Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/8ThFSHKuSL5eUb-G8ESPsLJOKiM.roa
File: 8ThFSHKuSL5eUb-G8ESPsLJOKiM.roa (raw, json)
Hash identifier: e7kJwnFmkxHnYAEZXIJysO0xd9KG46ZkU4pPFHxF6Pg=
Subject key identifier: F1:38:45:48:72:AE:48:BE:5E:51:BF:86:F0:44:8F:B0:B2:4E:2A:23
Certificate issuer: /CN=b3c51b0c063cfc16943fc9a47e2c805990f6eaae
Certificate serial: 0EED7C4E
Authority key identifier: B3:C5:1B:0C:06:3C:FC:16:94:3F:C9:A4:7E:2C:80:59:90:F6:EA:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s8UbDAY8_BaUP8mkfiyAWZD26q4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/8ThFSHKuSL5eUb-G8ESPsLJOKiM.roa
Signing time: Sat 01 Jan 2022 15:04:40 +0000
ROA not before: Sat 01 Jan 2022 15:04:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199081
IP address blocks: 45.66.187.0/24 maxlen: 24
185.70.78.0/24 maxlen: 24
185.70.78.0/23 maxlen: 23
185.70.77.0/24 maxlen: 24
185.70.76.0/24 maxlen: 24
185.70.76.0/22 maxlen: 22
45.66.185.0/24 maxlen: 24
45.66.186.0/24 maxlen: 24
185.205.96.0/24 maxlen: 24
185.205.96.0/22 maxlen: 22
185.205.97.0/24 maxlen: 24
185.205.98.0/24 maxlen: 24
185.205.99.0/24 maxlen: 24
185.70.79.0/24 maxlen: 24
185.168.38.0/24 maxlen: 24
185.168.36.0/22 maxlen: 22
185.168.38.0/23 maxlen: 23
185.168.39.0/24 maxlen: 24
109.68.144.0/21 maxlen: 21
109.68.144.0/24 maxlen: 24
109.68.145.0/24 maxlen: 24
109.68.146.0/24 maxlen: 24
109.68.147.0/24 maxlen: 24
109.68.151.0/24 maxlen: 24
109.68.149.0/24 maxlen: 24
109.68.150.0/24 maxlen: 24
109.68.148.0/24 maxlen: 24
91.193.62.0/24 maxlen: 24
91.193.63.0/24 maxlen: 24
91.193.60.0/22 maxlen: 22
91.193.60.0/24 maxlen: 24
91.193.61.0/24 maxlen: 24
5.172.192.0/20 maxlen: 20
5.172.192.0/24 maxlen: 24
5.172.192.0/22 maxlen: 22
5.172.198.0/24 maxlen: 24
5.172.199.0/24 maxlen: 24
5.172.196.0/22 maxlen: 22
5.172.196.0/24 maxlen: 24
5.172.197.0/24 maxlen: 24
5.172.195.0/24 maxlen: 24
5.172.193.0/24 maxlen: 24
5.172.194.0/24 maxlen: 24
5.172.204.0/24 maxlen: 24
5.172.205.0/24 maxlen: 24
5.172.204.0/22 maxlen: 22
5.172.206.0/24 maxlen: 24
5.172.203.0/24 maxlen: 24
5.172.202.0/24 maxlen: 24
5.172.200.0/22 maxlen: 22
5.172.200.0/24 maxlen: 24
5.172.201.0/24 maxlen: 24
178.21.175.0/24 maxlen: 24
178.21.173.0/24 maxlen: 24
178.21.174.0/24 maxlen: 24
178.21.172.0/24 maxlen: 24
178.21.172.0/22 maxlen: 22
178.21.170.0/24 maxlen: 24
