Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/8fbc7e-1f47-487c-8292-e5a77f7a7aa2/1/mDfnSHsIBsmKKDiD_QDmpyXcTjo.roa
File: mDfnSHsIBsmKKDiD_QDmpyXcTjo.roa (raw, json)
Hash identifier: DNUm+lVVmH7803eyzBhbzpJrTAF7W8Irvx7vqcYfIFg=
Subject key identifier: 98:37:E7:48:7B:08:06:C9:8A:28:38:83:FD:00:E6:A7:25:DC:4E:3A
Certificate issuer: /CN=b09fff8e8ffd8f8e7d9a7b66d1cc73dc39281ef6
Certificate serial: 0182F851BCE1AE6C42A6090356E3DE1E59CD
Authority key identifier: B0:9F:FF:8E:8F:FD:8F:8E:7D:9A:7B:66:D1:CC:73:DC:39:28:1E:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sJ__jo_9j459mntm0cxz3DkoHvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/8fbc7e-1f47-487c-8292-e5a77f7a7aa2/1/mDfnSHsIBsmKKDiD_QDmpyXcTjo.roa
Signing time: Thu 01 Sep 2022 09:11:22 +0000
ROA not before: Thu 01 Sep 2022 09:11:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200590
IP address blocks: 188.94.152.0/23 maxlen: 24
185.182.216.0/23 maxlen: 24
77.240.44.0/22 maxlen: 24
87.255.200.0/23 maxlen: 24
89.223.2.0/24 maxlen: 24
194.76.124.0/22 maxlen: 24
89.223.0.0/24 maxlen: 24
79.143.20.0/22 maxlen: 24
5.188.152.0/22 maxlen: 24
178.238.78.0/23 maxlen: 24
84.252.156.0/22 maxlen: 24
5.188.64.0/22 maxlen: 24
94.126.201.0/24 maxlen: 24
185.97.112.0/22 maxlen: 24
87.255.196.0/22 maxlen: 24
87.255.194.0/23 maxlen: 24
93.190.240.0/22 maxlen: 24
2a06:580::/29 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f8:51:bc:e1:ae:6c:42:a6:09:03:56:e3:de:1e:59:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b09fff8e8ffd8f8e7d9a7b66d1cc73dc39281ef6
Validity
Not Before: Sep 1 09:11:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9837e7487b0806c98a283883fd00e6a725dc4e3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:8c:24:04:c1:31:88:8d:81:a7:11:de:ed:9b:
a3:17:b3:3b:23:3e:18:2d:26:3d:bd:ad:c0:2f:d2:
d9:e8:93:8f:96:2b:e8:08:1b:f6:fb:f2:27:78:ff:
be:f7:64:af:80:8b:34:7d:ab:ad:77:5d:28:6d:61:
13:a7:d3:78:29:6d:d6:0e:7b:3f:2c:1a:0a:1f:dd:
d8:cb:dd:ca:15:07:19:f8:eb:1c:5b:79:d8:29:0b:
ed:92:d5:84:ae:bf:3e:2f:51:c8:85:c4:b1:e9:71:
52:52:d8:85:bc:cc:b5:87:9a:fa:7b:ec:b1:b7:ed:
ab:ad:52:27:da:02:a6:8b:59:d0:1f:8b:9b:5b:ad:
8b:3f:d6:f1:e7:7f:90:e9:e4:ba:bc:8f:3d:5d:a9:
1e:21:48:0d:d9:4b:1f:2b:02:5c:e6:f5:df:ba:19:
1a:c6:b0:42:a4:de:53:52:57:1c:79:89:82:7b:5b:
95:37:f7:cc:5d:3f:f9:10:63:70:f2:1b:7c:43:a6:
95:6e:2b:00:5b:6c:d0:59:2f:0c:20:ae:de:c8:7c:
d9:00:e4:57:22:b7:f7:60:75:b7:39:07:b4:d4:68:
2a:b8:0d:b5:6b:58:17:1d:ae:8b:d1:3d:07:a2:f8:
b1:32:74:d9:f4:c0:02:77:4d:f8:40:d9:72:ea:ba:
d6:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:37:E7:48:7B:08:06:C9:8A:28:38:83:FD:00:E6:A7:25:DC:4E:3A
X509v3 Authority Key Identifier:
keyid:B0:9F:FF:8E:8F:FD:8F:8E:7D:9A:7B:66:D1:CC:73:DC:39:28:1E:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sJ__jo_9j459mntm0cxz3DkoHvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/8fbc7e-1f47-487c-8292-e5a77f7a7aa2/1/mDfnSHsIBsmKKDiD_QDmpyXcTjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/8fbc7e-1f47-487c-8292-e5a77f7a7aa2/1/sJ__jo_9j459mntm0cxz3DkoHvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.188.64.0/22
