Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/48e1ae-90e8-4e42-af3d-5101be5dd615/1/Ck1D8cWj3RqKO5Cz-yZHHfCnHkE.roa
File: Ck1D8cWj3RqKO5Cz-yZHHfCnHkE.roa (raw, json)
Hash identifier: DJB0zIyugZXNJrLgYEdfTB4IVIDvrbkNTQaZOreyiZo=
Subject key identifier: 0A:4D:43:F1:C5:A3:DD:1A:8A:3B:90:B3:FB:26:47:1D:F0:A7:1E:41
Certificate issuer: /CN=1fd5fef692b4c2d22bdd031fabfa7110b7b36e81
Certificate serial: 41A835ED
Authority key identifier: 1F:D5:FE:F6:92:B4:C2:D2:2B:DD:03:1F:AB:FA:71:10:B7:B3:6E:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H9X-9pK0wtIr3QMfq_pxELezboE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/48e1ae-90e8-4e42-af3d-5101be5dd615/1/Ck1D8cWj3RqKO5Cz-yZHHfCnHkE.roa
Signing time: Sat 01 Jan 2022 09:57:29 +0000
ROA not before: Sat 01 Jan 2022 09:57:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16086
IP address blocks: 87.100.128.0/17 maxlen: 17
85.23.0.0/16 maxlen: 16
62.241.192.0/18 maxlen: 18
37.130.160.0/19 maxlen: 19
212.90.64.0/19 maxlen: 19
37.33.0.0/16 maxlen: 16
159.255.224.0/19 maxlen: 19
213.141.96.0/19 maxlen: 19
188.94.64.0/21 maxlen: 21
212.50.128.0/19 maxlen: 19
85.131.0.0/17 maxlen: 17
188.67.0.0/16 maxlen: 16
193.143.94.0/23 maxlen: 23
193.143.93.0/24 maxlen: 24
176.93.0.0/16 maxlen: 16
212.86.0.0/19 maxlen: 19
193.143.70.0/23 maxlen: 23
193.143.73.0/24 maxlen: 24
193.143.80.0/21 maxlen: 21
193.143.79.0/24 maxlen: 24
193.143.91.0/24 maxlen: 24
193.143.88.0/23 maxlen: 23
83.100.0.0/17 maxlen: 17
185.15.212.0/22 maxlen: 22
194.100.0.0/16 maxlen: 16
62.113.160.0/19 maxlen: 19
82.181.0.0/16 maxlen: 16
62.197.160.0/19 maxlen: 19
178.55.0.0/16 maxlen: 16
84.253.192.0/18 maxlen: 18
212.146.0.0/18 maxlen: 18
87.92.0.0/14 maxlen: 14
213.216.192.0/18 maxlen: 18
185.55.32.0/22 maxlen: 22
62.78.96.0/19 maxlen: 19
83.102.0.0/17 maxlen: 17
89.166.0.0/17 maxlen: 17
213.243.128.0/18 maxlen: 18
62.44.192.0/18 maxlen: 18
62.78.128.0/17 maxlen: 17
213.139.160.0/19 maxlen: 19
213.186.224.0/19 maxlen: 19
213.186.224.0/24 maxlen: 24
62.183.128.0/17 maxlen: 17
217.78.192.0/19 maxlen: 19
212.149.128.0/17 maxlen: 17
37.136.0.0/16 maxlen: 16
82.203.128.0/17 maxlen: 17
178.75.128.0/18 maxlen: 18
109.108.0.0/19 maxlen: 19
62.236.0.0/15 maxlen: 15
88.148.128.0/17 maxlen: 17
78.27.64.0/18 maxlen: 18
81.175.128.0/17 maxlen: 17
195.10.128.0/18 maxlen: 18
192.107.200.0/21 maxlen: 21
80.64.0.0/20 maxlen: 20
192.107.208.0/20 maxlen: 20
89.27.0.0/17 maxlen: 17
37.219.0.0/16 maxlen: 16
192.107.224.0/21 maxlen: 21
91.145.64.0/18 maxlen: 18
62.165.128.0/18 maxlen: 18
82.128.128.0/17 maxlen: 17
2a01:a800::/29 maxlen: 29
2001:14b8::/29 maxlen: 29
2001:6e8::/29 maxlen: 29
2001:4078::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1101542893 (0x41a835ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fd5fef692b4c2d22bdd031fabfa7110b7b36e81
