Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/lyNe1qhJw_kaGq9chJb7OsGUXvw.roa
File: lyNe1qhJw_kaGq9chJb7OsGUXvw.roa (raw, json)
Hash identifier: yaEEW8pbPUkl7t/9/+F7khC6e7+Khc/4htTJbXBxwn8=
Subject key identifier: 97:23:5E:D6:A8:49:C3:F9:1A:1A:AF:5C:84:96:FB:3A:C1:94:5E:FC
Certificate issuer: /CN=f919e1f3fe69b4ebdff02a9a857e7c6c2b25301a
Certificate serial: 04754844
Authority key identifier: F9:19:E1:F3:FE:69:B4:EB:DF:F0:2A:9A:85:7E:7C:6C:2B:25:30:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Rnh8_5ptOvf8CqahX58bCslMBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/lyNe1qhJw_kaGq9chJb7OsGUXvw.roa
Signing time: Wed 04 May 2022 13:10:35 +0000
ROA not before: Wed 04 May 2022 13:10:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208677
IP address blocks: 37.18.8.0/23 maxlen: 23
37.18.10.0/24 maxlen: 24
37.18.22.0/24 maxlen: 24
178.170.242.0/24 maxlen: 24
46.243.141.0/24 maxlen: 24
46.243.142.0/23 maxlen: 23
37.230.139.0/24 maxlen: 24
37.18.102.0/24 maxlen: 24
37.18.100.0/23 maxlen: 23
37.18.107.0/24 maxlen: 24
37.18.112.0/23 maxlen: 23
37.18.108.0/22 maxlen: 22
37.18.115.0/24 maxlen: 24
37.18.114.0/24 maxlen: 24
37.18.116.0/22 maxlen: 22
37.18.120.0/23 maxlen: 23
37.18.122.0/24 maxlen: 24
37.230.186.0/24 maxlen: 24
37.230.184.0/23 maxlen: 23
37.230.180.0/23 maxlen: 23
46.243.206.0/24 maxlen: 24
46.243.201.0/24 maxlen: 24
46.243.226.0/23 maxlen: 23
46.243.244.0/23 maxlen: 23
37.18.72.0/23 maxlen: 23
188.72.106.0/23 maxlen: 23
37.230.192.0/21 maxlen: 21
37.230.224.0/24 maxlen: 24
37.230.233.0/24 maxlen: 24
94.139.252.0/22 maxlen: 22
178.170.192.0/22 maxlen: 22
178.170.191.0/24 maxlen: 24
45.9.24.0/22 maxlen: 22
141.101.201.0/24 maxlen: 24
45.89.224.0/22 maxlen: 22
2a0c:2b80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74795076 (0x4754844)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f919e1f3fe69b4ebdff02a9a857e7c6c2b25301a
Validity
Not Before: May 4 13:10:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97235ed6a849c3f91a1aaf5c8496fb3ac1945efc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:00:dc:df:17:02:eb:98:68:74:a1:1f:56:db:
29:e0:97:e0:38:57:1d:5d:3f:5b:ca:31:2a:e3:59:
5a:42:b3:22:ee:0c:77:49:f8:a7:1b:d5:b6:a2:e4:
c9:dc:87:4a:09:d1:ac:ab:d3:d5:af:13:89:66:66:
2f:ba:9b:7d:b5:13:af:82:0b:83:58:86:df:ea:42:
53:8b:32:77:70:24:33:a7:c0:d4:1b:dc:b1:80:37:
6b:24:fc:69:8e:7e:c5:1e:3e:14:8a:dc:12:4b:f4:
3a:4f:20:c3:4e:eb:94:27:28:e2:bf:01:c9:8e:4c:
31:f5:3b:2e:54:7c:a5:33:c1:22:2f:f6:27:ab:a6:
a1:a2:c2:24:f6:0a:08:70:97:73:5e:b5:ed:24:3e:
7e:a5:77:f3:d1:d8:b2:e3:24:09:8f:0b:fe:f9:80:
f9:fb:38:27:cc:f9:6f:1e:14:7f:4a:8a:19:34:59:
8c:91:87:4f:70:21:b0:be:9f:3e:8f:95:9a:9a:39:
51:df:75:2b:a5:4d:3d:11:a5:af:b3:42:9c:a3:8f:
83:2d:9a:8a:4a:23:db:7f:50:f2:68:c7:c1:03:1a:
e6:a0:19:aa:ea:2d:34:da:da:62:af:4e:e7:b8:34:
74:34:bf:6c:fb:17:e2:62:da:05:2c:4d:cb:3f:9c:
b9:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:23:5E:D6:A8:49:C3:F9:1A:1A:AF:5C:84:96:FB:3A:C1:94:5E:FC
X509v3 Authority Key Identifier:
keyid:F9:19:E1:F3:FE:69:B4:EB:DF:F0:2A:9A:85:7E:7C:6C:2B:25:30:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Rnh8_5ptOvf8CqahX58bCslMBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/lyNe1qhJw_kaGq9chJb7OsGUXvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/1-Rnh8_5ptOvf8CqahX58bCslMBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.8.0-37.18.10.255
