c:43:af:94:55:77:df:bc:df:45:d2:87:e5:
0d:86:3c:96:71:6b:e5:84:d1:75:f2:9c:4f:46:ea:
89:73:f9:df:45:14:53:fc:d1:64:02:11:26:6d:69:
4c:e0:ff:c7:e4:85:5c:f9:9b:58:5c:6a:da:1a:ed:
f4:d0:6f:d0:d2:5f:29:f3:fa:43:d2:34:75:50:32:
72:94:67:19:ec:f1:15:58:0c:c3:eb:c0:c6:ae:bd:
00:82:64:9f:8a:37:db:54:49:23:5c:2d:ee:d4:1d:
5c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:55:55:F5:14:18:EC:E6:39:39:C5:67:EC:6C:EE:E4:0C:2D:47:71
X509v3 Authority Key Identifier:
keyid:0B:55:6A:CB:5F:3B:96:1B:5C:C2:4A:29:95:F3:4E:E9:1F:79:DC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1Vqy187lhtcwkoplfNO6R953BY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/dFVV9RQY7OY5OcVn7Gzu5AwtR3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/C1Vqy187lhtcwkoplfNO6R953BY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.2.128.0/17
5.12.0.0/14
31.14.104.0/21
31.14.192.0/21
31.14.224.0/22
62.231.64.0/18
79.112.0.0/13
81.18.64.0/19
81.196.0.0/16
82.76.0.0/14
82.137.0.0/18
84.232.128.0/17
86.120.0.0/13
89.46.12.0/22
93.113.40.0/22
185.129.36.0/22
188.24.0.0-188.26.191.255
188.26.224.0-188.27.255.255
194.102.81.0/24
212.54.96.0/19
212.93.128.0/19
213.157.160.0/19
IPv6:
2a02:2f00::/28
Signature Algorithm: sha256WithRSAEncryption
95:01:c1:55:29:e4:0b:92:bb:f8:8c:bd:ac:37:f1:99:96:86:
52:d0:cd:26:f6:a7:fe:55:ab:32:2c:7e:85:f2:18:c1:0c:b0:
d0:ec:a5:62:78:10:ef:50:f8:f7:78:a4:f1:9a:3c:0a:98:21:
b9:07:c2:a8:03:76:4d:95:7a:e1:cc:74:39:1d:3f:75:48:db:
35:f2:1b:45:0d:75:be:04:d6:1c:8e:57:74:05:8e:c7:6e:ad:
cd:be:72:aa:7b:12:17:13:ac:0f:e0:42:95:9c:46:bb:45:83:
46:40:83:cb:05:ac:a7:df:8f:05:f7:ab:15:be:be:50:97:19:
09:e5:e6:82:45:da:a8:97:dc:4d:43:4e:98:f1:be:fc:fb:76:
b6:cc:7c:f8:c8:2b:45:33:8e:74:93:3c:37:b9:c1:f3:0a:bc:
df:76:b7:d0:59:14:a8:15:7e:37:d1:fc:9f:3b:ee:61:87:cd:
1c:01:15:ba:c7:d5:59:44:19:66:54:bc:5f:d5:98:2a:c3:43:
20:30:ac:7d:a0:9f:0e:9a:ee:91:75:46:f9:2c:5f:00:e9:94:
8f:52:40:b0:0d:3d:b4:0d:5f:6b:38:cb:2a:39:db:a7:06:2d:
e6:b0:fe:1f:12:b6:49:9e:cd:9e:89:63:23:e5:09:f2:dc:46:
ce:e7:c3:57
-----BEGIN CERTIFICATE-----
MIIFijCCBHKgAwIBAgIEKkRoqzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
YjU1NmFjYjVmM2I5NjFiNWNjMjRhMjk5NWYzNGVlOTFmNzlkYzE2MB4XDTIyMDQw
NzAxMTI0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzQ1NTU1ZjUxNDE4
ZWNlNjM5MzljNTY3ZWM2Y2VlZTQwYzJkNDc3MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKWl3QZm1Mj1durSMI6NFiyN9TJbSeP4uzEnjStwwTyCPqJv
cAMD2zqMWEFUNyPAqrVvhM0OcitGG5vUW1uHoHb0ZD/0LOV7Ns3zBgdGZYmqrFgs
SL3LsXwv6PXihgajfvkNv4GpIkcn8Y085ZtvzND11q4RdbTgw5BrBk4zu/IXZ7m+
RrUTmLnIK5+53D1y5kE7A0EvasNsQ6+UVXffvN9F0oflDYY8lnFr5YTRdfKcT0bq
iXP530UUU/zRZAIRJm1pTOD/x+SFXPmbWFxq2hrt9NBv0NJfKfP6Q9I0dVAycpRn
GezxFVgMw+vAxq69AIJkn4o321RJI1wt7tQdXEkCAwEAAaOCAqQwggKgMB0GA1Ud
DgQWBBR0VVX1FBjs5jk5xWfsbO7kDC1HcTAfBgNVHSMEGDAWgBQLVWrLXzuWG1zC
SimV807pH3ncFjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0MxVnF5MTg3bGh0Y3drb3BsZk5PNlI5NTNCWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmUvODI5ZmRmLWJhNjMtNGMyMy05MWQxLWQyYmJmMzdkYWJiNC8x
L2RGVlY5UlFZN09ZNU9jVm43R3p1NUF3dFIzRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmUv
ODI5ZmRmLWJhNjMtNGMyMy05MWQxLWQyYmJmMzdkYWJiNC8xL0MxVnF5MTg3bGh0
Y3drb3BsZk5PNlI5NTNCWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
uQYIKwYBBQUHAQcBAf8EgakwgaYwgZQEAgABMIGNAwQHBQKAAwMCBQwDBAMfDmgD
BAMfDsADBAIfDuADBAY+50ADAwNPcAMEBVESQAMDAFHEAwMCUkwDBAZSiQADBAdU
6IADAwNWeAMEAlkuDAMEAl1xKAMEArmBJDALAwMDvBgDBAa8GoAwCwMEBbwa4AMD
ArwYAwQAwmZRAwQF1DZgAwQF1F2AAwQF1Z2gMA0EAgACMAcDBQQqAi8AMA0GCSqG
SIb3DQEBCwUAA4IBAQCVAcFVKeQLkrv4jL2sN/GZloZS0M0m9qf+VasyLH6F8hjB
DLDQ7KVieBDvUPj3eKTxmjwKmCG5B8KoA3ZNlXrhzHQ5HT91SNs18htFDXW+BNYc
jld0BY7Hbq3NvnKqexIXE6wP4EKVnEa7RYNGQIPLBayn348F96sVvr5QlxkJ5eaC
Rdqol9xNQ06Y8b78+3a2zHz4yCtFM450kzw3ucHzCrzfdrfQWRSoFX430fyfO+5h
h80cARW6x9VZRBlmVLxf1Zgqw0MgMKx9oJ8Omu6RdUb5LF8A6ZSPUkCwDT20DV9r
OMsqOdunBi3msP4fErZJns2eiWMj5Qny3EbO58NX
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:19 2023 by rpki-client on console-ams.rpki-client.org