Validity
Not Before: Jan 1 09:57:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a4d43f1c5a3dd1a8a3b90b3fb26471df0a71e41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6f:e5:a0:f2:81:95:89:5d:b8:18:11:02:e5:
c0:cd:e0:6d:9a:98:e3:a6:c5:17:c0:8f:c5:5f:b7:
ee:35:b9:4b:29:47:48:6a:87:7a:e4:82:ba:d2:a8:
4c:68:31:dc:85:06:01:67:f0:af:af:74:e9:01:b8:
50:ff:46:53:a4:76:e8:8c:5e:1e:fa:f8:09:ae:0f:
18:ab:0a:9f:dd:f3:c4:5a:2e:f3:c5:5f:03:12:f9:
22:d3:aa:4e:70:ff:11:1c:3a:c3:e8:85:ab:d4:2e:
ac:12:9d:c4:50:05:1c:1f:12:9a:8e:e2:de:19:f6:
ac:5a:8a:8d:ea:65:7e:1e:2b:f9:22:22:5b:5b:79:
cb:1e:40:d9:83:fb:b5:1b:b2:8a:b6:12:27:ef:b6:
db:0c:fc:b2:c9:57:f6:dc:e0:26:0c:f5:c7:62:c8:
51:47:5f:a3:b0:b2:f3:4b:12:7d:c8:84:29:f7:50:
07:d8:59:d8:fb:b3:d7:b3:d5:c5:92:e7:d1:72:b4:
0a:2c:d6:44:3b:40:d9:a1:0f:7d:42:1a:ca:a8:a4:
47:95:37:8a:da:4f:91:67:da:e4:be:47:64:fe:0d:
18:76:f1:74:39:8a:4c:88:4c:49:eb:6a:5d:8f:e4:
38:d9:74:d7:28:f8:c2:12:e9:06:56:01:9c:be:8c:
e7:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:4D:43:F1:C5:A3:DD:1A:8A:3B:90:B3:FB:26:47:1D:F0:A7:1E:41
X509v3 Authority Key Identifier:
keyid:1F:D5:FE:F6:92:B4:C2:D2:2B:DD:03:1F:AB:FA:71:10:B7:B3:6E:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9X-9pK0wtIr3QMfq_pxELezboE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/48e1ae-90e8-4e42-af3d-5101be5dd615/1/Ck1D8cWj3RqKO5Cz-yZHHfCnHkE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/48e1ae-90e8-4e42-af3d-5101be5dd615/1/H9X-9pK0wtIr3QMfq_pxELezboE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.33.0.0/16
37.130.160.0/19
37.136.0.0/16
37.219.0.0/16
62.44.192.0/18
62.78.96.0-62.78.255.255
62.113.160.0/19
62.165.128.0/18
62.183.128.0/17
62.197.160.0/19
62.236.0.0/15
62.241.192.0/18
78.27.64.0/18
80.64.0.0/20
81.175.128.0/17
82.128.128.0/17
82.181.0.0/16
82.203.128.0/17
83.100.0.0/17
83.102.0.0/17
84.253.192.0/18
85.23.0.0/16
85.131.0.0/17
87.92.0.0/14
87.100.128.0/17
88.148.128.0/17
89.27.0.0/17
89.166.0.0/17
91.145.64.0/18
109.108.0.0/19
159.255.224.0/19
176.93.0.0/16
178.55.0.0/16
178.75.128.0/18
185.15.212.0/22
185.55.32.0/22
188.67.0.0/16
188.94.64.0/21
192.107.200.0-192.107.231.255
193.143.70.0/23
193.143.73.0/24
193.143.79.0-193.143.89.255
193.143.91.0/24
193.143.93.0-193.143.95.255
194.100.0.0/16
195.10.128.0/18
212.50.128.0/19
212.86.0.0/19
212.90.64.0/19
212.146.0.0/18
212.149.128.0/17
213.139.160.0/19
213.141.96.0/19
213.186.224.0/19
213.216.192.0/18
213.243.128.0/18
217.78.192.0/19
IPv6:
2001:6e8::/29
2001:14b8::/29
2001:4078::/29
2a01:a800::/29
Signature Algorithm: sha256WithRSAEncryption
b7:bc:33:49:4d:a5:a6:30:4e:2e:23:38:70:62:49:77:ae:46:
c0:ae:62:57:c8:55:fd:98:6f:f6:96:a8:b8:7b:8a:fc:91:cb:
30:af:d0:99:5b:0b:3b:0f:55:1a:ba:09:a8:63:ca:92:06:47:
2f:b2:c5:3d:ce:fe:22:85:cb:a7:5f:84:a2:63:09:28:76:06:
4e:06:48:3a:87:35:30:8b:75:b7:72:35:8f:0e:f8:e1:32:af:
75:1e:40:1c:92:e4:d2:0d:31:e6:21:cd:1b:d6:03:c0:71:ae:
90:ea:21:37:24:6f:5d:05:82:2c:65:34:78:e5:12:a9:f9:b2:
8b:09:e3:ac:33:58:e6:df:3d:41:6d:6b:00:d5:ea:0a:81:82:
03:da:9f:10:8f:0c:0d:d6:fe:71:99:57:0d:4d:fb:c3:a3:06:
63:87:46:84:c3:47:32:f5:3f:ae:57:b5:93:87:d5:33:8a:e2:
58:b8:2f:04:50:42:72:1d:1c:e2:a2:9d:52:88:d7:21:3d:64:
84:35:67:ec:e1:7a:83:c7:f9:64:41:40:15:ae:b9:3b:ed:91:
91:19:77:d0:f8:b2:2b:66:3a:28:9f:6b:d0:6a:dd:84:ca:6f:
2a:ad:79:b3:50:a4:16:1c:7d:4f:48:5a:67:da:2b:ca:59:07:
0e:e5:b4:63
-----BEGIN CERTIFICATE-----
MIIGgTCCBWmgAwIBAgIEQag17TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZmQ1ZmVmNjkyYjRjMmQyMmJkZDAzMWZhYmZhNzExMGI3YjM2ZTgxMB4XDTIyMDEw
MTA5NTcyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGE0ZDQzZjFjNWEz
ZGQxYThhM2I5MGIzZmIyNjQ3MWRmMGE3MWU0MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALpv5aDygZWJXbgYEQLlwM3gbZqY46bFF8CPxV+37jW5SylH
SGqHeuSCutKoTGgx3IUGAWfwr6906QG4UP9GU6R26IxeHvr4Ca4PGKsKn93zxFou
88VfAxL5ItOqTnD/ERw6w+iFq9QurBKdxFAFHB8Smo7i3hn2rFqKjeplfh4r+SIi
W1t5yx5A2YP7tRuyirYSJ++22wz8sslX9tzgJgz1x2LIUUdfo7Cy80sSfciEKfdQ
B9hZ2Puz17PVxZLn0XK0CizWRDtA2aEPfUIayqikR5U3itpPkWfa5L5HZP4NGHbx
dDmKTIhMSetqXY/kONl01yj4whLpBlYBnL6M58kCAwEAAaOCA5swggOXMB0GA1Ud
DgQWBBQKTUPxxaPdGoo7kLP7Jkcd8KceQTAfBgNVHSMEGDAWgBQf1f72krTC0ivd
Ax+r+nEQt7NugTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0g5WC05cEswd3RJcjNRTWZxX3B4RUxlemJvRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2MvNDhlMWFlLTkwZTgtNGU0Mi1hZjNkLTUxMDFiZTVkZDYxNS8x
L0NrMUQ4Y1dqM1JxS081Q3oteVpISGZDbkhrRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Mv
NDhlMWFlLTkwZTgtNGU0Mi1hZjNkLTUxMDFiZTVkZDYxNS8xL0g5WC05cEswd3RJ
cjNRTWZxX3B4RUxlemJvRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCC
Aa8GCCsGAQUFBwEHAQH/BIIBnjCCAZowggFyBAIAATCCAWoDAwAlIQMEBSWCoAMD
ACWIAwMAJdsDBAY+LMAwCwMEBT5OYAMDAD5OAwQFPnGgAwQGPqWAAwQHPreAAwQF
PsWgAwMBPuwDBAY+8cADBAZOG0ADBARQQAADBAdRr4ADBAdSgIADAwBStQMEB1LL
gAMEB1NkAAMEB1NmAAMEBlT9wAMDAFUXAwQHVYMAAwMCV1wDBAdXZIADBAdYlIAD
BAdZGwADBAdZpgADBAZbkUADBAVtbAADBAWf/+ADAwCwXQMDALI3AwQGskuAAwQC
uQ/UAwQCuTcgAwMAvEMDBAO8XkAwDAMEA8BryAMEA8Br4AMEAcGPRgMEAMGPSTAM
AwQAwY9PAwQBwY9YAwQAwY9bMAwDBADBj10DBAXBj0ADAwDCZAMEBsMKgAMEBdQy
gAMEBdRWAAMEBdRaQAMEBtSSAAMEB9SVgAMEBdWLoAMEBdWNYAMEBdW64AMEBtXY
wAMEBtXzgAMEBdlOwDAiBAIAAjAcAwUDIAEG6AMFAyABFLgDBQMgAUB4AwUDKgGo
ADANBgkqhkiG9w0BAQsFAAOCAQEAt7wzSU2lpjBOLiM4cGJJd65GwK5iV8hV/Zhv
9paouHuK/JHLMK/QmVsLOw9VGroJqGPKkgZHL7LFPc7+IoXLp1+EomMJKHYGTgZI
Ooc1MIt1t3I1jw744TKvdR5AHJLk0g0x5iHNG9YDwHGukOohNyRvXQWCLGU0eOUS
qfmyiwnjrDNY5t89QW1rANXqCoGCA9qfEI8MDdb+cZlXDU37w6MGY4dGhMNHMvU/
rle1k4fVM4riWLgvBFBCch0c4qKdUojXIT1khDVn7OF6g8f5ZEFAFa65O+2RkRl3
0PiyK2Y6KJ9r0GrdhMpvKq15s1CkFhx9T0haZ9orylkHDuW0Yw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-ams.rpki-client.org