Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/DxRcpfYQxPoABiZcPxPdVna4TyA.roa
File: DxRcpfYQxPoABiZcPxPdVna4TyA.roa (raw, json)
Hash identifier: 5Dya3kMysMYehBuq2q0gNp3woMamh6CjvseV60n1Vqg=
Subject key identifier: 0F:14:5C:A5:F6:10:C4:FA:00:06:26:5C:3F:13:DD:56:76:B8:4F:20
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 0181F1537FE3156B16E164EF7E91B462A010
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/DxRcpfYQxPoABiZcPxPdVna4TyA.roa
Signing time: Tue 12 Jul 2022 07:33:10 +0000
ROA not before: Tue 12 Jul 2022 07:33:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58272
IP address blocks: 37.230.187.0/24 maxlen: 24
188.72.119.0/24 maxlen: 24
178.170.231.0/24 maxlen: 24
178.170.139.0/24 maxlen: 24
178.170.137.0/24 maxlen: 24
217.150.90.0/24 maxlen: 24
217.150.89.0/24 maxlen: 24
217.150.88.0/24 maxlen: 24
217.150.91.0/24 maxlen: 24
178.170.140.0/24 maxlen: 24
217.150.94.0/24 maxlen: 24
217.150.93.0/24 maxlen: 24
217.150.92.0/24 maxlen: 24
217.150.95.0/24 maxlen: 24
46.243.149.0/24 maxlen: 24
37.18.0.0/24 maxlen: 24
185.4.150.0/24 maxlen: 24
37.18.15.0/24 maxlen: 24
185.4.149.0/24 maxlen: 24
185.4.148.0/24 maxlen: 24
185.4.151.0/24 maxlen: 24
141.101.255.0/24 maxlen: 24
46.243.139.0/24 maxlen: 24
46.243.138.0/24 maxlen: 24
37.230.134.0/24 maxlen: 24
37.230.151.0/24 maxlen: 24
188.72.83.0/24 maxlen: 24
188.72.81.0/24 maxlen: 24
188.72.80.0/24 maxlen: 24
188.72.85.0/24 maxlen: 24
188.72.84.0/24 maxlen: 24
188.72.86.0/24 maxlen: 24
37.230.170.0/24 maxlen: 24
37.230.171.0/24 maxlen: 24
37.230.176.0/24 maxlen: 24
37.230.183.0/24 maxlen: 24
37.230.182.0/24 maxlen: 24
46.243.204.0/24 maxlen: 24
46.243.214.0/24 maxlen: 24
46.243.217.0/24 maxlen: 24
46.243.216.0/24 maxlen: 24
46.243.222.0/24 maxlen: 24
46.243.221.0/24 maxlen: 24
46.243.225.0/24 maxlen: 24
46.243.223.0/24 maxlen: 24
46.243.232.0/24 maxlen: 24
46.243.233.0/24 maxlen: 24
37.18.63.0/24 maxlen: 24
46.243.240.0/24 maxlen: 24
46.243.236.0/24 maxlen: 24
46.243.235.0/24 maxlen: 24
46.243.234.0/24 maxlen: 24
46.243.238.0/24 maxlen: 24
46.243.237.0/24 maxlen: 24
46.243.243.0/24 maxlen: 24
46.243.242.0/24 maxlen: 24
46.243.241.0/24 maxlen: 24
46.243.246.0/24 maxlen: 24
46.243.250.0/24 maxlen: 24
46.243.249.0/24 maxlen: 24
46.243.248.0/24 maxlen: 24
46.243.247.0/24 maxlen: 24
37.230.131.0/24 maxlen: 24
46.243.251.0/24 maxlen: 24
128.0.71.0/24 maxlen: 24
141.101.179.0/24 maxlen: 24
141.101.132.0/24 maxlen: 24
141.101.133.0/24 maxlen: 24
141.101.135.0/24 maxlen: 24
141.101.145.0/24 maxlen: 24
141.101.143.0/24 maxlen: 24
141.101.148.0/24 maxlen: 24
141.101.147.0/24 maxlen: 24
141.101.150.0/24 maxlen: 24
141.101.149.0/24 maxlen: 24
141.101.155.0/24 maxlen: 24
141.101.154.0/24 maxlen: 24
141.101.153.0/24 maxlen: 24
