Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/aQA_5jHF7sDX-1dctZp6OYwqjRw.roa
File: aQA_5jHF7sDX-1dctZp6OYwqjRw.roa (raw, json)
Hash identifier: 7wciV6lmewuuiCZbb4+VqlUFLFndbrPPZ0TWuAcV3VI=
Subject key identifier: 69:00:3F:E6:31:C5:EE:C0:D7:FB:57:5C:B5:9A:7A:39:8C:2A:8D:1C
Certificate issuer: /CN=d79785de62dcf9e7930babd7b1d39c5853d1944f
Certificate serial: 33EA2300
Authority key identifier: D7:97:85:DE:62:DC:F9:E7:93:0B:AB:D7:B1:D3:9C:58:53:D1:94:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/15eF3mLc-eeTC6vXsdOcWFPRlE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/aQA_5jHF7sDX-1dctZp6OYwqjRw.roa
Signing time: Thu 20 Jan 2022 16:26:59 +0000
ROA not before: Thu 20 Jan 2022 16:26:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202196
IP address blocks: 5.57.20.0/24 maxlen: 24
5.57.21.0/24 maxlen: 24
5.57.20.0/23 maxlen: 23
37.10.1.0/24 maxlen: 24
37.10.24.0/24 maxlen: 24
37.10.24.0/23 maxlen: 23
37.10.27.0/24 maxlen: 24
37.10.28.0/24 maxlen: 24
37.10.29.0/24 maxlen: 24
37.10.30.0/24 maxlen: 24
37.10.31.0/24 maxlen: 24
37.10.25.0/24 maxlen: 24
37.10.26.0/24 maxlen: 24
37.10.30.0/23 maxlen: 23
37.10.41.0/24 maxlen: 24
37.10.42.0/24 maxlen: 24
37.10.43.0/24 maxlen: 24
37.10.44.0/24 maxlen: 24
37.10.40.0/24 maxlen: 24
37.10.45.0/24 maxlen: 24
37.10.46.0/24 maxlen: 24
91.195.236.0/24 maxlen: 24
2a01:5043:2efd::/48 maxlen: 48
2a01:5043:efd::/48 maxlen: 48
2a01:5041:5000::/48 maxlen: 48
2a01:5041:2000::/48 maxlen: 48
2a01:5041:4000::/48 maxlen: 48
2a01:5041::/48 maxlen: 48
2a01:5043:e::/48 maxlen: 48
2a01:5041:4007::/48 maxlen: 48
2a01:5041:2007::/48 maxlen: 48
2a01:5041:7::/48 maxlen: 48
2a01:5041:4efd::/48 maxlen: 48
2a01:5041:2efd::/48 maxlen: 48
2a01:5041:efd::/48 maxlen: 48
2a01:5041:e::/48 maxlen: 48
2a01:5041:600e::/48 maxlen: 48
2a01:5041:500e::/48 maxlen: 48
2a01:5041:400e::/48 maxlen: 48
2a01:5041:200e::/48 maxlen: 48
2a01:5041:2004::/48 maxlen: 48
2a01:5041:6004::/48 maxlen: 48
2a01:5043::/48 maxlen: 48
2a01:5043:2000::/48 maxlen: 48
2a01:5041:2eff::/48 maxlen: 48
2a01:5041:eff::/48 maxlen: 48
2a01:5041:2010::/48 maxlen: 48
2a01:5041:6::/48 maxlen: 48
2a01:5041:2006::/48 maxlen: 48
2a01:5041:6006::/48 maxlen: 48
2a01:5042:eff::/48 maxlen: 48
2a01:5042:2eff::/48 maxlen: 48
2a01:5041:3::/48 maxlen: 48
2a01:5041:5003::/48 maxlen: 48
2a01:5041:4003::/48 maxlen: 48
2a01:5041:3003::/48 maxlen: 48
2a01:5041:2003::/48 maxlen: 48
2a01:5041:6003::/48 maxlen: 48
2a01:5041:1003::/48 maxlen: 48
2a01:5041:ea14::/48 maxlen: 48
2a01:5041:3014::/48 maxlen: 48
2a01:5041:1014::/48 maxlen: 48
2a01:5043:b::/48 maxlen: 48
2a01:5041:200f::/48 maxlen: 48
2a01:5041:f::/48 maxlen: 48
2a01:5041::/32 maxlen: 48
2a01:5041:ea16::/48 maxlen: 48
2a01:5041:ea09::/48 maxlen: 48
2a01:5042:2001::/48 maxlen: 48
2a01:5042:1::/48 maxlen: 48
2a01:5042:b::/48 maxlen: 48
2a01:5042:200b::/48 maxlen: 48
2a01:5041:ea15::/48 maxlen: 48
2a01:5041:b::/48 maxlen: 48
2a01:5041:400b::/48 maxlen: 48
2a01:5041:200b::/48 maxlen: 48
2a01:5041:2001::/48 maxlen: 48
2a01:5041:1::/48 maxlen: 48
2a01:5043:2eff::/48 maxlen: 48
2a01:5043:eff::/48 maxlen: 48
2a01:5041:2008::/48 maxlen: 48
2a01:5041:6008::/48 maxlen: 48
2a01:5041:8::/48 maxlen: 48
