Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/3d2a14-6b79-4689-9579-39480285a948/1/xRt7BoRVk5PSVMFXKoJI3Xflgrw.roa
File: xRt7BoRVk5PSVMFXKoJI3Xflgrw.roa (raw, json)
Hash identifier: o2y/XVi/22Elf+1f9udX2n9QkcQNoLJpo4mmXGiUrGo=
Subject key identifier: C5:1B:7B:06:84:55:93:93:D2:54:C1:57:2A:82:48:DD:77:E5:82:BC
Certificate issuer: /CN=7dc4acedcb86cddfed7f6de8cadfca00469bbc8e
Certificate serial: 01823EF7CBE97C1930EE1ED9AF48379DBFE0
Authority key identifier: 7D:C4:AC:ED:CB:86:CD:DF:ED:7F:6D:E8:CA:DF:CA:00:46:9B:BC:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fcSs7cuGzd_tf23oyt_KAEabvI4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/3d2a14-6b79-4689-9579-39480285a948/1/xRt7BoRVk5PSVMFXKoJI3Xflgrw.roa
Signing time: Wed 27 Jul 2022 09:23:23 +0000
ROA not before: Wed 27 Jul 2022 09:23:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2116
IP address blocks: 85.252.0.0/16 maxlen: 16
194.29.200.0/22 maxlen: 22
37.191.128.0/17 maxlen: 17
213.160.224.0/20 maxlen: 20
213.160.240.0/21 maxlen: 21
31.185.24.0/21 maxlen: 21
81.175.0.0/20 maxlen: 20
178.74.0.0/18 maxlen: 18
81.175.24.0/21 maxlen: 22
81.175.20.0/22 maxlen: 22
213.151.128.0/19 maxlen: 19
81.175.32.0/19 maxlen: 19
217.77.32.0/20 maxlen: 20
195.204.0.0/16 maxlen: 16
85.221.0.0/17 maxlen: 17
217.8.128.0/19 maxlen: 19
77.234.48.0/21 maxlen: 21
86.62.128.0/18 maxlen: 18
62.63.0.0/18 maxlen: 18
89.191.0.0/19 maxlen: 19
81.191.0.0/16 maxlen: 16
193.90.0.0/16 maxlen: 16
80.241.80.0/20 maxlen: 20
194.19.0.0/17 maxlen: 17
212.62.224.0/19 maxlen: 19
85.196.64.0/18 maxlen: 18
193.75.0.0/17 maxlen: 17
195.139.0.0/16 maxlen: 16
213.172.192.0/19 maxlen: 19
78.24.144.0/21 maxlen: 21
109.199.192.0/19 maxlen: 19
195.1.0.0/16 maxlen: 16
213.52.0.0/17 maxlen: 17
185.129.156.0/22 maxlen: 22
185.35.80.0/22 maxlen: 22
193.69.0.0/16 maxlen: 16
195.18.128.0/17 maxlen: 17
185.8.16.0/22 maxlen: 22
85.112.128.0/19 maxlen: 19
82.196.192.0/19 maxlen: 19
217.118.32.0/19 maxlen: 19
79.135.0.0/19 maxlen: 19
91.135.32.0/20 maxlen: 20
217.144.224.0/19 maxlen: 19
77.40.128.0/17 maxlen: 17
185.67.116.0/22 maxlen: 24
213.239.64.0/18 maxlen: 18
87.118.0.0/18 maxlen: 18
84.20.96.0/19 maxlen: 19
77.88.64.0/18 maxlen: 18
195.159.0.0/16 maxlen: 16
62.101.192.0/18 maxlen: 18
80.64.192.0/20 maxlen: 20
88.84.160.0/19 maxlen: 19
194.54.96.0/19 maxlen: 19
81.0.128.0/18 maxlen: 18
212.71.64.0/19 maxlen: 19
195.0.128.0/17 maxlen: 17
217.14.0.0/20 maxlen: 20
193.91.128.0/17 maxlen: 17
213.158.224.0/19 maxlen: 19
2a00:c440::/29 maxlen: 29
2001:840::/29 maxlen: 29
2a03:c000::/29 maxlen: 29
2a01:520::/29 maxlen: 29
2a02:270::/29 maxlen: 29
2001:4dd8::/29 maxlen: 29
2001:8c0::/29 maxlen: 29
2a04:6340::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:3e:f7:cb:e9:7c:19:30:ee:1e:d9:af:48:37:9d:bf:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7dc4acedcb86cddfed7f6de8cadfca00469bbc8e