5.188.152.0/22
77.240.44.0/22
79.143.20.0/22
84.252.156.0/22
87.255.194.0-87.255.201.255
89.223.0.0/24
89.223.2.0/24
93.190.240.0/22
94.126.201.0/24
178.238.78.0/23
185.97.112.0/22
185.182.216.0/23
188.94.152.0/23
194.76.124.0/22
IPv6:
2a06:580::/29
Signature Algorithm: sha256WithRSAEncryption
13:14:24:cd:9d:46:6f:4e:bb:7c:d7:92:bb:45:f4:11:68:12:
15:6e:f2:3e:85:03:a3:91:fb:af:2e:69:cc:5a:3d:6b:9d:1a:
e2:c9:54:a7:41:9a:eb:f7:ca:ce:20:6f:fe:2e:53:f9:97:e0:
ca:d9:eb:ec:8e:81:1c:83:3a:6e:11:43:bc:d1:6d:fd:35:92:
4d:f7:6c:47:f2:5d:f9:13:22:82:b8:73:4f:9c:d0:55:6e:80:
6b:13:92:dc:58:88:e5:1b:3d:af:8c:3a:4d:77:63:1e:3a:4c:
73:3d:61:7e:f8:fa:f6:06:18:aa:d2:02:89:e3:7d:be:0c:5f:
17:fe:10:63:34:cd:29:1d:0d:7d:f7:2d:91:34:dd:64:3e:03:
2c:99:02:bb:03:23:de:0c:85:65:dc:d0:d6:69:bf:04:07:3d:
66:35:08:35:22:18:b3:2a:96:ae:3e:13:4a:52:9e:4a:99:b8:
45:8d:74:33:93:29:8f:8e:91:57:41:5a:90:a7:5d:f9:1d:3f:
ee:1d:52:41:2b:5d:8b:2e:a8:b6:33:d8:85:d5:c5:13:32:12:
82:ea:37:c7:34:1d:a4:f6:d6:6e:6f:45:65:0e:3d:70:bf:2e:
db:89:f8:9e:b4:07:3d:48:c7:d4:2a:ef:47:92:90:6f:97:a2:
b2:7b:d0:4c
-----BEGIN CERTIFICATE-----
MIIFaTCCBFGgAwIBAgISAYL4UbzhrmxCpgkDVuPeHlnNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwOWZmZjhlOGZmZDhmOGU3ZDlhN2I2NmQxY2M3M2RjMzky
ODFlZjYwHhcNMjIwOTAxMDkxMTIyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ODM3ZTc0ODdiMDgwNmM5OGEyODM4ODNmZDAwZTZhNzI1ZGM0ZTNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiowkBMExiI2BpxHe7ZujF7M7Iz4Y
LSY9va3AL9LZ6JOPlivoCBv2+/IneP++92SvgIs0fautd10obWETp9N4KW3WDns/
LBoKH93Yy93KFQcZ+OscW3nYKQvtktWErr8+L1HIhcSx6XFSUtiFvMy1h5r6e+yx
t+2rrVIn2gKmi1nQH4ubW62LP9bx53+Q6eS6vI89XakeIUgN2UsfKwJc5vXfuhka
xrBCpN5TUlcceYmCe1uVN/fMXT/5EGNw8ht8Q6aVbisAW2zQWS8MIK7eyHzZAORX
Irf3YHW3OQe01GgquA21a1gXHa6L0T0HovixMnTZ9MACd034QNly6rrWIwIDAQAB
o4ICdTCCAnEwHQYDVR0OBBYEFJg350h7CAbJiig4g/0A5qcl3E46MB8GA1UdIwQY
MBaAFLCf/46P/Y+OfZp7ZtHMc9w5KB72MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0pfX2pvXzlqNDU5bW50bTBjeHozRGtvSHZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy84ZmJjN2UtMWY0Ny00ODdjLTgyOTIt
ZTVhNzdmN2E3YWEyLzEvbURmblNIc0lCc21LS0RpRF9RRG1weVhjVGpvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy84ZmJjN2UtMWY0Ny00ODdjLTgyOTItZTVhNzdmN2E3YWEy
LzEvc0pfX2pvXzlqNDU5bW50bTBjeHozRGtvSHZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGKBggrBgEFBQcBBwEB/wR7MHkwaAQCAAEwYgMEAgW8QAME
AgW8mAMEAk3wLAMEAk+PFAMEAlT8nDAMAwQBV//CAwQBV//IAwQAWd8AAwQAWd8C
AwQCXb7wAwQAXn7JAwQBsu5OAwQCuWFwAwQBubbYAwQBvF6YAwQCwkx8MA0EAgAC
MAcDBQMqBgWAMA0GCSqGSIb3DQEBCwUAA4IBAQATFCTNnUZvTrt815K7RfQRaBIV
bvI+hQOjkfuvLmnMWj1rnRriyVSnQZrr98rOIG/+LlP5l+DK2evsjoEcgzpuEUO8
0W39NZJN92xH8l35EyKCuHNPnNBVboBrE5LcWIjlGz2vjDpNd2MeOkxzPWF++Pr2
Bhiq0gKJ432+DF8X/hBjNM0pHQ199y2RNN1kPgMsmQK7AyPeDIVl3NDWab8EBz1m
NQg1IhizKpauPhNKUp5KmbhFjXQzkymPjpFXQVqQp135HT/uHVJBK12LLqi2M9iF
1cUTMhKC6jfHNB2k9tZub0VlDj1wvy7bifietAc9SMfUKu9HkpBvl6Kye9BM
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:25 2024 by rpki-client on console-ams.rpki-client.org