Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/kAWK3JQkmIEwWe7IYM2Uh5mhPJ4.roa
File: kAWK3JQkmIEwWe7IYM2Uh5mhPJ4.roa (raw, json)
Hash identifier: akMd96bfX2qiuh+ow3Ta25zXgA3WU7k4fgzLRugUf3Y=
Subject key identifier: 90:05:8A:DC:94:24:98:81:30:59:EE:C8:60:CD:94:87:99:A1:3C:9E
Certificate issuer: /CN=c2d2a234e224bf87996f2f0df559ead882f9e651
Certificate serial: 01831767D264AB62443038477EDB1B395EF0
Authority key identifier: C2:D2:A2:34:E2:24:BF:87:99:6F:2F:0D:F5:59:EA:D8:82:F9:E6:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtKiNOIkv4eZby8N9Vnq2IL55lE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/kAWK3JQkmIEwWe7IYM2Uh5mhPJ4.roa
Signing time: Wed 07 Sep 2022 10:03:43 +0000
ROA not before: Wed 07 Sep 2022 10:03:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50926
IP address blocks: 185.70.92.0/22 maxlen: 22
188.164.192.0/21 maxlen: 21
188.164.192.0/24 maxlen: 24
185.23.68.0/22 maxlen: 22
188.164.197.0/24 maxlen: 24
188.164.199.0/24 maxlen: 24
94.127.186.0/24 maxlen: 24
188.164.198.0/24 maxlen: 24
94.127.185.0/24 maxlen: 24
94.127.184.0/24 maxlen: 24
188.164.196.0/24 maxlen: 24
188.164.195.0/24 maxlen: 24
188.164.194.0/24 maxlen: 24
188.164.193.0/24 maxlen: 24
94.127.191.0/24 maxlen: 24
94.127.190.0/24 maxlen: 24
94.127.188.0/24 maxlen: 24
94.127.187.0/24 maxlen: 24
149.62.172.0/22 maxlen: 22
149.62.168.0/21 maxlen: 21
149.62.168.0/22 maxlen: 22
195.5.116.0/23 maxlen: 23
91.200.140.0/22 maxlen: 22
188.95.112.0/21 maxlen: 21
185.176.9.0/24 maxlen: 24
185.176.8.0/24 maxlen: 24
185.176.11.0/24 maxlen: 24
185.176.10.0/24 maxlen: 24
84.246.213.0/24 maxlen: 24
84.246.212.0/24 maxlen: 24
84.246.211.0/24 maxlen: 24
84.246.210.0/24 maxlen: 24
84.246.209.0/24 maxlen: 24
84.246.208.0/21 maxlen: 21
84.246.208.0/24 maxlen: 24
109.68.84.0/24 maxlen: 24
109.68.82.0/24 maxlen: 24
84.246.215.0/24 maxlen: 24
109.68.80.0/24 maxlen: 24
109.68.80.0/21 maxlen: 21
84.246.214.0/24 maxlen: 24
91.213.46.0/24 maxlen: 24
31.24.152.0/21 maxlen: 21
31.24.152.0/24 maxlen: 24
31.24.159.0/24 maxlen: 24
31.24.158.0/24 maxlen: 24
31.24.157.0/24 maxlen: 24
31.24.156.0/24 maxlen: 24
31.24.155.0/24 maxlen: 24
31.24.154.0/24 maxlen: 24
91.142.208.0/20 maxlen: 20
185.222.156.0/22 maxlen: 22
5.175.42.0/24 maxlen: 24
5.175.41.0/24 maxlen: 24
5.175.40.0/24 maxlen: 24
5.175.40.0/21 maxlen: 21
5.175.44.0/24 maxlen: 24
5.175.43.0/24 maxlen: 24
5.175.47.0/24 maxlen: 24
5.175.46.0/24 maxlen: 24
31.24.43.0/24 maxlen: 24
31.24.40.0/24 maxlen: 24
31.24.40.0/21 maxlen: 21
