Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/yqr4qHO0aHrXn6l-ywhUF53Qm8k.roa
File: yqr4qHO0aHrXn6l-ywhUF53Qm8k.roa (raw, json)
Hash identifier: d2mQOcA64oDKxd22j7MqLvh+1iehWfU0pgqp3qMZqaE=
Subject key identifier: CA:AA:F8:A8:73:B4:68:7A:D7:9F:A9:7E:CB:08:54:17:9D:D0:9B:C9
Certificate issuer: /CN=e85b83c87c4a3d8315025379f72987520bb5d046
Certificate serial: 0524A6B9
Authority key identifier: E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/yqr4qHO0aHrXn6l-ywhUF53Qm8k.roa
Signing time: Sat 01 Jan 2022 14:05:48 +0000
ROA not before: Sat 01 Jan 2022 14:05:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13194
IP address blocks: 89.191.96.0/19 maxlen: 32
91.188.32.0/19 maxlen: 32
185.7.236.0/22 maxlen: 32
85.115.96.0/19 maxlen: 32
79.132.64.0/19 maxlen: 32
93.177.192.0/18 maxlen: 32
62.84.0.0/19 maxlen: 32
188.112.128.0/18 maxlen: 32
77.38.128.0/17 maxlen: 32
89.18.192.0/19 maxlen: 32
195.244.128.0/20 maxlen: 32
91.123.64.0/20 maxlen: 32
87.226.0.0/17 maxlen: 32
217.198.224.0/20 maxlen: 32
213.180.96.0/19 maxlen: 32
94.30.128.0/17 maxlen: 32
195.62.128.0/19 maxlen: 32
217.199.96.0/19 maxlen: 32
217.24.64.0/20 maxlen: 32
37.148.168.0/21 maxlen: 32
80.254.208.0/20 maxlen: 32
91.142.0.0/20 maxlen: 32
85.234.160.0/19 maxlen: 32
109.110.0.0/19 maxlen: 32
89.201.0.0/17 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86288057 (0x524a6b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e85b83c87c4a3d8315025379f72987520bb5d046
Validity
Not Before: Jan 1 14:05:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=caaaf8a873b4687ad79fa97ecb0854179dd09bc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b5:b5:76:7e:ba:1c:4b:7e:0e:a3:55:44:af:
0e:ad:73:8b:1c:c9:ff:f5:02:71:27:70:a6:d0:1f:
ac:76:7c:92:c5:b9:74:34:06:27:81:10:45:3b:aa:
74:8e:5c:d6:82:48:90:fd:68:53:34:03:37:e8:30:
98:82:49:56:6b:0d:f7:a6:f3:11:c1:8e:e7:18:14:
0d:cf:ff:9e:02:0e:88:04:44:94:be:30:3d:0a:3a:
1f:98:c6:2e:13:a6:3d:ce:53:ac:d0:34:5d:6c:d3:
1d:69:62:50:87:41:96:79:2c:46:1c:b3:3d:d7:f1:
74:80:e5:a3:0d:1d:7e:e8:0a:c3:51:0a:8e:c3:9a:
7f:55:0b:49:bb:f2:c1:ca:11:4b:af:f0:28:0f:ee:
a3:bb:4b:44:8b:bc:90:0b:2e:4c:16:2d:16:a0:85:
f4:0b:04:80:66:45:de:99:d8:82:d4:f4:0f:46:58:
32:4f:81:5c:a9:67:bf:a8:68:93:79:49:d2:77:2c:
0e:39:b3:bf:92:8f:ee:d3:ff:ff:f1:3d:8c:c1:36:
4c:a7:08:3c:86:6b:3d:d5:a4:69:a3:47:ed:37:82:
c1:0b:8d:87:8b:bf:e8:dc:f1:71:f2:73:79:1d:44:
24:57:63:cb:95:8b:79:29:34:2f:86:77:d7:c3:b1:
22:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:AA:F8:A8:73:B4:68:7A:D7:9F:A9:7E:CB:08:54:17:9D:D0:9B:C9
X509v3 Authority Key Identifier:
keyid:E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/yqr4qHO0aHrXn6l-ywhUF53Qm8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/6FuDyHxKPYMVAlN59ymHUgu10EY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.148.168.0/21
62.84.0.0/19
77.38.128.0/17
79.132.64.0/19
80.254.208.0/20
85.115.96.0/19
85.234.160.0/19
87.226.0.0/17
89.18.192.0/19
89.191.96.0/19
89.201.0.0/17
91.123.64.0/20
91.142.0.0/20
