Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/0eCh3gSCpyPFacDkCYsU2vfC6DE.roa
File: 0eCh3gSCpyPFacDkCYsU2vfC6DE.roa (raw, json)
Hash identifier: nvt9cLkuhI1B3JPZ+uqCYCm93sOF/UZ7nTySh/epoRg=
Subject key identifier: D1:E0:A1:DE:04:82:A7:23:C5:69:C0:E4:09:8B:14:DA:F7:C2:E8:31
Certificate issuer: /CN=e4a9308742e7eb66506219d829d86185899a1e34
Certificate serial: 018475680BFA2A81426A4AFD5A535DB65BCB
Authority key identifier: E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/0eCh3gSCpyPFacDkCYsU2vfC6DE.roa
Signing time: Mon 14 Nov 2022 09:11:03 +0000
ROA not before: Mon 14 Nov 2022 09:11:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48728
IP address blocks: 31.11.48.0/21 maxlen: 21
37.186.37.0/24 maxlen: 24
37.186.38.0/24 maxlen: 24
37.186.32.0/24 maxlen: 24
37.186.34.0/24 maxlen: 24
37.186.33.0/24 maxlen: 24
37.186.36.0/24 maxlen: 24
37.186.35.0/24 maxlen: 24
37.186.32.0/19 maxlen: 19
37.186.44.0/24 maxlen: 24
37.186.39.0/24 maxlen: 24
37.186.41.0/24 maxlen: 24
37.186.40.0/24 maxlen: 24
37.186.43.0/24 maxlen: 24
37.186.42.0/24 maxlen: 24
37.186.51.0/24 maxlen: 24
37.186.50.0/24 maxlen: 24
37.186.46.0/24 maxlen: 24
37.186.45.0/24 maxlen: 24
37.186.48.0/24 maxlen: 24
37.186.47.0/24 maxlen: 24
37.186.49.0/24 maxlen: 24
37.186.58.0/24 maxlen: 24
37.186.57.0/24 maxlen: 24
37.186.53.0/24 maxlen: 24
37.186.52.0/24 maxlen: 24
37.186.55.0/24 maxlen: 24
37.186.54.0/24 maxlen: 24
37.186.56.0/24 maxlen: 24
37.186.60.0/24 maxlen: 24
37.186.59.0/24 maxlen: 24
37.186.62.0/24 maxlen: 24
37.186.61.0/24 maxlen: 24
37.186.63.0/24 maxlen: 24
185.247.88.0/22 maxlen: 22
103.17.1.0/24 maxlen: 24
103.17.0.0/24 maxlen: 24
103.17.3.0/24 maxlen: 24
103.17.2.0/24 maxlen: 24
103.17.0.0/22 maxlen: 22
103.199.89.0/24 maxlen: 24
103.199.88.0/24 maxlen: 24
103.199.91.0/24 maxlen: 24
103.199.90.0/24 maxlen: 24
80.76.165.0/24 maxlen: 24
80.76.164.0/24 maxlen: 24
80.76.160.0/24 maxlen: 24
80.76.162.0/24 maxlen: 24
80.76.161.0/24 maxlen: 24
80.76.163.0/24 maxlen: 24
80.76.160.0/21 maxlen: 21
80.76.160.0/20 maxlen: 20
80.76.172.0/24 maxlen: 24
80.76.171.0/24 maxlen: 24
80.76.169.0/24 maxlen: 24
80.76.170.0/24 maxlen: 24
80.76.168.0/21 maxlen: 21
80.76.174.0/24 maxlen: 24
80.76.173.0/24 maxlen: 24
80.76.175.0/24 maxlen: 24
103.23.124.0/22 maxlen: 22
103.23.124.0/24 maxlen: 24
103.23.125.0/24 maxlen: 24
103.23.126.0/24 maxlen: 24
103.23.127.0/24 maxlen: 24
103.225.74.0/24 maxlen: 24
103.225.73.0/24 maxlen: 24
103.225.75.0/24 maxlen: 24
103.225.72.0/24 maxlen: 24