37.18.22.0/24
37.18.72.0/23
37.18.100.0-37.18.102.255
37.18.107.0-37.18.122.255
37.230.139.0/24
37.230.180.0/23
37.230.184.0-37.230.186.255
37.230.192.0/21
37.230.224.0/24
37.230.233.0/24
45.9.24.0/22
45.89.224.0/22
46.243.141.0-46.243.143.255
46.243.201.0/24
46.243.206.0/24
46.243.226.0/23
46.243.244.0/23
94.139.252.0/22
141.101.201.0/24
178.170.191.0-178.170.195.255
178.170.242.0/24
188.72.106.0/23
IPv6:
2a0c:2b80::/29
Signature Algorithm: sha256WithRSAEncryption
80:b1:59:0e:6e:65:24:0c:89:c4:ba:fd:93:8f:0b:33:83:20:
c9:b1:fa:fa:3d:57:d2:03:87:46:61:ff:5a:70:85:e8:b0:80:
25:28:5f:c9:4c:6a:45:bb:b4:5c:1c:db:45:82:13:cf:d4:d6:
be:28:c3:72:d9:5f:31:f3:f2:77:dc:bc:f2:9c:b7:04:81:42:
d2:19:90:06:a8:cb:a7:35:1e:10:21:ff:bf:15:77:15:16:c2:
8c:51:d0:b8:4c:6c:25:b3:3c:1a:92:a5:14:fc:ba:46:48:64:
99:02:cd:ad:39:2c:3e:5e:ba:61:a0:ee:8e:14:fa:5a:ad:a8:
9c:a8:03:dc:0b:31:1e:82:ab:70:5b:c1:14:ff:70:8e:7e:1e:
71:03:ad:1a:80:3c:62:e3:d1:54:40:6f:11:02:05:bd:1a:66:
b5:c0:29:22:fc:35:f8:9b:a4:69:5d:8a:d2:2e:2d:58:06:29:
2e:c0:f8:8d:de:7f:f5:cc:1a:46:0b:1b:2d:8b:15:8a:a0:a0:
08:7d:1f:1f:c1:c6:9f:b2:8b:a1:ae:cf:7a:10:f2:61:2e:4a:
b5:50:f4:80:87:0e:93:aa:85:bb:af:78:63:25:94:f2:e4:94:
cd:9b:cc:11:66:b5:54:d1:fd:ea:6f:15:94:be:fb:a5:86:79:
b8:fc:31:cb
-----BEGIN CERTIFICATE-----
MIIFuTCCBKGgAwIBAgIEBHVIRDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
OTE5ZTFmM2ZlNjliNGViZGZmMDJhOWE4NTdlN2M2YzJiMjUzMDFhMB4XDTIyMDUw
NDEzMTAzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTcyMzVlZDZhODQ5
YzNmOTFhMWFhZjVjODQ5NmZiM2FjMTk0NWVmYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKMA3N8XAuuYaHShH1bbKeCX4DhXHV0/W8oxKuNZWkKzIu4M
d0n4pxvVtqLkydyHSgnRrKvT1a8TiWZmL7qbfbUTr4ILg1iG3+pCU4syd3AkM6fA
1BvcsYA3ayT8aY5+xR4+FIrcEkv0Ok8gw07rlCco4r8ByY5MMfU7LlR8pTPBIi/2
J6umoaLCJPYKCHCXc1617SQ+fqV389HYsuMkCY8L/vmA+fs4J8z5bx4Uf0qKGTRZ
jJGHT3AhsL6fPo+Vmpo5Ud91K6VNPRGlr7NCnKOPgy2aikoj239Q8mjHwQMa5qAZ
quotNNraYq9O57g0dDS/bPsX4mLaBSxNyz+cuScCAwEAAaOCAtMwggLPMB0GA1Ud
DgQWBBSXI17WqEnD+Roar1yElvs6wZRe/DAfBgNVHSMEGDAWgBT5GeHz/mm069/w
KpqFfnxsKyUwGjAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtUm5oOF81cHRPdmY4Q3FhaFg1OGJDc2xNQm8uY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxUL2Y2LzFjOTgwOS0xZjYwLTQzYzItODEwMy1kYWQwNDIwYjg1ZDMv
MS9seU5lMXFoSndfa2FHcTljaEpiN09zR1VYdncucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Y2
LzFjOTgwOS0xZjYwLTQzYzItODEwMy1kYWQwNDIwYjg1ZDMvMS8xLVJuaDhfNXB0
T3ZmOENxYWhYNThiQ3NsTUJvLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MIHmBggrBgEFBQcBBwEB/wSB1jCB0zCBwQQCAAEwgbowDAMEAyUSCAMEACUSCgME
ACUSFgMEASUSSDAMAwQCJRJkAwQAJRJmMAwDBAAlEmsDBAAlEnoDBAAl5osDBAEl
5rQwDAMEAyXmuAMEACXmugMEAyXmwAMEACXm4AMEACXm6QMEAi0JGAMEAi1Z4DAM
AwQALvONAwQELvOAAwQALvPJAwQALvPOAwQBLvPiAwQBLvP0AwQCXov8AwQAjWXJ
MAwDBACyqr8DBAKyqsADBACyqvIDBAG8SGowDQQCAAIwBwMFAyoMK4AwDQYJKoZI
hvcNAQELBQADggEBAICxWQ5uZSQMicS6/ZOPCzODIMmx+vo9V9IDh0Zh/1pwheiw
gCUoX8lMakW7tFwc20WCE8/U1r4ow3LZXzHz8nfcvPKctwSBQtIZkAaoy6c1HhAh
/78VdxUWwoxR0LhMbCWzPBqSpRT8ukZIZJkCza05LD5eumGg7o4U+lqtqJyoA9wL
MR6Cq3BbwRT/cI5+HnEDrRqAPGLj0VRAbxECBb0aZrXAKSL8NfibpGlditIuLVgG
KS7A+I3ef/XMGkYLGy2LFYqgoAh9Hx/Bxp+yi6Guz3oQ8mEuSrVQ9ICHDpOqhbuv
eGMllPLklM2bzBFmtVTR/epvFZS++6WGebj8Mcs=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:55 2024 by rpki-client on console-ams.rpki-client.org