Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/b378e0-cf99-41b1-a38a-e136c989be33/1/k0S9Hq6cMMtUNZ9ikwUramZPXG8.roa
File: k0S9Hq6cMMtUNZ9ikwUramZPXG8.roa (raw, json)
Hash identifier: h2IagIzP+FlAfsCfxIEYfhlWLhm+2wOEdN6Ww1pNis4=
Subject key identifier: 93:44:BD:1E:AE:9C:30:CB:54:35:9F:62:93:05:2B:6A:66:4F:5C:6F
Certificate issuer: /CN=79646b38c3d87d33145b634b4e1dcc2145f6416c
Certificate serial: 0552BF65
Authority key identifier: 79:64:6B:38:C3:D8:7D:33:14:5B:63:4B:4E:1D:CC:21:45:F6:41:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eWRrOMPYfTMUW2NLTh3MIUX2QWw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/b378e0-cf99-41b1-a38a-e136c989be33/1/k0S9Hq6cMMtUNZ9ikwUramZPXG8.roa
Signing time: Sat 01 Jan 2022 07:02:06 +0000
ROA not before: Sat 01 Jan 2022 07:02:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48424
IP address blocks: 77.32.240.0/24 maxlen: 24
77.32.244.0/24 maxlen: 24
77.32.246.0/24 maxlen: 24
77.32.245.0/24 maxlen: 24
77.32.242.0/24 maxlen: 24
185.48.178.0/24 maxlen: 24
185.48.177.0/24 maxlen: 24
185.48.179.0/24 maxlen: 24
185.48.176.0/24 maxlen: 24
188.164.240.0/24 maxlen: 24
188.164.246.0/24 maxlen: 24
188.164.245.0/24 maxlen: 24
188.164.243.0/24 maxlen: 24
188.164.242.0/24 maxlen: 24
188.164.244.0/24 maxlen: 24
188.164.241.0/24 maxlen: 24
188.164.247.0/24 maxlen: 24
95.182.29.0/24 maxlen: 24
95.182.31.0/24 maxlen: 24
95.182.25.0/24 maxlen: 24
95.182.28.0/24 maxlen: 24
95.182.27.0/24 maxlen: 24
91.210.240.0/24 maxlen: 24
188.95.24.0/24 maxlen: 24
188.95.27.0/24 maxlen: 24
188.95.29.0/24 maxlen: 24
188.95.28.0/24 maxlen: 24
188.95.26.0/24 maxlen: 24
188.95.25.0/24 maxlen: 24
188.95.31.0/24 maxlen: 24
188.95.30.0/24 maxlen: 24
91.210.242.0/24 maxlen: 24
91.210.241.0/24 maxlen: 24
91.210.243.0/24 maxlen: 24
2a02:5ac0::/33 maxlen: 33
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89309029 (0x552bf65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79646b38c3d87d33145b634b4e1dcc2145f6416c
Validity
Not Before: Jan 1 07:02:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9344bd1eae9c30cb54359f6293052b6a664f5c6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:96:f9:92:54:96:c6:0f:54:a4:61:7f:b4:27:
1a:94:35:86:40:a1:03:b1:1d:82:13:8c:e9:db:11:
57:63:ce:52:14:9c:2b:74:24:c5:38:2a:12:20:14:
bb:ee:4f:80:ae:95:b6:29:9d:2e:28:29:d0:c8:5f:
10:a8:1e:64:3b:c1:6f:8e:53:f5:3b:76:8a:0b:38:
2b:80:29:9e:07:9e:ee:cd:c9:b6:b8:9e:02:c5:71:
f0:06:5f:a1:11:e6:86:ad:6b:75:18:45:18:95:51:
3b:7f:13:af:25:43:3f:94:98:51:c9:af:80:59:f3:
bb:9f:5d:11:96:fc:25:44:c4:6c:2b:5a:58:fa:26:
d8:5e:7e:e4:7c:8a:37:d3:a5:37:05:fa:8a:62:7c:
63:bf:c5:85:99:a6:0f:9d:f9:1a:78:ed:ae:17:4e:
33:78:b3:00:95:78:19:75:61:be:a7:41:46:b5:8a:
75:c5:7e:d3:30:ea:ef:47:2f:23:54:0c:7e:34:90:
68:e5:29:0c:7b:c8:aa:98:d8:c4:77:5f:04:41:bb:
1a:fb:52:92:b5:25:90:97:a7:9f:3c:a4:41:ad:48:
08:96:8c:97:92:43:d2:ff:e0:fc:8d:95:b9:67:d3:
8e:9e:87:26:08:6a:48:3f:53:d4:4f:2a:41:a4:1e:
95:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:44:BD:1E:AE:9C:30:CB:54:35:9F:62:93:05:2B:6A:66:4F:5C:6F
X509v3 Authority Key Identifier:
keyid:79:64:6B:38:C3:D8:7D:33:14:5B:63:4B:4E:1D:CC:21:45:F6:41:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eWRrOMPYfTMUW2NLTh3MIUX2QWw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/b378e0-cf99-41b1-a38a-e136c989be33/1/k0S9Hq6cMMtUNZ9ikwUramZPXG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/b378e0-cf99-41b1-a38a-e136c989be33/1/eWRrOMPYfTMUW2NLTh3MIUX2QWw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.32.240.0/24
77.32.242.0/24
77.32.244.0-77.32.246.255
91.210.240.0/22
95.182.25.0/24
95.182.27.0-95.182.29.255
95.182.31.0/24
185.48.176.0/22
188.95.24.0/21
188.164.240.0/21
IPv6:
2a02:5ac0::/33
Signature Algorithm: sha256WithRSAEncryption
47:2a:9c:f2:8c:d5:ed:c3:c5:4a:27:47:c1:a8:d3:b4:c4:fe:
9a:e8:63:78:c6:5d:cb:2b:a4:92:a8:ad:bb:bd:86:3d:8b:d3:
d3:1b:ac:9b:f9:3a:94:74:ee:50:cd:6d:a9:24:9e:d3:07:48:
d5:64:53:18:cc:ac:ac:7b:b3:ba:f1:ed:c6:54:02:0d:c7:96:
08:19:a3:0c:45:98:5d:43:87:62:99:9a:1c:bc:e1:d6:6b:1c:
ae:a7:d8:6f:07:d6:54:1c:fd:b7:62:4a:60:f6:d3:f9:1f:9a:
65:f4:90:1b:24:34:10:3a:21:45:dc:e2:6b:11:0f:88:b8:c4:
2d:2c:71:d8:4d:15:0f:b8:a7:e2:dc:8f:33:6e:7e:38:8b:a1:
9c:ed:e4:00:d5:6d:b3:22:6a:6c:b5:4c:01:08:52:44:73:59:
b5:83:6e:64:f5:1f:8e:77:e1:79:e4:34:42:70:9f:64:64:a9:
04:e7:fb:ec:94:d9:b2:8b:60:5c:da:c5:32:26:b6:8b:14:77:
17:38:49:06:92:b2:af:b9:2a:a2:42:6a:46:1e:20:ee:cc:dc:
c4:6a:8d:c7:66:b4:23:34:30:67:4f:0f:24:39:f7:5f:ca:7f:
03:27:45:e0:cc:46:a8:bd:f8:44:b3:16:b4:d6:ff:a1:a4:07:
1c:25:57:ba
-----BEGIN CERTIFICATE-----
MIIFRTCCBC2gAwIBAgIEBVK/ZTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
OTY0NmIzOGMzZDg3ZDMzMTQ1YjYzNGI0ZTFkY2MyMTQ1ZjY0MTZjMB4XDTIyMDEw
MTA3MDIwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTM0NGJkMWVhZTlj
MzBjYjU0MzU5ZjYyOTMwNTJiNmE2NjRmNWM2ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMKW+ZJUlsYPVKRhf7QnGpQ1hkChA7EdghOM6dsRV2POUhSc
K3QkxTgqEiAUu+5PgK6VtimdLigp0MhfEKgeZDvBb45T9Tt2igs4K4Apngee7s3J
trieAsVx8AZfoRHmhq1rdRhFGJVRO38TryVDP5SYUcmvgFnzu59dEZb8JUTEbCta
WPom2F5+5HyKN9OlNwX6imJ8Y7/FhZmmD535GnjtrhdOM3izAJV4GXVhvqdBRrWK
dcV+0zDq70cvI1QMfjSQaOUpDHvIqpjYxHdfBEG7GvtSkrUlkJennzykQa1ICJaM
l5JD0v/g/I2VuWfTjp6HJghqSD9T1E8qQaQelUMCAwEAAaOCAl8wggJbMB0GA1Ud
DgQWBBSTRL0erpwwy1Q1n2KTBStqZk9cbzAfBgNVHSMEGDAWgBR5ZGs4w9h9MxRb
Y0tOHcwhRfZBbDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2VXUnJPTVBZZlRNVVcyTkxUaDNNSVVYMlFXdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWYvYjM3OGUwLWNmOTktNDFiMS1hMzhhLWUxMzZjOTg5YmUzMy8x
L2swUzlIcTZjTU10VU5aOWlrd1VyYW1aUFhHOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWYv
YjM3OGUwLWNmOTktNDFiMS1hMzhhLWUxMzZjOTg5YmUzMy8xL2VXUnJPTVBZZlRN
VVcyTkxUaDNNSVVYMlFXdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjB1
BggrBgEFBQcBBwEB/wRmMGQwUgQCAAEwTAMEAE0g8AMEAE0g8jAMAwQCTSD0AwQA
TSD2AwQCW9LwAwQAX7YZMAwDBABfthsDBAFfthwDBABfth8DBAK5MLADBAO8XxgD
BAO8pPAwDgQCAAIwCAMGByoCWsAAMA0GCSqGSIb3DQEBCwUAA4IBAQBHKpzyjNXt
w8VKJ0fBqNO0xP6a6GN4xl3LK6SSqK27vYY9i9PTG6yb+TqUdO5QzW2pJJ7TB0jV
ZFMYzKyse7O68e3GVAINx5YIGaMMRZhdQ4dimZocvOHWaxyup9hvB9ZUHP23Ykpg
9tP5H5pl9JAbJDQQOiFF3OJrEQ+IuMQtLHHYTRUPuKfi3I8zbn44i6Gc7eQA1W2z
ImpstUwBCFJEc1m1g25k9R+Od+F55DRCcJ9kZKkE5/vslNmyi2Bc2sUyJraLFHcX
OEkGkrKvuSqiQmpGHiDuzNzEao3HZrQjNDBnTw8kOfdfyn8DJ0XgzEaovfhEsxa0
1v+hpAccJVe6
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:36 2024 by rpki-client on console-ams.rpki-client.org