Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/SYCpstgSdO3N-IPdv_w-727gt-4.roa
File: SYCpstgSdO3N-IPdv_w-727gt-4.roa (raw, json)
Hash identifier: Z+gRToRofEWoDr8p/5zMFWURQVbSIh/AwC+H5u4hY2Q=
Subject key identifier: 49:80:A9:B2:D8:12:74:ED:CD:F8:83:DD:BF:FC:3E:EF:6E:E0:B7:EE
Certificate issuer: /CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Certificate serial: 0A505322
Authority key identifier: 72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/SYCpstgSdO3N-IPdv_w-727gt-4.roa
Signing time: Mon 20 Jun 2022 12:26:44 +0000
ROA not before: Mon 20 Jun 2022 12:26:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 162.218.90.0/24 maxlen: 24
162.218.95.0/24 maxlen: 24
212.60.15.0/24 maxlen: 24
185.205.205.0/24 maxlen: 24
5.182.192.0/24 maxlen: 24
31.132.52.0/24 maxlen: 24
185.187.212.0/24 maxlen: 24
45.67.140.0/24 maxlen: 24
63.246.150.0/24 maxlen: 24
92.249.31.0/24 maxlen: 24
147.78.206.0/24 maxlen: 24
147.78.205.0/24 maxlen: 24
185.230.122.0/24 maxlen: 24
94.154.177.0/24 maxlen: 24
217.197.169.0/24 maxlen: 24
94.154.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173036322 (0xa505322)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Validity
Not Before: Jun 20 12:26:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4980a9b2d81274edcdf883ddbffc3eef6ee0b7ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:16:7c:69:5f:c7:76:45:54:20:87:37:8b:46:
55:1e:e2:eb:f3:0d:28:19:6c:cd:7c:bc:3f:22:da:
87:c4:d4:8f:a3:f0:77:3f:d9:52:27:30:22:95:9d:
ec:7d:2b:39:13:48:80:50:69:92:42:a6:66:69:70:
af:32:21:46:5e:4b:0a:ba:ce:4c:ef:2f:be:9d:42:
6c:3e:a2:89:4b:11:47:2b:94:26:3a:8e:79:3c:eb:
70:c7:41:fd:62:42:a1:f4:36:81:77:e1:6e:2d:b6:
cb:45:94:c5:5c:2c:4f:e6:46:f1:5a:04:57:dd:20:
ed:29:c0:37:26:2c:52:5a:8a:aa:fe:39:bb:b9:1e:
ac:48:d9:90:4e:14:af:8f:01:7e:df:b8:0c:be:c4:
58:f1:49:c1:5c:a9:da:dd:f9:62:f8:4c:ac:95:f7:
7e:a0:df:62:d0:f3:51:eb:7a:e9:a2:1c:ad:2f:b1:
63:40:9b:4e:a3:c5:8c:69:77:a1:1c:91:17:c9:79:
03:7e:e2:cc:ce:d8:1f:a2:64:b0:80:e5:01:5c:6b:
ad:4d:b8:8d:87:12:d4:e6:60:3a:12:51:36:d2:48:
a4:64:43:02:36:62:df:f3:c3:2d:2f:7f:74:ca:fb:
47:5d:74:24:49:70:6e:aa:cf:43:86:a8:bb:7e:f6:
48:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:80:A9:B2:D8:12:74:ED:CD:F8:83:DD:BF:FC:3E:EF:6E:E0:B7:EE
X509v3 Authority Key Identifier:
keyid:72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/SYCpstgSdO3N-IPdv_w-727gt-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/crePZoL8OcVbQdSPgLiDjV0tvwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.192.0/24
31.132.52.0/24
45.67.140.0/24
63.246.150.0/24
92.249.31.0/24
94.154.177.0/24
94.154.182.0/24
147.78.205.0-147.78.206.255
162.218.90.0/24
162.218.95.0/24
185.187.212.0/24
185.205.205.0/24
185.230.122.0/24
212.60.15.0/24
