Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/HLPhWoLM1V189HKPuTJJFmn6syY.roa
File: HLPhWoLM1V189HKPuTJJFmn6syY.roa (raw, json)
Hash identifier: KHKsdPXDBbF5KBnF1yyFvkN8/fbr49t85pSPaAxYm6s=
Subject key identifier: 1C:B3:E1:5A:82:CC:D5:5D:7C:F4:72:8F:B9:32:49:16:69:FA:B3:26
Certificate issuer: /CN=0526b03c717184c3680817e55e2455f85d73a413
Certificate serial: 017944D3
Authority key identifier: 05:26:B0:3C:71:71:84:C3:68:08:17:E5:5E:24:55:F8:5D:73:A4:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BSawPHFxhMNoCBflXiRV-F1zpBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/HLPhWoLM1V189HKPuTJJFmn6syY.roa
Signing time: Sat 01 Jan 2022 02:59:27 +0000
ROA not before: Sat 01 Jan 2022 02:59:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49453
IP address blocks: 134.19.177.0/24 maxlen: 24
134.19.176.0/24 maxlen: 24
134.19.179.0/24 maxlen: 24
134.19.178.0/24 maxlen: 24
134.19.186.0/24 maxlen: 24
134.19.185.0/24 maxlen: 24
134.19.184.0/24 maxlen: 24
134.19.183.0/24 maxlen: 24
134.19.182.0/24 maxlen: 24
134.19.181.0/24 maxlen: 24
134.19.180.0/24 maxlen: 24
134.19.190.0/23 maxlen: 23
134.19.189.0/24 maxlen: 24
134.19.188.0/24 maxlen: 24
134.19.187.0/24 maxlen: 24
37.123.210.0/24 maxlen: 24
213.152.166.0/24 maxlen: 24
213.152.165.0/24 maxlen: 24
213.152.164.0/24 maxlen: 24
213.152.163.0/24 maxlen: 24
213.152.162.0/24 maxlen: 24
213.152.161.0/24 maxlen: 24
213.152.160.0/24 maxlen: 24
213.152.172.0/24 maxlen: 24
213.152.171.0/24 maxlen: 24
213.152.170.0/24 maxlen: 24
213.152.169.0/24 maxlen: 24
213.152.168.0/24 maxlen: 24
213.152.167.0/24 maxlen: 24
213.152.177.0/24 maxlen: 24
213.152.176.0/24 maxlen: 24
213.152.174.0/24 maxlen: 24
213.152.173.0/24 maxlen: 24
213.152.186.0/24 maxlen: 24
213.152.185.0/24 maxlen: 24
213.152.184.0/24 maxlen: 24
213.152.183.0/24 maxlen: 24
213.152.181.0/24 maxlen: 24
213.152.180.0/24 maxlen: 24
213.152.188.0/22 maxlen: 22
213.152.188.0/24 maxlen: 24
213.152.187.0/24 maxlen: 24
188.95.51.0/24 maxlen: 24
188.95.49.0/24 maxlen: 24
188.95.53.0/24 maxlen: 24
188.95.52.0/24 maxlen: 24
185.23.212.0/22 maxlen: 22
109.202.98.0/24 maxlen: 24
185.23.214.0/24 maxlen: 24
109.202.104.0/24 maxlen: 24
109.202.103.0/24 maxlen: 24
109.202.102.0/24 maxlen: 24
109.202.101.0/24 maxlen: 24
109.202.100.0/24 maxlen: 24
109.202.99.0/24 maxlen: 24
109.202.111.0/24 maxlen: 24
109.202.110.0/24 maxlen: 24
109.202.109.0/24 maxlen: 24
109.202.108.0/24 maxlen: 24
109.202.107.0/24 maxlen: 24
109.202.106.0/24 maxlen: 24
109.232.225.0/24 maxlen: 24
109.232.224.0/24 maxlen: 24
109.232.231.0/24 maxlen: 24
109.232.230.0/24 maxlen: 24
