Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/PzkCLDmyHFe3s15Dn333qo64VhE.roa
File: PzkCLDmyHFe3s15Dn333qo64VhE.roa (raw, json)
Hash identifier: bEhKY9jftLKl3VkfFOpTYGCuHIIjailMtcpqnE+41m0=
Subject key identifier: 3F:39:02:2C:39:B2:1C:57:B7:B3:5E:43:9F:7D:F7:AA:8E:B8:56:11
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0188523DD843CB38DEBEBAB865871D01BB71
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/PzkCLDmyHFe3s15Dn333qo64VhE.roa
Signing time: Thu 25 May 2023 09:29:24 +0000
ROA not before: Thu 25 May 2023 09:29:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29648
IP address blocks: 31.173.119.0/24 maxlen: 24
77.233.160.0/19 maxlen: 19
77.233.160.0/24 maxlen: 24
77.233.166.0/24 maxlen: 24
77.233.161.0/24 maxlen: 24
77.233.164.0/24 maxlen: 24
77.233.162.0/24 maxlen: 24
77.233.167.0/24 maxlen: 24
77.233.170.0/24 maxlen: 24
31.173.104.0/24 maxlen: 24
31.173.105.0/24 maxlen: 24
31.173.112.0/24 maxlen: 24
31.173.109.0/24 maxlen: 24
31.173.110.0/24 maxlen: 24
31.173.107.0/24 maxlen: 24
31.173.108.0/24 maxlen: 24
31.173.106.0/24 maxlen: 24
31.173.111.0/24 maxlen: 24
31.173.117.0/24 maxlen: 24
31.173.118.0/24 maxlen: 24
31.173.115.0/24 maxlen: 24
31.173.116.0/24 maxlen: 24
31.173.113.0/24 maxlen: 24
31.173.114.0/24 maxlen: 24
77.233.173.0/24 maxlen: 24
77.233.178.0/24 maxlen: 24
77.233.181.0/24 maxlen: 24
77.233.182.0/24 maxlen: 24
77.233.185.0/24 maxlen: 24
77.233.180.0/24 maxlen: 24
77.233.186.0/24 maxlen: 24
77.233.190.0/24 maxlen: 24
77.233.188.0/24 maxlen: 24
77.233.191.0/24 maxlen: 24
188.170.98.0/24 maxlen: 24
86.109.192.0/19 maxlen: 19
86.109.192.0/20 maxlen: 20
188.170.97.0/24 maxlen: 24
188.170.96.0/24 maxlen: 24
188.170.100.0/24 maxlen: 24
188.170.103.0/24 maxlen: 24
86.109.195.0/24 maxlen: 24
188.170.105.0/24 maxlen: 24
188.170.102.0/24 maxlen: 24
86.109.193.0/24 maxlen: 24
188.170.99.0/24 maxlen: 24
188.170.104.0/24 maxlen: 24
188.170.101.0/24 maxlen: 24
188.170.106.0/24 maxlen: 24
188.170.111.0/24 maxlen: 24
86.109.200.0/23 maxlen: 23
188.170.108.0/24 maxlen: 24
188.170.110.0/24 maxlen: 24
188.170.107.0/24 maxlen: 24
188.170.109.0/24 maxlen: 24
188.170.112.0/24 maxlen: 24
188.170.114.0/24 maxlen: 24
86.109.213.0/24 maxlen: 24
86.109.210.0/24 maxlen: 24
86.109.208.0/24 maxlen: 24
188.170.113.0/24 maxlen: 24
188.170.116.0/24 maxlen: 24
188.170.115.0/24 maxlen: 24
86.109.212.0/24 maxlen: 24
188.170.118.0/24 maxlen: 24
188.170.117.0/24 maxlen: 24
188.170.119.0/24 maxlen: 24
86.109.216.0/24 maxlen: 24
188.170.122.0/24 maxlen: 24
188.170.121.0/24 maxlen: 24
188.170.120.0/24 maxlen: 24
86.109.214.0/24 maxlen: 24
188.170.124.0/24 maxlen: 24
188.170.123.0/24 maxlen: 24
86.109.215.0/24 maxlen: 24
86.109.218.0/23 maxlen: 23
188.170.125.0/24 maxlen: 24
188.170.127.0/24 maxlen: 24
86.109.222.0/24 maxlen: 24
86.109.220.0/24 maxlen: 24
188.170.126.0/24 maxlen: 24
86.109.223.0/24 maxlen: 24
