Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/17a016-26c7-424c-862f-bcac8b552a9a/1/N69fqCQpsJqopqz9P3qCio_yEwg.roa
File: N69fqCQpsJqopqz9P3qCio_yEwg.roa (raw, json)
Hash identifier: 4eWBVucQ7WdgTyrmJmBtqQrI3VcSJ8N2AH5r5RNW2aY=
Subject key identifier: 37:AF:5F:A8:24:29:B0:9A:A8:A6:AC:FD:3F:7A:82:8A:8F:F2:13:08
Certificate issuer: /CN=29fb7da3b44e41b32369e4a5c790d3081fc69aa9
Certificate serial: 0184A3E441BCF157743ECA6EA9B8F33F75D0
Authority key identifier: 29:FB:7D:A3:B4:4E:41:B3:23:69:E4:A5:C7:90:D3:08:1F:C6:9A:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kft9o7ROQbMjaeSlx5DTCB_Gmqk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/17a016-26c7-424c-862f-bcac8b552a9a/1/N69fqCQpsJqopqz9P3qCio_yEwg.roa
Signing time: Wed 23 Nov 2022 09:49:15 +0000
ROA not before: Wed 23 Nov 2022 09:49:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16019
IP address blocks: 62.245.64.0/18 maxlen: 18
46.167.224.0/19 maxlen: 19
62.245.96.0/19 maxlen: 19
46.167.192.0/19 maxlen: 19
46.167.192.0/18 maxlen: 18
62.245.64.0/19 maxlen: 19
84.242.96.0/19 maxlen: 19
109.107.192.0/19 maxlen: 19
93.90.160.0/20 maxlen: 20
84.242.64.0/19 maxlen: 19
31.30.0.0/16 maxlen: 17
84.242.64.0/18 maxlen: 18
213.220.224.0/19 maxlen: 19
88.146.192.0/18 maxlen: 18
89.103.0.0/16 maxlen: 16
84.42.128.0/17 maxlen: 17
141.170.128.0/18 maxlen: 18
84.42.128.0/18 maxlen: 18
141.170.128.0/19 maxlen: 19
213.220.192.0/19 maxlen: 19
213.220.192.0/18 maxlen: 18
93.99.128.0/17 maxlen: 17
86.49.0.0/17 maxlen: 17
86.49.0.0/16 maxlen: 16
94.113.0.0/16 maxlen: 16
89.177.0.0/16 maxlen: 16
86.49.128.0/17 maxlen: 17
84.42.192.0/18 maxlen: 18
141.170.160.0/19 maxlen: 19
80.95.96.0/19 maxlen: 19
31.169.128.0/17 maxlen: 17
31.169.128.0/18 maxlen: 18
188.95.120.0/21 maxlen: 21
78.45.0.0/16 maxlen: 16
81.27.200.0/21 maxlen: 21
77.48.0.0/17 maxlen: 17
77.48.0.0/16 maxlen: 16
94.112.0.0/16 maxlen: 16
89.176.0.0/16 maxlen: 16
94.112.0.0/15 maxlen: 15
89.176.0.0/15 maxlen: 15
78.102.0.0/17 maxlen: 17
89.102.0.0/16 maxlen: 16
78.102.0.0/16 maxlen: 16
89.102.0.0/15 maxlen: 15
62.240.160.0/20 maxlen: 20
62.240.160.0/19 maxlen: 19
62.240.176.0/20 maxlen: 20
88.146.128.0/18 maxlen: 18
88.146.128.0/17 maxlen: 17
93.99.0.0/17 maxlen: 17
31.169.192.0/18 maxlen: 18
77.48.128.0/17 maxlen: 17
93.99.0.0/16 maxlen: 16
78.102.128.0/17 maxlen: 17
78.44.0.0/16 maxlen: 16
178.77.192.0/19 maxlen: 19
78.44.0.0/15 maxlen: 15
46.135.0.0/16 maxlen: 16
178.77.192.0/18 maxlen: 18
178.77.224.0/19 maxlen: 19
213.192.0.0/18 maxlen: 18
213.192.0.0/19 maxlen: 19
213.192.32.0/19 maxlen: 19
217.77.160.0/20 maxlen: 20
62.24.64.0/19 maxlen: 19
62.24.64.0/20 maxlen: 20
62.24.80.0/20 maxlen: 20
