Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/SGNvXcpHhazdxN9OCo0RpCtSPFs.roa
File: SGNvXcpHhazdxN9OCo0RpCtSPFs.roa (raw, json)
Hash identifier: 2I/idNbNVrPmkt9UzuAqqX+kbKG25ywlUsnbG/Y96Ys=
Subject key identifier: 48:63:6F:5D:CA:47:85:AC:DD:C4:DF:4E:0A:8D:11:A4:2B:52:3C:5B
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 0183F9AD5E11DD7FFAE1C7F282C543A4B923
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/SGNvXcpHhazdxN9OCo0RpCtSPFs.roa
Signing time: Fri 21 Oct 2022 08:33:51 +0000
ROA not before: Fri 21 Oct 2022 08:33:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42337
IP address blocks: 87.107.44.0/22 maxlen: 24
87.107.48.0/23 maxlen: 23
87.107.72.0/21 maxlen: 24
87.107.80.0/21 maxlen: 24
87.107.16.0/21 maxlen: 21
87.107.20.0/22 maxlen: 22
87.107.18.0/24 maxlen: 24
87.107.28.0/22 maxlen: 22
87.107.30.0/24 maxlen: 24
87.107.32.0/23 maxlen: 23
87.107.36.0/22 maxlen: 22
87.107.37.0/24 maxlen: 24
87.107.36.0/24 maxlen: 24
87.107.92.0/22 maxlen: 24
87.107.100.0/22 maxlen: 22
87.107.104.0/21 maxlen: 21
87.107.104.0/22 maxlen: 22
87.107.136.0/21 maxlen: 24
81.12.0.0/21 maxlen: 21
81.12.4.0/24 maxlen: 24
81.12.7.0/24 maxlen: 24
81.12.5.0/24 maxlen: 24
81.12.37.0/24 maxlen: 24
81.12.32.0/21 maxlen: 21
81.12.44.0/24 maxlen: 24
81.12.39.0/24 maxlen: 24
81.12.40.0/24 maxlen: 24
81.12.40.0/21 maxlen: 21
81.12.46.0/24 maxlen: 24
81.12.47.0/24 maxlen: 24
81.12.45.0/24 maxlen: 24
81.12.112.0/22 maxlen: 22
81.12.116.0/22 maxlen: 24
81.12.115.0/24 maxlen: 24
81.12.120.0/21 maxlen: 24
81.12.54.0/24 maxlen: 24
81.12.55.0/24 maxlen: 24
81.12.54.0/23 maxlen: 23
81.12.56.0/23 maxlen: 23
81.12.63.0/24 maxlen: 24
81.12.62.0/24 maxlen: 24
81.12.60.0/22 maxlen: 22
81.12.64.0/18 maxlen: 18
81.12.72.0/24 maxlen: 24
81.12.74.0/23 maxlen: 24
81.12.76.0/22 maxlen: 24
81.12.73.0/24 maxlen: 24
81.12.80.0/22 maxlen: 22
81.12.84.0/23 maxlen: 23
81.12.90.0/23 maxlen: 23
81.12.86.0/24 maxlen: 24
81.12.87.0/24 maxlen: 24
81.12.88.0/24 maxlen: 24
81.12.89.0/24 maxlen: 24
81.12.96.0/21 maxlen: 24
81.12.94.0/24 maxlen: 24
81.12.95.0/24 maxlen: 24
81.12.104.0/21 maxlen: 24
62.220.113.0/24 maxlen: 24
62.220.118.0/23 maxlen: 24
62.220.112.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f9:ad:5e:11:dd:7f:fa:e1:c7:f2:82:c5:43:a4:b9:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Oct 21 08:33:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=48636f5dca4785acddc4df4e0a8d11a42b523c5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:ed:26:44:77:92:b1:2d:9f:00:51:c8:23:29:
d0:ac:1b:75:82:7d:e6:a1:4e:4d:6b:d0:2b:13:b6:
53:64:6b:03:53:5b:c2:e3:f8:c6:0a:74:1e:c4:63:
8f:3c:71:3b:0c:bc:1f:6b:dc:8b:ec:79:2a:38:09:
60:6c:c4:c3:f5:9c:11:ce:77:ff:10:14:60:67:41:
be:68:35:51:88:f2:61:d0:1c:be:65:38:80:ee:17:
fe:3e:02:79:14:c1:6c:9b:65:08:1a:01:8d:58:ed:
66:9d:83:7d:08:d3:e1:e5:73:c6:12:79:2c:58:31:
4a:44:48:88:26:91:c1:c1:1f:65:f5:5b:3e:cd:f2:
5d:ae:b2:e2:61:18:c9:a7:85:0d:2b:82:93:ee:bd:
5d:03:9d:da:20:25:d6:39:ec:5c:d2:38:cb:92:88:
cd:6a:97:29:df:a8:19:e1:10:2f:3e:e7:71:bf:5f:
17:b5:5a:83:ba:af:7b:c1:5e:ee:2f:83:43:2a:7c:
bd:7f:68:4c:ba:32:06:c4:f9:03:7b:40:47:4c:7f:
99:20:81:95:51:5f:df:17:d5:52:8a:c8:5e:93:72:
70:fd:a9:8d:df:f5:e1:33:fa:66:59:02:c8:62:b3:
f7:8b:84:43:a7:84:4d:d0:d3:a5:c4:77:06:a3:2d:
d9:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:63:6F:5D:CA:47:85:AC:DD:C4:DF:4E:0A:8D:11:A4:2B:52:3C:5B
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/SGNvXcpHhazdxN9OCo0RpCtSPFs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.112.0/21
81.12.0.0/21
81.12.32.0/20
81.12.54.0-81.12.57.255
81.12.60.0-81.12.127.255
87.107.16.0/21
87.107.28.0-87.107.33.255
87.107.36.0/22
87.107.44.0-87.107.49.255
87.107.72.0-87.107.87.255
87.107.92.0/22
87.107.100.0-87.107.111.255
87.107.136.0/21
Signature Algorithm: sha256WithRSAEncryption
b2:28:38:29:51:b9:62:5d:3f:71:69:a7:63:04:06:47:8e:74:
45:4a:7c:8a:49:c9:ef:52:2d:17:86:32:f7:a3:c2:f7:15:c8:
7f:8e:61:6f:64:e0:c6:7d:28:d5:d8:87:fa:6e:0b:06:05:6d:
bd:0a:bf:1e:36:77:4e:86:ec:e7:34:b9:08:78:7d:20:36:97:
c5:25:85:60:27:6e:8e:27:b5:8e:a6:2e:45:ba:0e:79:b1:81:
fc:ba:99:5e:bb:a4:2b:e7:c5:f4:44:98:e9:bb:13:f5:d6:7c:
ec:6e:ad:75:e4:24:1d:57:66:d3:e5:5c:06:3e:5b:0d:d9:12:
1b:d2:17:68:72:24:72:a3:f5:10:48:0d:65:44:a4:a8:04:4f:
17:d7:94:b2:27:ac:85:5d:e3:f4:48:b4:b7:f9:c8:d8:51:5f:
5d:f8:f5:f8:b9:85:7a:9b:de:68:25:84:78:26:79:98:e6:7e:
9a:f4:2c:1b:b0:50:de:e4:cc:59:64:e4:0d:31:d1:b0:ac:48:
72:31:99:79:ab:05:2f:0e:b1:9c:62:f4:2e:33:41:87:44:f9:
fa:fd:f7:f3:e7:0e:5a:ed:98:3d:fc:18:e5:9c:b3:f1:0e:d7:
8a:2a:81:1c:f2:b1:69:3f:7e:22:73:5b:40:89:89:eb:6f:d1:
ef:6e:c4:8f
-----BEGIN CERTIFICATE-----
MIIFeTCCBGGgAwIBAgISAYP5rV4R3X/64cfygsVDpLkjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNzc1ZDk0NzFiODVkOTYzZmVmNmQyODM1OTBlMmQ5NDJk
ZDVjMjEwHhcNMjIxMDIxMDgzMzUxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ODYzNmY1ZGNhNDc4NWFjZGRjNGRmNGUwYThkMTFhNDJiNTIzYzViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7e0mRHeSsS2fAFHIIynQrBt1gn3m
oU5Na9ArE7ZTZGsDU1vC4/jGCnQexGOPPHE7DLwfa9yL7HkqOAlgbMTD9ZwRznf/
EBRgZ0G+aDVRiPJh0By+ZTiA7hf+PgJ5FMFsm2UIGgGNWO1mnYN9CNPh5XPGEnks
WDFKREiIJpHBwR9l9Vs+zfJdrrLiYRjJp4UNK4KT7r1dA53aICXWOexc0jjLkojN
apcp36gZ4RAvPudxv18XtVqDuq97wV7uL4NDKny9f2hMujIGxPkDe0BHTH+ZIIGV
UV/fF9VSishek3Jw/amN3/XhM/pmWQLIYrP3i4RDp4RN0NOlxHcGoy3ZTwIDAQAB
o4IChTCCAoEwHQYDVR0OBBYEFEhjb13KR4Ws3cTfTgqNEaQrUjxbMB8GA1UdIwQY
MBaAFAB3XZRxuF2WP+9tKDWQ4tlC3VwhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQt
NzZiMzNlNGNlODIxLzEvU0dOdlhjcEhoYXpkeE45T0NvMFJwQ3RTUEZzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQtNzZiMzNlNGNlODIx
LzEvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGaBggrBgEFBQcBBwEB/wSBijCBhzCBhAQCAAEwfgMEAz7c
cAMEA1EMAAMEBFEMIDAMAwQBUQw2AwQBUQw4MAwDBAJRDDwDBAdRDAADBANXaxAw
DAMEAldrHAMEAVdrIAMEAldrJDAMAwQCV2ssAwQBV2swMAwDBANXa0gDBANXa1AD
BAJXa1wwDAMEAldrZAMEBFdrYAMEA1driDANBgkqhkiG9w0BAQsFAAOCAQEAsig4
KVG5Yl0/cWmnYwQGR450RUp8iknJ71ItF4Yy96PC9xXIf45hb2Tgxn0o1diH+m4L
BgVtvQq/HjZ3Tobs5zS5CHh9IDaXxSWFYCdujie1jqYuRboOebGB/LqZXrukK+fF
9ESY6bsT9dZ87G6tdeQkHVdm0+VcBj5bDdkSG9IXaHIkcqP1EEgNZUSkqARPF9eU
sieshV3j9Ei0t/nI2FFfXfj1+LmFepveaCWEeCZ5mOZ+mvQsG7BQ3uTMWWTkDTHR
sKxIcjGZeasFLw6xnGL0LjNBh0T5+v338+cOWu2YPfwY5Zyz8Q7XiiqBHPKxaT9+
InNbQImJ62/R727Ejw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:33 2023 by rpki-client on console-ams.rpki-client.org