91.188.32.0/19
93.177.192.0/18
94.30.128.0/17
109.110.0.0/19
185.7.236.0/22
188.112.128.0/18
195.62.128.0/19
195.244.128.0/20
213.180.96.0/19
217.24.64.0/20
217.198.224.0/20
217.199.96.0/19
Signature Algorithm: sha256WithRSAEncryption
21:5b:8b:7f:1e:9b:de:7a:cc:93:1c:25:98:9e:e9:3a:30:91:
61:80:18:0e:18:60:41:83:d0:46:cb:d1:42:32:0d:91:ce:e3:
62:ca:8d:9d:b4:37:e8:3c:05:2c:c3:b5:44:03:26:fa:56:2b:
b2:59:82:65:36:c6:08:28:c9:a0:5b:8b:99:25:bf:54:88:65:
81:9b:a5:4d:61:f9:00:59:52:72:a2:d5:d7:4a:96:74:5c:62:
f0:dd:de:47:24:22:eb:e1:91:01:37:ef:33:4a:10:3c:36:58:
64:db:7b:1a:24:9f:dc:bf:81:b5:8f:c7:8c:54:e3:36:f5:ae:
6b:4c:eb:94:86:08:9a:5a:c8:c7:09:66:58:cd:bd:44:6e:4e:
9a:fe:1f:70:86:fa:41:1a:89:07:91:54:1d:d9:df:68:66:7e:
41:5b:0a:54:b8:31:75:0b:ba:34:ac:58:7c:aa:f1:dc:2d:d4:
ae:1e:26:63:2f:db:e9:4b:a2:57:e5:c4:b2:f5:44:74:5b:05:
96:4b:3d:b2:66:7d:43:a2:c7:5d:45:9f:24:c7:e4:47:12:da:
7b:db:52:64:a5:1d:ff:27:f7:da:31:16:c3:f6:63:d2:b1:b2:
e4:d9:24:c7:7e:cb:77:f8:05:b1:dc:17:d7:51:4e:64:79:d7:
c7:64:a1:a4
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIEBSSmuTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
ODViODNjODdjNGEzZDgzMTUwMjUzNzlmNzI5ODc1MjBiYjVkMDQ2MB4XDTIyMDEw
MTE0MDU0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2FhYWY4YTg3M2I0
Njg3YWQ3OWZhOTdlY2IwODU0MTc5ZGQwOWJjOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL21tXZ+uhxLfg6jVUSvDq1zixzJ//UCcSdwptAfrHZ8ksW5
dDQGJ4EQRTuqdI5c1oJIkP1oUzQDN+gwmIJJVmsN96bzEcGO5xgUDc//ngIOiARE
lL4wPQo6H5jGLhOmPc5TrNA0XWzTHWliUIdBlnksRhyzPdfxdIDlow0dfugKw1EK
jsOaf1ULSbvywcoRS6/wKA/uo7tLRIu8kAsuTBYtFqCF9AsEgGZF3pnYgtT0D0ZY
Mk+BXKlnv6hok3lJ0ncsDjmzv5KP7tP///E9jME2TKcIPIZrPdWkaaNH7TeCwQuN
h4u/6NzxcfJzeR1EJFdjy5WLeSk0L4Z318OxIvkCAwEAAaOCAp4wggKaMB0GA1Ud
DgQWBBTKqvioc7RoetefqX7LCFQXndCbyTAfBgNVHSMEGDAWgBToW4PIfEo9gxUC
U3n3KYdSC7XQRjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzZGdUR5SHhLUFlNVkFsTjU5eW1IVWd1MTBFWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDQvMzM5NGUzLTczNmUtNDg3OS1iOGRiLTg5YWFlYTM2Mjg1ZS8x
L3lxcjRxSE8wYUhyWG42bC15d2hVRjUzUW04ay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDQv
MzM5NGUzLTczNmUtNDg3OS1iOGRiLTg5YWFlYTM2Mjg1ZS8xLzZGdUR5SHhLUFlN
VkFsTjU5eW1IVWd1MTBFWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
swYIKwYBBQUHAQcBAf8EgaMwgaAwgZ0EAgABMIGWAwQDJZSoAwQFPlQAAwQHTSaA
AwQFT4RAAwQEUP7QAwQFVXNgAwQFVeqgAwQHV+IAAwQFWRLAAwQFWb9gAwQHWckA
AwQEW3tAAwQEW44AAwQFW7wgAwQGXbHAAwQHXh6AAwQFbW4AAwQCuQfsAwQGvHCA
AwQFwz6AAwQEw/SAAwQF1bRgAwQE2RhAAwQE2cbgAwQF2cdgMA0GCSqGSIb3DQEB
CwUAA4IBAQAhW4t/HpveesyTHCWYnuk6MJFhgBgOGGBBg9BGy9FCMg2RzuNiyo2d
tDfoPAUsw7VEAyb6ViuyWYJlNsYIKMmgW4uZJb9UiGWBm6VNYfkAWVJyotXXSpZ0
XGLw3d5HJCLr4ZEBN+8zShA8Nlhk23saJJ/cv4G1j8eMVOM29a5rTOuUhgiaWsjH
CWZYzb1Ebk6a/h9whvpBGokHkVQd2d9oZn5BWwpUuDF1C7o0rFh8qvHcLdSuHiZj
L9vpS6JX5cSy9UR0WwWWSz2yZn1DosddRZ8kx+RHEtp721JkpR3/J/faMRbD9mPS
sbLk2STHfst3+AWx3BfXUU5kedfHZKGk
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:54 2023 by rpki-client on console-fra.rpki-client.org