82.142.64.0/18 maxlen: 18
81.27.192.0/21 maxlen: 21
81.27.192.0/20 maxlen: 20
2a02:8300::/28 maxlen: 28
2a00:11b0::/29 maxlen: 29
2a02:8300::/29 maxlen: 29
2a02:8308::/29 maxlen: 29
2a01:5e0:8000::/33 maxlen: 33
2a01:5e0::/33 maxlen: 33
2a01:5e0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a3:e4:41:bc:f1:57:74:3e:ca:6e:a9:b8:f3:3f:75:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29fb7da3b44e41b32369e4a5c790d3081fc69aa9
Validity
Not Before: Nov 23 09:49:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=37af5fa82429b09aa8a6acfd3f7a828a8ff21308
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c6:74:92:23:c9:1c:1b:68:36:06:5f:b5:81:
33:0f:16:df:8c:15:e8:a2:eb:d5:15:94:fb:99:bd:
79:ac:62:b1:db:c4:89:03:fc:39:e5:48:12:38:94:
b9:82:c4:93:b2:7a:81:bb:f3:1b:34:6f:1a:c4:c1:
24:fd:dd:d7:32:b8:bd:84:52:71:0b:f5:e3:3d:8e:
80:51:ec:30:60:78:e9:8f:75:db:53:0e:09:b3:43:
aa:dc:41:55:3c:e7:89:3a:4c:de:21:1e:ef:ee:e6:
a7:7c:c9:29:8e:51:89:a2:bf:51:3e:9b:11:46:17:
e0:52:9f:8a:6e:52:54:05:bd:1a:a0:4c:24:b6:ae:
fb:18:75:cf:48:c2:b8:05:c0:a0:2c:59:af:b1:87:
ef:d0:04:3c:f8:16:79:81:fc:a9:dd:9c:65:6a:4d:
04:37:82:0a:6e:44:29:a8:29:7f:43:1d:3e:a3:df:
df:74:59:bc:63:18:d6:d5:3d:e5:36:17:9d:4e:31:
cd:d9:6d:1b:a1:1b:1e:28:7f:2a:3b:58:78:a3:92:
67:a1:e9:a7:4d:b6:4b:e3:d0:74:36:21:e5:8a:0a:
c7:cc:d0:79:30:dc:1b:b8:44:ce:e2:a7:17:80:4e:
47:6a:9f:b1:2d:7b:0f:7c:28:18:09:e3:6b:3c:86:
b8:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:AF:5F:A8:24:29:B0:9A:A8:A6:AC:FD:3F:7A:82:8A:8F:F2:13:08
X509v3 Authority Key Identifier:
keyid:29:FB:7D:A3:B4:4E:41:B3:23:69:E4:A5:C7:90:D3:08:1F:C6:9A:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kft9o7ROQbMjaeSlx5DTCB_Gmqk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/17a016-26c7-424c-862f-bcac8b552a9a/1/N69fqCQpsJqopqz9P3qCio_yEwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/17a016-26c7-424c-862f-bcac8b552a9a/1/Kft9o7ROQbMjaeSlx5DTCB_Gmqk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.30.0.0/16
31.169.128.0/17
46.135.0.0/16
46.167.192.0/18
62.24.64.0/19
62.240.160.0/19
62.245.64.0/18
77.48.0.0/16
78.44.0.0/15
78.102.0.0/16
80.95.96.0/19
81.27.192.0/20
82.142.64.0/18
84.42.128.0/17
84.242.64.0/18
86.49.0.0/16
88.146.128.0/17
89.102.0.0/15
89.176.0.0/15
93.90.160.0/20
93.99.0.0/16
94.112.0.0/15
109.107.192.0/19
141.170.128.0/18
178.77.192.0/18
188.95.120.0/21
213.192.0.0/18
213.220.192.0/18
217.77.160.0/20
IPv6:
2a00:11b0::/29
2a01:5e0::/32
2a02:8300::/28
Signature Algorithm: sha256WithRSAEncryption
a2:3a:48:68:15:59:c9:b3:ad:cf:f3:55:65:31:37:42:cb:82:
7d:3f:7b:35:29:9d:9e:6b:bc:44:7c:5b:ae:e4:04:fa:0b:e2:
44:b9:7b:03:aa:32:d9:a0:63:6b:aa:2e:f4:81:07:3c:b3:82:
57:cc:de:f3:cc:cc:33:04:db:82:3a:26:4b:ac:f7:41:b0:87:
f3:7a:8f:fb:d1:58:40:70:cb:85:bc:8e:ca:82:31:ce:e1:fe:
8c:db:d8:59:86:d7:a4:3d:a3:c0:d6:95:0a:b8:f9:bc:e7:c7:
0e:e4:d1:da:a0:79:ee:4b:76:19:13:bd:69:64:39:38:25:50:
3e:95:e4:91:80:de:85:2f:89:94:78:1d:6b:a1:bd:8c:4a:51:
73:a0:42:92:7c:68:47:a0:7e:00:1a:65:2f:bd:e7:7c:6a:9e:
95:27:53:54:2f:1d:f3:3f:a8:3d:96:7e:e7:71:87:ca:9a:e6:
bc:5b:b4:1e:0b:f5:b6:8f:44:ed:76:51:b4:65:58:dd:99:f6:
75:93:9e:d9:11:50:78:82:e4:37:57:95:c4:88:48:e2:ad:7d:
27:67:6a:86:c7:53:1d:51:33:0b:42:7a:55:c2:6a:82:10:6e:
b6:a6:fc:c5:d6:fb:27:77:d2:4b:c1:be:8a:10:50:7f:dd:63:
ff:fa:d7:d9
-----BEGIN CERTIFICATE-----
MIIFvTCCBKWgAwIBAgISAYSj5EG88Vd0PspuqbjzP3XQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5ZmI3ZGEzYjQ0ZTQxYjMyMzY5ZTRhNWM3OTBkMzA4MWZj
NjlhYTkwHhcNMjIxMTIzMDk0OTE1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzN2FmNWZhODI0MjliMDlhYThhNmFjZmQzZjdhODI4YThmZjIxMzA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsMZ0kiPJHBtoNgZftYEzDxbfjBXo
ouvVFZT7mb15rGKx28SJA/w55UgSOJS5gsSTsnqBu/MbNG8axMEk/d3XMri9hFJx
C/XjPY6AUewwYHjpj3XbUw4Js0Oq3EFVPOeJOkzeIR7v7uanfMkpjlGJor9RPpsR
RhfgUp+KblJUBb0aoEwktq77GHXPSMK4BcCgLFmvsYfv0AQ8+BZ5gfyp3Zxlak0E
N4IKbkQpqCl/Qx0+o9/fdFm8YxjW1T3lNhedTjHN2W0boRseKH8qO1h4o5Jnoemn
TbZL49B0NiHligrHzNB5MNwbuETO4qcXgE5Hap+xLXsPfCgYCeNrPIa4qwIDAQAB
o4ICyTCCAsUwHQYDVR0OBBYEFDevX6gkKbCaqKas/T96goqP8hMIMB8GA1UdIwQY
MBaAFCn7faO0TkGzI2nkpceQ0wgfxpqpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2Z0OW83Uk9RYk1qYWVTbHg1RFRDQl9HbXFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy8xN2EwMTYtMjZjNy00MjRjLTg2MmYt
YmNhYzhiNTUyYTlhLzEvTjY5ZnFDUXBzSnFvcHF6OVAzcUNpb195RXdnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYy8xN2EwMTYtMjZjNy00MjRjLTg2MmYtYmNhYzhiNTUyYTlh
LzEvS2Z0OW83Uk9RYk1qYWVTbHg1RFRDQl9HbXFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHeBggrBgEFBQcBBwEB/wSBzjCByzCBqwQCAAEwgaQDAwAf
HgMEBx+pgAMDAC6HAwQGLqfAAwQFPhhAAwQFPvCgAwQGPvVAAwMATTADAwFOLAMD
AE5mAwQFUF9gAwQEURvAAwQGUo5AAwQHVCqAAwQGVPJAAwMAVjEDBAdYkoADAwFZ
ZgMDAVmwAwQEXVqgAwMAXWMDAwFecAMEBW1rwAMEBo2qgAMEBrJNwAMEA7xfeAME
BtXAAAMEBtXcwAMEBNlNoDAbBAIAAjAVAwUDKgARsAMFACoBBeADBQQqAoMAMA0G
CSqGSIb3DQEBCwUAA4IBAQCiOkhoFVnJs63P81VlMTdCy4J9P3s1KZ2ea7xEfFuu
5AT6C+JEuXsDqjLZoGNrqi70gQc8s4JXzN7zzMwzBNuCOiZLrPdBsIfzeo/70VhA
cMuFvI7KgjHO4f6M29hZhtekPaPA1pUKuPm858cO5NHaoHnuS3YZE71pZDk4JVA+
leSRgN6FL4mUeB1rob2MSlFzoEKSfGhHoH4AGmUvved8ap6VJ1NULx3zP6g9ln7n
cYfKmua8W7QeC/W2j0TtdlG0ZVjdmfZ1k57ZEVB4guQ3V5XEiEjirX0nZ2qGx1Md
UTMLQnpVwmqCEG62pvzF1vsnd9JLwb6KEFB/3WP/+tfZ
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:49 2023 by rpki-client on console-ams.rpki-client.org