178.21.171.0/24 maxlen: 24
178.21.168.0/24 maxlen: 24
178.21.169.0/24 maxlen: 24
178.21.168.0/22 maxlen: 22
178.21.168.0/21 maxlen: 21
2a02:4fc0:4000::/48 maxlen: 48
2a02:4fc0:4001::/48 maxlen: 48
2a02:4fc0:4100::/40 maxlen: 40
2a02:4fc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 250444878 (0xeed7c4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3c51b0c063cfc16943fc9a47e2c805990f6eaae
Validity
Not Before: Jan 1 15:04:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f138454872ae48be5e51bf86f0448fb0b24e2a23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f4:4d:bb:10:e7:64:27:72:25:32:b1:f3:fd:
32:6f:d4:5a:30:26:df:98:cd:54:b1:08:9b:cd:47:
50:e8:f4:96:fb:fc:c6:92:a3:4e:f1:f2:86:d4:cc:
ea:fc:9f:44:1b:62:fc:89:3c:3b:f5:a5:6e:4e:58:
12:fb:7a:a8:d9:4f:ce:51:09:3e:46:89:4c:37:81:
07:58:e6:ed:44:d9:f0:0c:62:e8:08:ac:68:37:53:
99:c6:a7:6a:22:24:1a:27:7a:fc:b1:35:23:91:68:
8e:3f:d9:a3:0c:de:5c:15:aa:2f:df:95:04:3d:e1:
ec:4d:37:ba:9c:41:f7:05:7c:42:9a:4a:61:09:f3:
75:97:2f:04:56:f1:1d:b5:31:3e:50:4b:ba:e8:55:
f6:53:e0:92:f5:bf:94:56:fb:a2:d6:d5:fd:50:33:
b5:c3:7d:ec:b4:a1:6a:81:60:e2:04:20:e9:69:ba:
a9:fe:6e:37:5e:81:4a:ae:7c:ca:13:19:3a:91:76:
38:66:91:7e:4a:c2:e2:09:3d:1b:bf:fc:90:c4:45:
67:9c:c3:80:a9:ae:02:e3:fc:84:14:23:ec:90:14:
c6:69:bd:11:2a:c1:31:f3:3c:ab:0d:ff:7e:ac:55:
e3:d8:1e:29:25:5f:1b:0d:7b:bf:7e:34:05:9e:78:
82:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:38:45:48:72:AE:48:BE:5E:51:BF:86:F0:44:8F:B0:B2:4E:2A:23
X509v3 Authority Key Identifier:
keyid:B3:C5:1B:0C:06:3C:FC:16:94:3F:C9:A4:7E:2C:80:59:90:F6:EA:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s8UbDAY8_BaUP8mkfiyAWZD26q4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/8ThFSHKuSL5eUb-G8ESPsLJOKiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/s8UbDAY8_BaUP8mkfiyAWZD26q4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.192.0/20
45.66.185.0-45.66.187.255
91.193.60.0/22
109.68.144.0/21
178.21.168.0/21
185.70.76.0/22
185.168.36.0/22
185.205.96.0/22
IPv6:
2a02:4fc0::/32
Signature Algorithm: sha256WithRSAEncryption
a1:dc:24:e3:c8:b0:2e:92:4f:ea:be:d8:44:48:c1:e9:da:f7:
db:c1:78:6f:7d:b6:74:8f:4f:ec:b1:2b:7b:1e:99:70:ed:cb:
f9:0e:b6:7b:03:ff:94:4c:31:24:f8:fc:b6:02:43:59:28:10:
a7:95:e2:f7:ef:5e:57:50:72:a1:62:0c:bd:0f:0e:c7:cd:6e:
f4:e9:0a:12:14:3a:a7:2e:48:aa:17:58:34:5e:da:fb:e7:65:
ad:99:b5:b3:79:18:c5:72:bd:48:f5:fd:a0:95:ef:11:c7:f4:
0d:c1:02:7f:42:c3:90:0b:d5:e7:57:cd:3a:c2:53:ec:07:06:
8b:8a:b8:4c:ed:44:2c:31:d3:74:3d:7b:11:20:d0:9d:ba:1d:
8e:4a:e7:ca:3e:fe:6f:03:c9:9b:a9:92:84:01:d5:7d:73:81:
ad:45:f4:f4:c7:f0:3d:18:31:3b:13:2a:1d:7d:25:e6:5d:40:
f7:27:83:7f:71:86:86:b8:4b:ab:3f:79:07:27:1a:f8:ef:95:
7c:7d:d1:8c:a2:d9:4c:10:bc:8b:5d:6b:10:cb:98:39:db:c7:
24:d8:88:15:87:9f:be:05:f3:c4:77:3b:bc:c3:1e:85:65:a5:
ac:96:04:85:b1:78:b3:d7:a4:2e:93:55:5b:c5:d7:6b:28:30:
c3:cd:33:6e
-----BEGIN CERTIFICATE-----
MIIFMDCCBBigAwIBAgIEDu18TjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
M2M1MWIwYzA2M2NmYzE2OTQzZmM5YTQ3ZTJjODA1OTkwZjZlYWFlMB4XDTIyMDEw
MTE1MDQ0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjEzODQ1NDg3MmFl
NDhiZTVlNTFiZjg2ZjA0NDhmYjBiMjRlMmEyMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL30TbsQ52QnciUysfP9Mm/UWjAm35jNVLEIm81HUOj0lvv8
xpKjTvHyhtTM6vyfRBti/Ik8O/Wlbk5YEvt6qNlPzlEJPkaJTDeBB1jm7UTZ8Axi
6AisaDdTmcanaiIkGid6/LE1I5Fojj/ZowzeXBWqL9+VBD3h7E03upxB9wV8QppK
YQnzdZcvBFbxHbUxPlBLuuhV9lPgkvW/lFb7otbV/VAztcN97LShaoFg4gQg6Wm6
qf5uN16BSq58yhMZOpF2OGaRfkrC4gk9G7/8kMRFZ5zDgKmuAuP8hBQj7JAUxmm9
ESrBMfM8qw3/fqxV49geKSVfGw17v340BZ54grsCAwEAAaOCAkowggJGMB0GA1Ud
DgQWBBTxOEVIcq5Ivl5Rv4bwRI+wsk4qIzAfBgNVHSMEGDAWgBSzxRsMBjz8FpQ/
yaR+LIBZkPbqrjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3M4VWJEQVk4X0JhVVA4bWtmaXlBV1pEMjZxNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTYvNTg3NzkyLWJhZTktNDE4My1hNGIxLWZmNWYxYWQ2OTI2Ni8x
LzhUaEZTSEt1U0w1ZVViLUc4RVNQc0xKT0tpTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTYv
NTg3NzkyLWJhZTktNDE4My1hNGIxLWZmNWYxYWQ2OTI2Ni8xL3M4VWJEQVk4X0Jh
VVA4bWtmaXlBV1pEMjZxNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBg
BggrBgEFBQcBBwEB/wRRME8wPgQCAAEwOAMEBAWswDAMAwQALUK5AwQCLUK4AwQC
W8E8AwQDbUSQAwQDshWoAwQCuUZMAwQCuagkAwQCuc1gMA0EAgACMAcDBQAqAk/A
MA0GCSqGSIb3DQEBCwUAA4IBAQCh3CTjyLAukk/qvthESMHp2vfbwXhvfbZ0j0/s
sSt7Hplw7cv5DrZ7A/+UTDEk+Py2AkNZKBCnleL3715XUHKhYgy9Dw7HzW706QoS
FDqnLkiqF1g0Xtr752WtmbWzeRjFcr1I9f2gle8Rx/QNwQJ/QsOQC9XnV806wlPs
BwaLirhM7UQsMdN0PXsRINCduh2OSufKPv5vA8mbqZKEAdV9c4GtRfT0x/A9GDE7
EyodfSXmXUD3J4N/cYaGuEurP3kHJxr475V8fdGMotlMELyLXWsQy5g528ck2IgV
h5++BfPEdzu8wx6FZaWslgSFsXiz16Quk1VbxddrKDDDzTNu
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:41 2024 by rpki-client on console-fra.rpki-client.org