31.24.46.0/24 maxlen: 24
31.24.45.0/24 maxlen: 24
2a00:5ac0:100::/40 maxlen: 40
2a00:5ac0::/44 maxlen: 44
2a01:4b80::/32 maxlen: 32
2a0a:680::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:17:67:d2:64:ab:62:44:30:38:47:7e:db:1b:39:5e:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d2a234e224bf87996f2f0df559ead882f9e651
Validity
Not Before: Sep 7 10:03:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=90058adc942498813059eec860cd948799a13c9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:37:50:56:04:db:05:59:0d:f1:5d:26:ba:a0:
70:6e:31:d1:37:a7:f8:53:16:79:a3:f2:b8:17:20:
ab:67:24:03:51:fd:fe:08:35:06:28:2b:cd:33:42:
7f:57:a5:07:f7:d7:14:f8:63:03:39:3c:1d:9f:ed:
6b:2b:3e:3d:13:4d:35:e6:7e:89:39:70:36:61:84:
2e:a0:7d:34:8c:b4:cc:bb:92:21:f8:b3:8c:c2:8a:
0f:7d:d6:9a:9b:25:97:7d:75:f8:e0:91:c3:b3:fd:
df:0a:75:ee:21:54:fb:dc:70:05:00:fb:0e:2b:84:
af:8e:e9:8d:40:95:11:02:76:39:5a:f6:3d:9f:e7:
e0:84:8d:7a:59:7a:85:b8:c5:4d:a9:f6:b6:a0:7c:
b1:8b:4d:95:45:19:bb:80:de:e5:e8:50:a2:03:fb:
6c:4a:94:ff:27:f5:41:58:d6:22:3b:e7:c6:6f:28:
9f:6f:99:e8:bc:3b:68:6f:bb:7f:5d:63:da:23:12:
50:49:78:48:76:24:41:3b:23:79:f5:43:3a:83:24:
99:82:37:1e:9b:eb:a4:9d:28:de:8d:8f:ad:3f:c7:
89:c8:55:30:f5:b5:30:8e:89:2b:ec:8c:99:99:11:
b4:1d:75:83:b4:53:a9:1a:a3:02:d4:10:78:aa:f3:
da:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:05:8A:DC:94:24:98:81:30:59:EE:C8:60:CD:94:87:99:A1:3C:9E
X509v3 Authority Key Identifier:
keyid:C2:D2:A2:34:E2:24:BF:87:99:6F:2F:0D:F5:59:EA:D8:82:F9:E6:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtKiNOIkv4eZby8N9Vnq2IL55lE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/kAWK3JQkmIEwWe7IYM2Uh5mhPJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/wtKiNOIkv4eZby8N9Vnq2IL55lE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.175.40.0/21
31.24.40.0/21
31.24.152.0/21
84.246.208.0/21
91.142.208.0/20
91.200.140.0/22
91.213.46.0/24
94.127.184.0-94.127.188.255
94.127.190.0/23
109.68.80.0/21
149.62.168.0/21
185.23.68.0/22
185.70.92.0/22
185.176.8.0/22
185.222.156.0/22
188.95.112.0/21
188.164.192.0/21
195.5.116.0/23
IPv6:
2a00:5ac0::/44
2a00:5ac0:100::/40
2a01:4b80::/32
2a0a:680::/29
Signature Algorithm: sha256WithRSAEncryption
42:8a:65:77:fb:60:e4:39:1c:ed:ed:12:02:38:eb:4b:2e:52:
8a:d2:f8:d8:9b:47:14:aa:02:ce:4b:c6:d9:e9:8f:22:c2:be:
e2:94:cb:f0:31:a8:80:b8:37:47:2c:70:8c:3d:00:17:c9:b8:
89:3e:ee:d5:fe:71:7a:af:59:4a:56:ae:bd:c5:0a:11:aa:f7:
23:d1:88:2e:01:f7:5c:86:fd:6d:8c:19:b1:a7:80:86:a0:9c:
db:5d:7a:97:cd:21:86:70:fd:88:7b:90:b3:07:49:ce:80:38:
4b:91:6b:c1:1a:a7:00:36:01:a7:64:3d:a3:f5:44:0d:9d:9d:
f0:bd:5d:c8:52:b8:7e:f0:03:33:39:a3:1d:7f:76:66:bf:28:
cf:a6:32:05:d3:1c:4a:22:3a:69:1c:88:ac:28:84:ca:8a:ac:
41:af:0f:92:85:b1:4f:d4:c7:56:b3:3a:8a:8b:1d:0d:b6:e8:
ea:c0:03:b3:f9:56:88:55:a8:b0:d3:68:3e:69:c4:69:98:0b:
c7:25:57:62:98:2b:fb:02:31:a8:0b:ba:e6:41:a7:1a:72:d5:
99:e8:fd:38:e8:ac:e3:02:eb:06:e6:9c:80:12:e9:d1:b4:0f:
a3:7c:ed:2e:0f:d0:1d:96:6c:c0:a8:0a:52:77:c8:b9:93:3f:
52:1d:e9:eb
-----BEGIN CERTIFICATE-----
MIIFlTCCBH2gAwIBAgISAYMXZ9Jkq2JEMDhHftsbOV7wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyZDJhMjM0ZTIyNGJmODc5OTZmMmYwZGY1NTllYWQ4ODJm
OWU2NTEwHhcNMjIwOTA3MTAwMzQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MDA1OGFkYzk0MjQ5ODgxMzA1OWVlYzg2MGNkOTQ4Nzk5YTEzYzllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkjdQVgTbBVkN8V0muqBwbjHRN6f4
UxZ5o/K4FyCrZyQDUf3+CDUGKCvNM0J/V6UH99cU+GMDOTwdn+1rKz49E0015n6J
OXA2YYQuoH00jLTMu5Ih+LOMwooPfdaamyWXfXX44JHDs/3fCnXuIVT73HAFAPsO
K4SvjumNQJURAnY5WvY9n+fghI16WXqFuMVNqfa2oHyxi02VRRm7gN7l6FCiA/ts
SpT/J/VBWNYiO+fGbyifb5novDtob7t/XWPaIxJQSXhIdiRBOyN59UM6gySZgjce
m+uknSjejY+tP8eJyFUw9bUwjokr7IyZmRG0HXWDtFOpGqMC1BB4qvPa1wIDAQAB
o4ICoTCCAp0wHQYDVR0OBBYEFJAFityUJJiBMFnuyGDNlIeZoTyeMB8GA1UdIwQY
MBaAFMLSojTiJL+HmW8vDfVZ6tiC+eZRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd3RLaU5PSWt2NGVaYnk4TjlWbnEySUw1NWxFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS9kMWVlNGItZTg4YS00ZTQxLWE2MTYt
NGIyNDhkYTZjOTZjLzEva0FXSzNKUWttSUV3V2U3SVlNMlVoNW1oUEo0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS9kMWVlNGItZTg4YS00ZTQxLWE2MTYtNGIyNDhkYTZjOTZj
LzEvd3RLaU5PSWt2NGVaYnk4TjlWbnEySUw1NWxFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG2BggrBgEFBQcBBwEB/wSBpjCBozB6BAIAATB0AwQDBa8o
AwQDHxgoAwQDHxiYAwQDVPbQAwQEW47QAwQCW8iMAwQAW9UuMAwDBANef7gDBABe
f7wDBAFef74DBANtRFADBAOVPqgDBAK5F0QDBAK5RlwDBAK5sAgDBAK53pwDBAO8
X3ADBAO8pMADBAHDBXQwJQQCAAIwHwMHBCoAWsAAAAMGACoAWsABAwUAKgFLgAMF
AyoKBoAwDQYJKoZIhvcNAQELBQADggEBAEKKZXf7YOQ5HO3tEgI460suUorS+Nib
RxSqAs5LxtnpjyLCvuKUy/AxqIC4N0cscIw9ABfJuIk+7tX+cXqvWUpWrr3FChGq
9yPRiC4B91yG/W2MGbGngIagnNtdepfNIYZw/Yh7kLMHSc6AOEuRa8EapwA2Aadk
PaP1RA2dnfC9XchSuH7wAzM5ox1/dma/KM+mMgXTHEoiOmkciKwohMqKrEGvD5KF
sU/Ux1azOoqLHQ226OrAA7P5VohVqLDTaD5pxGmYC8clV2KYK/sCMagLuuZBpxpy
1Zno/TjorOMC6wbmnIAS6dG0D6N87S4P0B2WbMCoClJ3yLmTP1Id6es=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:04 2024 by rpki-client on console-fra.rpki-client.org