Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/yGE6Sw70h79LyBKFUNb-_fMkMeY.roa
File: yGE6Sw70h79LyBKFUNb-_fMkMeY.roa (raw, json)
Hash identifier: YH8yyW5TLN7JR/gIG/RXxLkbf69F2GR8Fo7M8VWJcqg=
Subject key identifier: C8:61:3A:4B:0E:F4:87:BF:4B:C8:12:85:50:D6:FE:FD:F3:24:31:E6
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 01879FCB1DA7BD366F252B29E95C70319AC0
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/yGE6Sw70h79LyBKFUNb-_fMkMeY.roa
Signing time: Thu 20 Apr 2023 17:51:41 +0000
ROA not before: Thu 20 Apr 2023 17:51:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15557
IP address blocks: 80.124.0.0/16 maxlen: 16
80.70.32.0/20 maxlen: 20
217.19.192.0/20 maxlen: 20
88.141.0.0/16 maxlen: 16
212.198.0.0/16 maxlen: 16
91.151.112.0/20 maxlen: 20
213.144.192.0/19 maxlen: 19
217.70.80.0/20 maxlen: 20
79.80.0.0/12 maxlen: 12
185.147.204.0/22 maxlen: 22
77.144.0.0/12 maxlen: 12
79.174.192.0/18 maxlen: 18
195.3.0.0/18 maxlen: 18
77.137.196.0/22 maxlen: 22
85.168.0.0/14 maxlen: 14
77.137.200.0/21 maxlen: 21
77.137.208.0/20 maxlen: 20
79.174.232.0/21 maxlen: 21
81.185.0.0/16 maxlen: 24
194.6.128.0/19 maxlen: 19
195.146.192.0/19 maxlen: 19
84.96.0.0/13 maxlen: 13
77.136.172.0/24 maxlen: 24
88.140.0.0/16 maxlen: 16
77.136.173.0/24 maxlen: 24
77.136.174.0/24 maxlen: 24
87.231.0.0/16 maxlen: 16
62.39.0.0/16 maxlen: 24
77.140.0.0/14 maxlen: 14
89.2.0.0/15 maxlen: 15
62.106.128.0/17 maxlen: 17
217.112.224.0/20 maxlen: 20
194.183.192.0/19 maxlen: 19
62.62.128.0/17 maxlen: 24
141.170.216.0/21 maxlen: 21
212.39.128.0/19 maxlen: 19
213.245.0.0/16 maxlen: 16
86.66.127.0/24 maxlen: 24
62.241.64.0/18 maxlen: 18
81.220.0.0/16 maxlen: 16
213.203.64.0/18 maxlen: 24
89.156.0.0/14 maxlen: 14
213.169.160.0/19 maxlen: 19
109.0.0.0/11 maxlen: 11
93.0.0.0/11 maxlen: 11
81.1.0.0/18 maxlen: 18
81.65.0.0/16 maxlen: 16
84.55.128.0/18 maxlen: 18
62.129.160.0/19 maxlen: 24
78.112.0.0/12 maxlen: 12
62.8.0.0/19 maxlen: 19
77.136.0.0/16 maxlen: 16
46.35.0.0/19 maxlen: 19
88.136.0.0/14 maxlen: 14
37.64.0.0/13 maxlen: 24
77.128.0.0/13 maxlen: 24
80.236.0.0/17 maxlen: 17
212.94.160.0/19 maxlen: 19
81.185.160.0/20 maxlen: 20
81.185.160.0/21 maxlen: 21
80.125.0.0/16 maxlen: 16
81.185.168.0/21 maxlen: 21
83.141.128.0/17 maxlen: 17
84.205.128.0/19 maxlen: 19
77.134.204.0/24 maxlen: 24
212.30.96.0/19 maxlen: 24
84.205.144.0/20 maxlen: 20
80.118.4.0/24 maxlen: 24
81.64.0.0/14 maxlen: 14
213.128.32.0/19 maxlen: 19
80.118.0.0/15 maxlen: 15
194.242.176.0/20 maxlen: 20
92.88.0.0/13 maxlen: 13
195.7.96.0/19 maxlen: 19
91.68.0.0/22 maxlen: 22
195.132.0.0/16 maxlen: 16
85.68.0.0/15 maxlen: 15
195.98.96.0/19 maxlen: 19
213.223.0.0/16 maxlen: 16
91.68.0.0/14 maxlen: 14
84.4.0.0/14 maxlen: 14
77.192.0.0/12 maxlen: 12
86.64.0.0/12 maxlen: 12
82.216.0.0/16 maxlen: 16
195.115.0.0/16 maxlen: 16
78.155.128.0/19 maxlen: 19
88.142.0.0/16 maxlen: 16
2a02:8400::/48 maxlen: 48