78.109.120.0/24 maxlen: 24
78.109.124.0/24 maxlen: 24
78.109.121.0/24 maxlen: 24
195.149.111.0/24 maxlen: 24
178.176.96.0/24 maxlen: 24
178.176.98.0/24 maxlen: 24
178.176.97.0/24 maxlen: 24
178.176.102.0/24 maxlen: 24
178.176.99.0/24 maxlen: 24
178.176.101.0/24 maxlen: 24
178.176.103.0/24 maxlen: 24
178.176.100.0/24 maxlen: 24
178.176.118.0/24 maxlen: 24
178.176.115.0/24 maxlen: 24
178.176.117.0/24 maxlen: 24
178.176.114.0/24 maxlen: 24
178.176.116.0/24 maxlen: 24
178.176.123.0/24 maxlen: 24
178.176.120.0/24 maxlen: 24
178.176.125.0/24 maxlen: 24
178.176.122.0/24 maxlen: 24
178.176.119.0/24 maxlen: 24
178.176.124.0/24 maxlen: 24
178.176.121.0/24 maxlen: 24
178.176.126.0/24 maxlen: 24
178.176.127.0/24 maxlen: 24
83.169.217.0/24 maxlen: 24
83.169.218.0/24 maxlen: 24
83.169.219.0/24 maxlen: 24
83.169.220.0/24 maxlen: 24
83.169.223.0/24 maxlen: 24
83.169.221.0/24 maxlen: 24
83.169.222.0/24 maxlen: 24
188.94.172.0/24 maxlen: 24
188.94.169.0/24 maxlen: 24
188.94.170.0/24 maxlen: 24
188.94.168.0/24 maxlen: 24
188.94.171.0/24 maxlen: 24
188.94.175.0/24 maxlen: 24
188.94.173.0/24 maxlen: 24
188.94.174.0/24 maxlen: 24
217.115.81.0/24 maxlen: 24
217.115.80.0/20 maxlen: 20
217.115.80.0/24 maxlen: 24
217.115.91.0/24 maxlen: 24
2a03:d005:800::/40 maxlen: 40
2a03:d005:600::/40 maxlen: 40
2a03:d005:300::/40 maxlen: 40
2a03:d005::/40 maxlen: 40
2a03:d005:500::/40 maxlen: 40
2a03:d005:200::/40 maxlen: 40
2a03:d005:700::/40 maxlen: 40
2a03:d005:400::/40 maxlen: 40
2a03:d005:100::/40 maxlen: 40
2a03:d005:900::/40 maxlen: 40
2a03:d000:9004::/46 maxlen: 46
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:52:3d:d8:43:cb:38:de:be:ba:b8:65:87:1d:01:bb:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: May 25 09:29:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3f39022c39b21c57b7b35e439f7df7aa8eb85611
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a8:c8:c8:de:db:f9:11:2d:28:5b:3d:17:b0:
bc:70:3e:09:53:b8:84:13:7e:d7:79:cd:61:52:72:
fa:4e:39:e8:e2:ea:c2:26:54:66:59:82:73:7f:cd:
3e:2a:99:54:cf:f1:c6:e4:40:92:f5:b2:48:b9:1a:
1b:95:3b:04:c7:5e:ea:89:a6:7e:7f:ac:59:32:9a:
59:1f:39:f1:e3:88:be:8f:82:db:eb:86:21:f5:45:
c7:5a:0e:99:a8:a0:7f:30:0c:56:a7:3f:65:d6:11:
98:dd:4a:20:27:33:0f:13:a8:c8:b0:02:f4:95:cf:
b4:7b:bf:b2:5d:0f:e0:b4:17:94:92:e4:c5:cd:f1:
e5:88:40:7d:d3:66:8e:dc:37:be:6c:14:e5:01:3d:
6f:6f:04:41:e2:63:a0:44:b1:04:7c:a1:2f:9d:7a:
b7:73:da:2e:1c:b5:9d:53:a4:83:4e:bc:be:0d:f2:
83:86:c3:3d:1c:47:5d:39:db:32:77:41:c4:14:dd:
74:47:af:bc:7b:12:af:3e:bc:a3:f3:05:0a:74:82:
3b:b2:de:0a:dd:a0:ca:86:75:ab:18:ac:31:e8:00:
c8:e1:a3:71:d6:08:50:f9:5d:6c:b1:a2:37:cf:68:
d0:87:56:fe:60:73:83:50:64:f3:61:83:67:04:70:
14:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:39:02:2C:39:B2:1C:57:B7:B3:5E:43:9F:7D:F7:AA:8E:B8:56:11
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/PzkCLDmyHFe3s15Dn333qo64VhE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.104.0-31.173.119.255