217.197.169.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:54:fc:e0:30:1a:d6:be:7c:43:e2:f5:64:d4:d3:a8:65:62:
f2:11:f0:61:be:97:ed:89:ca:af:1d:77:b9:3e:05:23:aa:40:
9e:28:db:7b:d7:7f:79:5d:d9:5e:bf:de:86:8f:07:50:18:5b:
77:2b:b6:c7:2a:38:2d:16:4c:0a:81:03:2a:63:4a:2d:ce:e7:
a8:06:14:96:fd:0c:ef:b9:43:07:a4:65:8d:50:de:23:1f:57:
aa:6f:ba:4e:a9:19:70:27:78:e6:56:ed:0f:f7:9d:9c:ed:a5:
35:75:e6:0f:97:43:c5:7b:bc:27:c9:a3:cc:28:3d:b6:21:21:
3e:b1:c4:ed:4c:1e:c4:2a:73:f7:2c:4b:f7:9c:3c:fc:fd:34:
7c:6f:93:d6:2d:10:8a:8d:23:7d:13:f6:e7:c7:87:ab:5f:3d:
98:2e:5b:1d:5d:61:15:92:1b:1d:4f:61:0b:3c:3d:aa:4b:0b:
22:e1:c4:ab:b6:97:88:a0:b2:06:8f:b9:ca:ac:29:4f:fd:b1:
98:69:01:2e:3a:f9:88:a5:8d:0a:7c:e5:f8:8c:20:f3:0a:e0:
a1:3a:34:bd:c3:1f:02:1e:4f:37:85:b6:f3:a9:c4:bf:aa:2a:
27:49:05:b5:ea:0e:bf:6d:d2:f0:3c:1f:82:ee:01:7e:44:64:
5c:cb:a5:91
-----BEGIN CERTIFICATE-----
MIIFSzCCBDOgAwIBAgIEClBTIjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MmI3OGY2NjgyZmMzOWM1NWI0MWQ0OGY4MGI4ODM4ZDVkMmRiZjA3MB4XDTIyMDYy
MDEyMjY0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDk4MGE5YjJkODEy
NzRlZGNkZjg4M2RkYmZmYzNlZWY2ZWUwYjdlZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJMWfGlfx3ZFVCCHN4tGVR7i6/MNKBlszXy8PyLah8TUj6Pw
dz/ZUicwIpWd7H0rORNIgFBpkkKmZmlwrzIhRl5LCrrOTO8vvp1CbD6iiUsRRyuU
JjqOeTzrcMdB/WJCofQ2gXfhbi22y0WUxVwsT+ZG8VoEV90g7SnANyYsUlqKqv45
u7kerEjZkE4Ur48Bft+4DL7EWPFJwVyp2t35YvhMrJX3fqDfYtDzUet66aIcrS+x
Y0CbTqPFjGl3oRyRF8l5A37izM7YH6JksIDlAVxrrU24jYcS1OZgOhJRNtJIpGRD
AjZi3/PDLS9/dMr7R110JElwbqrPQ4aou372SLsCAwEAAaOCAmUwggJhMB0GA1Ud
DgQWBBRJgKmy2BJ07c34g92//D7vbuC37jAfBgNVHSMEGDAWgBRyt49mgvw5xVtB
1I+AuIONXS2/BzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2NyZVBab0w4T2NWYlFkU1BnTGlEalYwdHZ3Yy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2EvM2M0YjhhLWJmYzctNDFlOS05OWUxLWYzZTUwNmFlYWEwMS8x
L1NZQ3BzdGdTZE8zTi1JUGR2X3ctNzI3Z3QtNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Ev
M2M0YjhhLWJmYzctNDFlOS05OWUxLWYzZTUwNmFlYWEwMS8xL2NyZVBab0w4T2NW
YlFkU1BnTGlEalYwdHZ3Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjB7
BggrBgEFBQcBBwEB/wRsMGowaAQCAAEwYgMEAAW2wAMEAB+ENAMEAC1DjAMEAD/2
lgMEAFz5HwMEAF6asQMEAF6atjAMAwQAk07NAwQAk07OAwQAotpaAwQAotpfAwQA
ubvUAwQAuc3NAwQAueZ6AwQA1DwPAwQA2cWpMA0GCSqGSIb3DQEBCwUAA4IBAQAt
VPzgMBrWvnxD4vVk1NOoZWLyEfBhvpfticqvHXe5PgUjqkCeKNt71395Xdlev96G
jwdQGFt3K7bHKjgtFkwKgQMqY0otzueoBhSW/QzvuUMHpGWNUN4jH1eqb7pOqRlw
J3jmVu0P952c7aU1deYPl0PFe7wnyaPMKD22ISE+scTtTB7EKnP3LEv3nDz8/TR8
b5PWLRCKjSN9E/bnx4erXz2YLlsdXWEVkhsdT2ELPD2qSwsi4cSrtpeIoLIGj7nK
rClP/bGYaQEuOvmIpY0KfOX4jCDzCuChOjS9wx8CHk83hbbzqcS/qionSQW16g6/
bdLwPB+C7gF+RGRcy6WR
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:16 2024 by rpki-client on console-ams.rpki-client.org