Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/9oLp5qTzJx2UyTYMr6Wv-b6xfFE.roa
File: 9oLp5qTzJx2UyTYMr6Wv-b6xfFE.roa (raw, json)
Hash identifier: bfuEpE1WlkJTbvLDMx8uPi9acCs+YU66tYPC3l1evck=
Subject key identifier: F6:82:E9:E6:A4:F3:27:1D:94:C9:36:0C:AF:A5:AF:F9:BE:B1:7C:51
Certificate issuer: /CN=f919e1f3fe69b4ebdff02a9a857e7c6c2b25301a
Certificate serial: 04874699
Authority key identifier: F9:19:E1:F3:FE:69:B4:EB:DF:F0:2A:9A:85:7E:7C:6C:2B:25:30:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Rnh8_5ptOvf8CqahX58bCslMBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/9oLp5qTzJx2UyTYMr6Wv-b6xfFE.roa
Signing time: Wed 11 May 2022 11:10:38 +0000
ROA not before: Wed 11 May 2022 11:10:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208677
IP address blocks: 37.18.8.0/23 maxlen: 23
37.18.10.0/24 maxlen: 24
37.18.22.0/24 maxlen: 24
178.170.242.0/24 maxlen: 24
46.243.141.0/24 maxlen: 24
46.243.142.0/23 maxlen: 23
37.230.139.0/24 maxlen: 24
37.18.102.0/24 maxlen: 24
37.18.100.0/23 maxlen: 23
37.18.107.0/24 maxlen: 24
37.18.112.0/23 maxlen: 23
37.18.108.0/22 maxlen: 22
37.18.115.0/24 maxlen: 24
37.18.114.0/24 maxlen: 24
37.18.116.0/22 maxlen: 22
37.18.120.0/23 maxlen: 23
37.18.122.0/24 maxlen: 24
37.230.186.0/24 maxlen: 24
37.230.184.0/23 maxlen: 23
37.230.180.0/23 maxlen: 23
46.243.206.0/24 maxlen: 24
46.243.201.0/24 maxlen: 24
46.243.226.0/23 maxlen: 23
46.243.244.0/23 maxlen: 23
37.18.72.0/23 maxlen: 23
188.72.106.0/23 maxlen: 23
37.230.192.0/21 maxlen: 21
37.230.224.0/24 maxlen: 24
37.230.233.0/24 maxlen: 24
94.139.252.0/22 maxlen: 22
178.170.192.0/22 maxlen: 22
178.170.191.0/24 maxlen: 24
45.9.24.0/22 maxlen: 22
178.170.196.0/23 maxlen: 23
141.101.201.0/24 maxlen: 24
45.89.224.0/22 maxlen: 22
2a0c:2b80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75974297 (0x4874699)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f919e1f3fe69b4ebdff02a9a857e7c6c2b25301a
Validity
Not Before: May 11 11:10:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f682e9e6a4f3271d94c9360cafa5aff9beb17c51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:70:d2:ea:72:99:90:ba:a9:14:90:9a:81:41:
8e:ee:12:b2:da:74:8e:a1:76:b4:8a:08:c7:93:0c:
b7:a3:96:b6:61:99:a6:29:e2:b8:c0:dd:a6:16:24:
e2:79:6d:37:b2:6b:80:d6:82:08:bb:07:39:07:46:
db:a6:ae:67:b4:f1:ec:b0:6f:a3:4f:47:e3:f0:cd:
f0:63:1e:30:ef:37:14:7d:9e:e8:32:d7:bc:4d:6b:
12:d7:56:7d:87:e3:36:cc:3c:dd:a6:d6:25:98:95:
b8:32:05:11:e5:e3:b0:95:15:f4:a0:c1:2b:c9:fe:
96:a3:77:e3:5a:a8:cf:45:fb:d5:1b:77:4e:3b:bd:
e0:b6:9a:42:25:e6:de:88:b3:a4:1d:92:92:d3:1e:
e1:f9:86:95:7d:5e:a9:13:a2:22:45:a2:f6:ab:34:
50:b9:28:58:bd:75:e9:c5:cd:f4:01:b4:fb:09:17:
f9:8f:7f:d7:9f:22:87:85:61:88:3a:2c:77:97:49:
cf:ca:8a:5e:ce:be:dd:f3:c4:5b:6a:1f:a8:ae:a4:
42:cb:b1:39:a1:f4:47:d8:d9:b0:b3:88:d7:71:db:
23:c3:e4:9a:ad:18:53:0d:cd:e0:8b:17:45:31:2f:
ab:6a:23:3a:3f:8f:83:18:ee:76:e9:64:0a:10:88:
d0:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:82:E9:E6:A4:F3:27:1D:94:C9:36:0C:AF:A5:AF:F9:BE:B1:7C:51
X509v3 Authority Key Identifier:
keyid:F9:19:E1:F3:FE:69:B4:EB:DF:F0:2A:9A:85:7E:7C:6C:2B:25:30:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Rnh8_5ptOvf8CqahX58bCslMBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/9oLp5qTzJx2UyTYMr6Wv-b6xfFE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/1-Rnh8_5ptOvf8CqahX58bCslMBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.8.0-37.18.10.255