141.101.159.0/24 maxlen: 24
141.101.158.0/24 maxlen: 24
141.101.156.0/24 maxlen: 24
141.101.162.0/24 maxlen: 24
141.101.161.0/24 maxlen: 24
141.101.160.0/24 maxlen: 24
141.101.166.0/24 maxlen: 24
141.101.165.0/24 maxlen: 24
141.101.164.0/24 maxlen: 24
141.101.168.0/24 maxlen: 24
141.101.167.0/24 maxlen: 24
141.101.171.0/24 maxlen: 24
141.101.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f1:53:7f:e3:15:6b:16:e1:64:ef:7e:91:b4:62:a0:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jul 12 07:33:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f145ca5f610c4fa0006265c3f13dd5676b84f20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b4:18:e0:ed:f9:e0:38:52:bc:4a:cc:2d:b1:
04:98:04:c9:2a:28:c1:3a:1d:12:88:2d:dc:ba:5b:
0b:72:37:79:25:36:72:69:f6:5d:28:1d:9e:7f:6b:
e9:00:67:95:8a:48:b9:f5:ab:ac:a9:b7:ae:7f:42:
11:10:0c:d7:33:17:aa:67:95:ea:6f:19:e8:cb:c5:
4f:bf:27:17:a5:96:77:b6:63:1f:d6:75:9f:0e:ef:
e6:80:a0:36:2f:35:ee:87:b7:00:1e:ac:71:2d:90:
27:fa:6f:62:87:83:54:58:68:ae:e6:d0:8f:a2:95:
01:42:55:82:2a:59:5f:1a:f4:96:14:ff:a1:4c:06:
27:d7:0e:cd:26:7f:ca:76:d6:20:dc:f9:66:90:19:
94:1f:5f:29:24:5d:7c:f4:0f:78:05:83:38:ad:db:
7a:29:68:54:e9:3a:35:0e:78:50:60:87:b0:01:7d:
83:72:e8:1d:86:1f:c5:1c:b4:54:c6:e7:02:80:7d:
35:61:44:8d:cb:b6:7d:83:ba:dd:40:17:2e:62:ce:
da:fa:9f:d9:8d:25:3e:59:ee:83:0d:09:9a:53:aa:
ba:8d:c5:69:72:88:cd:a8:81:28:62:73:fd:52:47:
ec:f4:40:d2:7b:a0:98:92:9c:a7:9d:43:5b:40:97:
3c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:14:5C:A5:F6:10:C4:FA:00:06:26:5C:3F:13:DD:56:76:B8:4F:20
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/DxRcpfYQxPoABiZcPxPdVna4TyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.0.0/24
37.18.15.0/24
37.18.63.0/24
37.230.131.0/24
37.230.134.0/24
37.230.151.0/24
37.230.170.0/23
37.230.176.0/24
37.230.182.0/23
37.230.187.0/24
46.243.138.0/23
46.243.149.0/24
46.243.204.0/24
46.243.214.0/24
46.243.216.0/23
46.243.221.0-46.243.223.255
46.243.225.0/24
46.243.232.0-46.243.238.255
46.243.240.0/22
46.243.246.0-46.243.251.255
128.0.71.0/24
141.101.132.0/23
141.101.135.0/24
141.101.143.0/24
141.101.145.0/24
141.101.147.0-141.101.150.255
141.101.153.0-141.101.156.255
141.101.158.0-141.101.162.255
141.101.164.0-141.101.168.255
141.101.170.0/23
141.101.179.0/24
141.101.255.0/24
178.170.137.0/24
178.170.139.0-178.170.140.255
178.170.231.0/24
185.4.148.0/22
188.72.80.0/23
188.72.83.0-188.72.86.255
188.72.119.0/24
217.150.88.0/21
Signature Algorithm: sha256WithRSAEncryption
67:bc:5d:34:dc:9e:f3:09:e8:fa:a0:c6:b0:cf:ce:d1:ca:bf:
44:2a:c2:89:0a:ef:2a:f7:b8:03:67:b4:7f:1a:78:c3:54:d0:
4e:4c:2d:da:f6:9e:cf:75:db:01:7d:7a:4e:15:59:e0:7b:2a:
53:2a:73:60:df:3f:3a:f0:8a:e9:b7:8a:c2:d8:c5:4f:3a:13:
5c:c6:f4:b8:cb:5c:23:22:6a:b2:2d:16:83:a8:64:eb:0b:47:
3b:dd:41:36:6c:82:de:70:7a:bc:31:f0:d4:10:2c:b2:c8:e6:
b6:9f:ea:39:70:3a:13:6f:ed:e4:08:6d:bd:fe:06:a7:42:67:
1b:88:42:18:47:23:de:24:0b:e0:79:46:2c:cd:a7:76:69:1c:
10:48:75:c5:5c:55:27:8b:06:8c:0a:83:37:ff:87:d9:a8:3a:
67:4c:94:b9:a9:29:d9:43:00:05:6b:5e:86:74:20:1d:d4:c5:
e7:3d:16:00:14:a2:f0:fe:0b:a6:65:83:4c:3f:a1:94:5b:ba:
b2:cc:9a:c9:21:97:42:ef:a5:50:44:da:e9:0f:56:d2:16:d9:
50:1a:5d:dc:10:6a:d9:b5:9f:75:41:8d:d7:01:66:3d:77:5a:
95:01:11:9d:0e:bd:f0:3e:8e:62:eb:4a:52:f0:33:ee:3c:6c:
b2:80:2e:8f
-----BEGIN CERTIFICATE-----
MIIGOTCCBSGgAwIBAgISAYHxU3/jFWsW4WTvfpG0YqAQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4ODVlODg0YzJmYzdhNzVkMTJkZDFkZWE0OWNlMjM0OWM0
NzA2N2UwHhcNMjIwNzEyMDczMzEwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZjE0NWNhNWY2MTBjNGZhMDAwNjI2NWMzZjEzZGQ1Njc2Yjg0ZjIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtbQY4O354DhSvErMLbEEmATJKijB
Oh0SiC3culsLcjd5JTZyafZdKB2ef2vpAGeViki59ausqbeuf0IREAzXMxeqZ5Xq
bxnoy8VPvycXpZZ3tmMf1nWfDu/mgKA2LzXuh7cAHqxxLZAn+m9ih4NUWGiu5tCP
opUBQlWCKllfGvSWFP+hTAYn1w7NJn/KdtYg3PlmkBmUH18pJF189A94BYM4rdt6
KWhU6To1DnhQYIewAX2Dcugdhh/FHLRUxucCgH01YUSNy7Z9g7rdQBcuYs7a+p/Z
jSU+We6DDQmaU6q6jcVpcojNqIEoYnP9Ukfs9EDSe6CYkpynnUNbQJc8VwIDAQAB
o4IDRTCCA0EwHQYDVR0OBBYEFA8UXKX2EMT6AAYmXD8T3VZ2uE8gMB8GA1UdIwQY
MBaAFFiF6ITC/Hp10S3R3qSc4jScRwZ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0lYb2hNTDhlblhSTGRIZXBKemlOSnhIQm40LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni82YzBiZjctNWYxMy00NGEyLTk5ODkt
OGM5NTgxZDk2ZDhmLzEvRHhSY3BmWVF4UG9BQmlaY1B4UGRWbmE0VHlBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni82YzBiZjctNWYxMy00NGEyLTk5ODktOGM5NTgxZDk2ZDhm
LzEvV0lYb2hNTDhlblhSTGRIZXBKemlOSnhIQm40LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBWQYIKwYBBQUHAQcBAf8EggFIMIIBRDCCAUAEAgABMIIB
OAMEACUSAAMEACUSDwMEACUSPwMEACXmgwMEACXmhgMEACXmlwMEASXmqgMEACXm
sAMEASXmtgMEACXmuwMEAS7zigMEAC7zlQMEAC7zzAMEAC7z1gMEAS7z2DAMAwQA
LvPdAwQFLvPAAwQALvPhMAwDBAMu8+gDBAAu8+4DBAIu8/AwDAMEAS7z9gMEAi7z
+AMEAIAARwMEAY1lhAMEAI1lhwMEAI1ljwMEAI1lkTAMAwQAjWWTAwQAjWWWMAwD
BACNZZkDBACNZZwwDAMEAY1lngMEAI1lojAMAwQCjWWkAwQAjWWoAwQBjWWqAwQA
jWWzAwQAjWX/AwQAsqqJMAwDBACyqosDBACyqowDBACyqucDBAK5BJQDBAG8SFAw
DAMEALxIUwMEALxIVgMEALxIdwMEA9mWWDANBgkqhkiG9w0BAQsFAAOCAQEAZ7xd
NNye8wno+qDGsM/O0cq/RCrCiQrvKve4A2e0fxp4w1TQTkwt2vaez3XbAX16ThVZ
4HsqUypzYN8/OvCK6beKwtjFTzoTXMb0uMtcIyJqsi0Wg6hk6wtHO91BNmyC3nB6
vDHw1BAsssjmtp/qOXA6E2/t5Ahtvf4Gp0JnG4hCGEcj3iQL4HlGLM2ndmkcEEh1
xVxVJ4sGjAqDN/+H2ag6Z0yUuakp2UMABWtehnQgHdTF5z0WABSi8P4LpmWDTD+h
lFu6ssyaySGXQu+lUETa6Q9W0hbZUBpd3BBq2bWfdUGN1wFmPXdalQERnQ698D6O
YutKUvAz7jxssoAujw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:33 2024 by rpki-client on console-ams.rpki-client.org