2a01:5042:e::/48 maxlen: 48
2a01:5042:200e::/48 maxlen: 48
2a01:5041:4efe::/48 maxlen: 48
2a01:5041:2efe::/48 maxlen: 48
2a01:5041:efe::/48 maxlen: 48
2a01:5042:2efd::/48 maxlen: 48
2a01:5042:efd::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 870982400 (0x33ea2300)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d79785de62dcf9e7930babd7b1d39c5853d1944f
Validity
Not Before: Jan 20 16:26:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=69003fe631c5eec0d7fb575cb59a7a398c2a8d1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:bb:64:05:6e:99:91:8c:b3:94:98:f3:51:f3:
5a:a6:22:4b:16:33:0b:ad:9e:12:83:23:f1:f6:56:
0b:41:73:73:c0:e3:a5:65:e8:ac:e1:70:2b:eb:2b:
9d:2c:c8:13:7a:44:ab:c6:7e:ed:fa:64:25:36:f4:
61:7e:31:b7:6c:3d:bb:8a:b9:a3:d9:2b:ab:cc:99:
22:1d:47:55:83:98:27:f3:7d:88:47:a9:91:e5:87:
d5:d8:5a:71:7f:89:42:91:80:3d:c7:c2:30:71:f1:
ad:b4:af:2e:ad:92:d5:45:55:ee:26:66:c1:9f:1d:
f0:75:dc:8f:d2:c9:59:5e:e1:83:3c:c2:6c:c1:f6:
61:8d:70:78:f4:f9:9d:89:4f:df:77:4e:ac:00:42:
de:88:e9:22:c0:55:04:c1:fe:bf:33:a6:90:53:51:
88:03:c0:d6:45:93:7e:aa:c1:94:9d:9a:d0:0e:28:
f4:d2:fa:cd:93:6b:fb:81:44:d5:9f:73:9b:65:be:
c3:38:4f:df:19:b9:5e:91:b6:86:54:1a:50:3f:76:
19:f8:63:39:49:8a:7c:19:49:9b:01:2a:22:2f:a2:
f1:9b:89:a8:5a:57:15:3c:d1:fb:cc:64:0e:bf:91:
38:66:3c:2e:99:fd:6b:7d:08:5c:ba:dd:16:d8:b4:
25:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:00:3F:E6:31:C5:EE:C0:D7:FB:57:5C:B5:9A:7A:39:8C:2A:8D:1C
X509v3 Authority Key Identifier:
keyid:D7:97:85:DE:62:DC:F9:E7:93:0B:AB:D7:B1:D3:9C:58:53:D1:94:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/15eF3mLc-eeTC6vXsdOcWFPRlE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/aQA_5jHF7sDX-1dctZp6OYwqjRw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/15eF3mLc-eeTC6vXsdOcWFPRlE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.20.0/23
37.10.1.0/24
37.10.24.0/21
37.10.40.0-37.10.46.255
91.195.236.0/24
IPv6:
2a01:5041::/32
2a01:5042:1::/48
2a01:5042:b::/48
2a01:5042:e::/48
2a01:5042:efd::/48
2a01:5042:eff::/48
2a01:5042:2001::/48
2a01:5042:200b::/48
2a01:5042:200e::/48
2a01:5042:2efd::/48
2a01:5042:2eff::/48
2a01:5043::/48
2a01:5043:b::/48
2a01:5043:e::/48
2a01:5043:efd::/48
2a01:5043:eff::/48
2a01:5043:2000::/48
2a01:5043:2efd::/48
2a01:5043:2eff::/48
Signature Algorithm: sha256WithRSAEncryption
8b:62:bd:0b:27:fc:45:41:df:73:7d:62:6c:c5:0f:81:7e:aa:
cf:ee:69:c7:d6:20:e4:b0:e0:1b:f8:10:85:fc:09:a5:2a:e4:
a0:8d:27:50:53:f1:d8:6d:c7:d5:e1:da:e5:fe:49:ca:9d:2e:
bd:de:79:ba:2f:69:28:19:4c:1a:45:f1:ca:35:2d:d7:25:25:
ba:a9:26:f1:d6:0a:ba:e0:50:07:e0:44:33:81:cd:44:f5:73:
20:c1:03:24:60:0d:7b:69:c3:a6:82:5d:c8:5b:de:33:05:5a:
7d:bf:e0:20:34:6b:d4:44:fe:85:68:c1:8e:33:fd:62:63:ce:
e6:1a:2d:77:73:34:7c:21:84:59:da:57:e5:ae:3e:3a:cd:01:
48:20:00:60:11:4c:32:9f:46:e6:c6:62:13:d2:da:97:79:48:
90:96:26:bd:09:de:80:41:2e:be:4b:61:67:4f:37:b4:f0:e3:
65:c1:36:06:38:57:34:bd:3d:59:e0:53:89:da:1a:0c:3d:e1:
7d:ed:d7:0a:ef:1f:37:76:21:18:44:91:93:83:f0:d7:93:5c:
12:69:5c:40:2f:aa:6f:2b:d7:ef:99:83:5e:7d:91:06:68:d5:
9d:61:0c:26:30:0f:a0:15:a0:d1:6b:dc:80:23:d1:97:19:2c:
12:a9:e3:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:30 2024 by rpki-client on console-ams.rpki-client.org