37.18.22.0/24
37.18.72.0/23
37.18.100.0-37.18.102.255
37.18.107.0-37.18.122.255
37.230.139.0/24
37.230.180.0/23
37.230.184.0-37.230.186.255
37.230.192.0/21
37.230.224.0/24
37.230.233.0/24
45.9.24.0/22
45.89.224.0/22
46.243.141.0-46.243.143.255
46.243.201.0/24
46.243.206.0/24
46.243.226.0/23
46.243.244.0/23
94.139.252.0/22
141.101.201.0/24
178.170.191.0-178.170.197.255
178.170.242.0/24
188.72.106.0/23
IPv6:
2a0c:2b80::/29
Signature Algorithm: sha256WithRSAEncryption
5e:21:03:1e:b7:83:29:2e:20:26:00:74:77:37:f1:4c:62:a0:
57:45:72:9c:18:7d:8f:b0:30:71:d5:cf:4d:ca:33:43:33:36:
94:ad:30:87:3a:37:71:90:af:ec:a6:97:c2:81:54:0a:78:da:
7e:70:e7:2c:2d:c9:bf:53:6c:b9:43:76:af:8c:c7:b4:73:12:
7f:b3:ac:bd:8f:5c:b0:11:40:34:d7:4a:6a:a0:32:45:7d:7e:
25:d2:ef:bb:46:23:47:5f:70:da:77:80:26:2b:7d:9e:9e:cb:
18:f8:43:4f:27:91:93:1c:d9:cc:ba:2f:71:a8:15:07:15:15:
61:f3:9b:0e:64:2d:fe:8d:a9:cd:1d:4e:44:31:4f:a5:9f:9c:
fc:89:9a:4a:c7:43:32:72:b3:56:d6:bb:e1:f9:60:7d:43:86:
77:52:2b:de:b9:b7:ce:5c:63:ba:56:75:29:ce:a4:c4:c5:6a:
a9:59:02:ce:a5:5c:a5:a8:85:7a:eb:89:78:61:75:04:0f:66:
d9:dc:ad:bb:a1:32:41:c9:70:ee:ad:65:00:2c:8e:e1:65:48:
c6:14:11:66:a1:81:fa:f0:1b:a3:d7:e9:dc:63:bb:39:47:9e:
c7:58:a4:53:59:61:0c:5c:fd:f9:1f:93:0a:e2:bb:9a:05:c7:
40:52:84:98
-----BEGIN CERTIFICATE-----
MIIFuTCCBKGgAwIBAgIEBIdGmTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
OTE5ZTFmM2ZlNjliNGViZGZmMDJhOWE4NTdlN2M2YzJiMjUzMDFhMB4XDTIyMDUx
MTExMTAzOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjY4MmU5ZTZhNGYz
MjcxZDk0YzkzNjBjYWZhNWFmZjliZWIxN2M1MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKFw0upymZC6qRSQmoFBju4Sstp0jqF2tIoIx5MMt6OWtmGZ
piniuMDdphYk4nltN7JrgNaCCLsHOQdG26auZ7Tx7LBvo09H4/DN8GMeMO83FH2e
6DLXvE1rEtdWfYfjNsw83abWJZiVuDIFEeXjsJUV9KDBK8n+lqN341qoz0X71Rt3
Tju94LaaQiXm3oizpB2SktMe4fmGlX1eqROiIkWi9qs0ULkoWL116cXN9AG0+wkX
+Y9/158ih4VhiDosd5dJz8qKXs6+3fPEW2ofqK6kQsuxOaH0R9jZsLOI13HbI8Pk
mq0YUw3N4IsXRTEvq2ojOj+PgxjudulkChCI0O8CAwEAAaOCAtMwggLPMB0GA1Ud
DgQWBBT2gunmpPMnHZTJNgyvpa/5vrF8UTAfBgNVHSMEGDAWgBT5GeHz/mm069/w
KpqFfnxsKyUwGjAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtUm5oOF81cHRPdmY4Q3FhaFg1OGJDc2xNQm8uY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxUL2Y2LzFjOTgwOS0xZjYwLTQzYzItODEwMy1kYWQwNDIwYjg1ZDMv
MS85b0xwNXFUekp4MlV5VFlNcjZXdi1iNnhmRkUucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Y2
LzFjOTgwOS0xZjYwLTQzYzItODEwMy1kYWQwNDIwYjg1ZDMvMS8xLVJuaDhfNXB0
T3ZmOENxYWhYNThiQ3NsTUJvLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MIHmBggrBgEFBQcBBwEB/wSB1jCB0zCBwQQCAAEwgbowDAMEAyUSCAMEACUSCgME
ACUSFgMEASUSSDAMAwQCJRJkAwQAJRJmMAwDBAAlEmsDBAAlEnoDBAAl5osDBAEl
5rQwDAMEAyXmuAMEACXmugMEAyXmwAMEACXm4AMEACXm6QMEAi0JGAMEAi1Z4DAM
AwQALvONAwQELvOAAwQALvPJAwQALvPOAwQBLvPiAwQBLvP0AwQCXov8AwQAjWXJ
MAwDBACyqr8DBAGyqsQDBACyqvIDBAG8SGowDQQCAAIwBwMFAyoMK4AwDQYJKoZI
hvcNAQELBQADggEBAF4hAx63gykuICYAdHc38UxioFdFcpwYfY+wMHHVz03KM0Mz
NpStMIc6N3GQr+yml8KBVAp42n5w5ywtyb9TbLlDdq+Mx7RzEn+zrL2PXLARQDTX
SmqgMkV9fiXS77tGI0dfcNp3gCYrfZ6eyxj4Q08nkZMc2cy6L3GoFQcVFWHzmw5k
Lf6Nqc0dTkQxT6WfnPyJmkrHQzJys1bWu+H5YH1DhndSK965t85cY7pWdSnOpMTF
aqlZAs6lXKWohXrriXhhdQQPZtncrbuhMkHJcO6tZQAsjuFlSMYUEWahgfrwG6PX
6dxjuzlHnsdYpFNZYQxc/fkfkwriu5oFx0BShJg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:52 2024 by rpki-client on console-fra.rpki-client.org