77.233.160.0/19
78.109.120.0/23
78.109.124.0/24
83.169.217.0-83.169.223.255
86.109.192.0/19
178.176.96.0/21
178.176.114.0-178.176.127.255
188.94.168.0/21
188.170.96.0/19
195.149.111.0/24
217.115.80.0/20
IPv6:
2a03:d000:9004::/46
2a03:d005::-2a03:d005:9ff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
2c:b8:fd:b0:28:06:29:9a:68:a8:e1:47:d8:04:b8:ab:3d:48:
8e:59:f8:dc:36:ac:7a:1e:05:6c:88:fa:c2:49:81:2f:ed:b6:
da:34:53:96:0f:3b:a3:4a:bd:7f:2c:3e:6f:9b:6c:d9:0e:15:
27:6e:b0:f0:a3:e1:92:14:66:eb:fc:84:06:81:27:ac:d8:0a:
d1:dd:22:dd:2b:3e:2a:81:ed:cd:47:1e:9f:bc:8a:37:b2:36:
08:a1:29:e0:d2:23:9a:2a:f3:42:a6:11:eb:2d:ff:e9:c2:11:
a5:b0:4f:02:95:d2:15:ff:5b:21:c2:0e:3f:49:f9:67:e6:77:
4d:4e:0d:16:06:6a:06:3e:e9:72:ec:04:a7:ea:de:bb:16:c3:
e5:3d:c7:1e:7d:25:d2:39:84:11:a3:c9:d4:7a:c2:3f:ef:00:
96:17:f5:4e:6c:4a:d3:b8:b2:d6:6b:52:ec:a4:f9:41:1f:c6:
6f:13:9d:76:fc:29:5d:72:60:a2:55:64:1d:0f:53:44:ca:cd:
ad:38:51:32:0e:09:ad:78:3f:86:91:21:fe:ad:e2:a5:73:75:
81:ed:8c:61:06:2a:47:a1:c1:19:30:13:af:71:7a:e6:31:21:
d8:70:80:72:1f:f5:93:80:c6:19:ae:69:82:6e:a2:c5:65:e8:
14:ee:c6:65
-----BEGIN CERTIFICATE-----
MIIFfDCCBGSgAwIBAgISAYhSPdhDyzjevrq4ZYcdAbtxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyZDdjMmExMDcyZDczNTA3YWRiZjY1MDdkZTY4YWFhYzAx
Nzg1YzAwHhcNMjMwNTI1MDkyOTI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZjM5MDIyYzM5YjIxYzU3YjdiMzVlNDM5ZjdkZjdhYThlYjg1NjExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArqjIyN7b+REtKFs9F7C8cD4JU7iE
E37Xec1hUnL6Tjno4urCJlRmWYJzf80+KplUz/HG5ECS9bJIuRoblTsEx17qiaZ+
f6xZMppZHznx44i+j4Lb64Yh9UXHWg6ZqKB/MAxWpz9l1hGY3UogJzMPE6jIsAL0
lc+0e7+yXQ/gtBeUkuTFzfHliEB902aO3De+bBTlAT1vbwRB4mOgRLEEfKEvnXq3
c9ouHLWdU6SDTry+DfKDhsM9HEddOdsyd0HEFN10R6+8exKvPryj8wUKdII7st4K
3aDKhnWrGKwx6ADI4aNx1ghQ+V1ssaI3z2jQh1b+YHODUGTzYYNnBHAU4wIDAQAB
o4ICiDCCAoQwHQYDVR0OBBYEFD85Aiw5shxXt7NeQ59996qOuFYRMB8GA1UdIwQY
MBaAFJLXwqEHLXNQetv2UH3miqrAF4XAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTct
ODllNTZjODBkMWQwLzEvUHprQ0xEbXlIRmUzczE1RG4zMzNxbzY0VmhFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTctODllNTZjODBkMWQw
LzEva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGdBggrBgEFBQcBBwEB/wSBjTCBijBmBAIAATBgMAwDBAMf
rWgDBAMfrXADBAVN6aADBAFObXgDBABObXwwDAMEAFOp2QMEBVOpwAMEBVZtwAME
A7KwYDAMAwQBsrByAwQHsrAAAwQDvF6oAwQFvKpgAwQAw5VvAwQE2XNQMCAEAgAC
MBoDBwIqA9AAkAQwDwMFACoD0AUDBgEqA9AFCDANBgkqhkiG9w0BAQsFAAOCAQEA
LLj9sCgGKZpoqOFH2AS4qz1Ijln43Daseh4FbIj6wkmBL+222jRTlg87o0q9fyw+
b5ts2Q4VJ26w8KPhkhRm6/yEBoEnrNgK0d0i3Ss+KoHtzUcen7yKN7I2CKEp4NIj
mirzQqYR6y3/6cIRpbBPApXSFf9bIcIOP0n5Z+Z3TU4NFgZqBj7pcuwEp+reuxbD
5T3HHn0l0jmEEaPJ1HrCP+8Alhf1TmxK07iy1mtS7KT5QR/GbxOddvwpXXJgolVk
HQ9TRMrNrThRMg4JrXg/hpEh/q3ipXN1ge2MYQYqR6HBGTATr3F65jEh2HCAch/1
k4DGGa5pgm6ixWXoFO7GZQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:57 2025 by rpki-client