109.232.229.0/24 maxlen: 24
109.232.228.0/24 maxlen: 24
109.232.227.0/24 maxlen: 24
2a00:1678:1337::/48 maxlen: 48
2a00:1678:2470::/48 maxlen: 48
2a00:1678:b00b::/48 maxlen: 48
2a00:1678:da7a::/48 maxlen: 48
2a00:1678:baba::/48 maxlen: 48
2a00:1678:3cc0::/48 maxlen: 48
2a00:1678:dea1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24724691 (0x17944d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0526b03c717184c3680817e55e2455f85d73a413
Validity
Not Before: Jan 1 02:59:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1cb3e15a82ccd55d7cf4728fb932491669fab326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:3e:b8:30:fc:58:93:0c:17:99:11:b6:a5:2d:
f4:15:4f:6f:da:e2:ef:95:dc:63:68:12:6f:91:0c:
bc:ca:f2:fb:a4:a0:81:a7:e1:22:04:31:ba:f3:b9:
30:9b:17:f0:2c:77:9e:7c:f9:e7:b5:ee:c6:a0:1b:
2e:21:a1:ed:3d:a5:b6:85:5c:b3:1b:c0:ac:bf:18:
47:59:23:1d:1a:eb:d7:6f:0d:a4:aa:2e:dc:af:b6:
33:37:3d:c7:da:d5:f0:dc:c7:b2:e2:95:4a:47:13:
41:fb:12:3b:a9:f3:53:1c:c5:ff:60:0b:54:42:22:
dc:ed:9e:e8:95:d5:61:6b:55:c2:97:a2:05:16:b0:
98:36:0b:89:7f:49:f7:2a:b2:0e:a0:62:a2:36:df:
a0:57:92:9c:fc:20:13:65:cf:86:cd:25:3a:40:03:
71:a9:d3:20:a0:de:ca:af:46:52:53:ed:69:11:ae:
2e:d2:e5:6b:c2:73:7a:09:ca:e2:98:e3:43:39:7a:
77:8e:e1:71:e0:47:7a:df:c0:ab:11:e3:7a:4d:46:
f9:c8:4e:47:5e:df:bc:a7:92:76:27:fe:61:7e:aa:
8d:53:ee:ee:d2:af:35:0f:db:c9:e3:57:0d:80:7e:
f3:c4:da:e1:04:89:47:95:3f:5d:b5:2d:8c:9b:6e:
f5:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:B3:E1:5A:82:CC:D5:5D:7C:F4:72:8F:B9:32:49:16:69:FA:B3:26
X509v3 Authority Key Identifier:
keyid:05:26:B0:3C:71:71:84:C3:68:08:17:E5:5E:24:55:F8:5D:73:A4:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BSawPHFxhMNoCBflXiRV-F1zpBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/HLPhWoLM1V189HKPuTJJFmn6syY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/BSawPHFxhMNoCBflXiRV-F1zpBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.123.210.0/24
109.202.98.0-109.202.104.255
109.202.106.0-109.202.111.255
109.232.224.0/23
109.232.227.0-109.232.231.255
134.19.176.0/20
185.23.212.0/22
188.95.49.0/24
188.95.51.0-188.95.53.255
213.152.160.0-213.152.174.255
213.152.176.0/23
213.152.180.0/23
213.152.183.0-213.152.191.255
IPv6:
2a00:1678:1337::/48
2a00:1678:2470::/48
2a00:1678:3cc0::/48
2a00:1678:b00b::/48
2a00:1678:baba::/48
2a00:1678:da7a::/48
2a00:1678:dea1::/48
Signature Algorithm: sha256WithRSAEncryption
80:c1:8f:c9:1a:55:70:e4:68:2d:1b:b0:af:c4:49:0e:50:a5:
84:14:64:82:1e:1f:d0:d4:62:c7:b7:06:68:a5:21:ab:c3:42:
f6:86:8f:f6:35:a5:33:f7:d7:4f:56:8a:f5:b8:81:6d:0d:e3:
df:06:1b:fe:49:d8:1c:a2:c6:57:1b:e5:52:4b:df:49:38:ee:
2f:a2:07:ad:05:29:66:37:93:f3:ae:b5:37:b2:77:c3:d7:4c:
2a:27:2c:f2:88:13:5e:89:53:4b:c2:c9:ba:36:ec:ec:21:94:
07:95:0f:b6:09:01:57:cc:9d:d1:72:69:2c:ee:f5:95:35:9d:
3d:a8:f5:fb:22:19:8f:8c:69:34:8a:9e:e7:51:6a:6f:ee:3d:
27:c3:96:8f:e4:90:64:1f:08:34:54:1b:90:a9:85:3c:4a:51:
5c:94:47:3c:72:36:22:e4:00:2c:6f:a4:0d:6d:c4:88:7c:e1:
e4:00:46:53:a3:e9:c4:4d:30:51:63:0a:3d:f3:26:6f:3f:bb:
7f:1a:18:1d:59:8b:30:55:eb:42:c2:5b:41:07:f6:3e:22:64:
7e:64:12:57:86:f9:41:92:4a:9f:91:ad:fc:a9:68:4b:a7:77:
f7:96:e1:94:70:d4:8e:30:d6:21:f6:45:23:6e:3e:29:75:10:
da:ca:6b:77
-----BEGIN CERTIFICATE-----
MIIFsjCCBJqgAwIBAgIEAXlE0zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NTI2YjAzYzcxNzE4NGMzNjgwODE3ZTU1ZTI0NTVmODVkNzNhNDEzMB4XDTIyMDEw
MTAyNTkyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWNiM2UxNWE4MmNj
ZDU1ZDdjZjQ3MjhmYjkzMjQ5MTY2OWZhYjMyNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJM+uDD8WJMMF5kRtqUt9BVPb9ri75XcY2gSb5EMvMry+6Sg
gafhIgQxuvO5MJsX8Cx3nnz557XuxqAbLiGh7T2ltoVcsxvArL8YR1kjHRrr128N
pKou3K+2Mzc9x9rV8NzHsuKVSkcTQfsSO6nzUxzF/2ALVEIi3O2e6JXVYWtVwpei
BRawmDYLiX9J9yqyDqBiojbfoFeSnPwgE2XPhs0lOkADcanTIKDeyq9GUlPtaRGu
LtLla8JzegnK4pjjQzl6d47hceBHet/AqxHjek1G+chOR17fvKeSdif+YX6qjVPu
7tKvNQ/byeNXDYB+88Ta4QSJR5U/XbUtjJtu9d8CAwEAAaOCAswwggLIMB0GA1Ud
DgQWBBQcs+FagszVXXz0co+5MkkWafqzJjAfBgNVHSMEGDAWgBQFJrA8cXGEw2gI
F+VeJFX4XXOkEzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JTYXdQSEZ4aE1Ob0NCZmxYaVJWLUYxenBCTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDEvYTMzODNhLTA0ZWItNDNmOC1hOTUzLTNiZjA0YTJhOTNkOC8x
L0hMUGhXb0xNMVYxODlIS1B1VEpKRm1uNnN5WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDEv
YTMzODNhLTA0ZWItNDNmOC1hOTUzLTNiZjA0YTJhOTNkOC8xL0JTYXdQSEZ4aE1O
b0NCZmxYaVJWLUYxenBCTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
4QYIKwYBBQUHAQcBAf8EgdEwgc4wgYQEAgABMH4DBAAle9IwDAMEAW3KYgMEAG3K
aDAMAwQBbcpqAwQEbcpgAwQBbejgMAwDBABt6OMDBANt6OADBASGE7ADBAK5F9QD
BAC8XzEwDAMEALxfMwMEAbxfNDAMAwQF1ZigAwQA1ZiuAwQB1ZiwAwQB1Zi0MAwD
BADVmLcDBAbVmIAwRQQCAAIwPwMHACoAFngTNwMHACoAFngkcAMHACoAFng8wAMH
ACoAFniwCwMHACoAFni6ugMHACoAFnjaegMHACoAFnjeoTANBgkqhkiG9w0BAQsF
AAOCAQEAgMGPyRpVcORoLRuwr8RJDlClhBRkgh4f0NRix7cGaKUhq8NC9oaP9jWl
M/fXT1aK9biBbQ3j3wYb/knYHKLGVxvlUkvfSTjuL6IHrQUpZjeT8661N7J3w9dM
Kics8ogTXolTS8LJujbs7CGUB5UPtgkBV8yd0XJpLO71lTWdPaj1+yIZj4xpNIqe
51Fqb+49J8OWj+SQZB8INFQbkKmFPEpRXJRHPHI2IuQALG+kDW3EiHzh5ABGU6Pp
xE0wUWMKPfMmbz+7fxoYHVmLMFXrQsJbQQf2PiJkfmQSV4b5QZJKn5Gt/KloS6d3
95bhlHDUjjDWIfZFI24+KXUQ2sprdw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:46 2024 by rpki-client on console-ams.rpki-client.org