Validity
Not Before: Jul 27 09:23:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c51b7b0684559393d254c1572a8248dd77e582bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:1b:46:c7:ea:6e:a8:c1:2a:a1:46:93:43:9f:
93:70:b8:2d:55:11:12:27:52:37:f9:fb:1b:42:2b:
27:84:5d:4e:1d:4f:00:9b:dd:69:f8:4d:f9:73:bf:
2e:ee:60:43:01:ef:f3:5a:ea:94:92:1d:67:58:4f:
31:b4:11:aa:49:1a:a2:4d:c7:cf:07:b1:65:77:a4:
9b:d3:a1:98:c6:32:1e:44:c3:5e:03:16:fd:5a:e4:
d4:94:5b:60:31:c9:60:53:65:35:93:2a:9c:a8:58:
9d:be:c4:ce:67:e5:d2:f7:00:f5:88:06:14:fb:d8:
a7:cd:a7:17:2e:71:6c:fd:b4:8e:e1:50:53:92:b7:
c3:25:d1:85:d0:c5:f2:55:60:5b:09:84:e4:8e:59:
5d:a8:cc:6d:26:d5:fd:9a:67:3a:8d:7c:60:63:c0:
74:cd:c0:ad:a3:20:70:e4:7e:8c:c2:e0:28:a7:95:
b8:01:fd:a8:e8:68:a5:b2:c7:2c:d1:1e:da:e8:3b:
c8:17:bb:7b:d0:f8:79:0b:1c:5b:10:1c:65:44:85:
c2:23:fe:a6:f8:e3:22:73:4d:08:50:f1:fc:cc:3c:
c2:23:4c:61:ee:0a:10:54:33:c8:f3:ca:f7:f7:19:
69:d4:2c:38:78:8e:c2:dd:cb:e3:5b:e8:a0:ae:3d:
6f:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:1B:7B:06:84:55:93:93:D2:54:C1:57:2A:82:48:DD:77:E5:82:BC
X509v3 Authority Key Identifier:
keyid:7D:C4:AC:ED:CB:86:CD:DF:ED:7F:6D:E8:CA:DF:CA:00:46:9B:BC:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fcSs7cuGzd_tf23oyt_KAEabvI4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/3d2a14-6b79-4689-9579-39480285a948/1/xRt7BoRVk5PSVMFXKoJI3Xflgrw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/3d2a14-6b79-4689-9579-39480285a948/1/fcSs7cuGzd_tf23oyt_KAEabvI4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.185.24.0/21
37.191.128.0/17
62.63.0.0/18
62.101.192.0/18
77.40.128.0/17
77.88.64.0/18
77.234.48.0/21
78.24.144.0/21
79.135.0.0/19
80.64.192.0/20
80.241.80.0/20
81.0.128.0/18
81.175.0.0/20
81.175.20.0-81.175.63.255
81.191.0.0/16
82.196.192.0/19
84.20.96.0/19
85.112.128.0/19
85.196.64.0/18
85.221.0.0/17
85.252.0.0/16
86.62.128.0/18
87.118.0.0/18
88.84.160.0/19
89.191.0.0/19
91.135.32.0/20
109.199.192.0/19
178.74.0.0/18
185.8.16.0/22
185.35.80.0/22
185.67.116.0/22
185.129.156.0/22
193.69.0.0/16
193.75.0.0/17
193.90.0.0/16
193.91.128.0/17
194.19.0.0/17
194.29.200.0/22
194.54.96.0/19
195.0.128.0-195.1.255.255
195.18.128.0/17
195.139.0.0/16
195.159.0.0/16
195.204.0.0/16
212.62.224.0/19
212.71.64.0/19
213.52.0.0/17
213.151.128.0/19
213.158.224.0/19
213.160.224.0-213.160.247.255
213.172.192.0/19
213.239.64.0/18
217.8.128.0/19
217.14.0.0/20
217.77.32.0/20
217.118.32.0/19
217.144.224.0/19
IPv6:
2001:840::/29
2001:8c0::/29
2001:4dd8::/29
2a00:c440::/29
2a01:520::/29
2a02:270::/29
2a03:c000::/29
2a04:6340::/29
Signature Algorithm: sha256WithRSAEncryption
39:65:3a:ad:2d:be:82:30:60:3f:ad:21:55:ec:fd:b4:da:8f:
b6:f3:6e:ec:5d:4b:99:da:8b:49:ae:cd:08:7a:d7:93:44:62:
16:3b:6b:d8:e6:a1:88:cb:7d:c9:ae:1e:20:c3:6b:57:b6:ce:
b1:a0:bb:e6:cd:24:b0:37:2e:45:6a:5f:6e:55:23:94:bb:82:
91:94:21:83:fd:3b:60:0c:b4:9c:7f:c4:2c:e8:3f:37:3e:74:
8e:69:64:4e:a0:7f:f1:51:48:40:ef:62:fc:a4:91:33:22:4b:
5e:48:9c:90:13:54:cf:eb:3e:e8:42:27:4f:e2:dd:55:76:7a:
7a:86:62:4d:58:3c:f5:1e:27:1b:c6:f6:9e:bf:86:d8:00:97:
87:64:ee:d8:b3:4f:7d:3c:9f:e7:50:a9:68:be:32:3d:47:cb:
63:4c:97:29:dc:a1:04:78:ca:c7:ca:28:68:11:8d:86:65:74:
82:03:42:53:22:e3:7b:79:a3:8c:0f:b3:9f:49:c3:84:c0:71:
71:f6:4f:70:bf:d8:88:5e:3d:bb:12:fa:53:c0:12:9f:dc:c4:
6f:4c:40:cb:14:ca:fb:59:62:56:2d:8e:81:50:31:83:f7:58:
dc:7e:a6:89:d0:ef:36:78:9a:26:50:3d:7d:d9:76:1b:f4:c1:
40:42:d8:c3
-----BEGIN CERTIFICATE-----
MIIGpzCCBY+gAwIBAgISAYI+98vpfBkw7h7Zr0g3nb/gMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYzRhY2VkY2I4NmNkZGZlZDdmNmRlOGNhZGZjYTAwNDY5
YmJjOGUwHhcNMjIwNzI3MDkyMzIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNTFiN2IwNjg0NTU5MzkzZDI1NGMxNTcyYTgyNDhkZDc3ZTU4MmJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoRtGx+puqMEqoUaTQ5+TcLgtVRES
J1I3+fsbQisnhF1OHU8Am91p+E35c78u7mBDAe/zWuqUkh1nWE8xtBGqSRqiTcfP
B7Fld6Sb06GYxjIeRMNeAxb9WuTUlFtgMclgU2U1kyqcqFidvsTOZ+XS9wD1iAYU
+9inzacXLnFs/bSO4VBTkrfDJdGF0MXyVWBbCYTkjlldqMxtJtX9mmc6jXxgY8B0
zcCtoyBw5H6MwuAop5W4Af2o6Gilsscs0R7a6DvIF7t70Ph5CxxbEBxlRIXCI/6m
+OMic00IUPH8zDzCI0xh7goQVDPI88r39xlp1Cw4eI7C3cvjW+igrj1vGwIDAQAB
o4IDszCCA68wHQYDVR0OBBYEFMUbewaEVZOT0lTBVyqCSN135YK8MB8GA1UdIwQY
MBaAFH3ErO3Lhs3f7X9t6MrfygBGm7yOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmNTczdjdUd6ZF90ZjIzb3l0X0tBRWFidkk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS8zZDJhMTQtNmI3OS00Njg5LTk1Nzkt
Mzk0ODAyODVhOTQ4LzEveFJ0N0JvUlZrNVBTVk1GWEtvSkkzWGZsZ3J3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOS8zZDJhMTQtNmI3OS00Njg5LTk1NzktMzk0ODAyODVhOTQ4
LzEvZmNTczdjdUd6ZF90ZjIzb3l0X0tBRWFidkk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBxwYIKwYBBQUHAQcBAf8EggG2MIIBsjCCAW4EAgABMIIB
ZgMEAx+5GAMEByW/gAMEBj4/AAMEBj5lwAMEB00ogAMEBk1YQAMEA03qMAMEA04Y
kAMEBU+HAAMEBFBAwAMEBFDxUAMEBlEAgAMEBFGvADAMAwQCUa8UAwQGUa8AAwMA
Ub8DBAVSxMADBAVUFGADBAVVcIADBAZVxEADBAdV3QADAwBV/AMEBlY+gAMEBld2
AAMEBVhUoAMEBVm/AAMEBFuHIAMEBW3HwAMEBrJKAAMEArkIEAMEArkjUAMEArlD
dAMEArmBnAMDAMFFAwQHwUsAAwMAwVoDBAfBW4ADBAfCEwADBALCHcgDBAXCNmAw
CwMEB8MAgAMDAcMAAwQHwxKAAwMAw4sDAwDDnwMDAMPMAwQF1D7gAwQF1EdAAwQH
1TQAAwQF1ZeAAwQF1Z7gMAwDBAXVoOADBAPVoPADBAXVrMADBAbV70ADBAXZCIAD
BATZDgADBATZTSADBAXZdiADBAXZkOAwPgQCAAIwOAMFAyABCEADBQMgAQjAAwUD
IAFN2AMFAyoAxEADBQMqAQUgAwUDKgICcAMFAyoDwAADBQMqBGNAMA0GCSqGSIb3
DQEBCwUAA4IBAQA5ZTqtLb6CMGA/rSFV7P202o+2827sXUuZ2otJrs0IeteTRGIW
O2vY5qGIy33Jrh4gw2tXts6xoLvmzSSwNy5Fal9uVSOUu4KRlCGD/TtgDLScf8Qs
6D83PnSOaWROoH/xUUhA72L8pJEzIkteSJyQE1TP6z7oQidP4t1Vdnp6hmJNWDz1
Hicbxvaev4bYAJeHZO7Ys099PJ/nUKlovjI9R8tjTJcp3KEEeMrHyihoEY2GZXSC
A0JTIuN7eaOMD7OfScOEwHFx9k9wv9iIXj27EvpTwBKf3MRvTEDLFMr7WWJWLY6B
UDGD91jcfqaJ0O82eJomUD192XYb9MFAQtjD
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:57:41 2025 by rpki-client