Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/70d50f-ff3c-4f63-8dec-d7c36c27c087/1/2c9APMF1k4Pzb5Awi7UKa9QdBXw.roa
File: 2c9APMF1k4Pzb5Awi7UKa9QdBXw.roa (raw, json)
Hash identifier: K4qCRhoJUgg0PZIrfqZy/nMi3F1pO+Rj2KYOwsr4E6k=
Subject key identifier: D9:CF:40:3C:C1:75:93:83:F3:6F:90:30:8B:B5:0A:6B:D4:1D:05:7C
Certificate issuer: /CN=f4b769a53dd86352d3440f222bdf907cf09c2dba
Certificate serial: 0183AB49F23FFC217B035F3F5176075F30E4
Authority key identifier: F4:B7:69:A5:3D:D8:63:52:D3:44:0F:22:2B:DF:90:7C:F0:9C:2D:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9LdppT3YY1LTRA8iK9-QfPCcLbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/70d50f-ff3c-4f63-8dec-d7c36c27c087/1/2c9APMF1k4Pzb5Awi7UKa9QdBXw.roa
Signing time: Thu 06 Oct 2022 03:14:53 +0000
ROA not before: Thu 06 Oct 2022 03:14:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16202
IP address blocks: 83.221.72.0/21 maxlen: 21
83.221.80.0/20 maxlen: 20
83.221.80.0/21 maxlen: 21
83.221.88.0/21 maxlen: 21
83.221.64.0/19 maxlen: 19
83.221.64.0/21 maxlen: 21
83.221.64.0/20 maxlen: 20
92.206.160.0/19 maxlen: 19
89.186.128.0/19 maxlen: 19
89.186.128.0/21 maxlen: 21
89.186.128.0/20 maxlen: 20
77.64.224.0/20 maxlen: 20
77.64.240.0/20 maxlen: 20
77.64.252.0/23 maxlen: 23
77.64.254.0/23 maxlen: 23
92.206.128.0/18 maxlen: 18
92.206.190.0/23 maxlen: 23
89.186.136.0/21 maxlen: 21
217.68.160.0/19 maxlen: 19
217.68.160.0/20 maxlen: 20
89.186.144.0/20 maxlen: 20
89.186.144.0/21 maxlen: 21
92.206.192.0/18 maxlen: 18
217.68.176.0/20 maxlen: 20
89.186.152.0/21 maxlen: 21
92.206.224.0/19 maxlen: 19
95.168.128.0/20 maxlen: 20
95.168.128.0/19 maxlen: 19
95.168.144.0/20 maxlen: 20
77.64.160.0/19 maxlen: 19
77.64.192.0/19 maxlen: 19
77.64.192.0/20 maxlen: 20
92.206.64.0/18 maxlen: 18
185.44.148.0/22 maxlen: 22
185.44.150.0/23 maxlen: 23
77.64.208.0/20 maxlen: 20
77.64.128.0/17 maxlen: 17
77.64.128.0/19 maxlen: 19
77.64.128.0/18 maxlen: 18
92.206.0.0/17 maxlen: 17
92.206.0.0/18 maxlen: 18
92.206.0.0/16 maxlen: 16
77.64.146.0/23 maxlen: 23
2a02:2454:8000::/33 maxlen: 33
2a02:2457:100::/40 maxlen: 40
2a00:c1a0::/32 maxlen: 32
2a00:c1a0:c000::/34 maxlen: 34
2a00:c1a0:4000::/34 maxlen: 34
2a00:c1a0:8000::/34 maxlen: 34
2a00:c1a0::/34 maxlen: 34
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ab:49:f2:3f:fc:21:7b:03:5f:3f:51:76:07:5f:30:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4b769a53dd86352d3440f222bdf907cf09c2dba
Validity