103.225.72.0/22 maxlen: 22
212.70.96.0/19 maxlen: 19
212.70.96.0/24 maxlen: 24
212.70.98.0/24 maxlen: 24
212.70.97.0/24 maxlen: 24
212.70.102.0/24 maxlen: 24
212.70.104.0/24 maxlen: 24
212.70.99.0/24 maxlen: 24
212.70.109.0/24 maxlen: 24
212.70.108.0/24 maxlen: 24
212.70.110.0/24 maxlen: 24
212.70.112.0/24 maxlen: 24
212.70.111.0/24 maxlen: 24
212.70.107.0/24 maxlen: 24
212.70.106.0/24 maxlen: 24
212.70.116.0/24 maxlen: 24
212.70.115.0/24 maxlen: 24
212.70.117.0/24 maxlen: 24
212.70.118.0/24 maxlen: 24
212.70.114.0/24 maxlen: 24
212.70.113.0/24 maxlen: 24
212.70.122.0/24 maxlen: 24
212.70.125.0/24 maxlen: 24
212.70.119.0/24 maxlen: 24
212.70.121.0/24 maxlen: 24
212.70.126.0/24 maxlen: 24
212.70.127.0/24 maxlen: 24
2a04:7f80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:75:68:0b:fa:2a:81:42:6a:4a:fd:5a:53:5d:b6:5b:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9308742e7eb66506219d829d86185899a1e34
Validity
Not Before: Nov 14 09:11:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d1e0a1de0482a723c569c0e4098b14daf7c2e831
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:0b:4e:92:5a:d2:f0:6f:70:f0:9c:96:41:ce:
b5:60:33:a2:fe:fc:c5:49:4b:9b:4c:79:a7:30:f4:
ac:8f:ec:c1:f2:46:54:a0:8c:ac:95:f3:4f:02:9b:
55:c0:90:8f:56:be:ee:ae:e8:97:91:b1:35:47:e6:
d7:21:b8:91:83:78:40:66:8a:68:7c:ae:ec:61:b2:
84:2b:04:36:c4:83:dc:b0:fa:6d:e3:05:42:b0:85:
29:52:e6:48:0e:c8:45:49:d3:df:ab:d1:74:9c:3d:
d5:33:ca:02:15:41:b2:e9:b6:a6:99:3e:6a:04:5d:
b4:91:16:d5:0b:f9:fb:95:8d:71:8f:27:d8:c5:de:
93:d8:77:8b:90:d2:78:01:1a:60:fd:f5:94:06:24:
77:22:28:b2:99:ad:3c:e2:d6:a5:ad:cd:a5:b9:0b:
29:ed:8e:2b:4e:3e:3d:76:52:3b:c4:11:04:5b:80:
4c:bc:7a:e7:32:32:0b:1f:ea:08:e2:11:0c:da:db:
b6:23:18:c0:0a:62:04:69:51:59:7b:2b:47:b9:ce:
db:3b:ca:bb:e4:65:36:96:f0:b7:6b:cb:6e:aa:9f:
76:44:1f:93:0b:92:ce:74:cd:04:b0:64:ac:86:6a:
b9:59:76:46:29:1e:b2:26:2d:51:28:2a:88:21:f0:
b1:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:E0:A1:DE:04:82:A7:23:C5:69:C0:E4:09:8B:14:DA:F7:C2:E8:31
X509v3 Authority Key Identifier:
keyid:E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/0eCh3gSCpyPFacDkCYsU2vfC6DE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.48.0/21
37.186.32.0/19
80.76.160.0/20
103.17.0.0/22
103.23.124.0/22
103.199.88.0/22
103.225.72.0/22
185.247.88.0/22
212.70.96.0/19
IPv6:
2a04:7f80::/29
Signature Algorithm: sha256WithRSAEncryption
05:b0:21:ec:fe:55:c4:0d:63:46:25:7f:42:e0:5b:34:98:c2:
4d:05:d3:9a:a2:6c:25:a9:bc:c1:7e:82:c4:8a:c7:22:ce:ba:
6d:09:20:60:ed:28:68:6b:43:11:8f:72:17:77:c9:b8:3f:6e:
cb:be:38:59:37:85:22:d3:90:83:f3:27:9d:c1:80:b7:e1:f0:
09:4f:d6:1c:2b:85:bf:c6:a0:ec:8f:5f:7f:b0:e5:bf:8e:ae:
e1:7d:63:0e:ed:d1:e1:b1:b7:de:cd:ee:b2:1e:13:bd:a8:9a:
e0:3d:11:82:80:5c:ed:35:b5:a2:26:5c:8e:23:9d:58:27:6f:
73:6d:13:17:43:45:8e:84:28:00:65:a9:83:39:77:38:ac:3a:
db:db:04:09:e4:2c:79:98:6d:12:9d:9f:e8:38:1d:19:33:1d:
34:26:74:a1:7c:b4:9b:7e:62:54:23:2c:e0:61:dc:6b:69:35:
e3:88:a3:43:28:0f:9d:66:15:be:7d:25:80:47:65:87:2f:f6:
3f:76:70:71:21:45:99:ab:21:45:f3:a0:c0:28:79:13:c6:f8:
11:95:a6:4b:29:59:45:06:a4:6b:71:d5:ec:10:6e:7d:37:f7:
8e:a7:18:01:cc:cf:4a:e5:42:2f:4b:9c:dd:5a:37:8d:8e:fa:
29:66:19:f5
-----BEGIN CERTIFICATE-----
MIIFPDCCBCSgAwIBAgISAYR1aAv6KoFCakr9WlNdtlvLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0YTkzMDg3NDJlN2ViNjY1MDYyMTlkODI5ZDg2MTg1ODk5
YTFlMzQwHhcNMjIxMTE0MDkxMTAzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMWUwYTFkZTA0ODJhNzIzYzU2OWMwZTQwOThiMTRkYWY3YzJlODMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApgtOklrS8G9w8JyWQc61YDOi/vzF
SUubTHmnMPSsj+zB8kZUoIyslfNPAptVwJCPVr7uruiXkbE1R+bXIbiRg3hAZopo
fK7sYbKEKwQ2xIPcsPpt4wVCsIUpUuZIDshFSdPfq9F0nD3VM8oCFUGy6bammT5q
BF20kRbVC/n7lY1xjyfYxd6T2HeLkNJ4ARpg/fWUBiR3Iiiyma084talrc2luQsp
7Y4rTj49dlI7xBEEW4BMvHrnMjILH+oI4hEM2tu2IxjACmIEaVFZeytHuc7bO8q7
5GU2lvC3a8tuqp92RB+TC5LOdM0EsGSshmq5WXZGKR6yJi1RKCqIIfCxPQIDAQAB
o4ICSDCCAkQwHQYDVR0OBBYEFNHgod4EgqcjxWnA5AmLFNr3wugxMB8GA1UdIwQY
MBaAFOSpMIdC5+tmUGIZ2CnYYYWJmh40MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUtrd2gwTG42MlpRWWhuWUtkaGhoWW1hSGpRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy8xYzlkYmItMDUyYy00ZWVhLWFkZTYt
ZWM1Yjg4ZDAxMzhhLzEvMGVDaDNnU0NweVBGYWNEa0NZc1UydmZDNkRFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy8xYzlkYmItMDUyYy00ZWVhLWFkZTYtZWM1Yjg4ZDAxMzhh
LzEvNUtrd2gwTG42MlpRWWhuWUtkaGhoWW1hSGpRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMF4GCCsGAQUFBwEHAQH/BE8wTTA8BAIAATA2AwQDHwswAwQF
JbogAwQEUEygAwQCZxEAAwQCZxd8AwQCZ8dYAwQCZ+FIAwQCufdYAwQF1EZgMA0E
AgACMAcDBQMqBH+AMA0GCSqGSIb3DQEBCwUAA4IBAQAFsCHs/lXEDWNGJX9C4Fs0
mMJNBdOaomwlqbzBfoLEiscizrptCSBg7Shoa0MRj3IXd8m4P27LvjhZN4Ui05CD
8yedwYC34fAJT9YcK4W/xqDsj19/sOW/jq7hfWMO7dHhsbfeze6yHhO9qJrgPRGC
gFztNbWiJlyOI51YJ29zbRMXQ0WOhCgAZamDOXc4rDrb2wQJ5Cx5mG0SnZ/oOB0Z
Mx00JnShfLSbfmJUIyzgYdxraTXjiKNDKA+dZhW+fSWAR2WHL/Y/dnBxIUWZqyFF
86DAKHkTxvgRlaZLKVlFBqRrcdXsEG59N/eOpxgBzM9K5UIvS5zdWjeNjvopZhn1
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:16 2023 by rpki-client on console.sobornost.net