Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/Bk8Tmodlqy0-iTTZ2W26U7Yz-YY.roa
File: Bk8Tmodlqy0-iTTZ2W26U7Yz-YY.roa (raw, json)
Hash identifier: 4hamAMILndC4TCjiZOAWIbQ/R+C4Ad4jK7BrVrV7UJs=
Subject key identifier: 06:4F:13:9A:87:65:AB:2D:3E:89:34:D9:D9:6D:BA:53:B6:33:F9:86
Certificate issuer: /CN=c90b394ac63337607fa1bb0eaba11453a831f398
Certificate serial: 0CD559
Authority key identifier: C9:0B:39:4A:C6:33:37:60:7F:A1:BB:0E:AB:A1:14:53:A8:31:F3:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yQs5SsYzN2B_obsOq6EUU6gx85g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/Bk8Tmodlqy0-iTTZ2W26U7Yz-YY.roa
Signing time: Thu 26 May 2022 03:44:13 +0000
ROA not before: Thu 26 May 2022 03:44:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50223
IP address blocks: 109.71.226.0/24 maxlen: 24
109.71.224.0/24 maxlen: 24
109.71.229.0/24 maxlen: 24
109.71.231.0/24 maxlen: 24
109.71.230.0/24 maxlen: 24
46.251.206.0/24 maxlen: 24
46.251.205.0/24 maxlen: 24
46.251.204.0/24 maxlen: 24
46.251.202.0/24 maxlen: 24
46.251.201.0/24 maxlen: 24
46.251.200.0/24 maxlen: 24
46.251.213.0/24 maxlen: 24
46.251.212.0/24 maxlen: 24
46.251.211.0/24 maxlen: 24
46.251.210.0/24 maxlen: 24
46.251.209.0/24 maxlen: 24
46.251.208.0/24 maxlen: 24
46.251.207.0/24 maxlen: 24
46.251.218.0/24 maxlen: 24
46.251.217.0/24 maxlen: 24
46.251.216.0/24 maxlen: 24
46.251.215.0/24 maxlen: 24
46.251.214.0/24 maxlen: 24
46.251.221.0/24 maxlen: 24
185.48.136.0/24 maxlen: 24
185.48.139.0/24 maxlen: 24
46.251.192.0/24 maxlen: 24
46.251.199.0/24 maxlen: 24
46.251.198.0/24 maxlen: 24
46.251.197.0/24 maxlen: 24
46.251.196.0/24 maxlen: 24
46.251.195.0/24 maxlen: 24
46.251.194.0/24 maxlen: 24
46.251.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 841049 (0xcd559)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c90b394ac63337607fa1bb0eaba11453a831f398
Validity
Not Before: May 26 03:44:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=064f139a8765ab2d3e8934d9d96dba53b633f986
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:c5:e6:80:14:3d:ee:c2:f0:b7:af:76:56:1f:
1c:12:30:3e:68:03:02:e9:f2:dd:ac:91:00:e4:3e:
9e:db:38:e9:31:4e:29:c6:8b:41:f2:7f:65:44:2c:
fc:75:f1:6e:24:a2:bf:53:70:04:d3:d3:ee:74:ca:
ae:15:ee:b9:a2:5c:b9:07:60:03:08:49:fe:f8:19:
2f:38:31:73:05:90:d3:f4:6b:35:85:ca:dc:7d:71:
6b:c0:20:2c:b6:3a:d2:75:38:01:25:68:4c:40:80:
9f:3e:f1:7c:13:31:40:43:fb:3c:e7:21:ba:e7:f3:
6f:04:f4:c0:11:85:5b:ab:21:34:e8:60:21:9a:f4:
31:d1:72:ba:66:b9:3c:b6:f7:6a:45:34:0c:ac:97:
65:47:40:1f:ac:34:1c:34:66:55:e6:ad:9d:0d:18:
f5:d4:b6:06:e3:27:7f:23:25:20:bb:37:0f:d3:c0:
f2:94:d4:4d:16:8b:7c:8e:63:fb:47:0a:fd:ed:c7:
14:a1:af:77:c2:09:00:95:8f:c0:c0:6c:11:ea:a7:
5a:12:77:d6:a1:ae:1d:3b:0d:e0:85:b8:38:31:0d:
eb:ce:95:ff:82:61:f9:e2:0a:8c:e2:7e:e9:fe:60:
c1:c3:72:53:df:3b:36:88:c8:38:87:d0:5e:fd:72:
3a:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:4F:13:9A:87:65:AB:2D:3E:89:34:D9:D9:6D:BA:53:B6:33:F9:86
X509v3 Authority Key Identifier:
keyid:C9:0B:39:4A:C6:33:37:60:7F:A1:BB:0E:AB:A1:14:53:A8:31:F3:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yQs5SsYzN2B_obsOq6EUU6gx85g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/Bk8Tmodlqy0-iTTZ2W26U7Yz-YY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.251.192.0-46.251.202.255
46.251.204.0-46.251.218.255
46.251.221.0/24
109.71.224.0/24
109.71.226.0/24
109.71.229.0-109.71.231.255
185.48.136.0/24
185.48.139.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:78:64:fe:3e:b0:30:30:cd:15:64:c3:52:a0:a4:ed:df:e0:
1e:e5:e5:83:d6:da:89:35:14:0a:ad:42:1c:0f:a8:d8:4f:13:
38:99:73:c8:57:a2:13:20:5e:97:73:4a:65:a9:81:ab:df:15:
e2:39:dd:3a:ba:40:aa:db:e2:48:0d:55:ec:20:65:94:b1:e9:
79:73:85:9c:11:bc:96:7f:eb:2c:9f:84:cd:4d:e4:87:85:f4:
cd:8c:9c:60:e3:12:dd:a5:da:6d:ac:6a:c9:df:52:c8:cc:23:
07:2c:38:81:04:14:46:0b:07:35:5b:30:68:cf:c2:2e:4c:c3:
b5:c9:6e:08:34:a7:d6:07:1c:b1:86:0f:0d:d7:00:b3:e4:76:
05:d2:51:31:4c:ff:64:30:7b:86:ad:d8:e1:d1:bb:2e:ed:0f:
86:9b:68:c4:ba:56:66:82:a4:ae:96:47:47:c4:bd:38:07:31:
52:7d:b6:10:20:5c:d9:cd:87:e7:a9:a9:9f:d4:5b:93:94:c7:
b6:dc:3b:74:f0:e7:03:fc:76:99:2a:4e:21:6b:ed:87:c9:39:
36:24:90:01:d5:92:28:57:8e:60:ef:d8:56:d3:7d:a9:89:a4:
72:61:35:00:2b:15:66:28:34:f5:c9:36:f6:91:38:8b:d5:19:
c1:f0:3d:16
-----BEGIN CERTIFICATE-----
MIIFMDCCBBigAwIBAgIDDNVZMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGM5
MGIzOTRhYzYzMzM3NjA3ZmExYmIwZWFiYTExNDUzYTgzMWYzOTgwHhcNMjIwNTI2
MDM0NDEzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygwNjRmMTM5YTg3NjVh
YjJkM2U4OTM0ZDlkOTZkYmE1M2I2MzNmOTg2MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA38XmgBQ97sLwt692Vh8cEjA+aAMC6fLdrJEA5D6e2zjpMU4p
xotB8n9lRCz8dfFuJKK/U3AE09PudMquFe65oly5B2ADCEn++BkvODFzBZDT9Gs1
hcrcfXFrwCAstjrSdTgBJWhMQICfPvF8EzFAQ/s85yG65/NvBPTAEYVbqyE06GAh
mvQx0XK6Zrk8tvdqRTQMrJdlR0AfrDQcNGZV5q2dDRj11LYG4yd/IyUguzcP08Dy
lNRNFot8jmP7Rwr97ccUoa93wgkAlY/AwGwR6qdaEnfWoa4dOw3ghbg4MQ3rzpX/
gmH54gqM4n7p/mDBw3JT3zs2iMg4h9Be/XI6tQIDAQABo4ICSzCCAkcwHQYDVR0O
BBYEFAZPE5qHZastPok02dltulO2M/mGMB8GA1UdIwQYMBaAFMkLOUrGMzdgf6G7
DquhFFOoMfOYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
eVFzNVNzWXpOMkJfb2JzT3E2RVVVNmd4ODVnLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC82Ni83ZDc4NGItNjYzOS00YmMwLTlhYjktMWEyMDBlNDFiMDA2LzEv
Qms4VG1vZGxxeTAtaVRUWjJXMjZVN1l6LVlZLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni83
ZDc4NGItNjYzOS00YmMwLTlhYjktMWEyMDBlNDFiMDA2LzEveVFzNVNzWXpOMkJf
b2JzT3E2RVVVNmd4ODVnLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGEG
CCsGAQUFBwEHAQH/BFIwUDBOBAIAATBIMAwDBAYu+8ADBAAu+8owDAMEAi77zAME
AC772gMEAC773QMEAG1H4AMEAG1H4jAMAwQAbUflAwQDbUfgAwQAuTCIAwQAuTCL
MA0GCSqGSIb3DQEBCwUAA4IBAQCxeGT+PrAwMM0VZMNSoKTt3+Ae5eWD1tqJNRQK
rUIcD6jYTxM4mXPIV6ITIF6Xc0plqYGr3xXiOd06ukCq2+JIDVXsIGWUsel5c4Wc
EbyWf+ssn4TNTeSHhfTNjJxg4xLdpdptrGrJ31LIzCMHLDiBBBRGCwc1WzBoz8Iu
TMO1yW4INKfWBxyxhg8N1wCz5HYF0lExTP9kMHuGrdjh0bsu7Q+Gm2jEulZmgqSu
lkdHxL04BzFSfbYQIFzZzYfnqamf1FuTlMe23Dt08OcD/HaZKk4ha+2HyTk2JJAB
1ZIoV45g79hW032piaRyYTUAKxVmKDT1yTb2kTiL1RnB8D0W
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:16 2024 by rpki-client on console-ams.rpki-client.org