Not Before: Oct 6 03:14:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d9cf403cc1759383f36f90308bb50a6bd41d057c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:28:ee:30:f0:ff:d6:e6:c7:9c:66:e6:44:21:
e9:0d:aa:79:dc:5c:e3:a9:fc:51:25:f3:7c:7f:7f:
ad:ec:ae:d8:a1:8e:1a:e6:86:70:1b:cb:d4:d0:d7:
24:42:7d:b7:0f:7a:1d:73:49:51:dc:c3:c7:1b:e0:
50:76:e5:ed:3c:9d:d0:1e:3b:c3:b4:8c:0a:d2:f0:
cb:d7:92:29:51:38:2b:2a:d7:74:4e:88:f9:ed:63:
4c:28:d4:3d:45:27:ec:5f:6c:29:96:f4:13:3a:08:
95:e3:d5:63:57:1a:7a:ea:0e:14:cb:b3:68:17:8e:
b4:44:aa:4f:fd:bf:ba:2b:10:5b:c4:3b:99:95:3c:
6d:89:d1:a2:1c:6f:e8:6a:86:5e:f8:6a:da:4e:d1:
27:08:24:43:21:23:5f:f8:fd:fd:7b:fd:50:ba:da:
0a:d9:75:5e:6d:d1:d8:53:ec:72:d4:e2:b3:61:0a:
0a:bd:c1:bd:1a:52:ce:48:5f:1c:f1:54:bf:a8:05:
58:97:a2:5a:50:ab:91:e7:16:60:d3:26:34:11:73:
a1:30:74:58:9d:cc:7c:42:69:af:f1:90:a6:be:63:
64:3d:77:f7:23:b3:48:93:9a:d3:48:37:38:5b:43:
04:b4:9b:cf:04:a5:0f:60:11:a4:84:a5:48:ae:f3:
55:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:CF:40:3C:C1:75:93:83:F3:6F:90:30:8B:B5:0A:6B:D4:1D:05:7C
X509v3 Authority Key Identifier:
keyid:F4:B7:69:A5:3D:D8:63:52:D3:44:0F:22:2B:DF:90:7C:F0:9C:2D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9LdppT3YY1LTRA8iK9-QfPCcLbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/70d50f-ff3c-4f63-8dec-d7c36c27c087/1/2c9APMF1k4Pzb5Awi7UKa9QdBXw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/70d50f-ff3c-4f63-8dec-d7c36c27c087/1/9LdppT3YY1LTRA8iK9-QfPCcLbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.64.128.0/17
83.221.64.0/19
89.186.128.0/19
92.206.0.0/16
95.168.128.0/19
185.44.148.0/22
217.68.160.0/19
IPv6:
2a00:c1a0::/32
2a02:2454:8000::/33
2a02:2457:100::/40
Signature Algorithm: sha256WithRSAEncryption
48:88:32:23:af:bd:b8:9f:d5:04:49:48:79:a5:7f:39:b3:d2:
42:50:a2:94:8b:14:ae:a9:9e:1d:32:40:a0:d6:aa:5f:5f:47:
03:30:f6:5f:60:93:de:60:8e:f8:25:31:10:06:4f:33:5d:8a:
95:05:f8:97:51:f7:4f:ab:d1:bd:ea:3c:80:7b:6e:49:c8:69:
a3:a2:a2:17:24:2e:06:94:d1:3f:76:9d:85:18:fd:61:fc:e4:
c6:6d:06:95:0e:fe:8e:cd:85:2a:b2:39:22:e4:5e:54:57:39:
8a:64:4e:6c:9c:da:6b:f7:35:cf:4c:da:9c:4e:fd:ba:86:9d:
2c:f4:a5:e5:80:3c:4b:e6:42:16:8b:5e:4f:81:18:29:e9:2d:
9f:9f:63:02:3b:5e:f1:74:93:50:89:96:c2:5c:64:e7:86:f1:
63:e9:d8:64:e3:2a:cc:61:be:bb:aa:69:1f:84:c5:94:69:c8:
41:2a:34:f5:19:ed:03:9b:27:a7:78:e5:a4:ff:76:c1:97:7a:
70:7e:0a:db:4e:f4:ff:8c:6a:7f:d7:fe:a8:5d:03:28:ae:1e:
0a:83:92:7e:52:63:b3:62:59:f2:37:b1:f8:40:73:73:19:a4:
6a:36:62:ee:f3:14:a4:76:4a:ec:54:0f:ba:25:80:38:2b:b3:
fa:aa:29:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:56 2023 by rpki-client on console-fra.rpki-client.org