Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/C_y8PNEsdK1szUf7wt2h-t4Jb_E.roa
File: C_y8PNEsdK1szUf7wt2h-t4Jb_E.roa (raw, json)
Hash identifier: ded9CA+cy0yJl+byv1lfgZi+19KYVL9tqw6gxvePO4s=
Subject key identifier: 0B:FC:BC:3C:D1:2C:74:AD:6C:CD:47:FB:C2:DD:A1:FA:DE:09:6F:F1
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 0183FB2691703011F6830C471324187A6AA7
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/C_y8PNEsdK1szUf7wt2h-t4Jb_E.roa
Signing time: Fri 21 Oct 2022 15:25:52 +0000
ROA not before: Fri 21 Oct 2022 15:25:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42337
IP address blocks: 87.107.44.0/22 maxlen: 24
87.107.48.0/23 maxlen: 23
87.107.72.0/21 maxlen: 24
87.107.80.0/21 maxlen: 24
87.107.16.0/21 maxlen: 21
87.107.18.0/24 maxlen: 24
87.107.20.0/22 maxlen: 22
87.107.30.0/24 maxlen: 24
87.107.28.0/22 maxlen: 22
87.107.37.0/24 maxlen: 24
87.107.32.0/23 maxlen: 23
87.107.36.0/24 maxlen: 24
87.107.36.0/22 maxlen: 22
87.107.92.0/22 maxlen: 24
87.107.100.0/22 maxlen: 22
87.107.136.0/21 maxlen: 24
81.12.0.0/21 maxlen: 24
81.12.32.0/21 maxlen: 21
81.12.37.0/24 maxlen: 24
81.12.40.0/21 maxlen: 21
81.12.44.0/24 maxlen: 24
81.12.39.0/24 maxlen: 24
81.12.40.0/24 maxlen: 24
81.12.46.0/24 maxlen: 24
81.12.47.0/24 maxlen: 24
81.12.45.0/24 maxlen: 24
81.12.112.0/22 maxlen: 22
81.12.115.0/24 maxlen: 24
81.12.116.0/22 maxlen: 24
81.12.120.0/21 maxlen: 24
81.12.54.0/23 maxlen: 24
81.12.56.0/23 maxlen: 23
81.12.60.0/22 maxlen: 24
81.12.64.0/18 maxlen: 18
81.12.72.0/21 maxlen: 24
81.12.80.0/22 maxlen: 22
81.12.80.0/20 maxlen: 24
81.12.84.0/23 maxlen: 23
81.12.86.0/24 maxlen: 24
81.12.90.0/23 maxlen: 23
81.12.87.0/24 maxlen: 24
81.12.88.0/24 maxlen: 24
81.12.89.0/24 maxlen: 24
81.12.94.0/24 maxlen: 24
81.12.95.0/24 maxlen: 24
81.12.96.0/21 maxlen: 24
81.12.96.0/19 maxlen: 24
81.12.104.0/21 maxlen: 24
62.220.118.0/23 maxlen: 24
62.220.113.0/24 maxlen: 24
62.220.112.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:fb:26:91:70:30:11:f6:83:0c:47:13:24:18:7a:6a:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Oct 21 15:25:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0bfcbc3cd12c74ad6ccd47fbc2dda1fade096ff1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:19:5e:12:2f:ca:60:e2:29:b6:39:0e:13:9d:
58:e1:92:a4:4c:3a:83:13:4b:12:aa:bc:dc:7a:1b:
d3:5e:64:f7:4a:bd:6c:0c:db:4d:24:ec:2b:fe:9e:
4c:48:c5:89:ad:05:06:a0:86:a8:28:0a:14:79:48:
4d:e2:95:3f:f3:a0:06:28:13:e0:a1:bc:3f:91:2c:
7b:fc:49:c8:71:15:a3:57:69:5d:4f:69:be:2e:79:
95:c5:d5:fb:73:f7:5d:b8:8b:93:0b:85:f2:2f:de:
88:72:1c:61:7b:87:03:1a:ba:ee:b3:2f:28:c7:df:
a5:92:ef:86:3e:27:6f:15:51:bd:bf:0d:46:9d:07:
1c:a7:3e:21:68:74:d5:1f:1a:8e:66:3e:ba:64:8a:
5a:89:c2:fe:4d:7a:bf:1b:08:3d:d2:60:79:bd:bd:
f4:5e:49:3a:63:1d:1e:10:64:90:f4:9e:1d:d7:91:
6a:b5:3c:bb:b8:67:15:49:37:a7:d3:31:30:57:c2:
87:5d:6d:e1:73:1b:7f:2f:99:31:6c:fb:18:29:a6:
fb:14:cd:6c:f8:2e:3d:64:c1:0e:b2:f4:c1:e7:03:
73:5f:99:33:ef:2a:dd:8d:87:c9:10:c5:0a:89:be:
b9:54:06:0e:2e:25:1b:67:2e:17:cf:7f:52:c4:d2:
db:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:FC:BC:3C:D1:2C:74:AD:6C:CD:47:FB:C2:DD:A1:FA:DE:09:6F:F1
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/C_y8PNEsdK1szUf7wt2h-t4Jb_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.112.0/21
81.12.0.0/21
81.12.32.0/20
81.12.54.0-81.12.57.255
81.12.60.0-81.12.127.255
87.107.16.0/21
87.107.28.0-87.107.33.255
87.107.36.0/22
87.107.44.0-87.107.49.255
87.107.72.0-87.107.87.255
87.107.92.0/22
87.107.100.0/22
87.107.136.0/21
Signature Algorithm: sha256WithRSAEncryption
cc:7e:72:83:5f:12:a5:d6:66:8b:2c:e2:a4:84:00:f8:f6:3d:
63:61:f1:98:ba:19:51:e1:97:b8:23:77:f3:9d:17:f1:54:f7:
f1:1c:d1:9a:fc:7a:1f:bc:1b:a3:0c:0f:8d:e2:eb:69:c5:bf:
6a:b3:c1:34:4d:f4:c8:a4:49:52:42:5b:3a:9d:f8:44:88:9a:
d8:f3:59:81:27:b2:13:4e:e0:53:8f:8a:dd:21:c8:b5:e5:ce:
b2:b0:a4:c0:1d:1c:99:41:8b:61:22:07:c1:1d:a9:e8:3a:66:
d3:7f:60:57:7d:bb:13:3f:a4:41:95:e1:25:87:ca:06:4f:a4:
83:75:b1:43:f8:65:cf:f0:6e:7e:0b:74:b2:9b:3e:8b:7b:a7:
3c:6d:6d:2c:95:59:63:ea:fc:ab:aa:fd:a9:69:b1:81:a2:25:
cc:c2:5d:50:d1:63:2c:a3:08:a9:18:08:99:b9:5b:81:c2:95:
cb:ba:24:c9:e7:05:25:d5:34:52:61:85:10:e2:23:53:5b:59:
fc:dc:eb:0f:8d:d1:43:e1:70:3b:ae:f7:c9:48:98:81:cb:27:
70:dd:d1:cd:fb:a8:0f:a0:3b:d0:3b:20:0a:12:c3:bc:c9:55:
2f:14:70:3d:a9:f1:2d:8c:f3:38:d7:f5:09:f8:81:00:80:d1:
60:02:9f:51
-----BEGIN CERTIFICATE-----
MIIFbzCCBFegAwIBAgISAYP7JpFwMBH2gwxHEyQYemqnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNzc1ZDk0NzFiODVkOTYzZmVmNmQyODM1OTBlMmQ5NDJk
ZDVjMjEwHhcNMjIxMDIxMTUyNTUyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYmZjYmMzY2QxMmM3NGFkNmNjZDQ3ZmJjMmRkYTFmYWRlMDk2ZmYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnRleEi/KYOIptjkOE51Y4ZKkTDqD
E0sSqrzcehvTXmT3Sr1sDNtNJOwr/p5MSMWJrQUGoIaoKAoUeUhN4pU/86AGKBPg
obw/kSx7/EnIcRWjV2ldT2m+LnmVxdX7c/dduIuTC4XyL96Ichxhe4cDGrrusy8o
x9+lku+GPidvFVG9vw1GnQccpz4haHTVHxqOZj66ZIpaicL+TXq/Gwg90mB5vb30
Xkk6Yx0eEGSQ9J4d15FqtTy7uGcVSTen0zEwV8KHXW3hcxt/L5kxbPsYKab7FM1s
+C49ZMEOsvTB5wNzX5kz7yrdjYfJEMUKib65VAYOLiUbZy4Xz39SxNLbwwIDAQAB
o4ICezCCAncwHQYDVR0OBBYEFAv8vDzRLHStbM1H+8LdofreCW/xMB8GA1UdIwQY
MBaAFAB3XZRxuF2WP+9tKDWQ4tlC3VwhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQt
NzZiMzNlNGNlODIxLzEvQ195OFBORXNkSzFzelVmN3d0MmgtdDRKYl9FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQtNzZiMzNlNGNlODIx
LzEvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGQBggrBgEFBQcBBwEB/wSBgDB+MHwEAgABMHYDBAM+3HAD
BANRDAADBARRDCAwDAMEAVEMNgMEAVEMODAMAwQCUQw8AwQHUQwAAwQDV2sQMAwD
BAJXaxwDBAFXayADBAJXayQwDAMEAldrLAMEAVdrMDAMAwQDV2tIAwQDV2tQAwQC
V2tcAwQCV2tkAwQDV2uIMA0GCSqGSIb3DQEBCwUAA4IBAQDMfnKDXxKl1maLLOKk
hAD49j1jYfGYuhlR4Ze4I3fznRfxVPfxHNGa/HofvBujDA+N4utpxb9qs8E0TfTI
pElSQls6nfhEiJrY81mBJ7ITTuBTj4rdIci15c6ysKTAHRyZQYthIgfBHanoOmbT
f2BXfbsTP6RBleElh8oGT6SDdbFD+GXP8G5+C3Symz6Le6c8bW0slVlj6vyrqv2p
abGBoiXMwl1Q0WMsowipGAiZuVuBwpXLuiTJ5wUl1TRSYYUQ4iNTW1n83OsPjdFD
4XA7rvfJSJiByydw3dHN+6gPoDvQOyAKEsO8yVUvFHA9qfEtjPM41/UJ+IEAgNFg
Ap9R
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:33 2023 by rpki-client on console-ams.rpki-client.org