2a02:8400:14::/48 maxlen: 48
2a00:7180::/32 maxlen: 32
2a02:8440:5000::/36 maxlen: 36
2a02:8400:11::/48 maxlen: 48
2a02:8400::/25 maxlen: 25
2a02:8400:12::/48 maxlen: 48
2a02:8400:13::/48 maxlen: 48
2a00:6200::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9f:cb:1d:a7:bd:36:6f:25:2b:29:e9:5c:70:31:9a:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Apr 20 17:51:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c8613a4b0ef487bf4bc8128550d6fefdf32431e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b0:79:cb:5e:de:a3:49:71:e2:d0:66:f7:bf:
71:3a:12:ba:e6:16:4c:62:d8:0d:7c:16:82:08:e8:
89:36:2d:c2:88:63:07:e1:d0:63:2f:62:dc:f2:dc:
75:7f:22:c4:c8:cb:71:d0:e2:d0:90:46:29:2f:da:
75:ab:74:2c:c4:ca:27:c5:45:e9:81:f2:38:39:61:
b3:80:07:85:03:fb:df:e5:f8:bd:b8:75:9e:51:69:
13:56:a8:d3:2c:75:32:16:67:5b:e5:71:e3:25:fe:
a4:ac:e0:6a:aa:40:02:27:ee:08:b6:27:82:fa:a3:
f1:9b:4a:81:96:c8:ab:f2:f8:40:d6:a2:7b:7a:b3:
85:1a:dc:e0:4e:bd:de:fb:13:c3:99:e5:b7:35:f6:
8d:ff:68:c7:15:76:75:d5:83:d8:01:30:60:ff:22:
85:d1:2c:08:ee:4f:fc:ee:5e:17:34:5a:97:8c:f4:
d4:0c:bc:8a:0f:78:0b:66:79:e1:af:23:60:8c:a2:
8b:2f:80:f1:81:2c:d9:9c:67:ba:f4:cd:e6:7d:0e:
fd:52:74:b7:18:10:3b:79:6a:9e:69:ad:e8:71:f6:
38:a5:b3:dd:14:e0:5f:b0:a3:48:11:95:39:41:76:
d8:fe:d2:89:b4:30:31:44:ae:07:0e:78:7e:91:c7:
b6:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:61:3A:4B:0E:F4:87:BF:4B:C8:12:85:50:D6:FE:FD:F3:24:31:E6
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/yGE6Sw70h79LyBKFUNb-_fMkMeY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.64.0.0/13
46.35.0.0/19
62.8.0.0/19
62.39.0.0/16
62.62.128.0/17
62.106.128.0/17
62.129.160.0/19
62.241.64.0/18
77.128.0.0-77.136.255.255
77.137.196.0-77.137.223.255
77.140.0.0-77.159.255.255
77.192.0.0/12
78.112.0.0/12
78.155.128.0/19
79.80.0.0/12
79.174.192.0/18
80.70.32.0/20
80.118.0.0/15
80.124.0.0/15
80.236.0.0/17
81.1.0.0/18
81.64.0.0/14
81.185.0.0/16
81.220.0.0/16
82.216.0.0/16
83.141.128.0/17
84.4.0.0/14
84.55.128.0/18
84.96.0.0/13
84.205.128.0/19
85.68.0.0/15
85.168.0.0/14
86.64.0.0/12
87.231.0.0/16
88.136.0.0-88.142.255.255
89.2.0.0/15
89.156.0.0/14
91.68.0.0/14
91.151.112.0/20
92.88.0.0/13
93.0.0.0/11
109.0.0.0/11
141.170.216.0/21
185.147.204.0/22
194.6.128.0/19
194.183.192.0/19
194.242.176.0/20
195.3.0.0/18
195.7.96.0/19
195.98.96.0/19
195.115.0.0/16
195.132.0.0/16
195.146.192.0/19
212.30.96.0/19
212.39.128.0/19
212.94.160.0/19
212.198.0.0/16
213.128.32.0/19
213.144.192.0/19
213.169.160.0/19
213.203.64.0/18
213.223.0.0/16
213.245.0.0/16
217.19.192.0/20
217.70.80.0/20
217.112.224.0/20
IPv6:
2a00:6200::/29
2a00:7180::/32
2a02:8400::/25
Signature Algorithm: sha256WithRSAEncryption
99:59:25:97:35:5e:43:73:a7:0c:a4:78:5e:66:17:69:a9:e7:
05:0e:c0:2c:f7:47:ee:13:b0:bd:72:00:20:19:56:d8:5b:ef:
1c:44:30:1b:ef:3a:10:f0:b3:05:72:6c:7f:4c:9c:0c:0d:cf:
b1:30:ab:9c:c0:8e:a3:6a:c3:a2:2b:f0:a3:63:fb:b5:76:f3:
85:7f:41:f5:08:b9:95:1f:c9:8f:bd:ac:1d:bb:00:92:e2:f0:
a5:3b:31:68:d6:6d:11:e1:b4:32:be:fd:38:90:35:3a:07:b5:
ba:c2:d7:52:28:33:0f:cd:4e:0e:c8:59:da:41:47:fa:ed:60:
a7:54:6a:0f:46:2d:6d:61:23:5c:b1:15:19:bc:44:e8:35:c7:
dd:ef:35:01:5c:d0:e7:67:de:32:9a:12:c1:0a:3e:d2:7d:cd:
98:69:a0:90:23:cc:bc:a1:f4:e6:25:6c:7a:54:e2:e3:d5:a8:
95:e8:3d:42:ba:d0:ae:e0:20:06:6e:6b:94:66:24:89:23:00:
03:d6:a9:d1:64:70:c2:9c:88:5d:d0:3b:fc:c9:3c:38:d1:d5:
e8:ad:17:27:68:7f:8f:a3:d1:54:0d:c8:ae:0b:da:7e:de:35:
4d:38:93:61:16:86:59:82:dd:6a:a5:40:c7:9a:12:99:ad:01:
2a:19:21:0f
-----BEGIN CERTIFICATE-----
MIIGqDCCBZCgAwIBAgISAYefyx2nvTZvJSsp6VxwMZrAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwZWY1ZmJiZmNhN2E5M2NmZWU5NjVlZWI2YmRlZTZmYjQz
YzQwM2UwHhcNMjMwNDIwMTc1MTQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjODYxM2E0YjBlZjQ4N2JmNGJjODEyODU1MGQ2ZmVmZGYzMjQzMWU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAprB5y17eo0lx4tBm979xOhK65hZM
YtgNfBaCCOiJNi3CiGMH4dBjL2Lc8tx1fyLEyMtx0OLQkEYpL9p1q3QsxMonxUXp
gfI4OWGzgAeFA/vf5fi9uHWeUWkTVqjTLHUyFmdb5XHjJf6krOBqqkACJ+4ItieC
+qPxm0qBlsir8vhA1qJ7erOFGtzgTr3e+xPDmeW3NfaN/2jHFXZ11YPYATBg/yKF
0SwI7k/87l4XNFqXjPTUDLyKD3gLZnnhryNgjKKLL4DxgSzZnGe69M3mfQ79UnS3
GBA7eWqeaa3ocfY4pbPdFOBfsKNIEZU5QXbY/tKJtDAxRK4HDnh+kce2IQIDAQAB
o4IDtDCCA7AwHQYDVR0OBBYEFMhhOksO9Ie/S8gShVDW/v3zJDHmMB8GA1UdIwQY
MBaAFKDvX7v8p6k8/ull7ra97m+0PEA+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb085ZnVfeW5xVHotNldYdXRyM3ViN1E4UUQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi9mZTkxNWMtYmY3MC00NjAyLThhM2Mt
MDI5MmIwMjAxNTBhLzEveUdFNlN3NzBoNzlMeUJLRlVOYi1fZk1rTWVZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi9mZTkxNWMtYmY3MC00NjAyLThhM2MtMDI5MmIwMjAxNTBh
LzEvb085ZnVfeW5xVHotNldYdXRyM3ViN1E4UUQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIByAYIKwYBBQUHAQcBAf8EggG3MIIBszCCAZIEAgABMIIB
igMDAyVAAwQFLiMAAwQFPggAAwMAPicDBAc+PoADBAc+aoADBAU+gaADBAY+8UAw
CgMDB02AAwMATYgwDAMEAk2JxAMEBU2JwDAKAwMCTYwDAwVNgAMDBE3AAwMETnAD
BAVOm4ADAwRPUAMEBk+uwAMEBFBGIAMDAVB2AwMBUHwDBAdQ7AADBAZRAQADAwJR
QAMDAFG5AwMAUdwDAwBS2AMEB1ONgAMDAlQEAwQGVDeAAwMDVGADBAVUzYADAwFV
RAMDAlWoAwMEVkADAwBX5zAKAwMDWIgDAwBYjgMDAVkCAwMCWZwDAwJbRAMEBFuX
cAMDA1xYAwMFXQADAwVtAAMEA42q2AMEArmTzAMEBcIGgAMEBcK3wAMEBMLysAME
BsMDAAMEBcMHYAMEBcNiYAMDAMNzAwMAw4QDBAXDksADBAXUHmADBAXUJ4ADBAXU
XqADAwDUxgMEBdWAIAMEBdWQwAMEBdWpoAMEBtXLQAMDANXfAwMA1fUDBATZE8AD
BATZRlADBATZcOAwGwQCAAIwFQMFAyoAYgADBQAqAHGAAwUHKgKEADANBgkqhkiG
9w0BAQsFAAOCAQEAmVkllzVeQ3OnDKR4XmYXaannBQ7ALPdH7hOwvXIAIBlW2Fvv
HEQwG+86EPCzBXJsf0ycDA3PsTCrnMCOo2rDoivwo2P7tXbzhX9B9Qi5lR/Jj72s
HbsAkuLwpTsxaNZtEeG0Mr79OJA1Oge1usLXUigzD81ODshZ2kFH+u1gp1RqD0Yt
bWEjXLEVGbxE6DXH3e81AVzQ52feMpoSwQo+0n3NmGmgkCPMvKH05iVselTi49Wo
leg9QrrQruAgBm5rlGYkiSMAA9ap0WRwwpyIXdA7/Mk8ONHV6K0XJ2h/j6PRVA3I
rgvaft41TTiTYRaGWYLdaqVAx5oSma0BKhkhDw==
-----END CERTIFICATE-----
Generated at Sat Apr 12 23:20:25 2025 by rpki-client