Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/c27fa6-b2b0-4dcb-a899-1030cdbe6bd4/1/eYLVTHHCgWS0EGfdQbkjoigrROU.roa
File: eYLVTHHCgWS0EGfdQbkjoigrROU.roa (raw, json)
Hash identifier: S3ZDGxI8hJi1vqWZ/oNEPcpiC5x7C+vUH0QikbN7MGY=
Subject key identifier: 79:82:D5:4C:71:C2:81:64:B4:10:67:DD:41:B9:23:A2:28:2B:44:E5
Certificate issuer: /CN=43015654082578c4946cd27be1e89a3dd7562fa4
Certificate serial: 09F8FF70
Authority key identifier: 43:01:56:54:08:25:78:C4:94:6C:D2:7B:E1:E8:9A:3D:D7:56:2F:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwFWVAgleMSUbNJ74eiaPddWL6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/c27fa6-b2b0-4dcb-a899-1030cdbe6bd4/1/eYLVTHHCgWS0EGfdQbkjoigrROU.roa
Signing time: Mon 07 Mar 2022 12:10:36 +0000
ROA not before: Mon 07 Mar 2022 12:10:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49981
IP address blocks: 217.23.0.0/20 maxlen: 20
185.132.132.0/22 maxlen: 22
185.184.192.0/22 maxlen: 22
185.183.32.0/22 maxlen: 22
185.182.192.0/22 maxlen: 22
185.182.192.0/24 maxlen: 24
62.112.8.0/22 maxlen: 22
185.165.240.0/22 maxlen: 22
185.21.60.0/22 maxlen: 22
185.21.63.0/24 maxlen: 24
45.14.132.0/22 maxlen: 22
178.218.196.0/22 maxlen: 22
80.79.4.0/22 maxlen: 22
185.185.48.0/22 maxlen: 22
91.232.105.0/24 maxlen: 24
185.132.176.0/22 maxlen: 22
89.38.96.0/22 maxlen: 22
45.82.64.0/22 maxlen: 22
193.200.164.0/24 maxlen: 24
93.190.136.0/21 maxlen: 22
93.190.140.0/22 maxlen: 22
91.229.23.0/24 maxlen: 24
185.173.160.0/22 maxlen: 22
185.2.80.0/22 maxlen: 22
185.177.124.0/22 maxlen: 22
178.132.0.0/21 maxlen: 21
185.180.220.0/22 maxlen: 22
89.39.104.0/22 maxlen: 22
185.191.0.0/22 maxlen: 22
2.59.168.0/22 maxlen: 22
194.88.104.0/22 maxlen: 22
212.8.240.0/24 maxlen: 24
212.8.242.0/23 maxlen: 23
109.236.80.0/20 maxlen: 20
212.8.252.0/23 maxlen: 23
212.8.248.0/23 maxlen: 23
212.8.250.0/24 maxlen: 24
185.172.88.0/22 maxlen: 22
2a00:7c82::/32 maxlen: 32
2a00:7c81::/32 maxlen: 32
2a00:7c83::/32 maxlen: 32
2a00:7c80::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167313264 (0x9f8ff70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43015654082578c4946cd27be1e89a3dd7562fa4
Validity
Not Before: Mar 7 12:10:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7982d54c71c28164b41067dd41b923a2282b44e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:54:c7:a4:5b:84:da:f2:a0:4f:19:86:21:f5:
a3:bb:50:23:64:36:d8:88:43:d0:52:11:e6:aa:7b:
2c:36:85:50:50:1e:09:7f:38:bd:ef:23:89:65:08:
05:0f:09:42:cb:61:8b:95:16:de:5d:20:b6:f5:89:
5b:69:e8:d8:99:bc:c7:95:2e:41:e5:98:6f:ce:9c:
1d:3a:1f:1b:11:e4:71:91:bf:0d:ea:83:72:9d:0a:
86:31:71:82:c2:56:c7:42:4e:6d:bf:2a:1d:55:08:
3b:90:ec:0d:fd:54:62:a2:00:d9:10:03:ec:26:83:
9c:c2:82:ee:16:37:9e:0a:f8:15:b9:24:c6:84:28:
e5:86:61:b5:62:58:09:16:12:75:0a:52:fd:f8:88:
41:e6:67:e1:93:2d:d4:2e:53:da:a7:7d:6d:1c:a5:
56:77:46:ec:11:1f:33:4f:0e:14:1e:8a:07:ce:e2:
48:29:8c:62:f8:98:2d:34:0a:2b:03:7e:4d:2e:60:
3d:0b:51:c7:6c:cb:72:11:36:fe:76:cf:69:3c:33:
9a:a1:13:5b:47:92:08:1a:9e:b9:68:21:a8:f9:eb:
c2:c9:a7:75:cf:b5:f7:95:70:7e:7f:9b:3b:1d:cd:
bb:84:d6:e7:6f:b4:58:ac:7d:21:52:22:05:32:3d:
c7:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:82:D5:4C:71:C2:81:64:B4:10:67:DD:41:B9:23:A2:28:2B:44:E5
X509v3 Authority Key Identifier:
keyid:43:01:56:54:08:25:78:C4:94:6C:D2:7B:E1:E8:9A:3D:D7:56:2F:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwFWVAgleMSUbNJ74eiaPddWL6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c27fa6-b2b0-4dcb-a899-1030cdbe6bd4/1/eYLVTHHCgWS0EGfdQbkjoigrROU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c27fa6-b2b0-4dcb-a899-1030cdbe6bd4/1/QwFWVAgleMSUbNJ74eiaPddWL6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.168.0/22
45.14.132.0/22
45.82.64.0/22
62.112.8.0/22
80.79.4.0/22
89.38.96.0/22
89.39.104.0/22
91.229.23.0/24
91.232.105.0/24
93.190.136.0/21
109.236.80.0/20
178.132.0.0/21
178.218.196.0/22
185.2.80.0/22
185.21.60.0/22
185.132.132.0/22
185.132.176.0/22
185.165.240.0/22
185.172.88.0/22
185.173.160.0/22
185.177.124.0/22
185.180.220.0/22
185.182.192.0/22
185.183.32.0/22
185.184.192.0/22
185.185.48.0/22
185.191.0.0/22
193.200.164.0/24
194.88.104.0/22
212.8.240.0/24
212.8.242.0/23
212.8.248.0-212.8.250.255
212.8.252.0/23
217.23.0.0/20
IPv6:
2a00:7c80::/29
Signature Algorithm: sha256WithRSAEncryption
87:6f:a0:a7:a0:eb:4d:e2:73:99:de:30:0d:f2:78:17:83:50:
d0:c6:00:eb:77:0b:ed:b2:6a:73:bc:20:31:9c:36:17:06:cd:
99:86:e4:78:da:6c:7a:a7:f5:b2:19:b8:99:fb:a3:b6:d8:85:
4b:f1:db:55:56:0a:73:90:f6:54:9f:4c:36:e8:bc:31:ee:5f:
bd:19:42:59:d3:66:21:a1:1c:e0:5b:ad:c3:7f:78:30:6a:49:
be:18:bd:64:d3:a1:1c:fb:7a:30:5b:f2:ea:c8:63:c0:87:5d:
ca:05:d7:e5:f4:5a:9b:b4:ba:f2:aa:3a:5c:27:41:c1:b0:24:
77:12:df:40:1d:02:4b:cf:0a:f0:e0:83:dd:ee:21:42:5a:32:
55:fa:a1:13:e0:e0:65:9e:57:8f:3f:63:49:36:e2:29:5f:d0:
0b:76:97:ce:94:9f:ce:f1:77:b2:31:e2:05:09:2f:4e:82:e0:
f1:a3:75:35:a6:08:e9:cc:4d:b1:66:b8:64:67:60:cf:7a:93:
34:3e:ed:77:97:53:0c:a3:e6:7d:26:ad:da:44:eb:23:1e:b8:
6f:54:5e:61:ed:5e:e9:84:44:89:4b:35:09:d8:9b:6e:c2:87:
0f:3e:54:2a:b9:99:85:a5:9c:ec:6e:34:66:63:32:3f:d4:ff:
3e:73:1e:e0
-----BEGIN CERTIFICATE-----
MIIF0jCCBLqgAwIBAgIECfj/cDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
MzAxNTY1NDA4MjU3OGM0OTQ2Y2QyN2JlMWU4OWEzZGQ3NTYyZmE0MB4XDTIyMDMw
NzEyMTAzNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzk4MmQ1NGM3MWMy
ODE2NGI0MTA2N2RkNDFiOTIzYTIyODJiNDRlNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMZUx6RbhNryoE8ZhiH1o7tQI2Q22IhD0FIR5qp7LDaFUFAe
CX84ve8jiWUIBQ8JQsthi5UW3l0gtvWJW2no2Jm8x5UuQeWYb86cHTofGxHkcZG/
DeqDcp0KhjFxgsJWx0JObb8qHVUIO5DsDf1UYqIA2RAD7CaDnMKC7hY3ngr4Fbkk
xoQo5YZhtWJYCRYSdQpS/fiIQeZn4ZMt1C5T2qd9bRylVndG7BEfM08OFB6KB87i
SCmMYviYLTQKKwN+TS5gPQtRx2zLchE2/nbPaTwzmqETW0eSCBqeuWghqPnrwsmn
dc+195Vwfn+bOx3Nu4TW52+0WKx9IVIiBTI9x78CAwEAAaOCAuwwggLoMB0GA1Ud
DgQWBBR5gtVMccKBZLQQZ91BuSOiKCtE5TAfBgNVHSMEGDAWgBRDAVZUCCV4xJRs
0nvh6Jo911YvpDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1F3RldWQWdsZU1TVWJOSjc0ZWlhUGRkV0w2US5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTMvYzI3ZmE2LWIyYjAtNGRjYi1hODk5LTEwMzBjZGJlNmJkNC8x
L2VZTFZUSEhDZ1dTMEVHZmRRYmtqb2lnclJPVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTMv
YzI3ZmE2LWIyYjAtNGRjYi1hODk5LTEwMzBjZGJlNmJkNC8xL1F3RldWQWdsZU1T
VWJOSjc0ZWlhUGRkV0w2US5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCC
AQAGCCsGAQUFBwEHAQH/BIHwMIHtMIHbBAIAATCB1AMEAgI7qAMEAi0OhAMEAi1S
QAMEAj5wCAMEAlBPBAMEAlkmYAMEAlknaAMEAFvlFwMEAFvoaQMEA12+iAMEBG3s
UAMEA7KEAAMEArLaxAMEArkCUAMEArkVPAMEArmEhAMEArmEsAMEArml8AMEArms
WAMEArmtoAMEArmxfAMEArm03AMEArm2wAMEArm3IAMEArm4wAMEArm5MAMEArm/
AAMEAMHIpAMEAsJYaAMEANQI8AMEAdQI8jAMAwQD1Aj4AwQA1Aj6AwQB1Aj8AwQE
2RcAMA0EAgACMAcDBQMqAHyAMA0GCSqGSIb3DQEBCwUAA4IBAQCHb6CnoOtN4nOZ
3jAN8ngXg1DQxgDrdwvtsmpzvCAxnDYXBs2ZhuR42mx6p/WyGbiZ+6O22IVL8dtV
VgpzkPZUn0w26Lwx7l+9GUJZ02YhoRzgW63Df3gwakm+GL1k06Ec+3owW/LqyGPA
h13KBdfl9FqbtLryqjpcJ0HBsCR3Et9AHQJLzwrw4IPd7iFCWjJV+qET4OBlnleP
P2NJNuIpX9ALdpfOlJ/O8XeyMeIFCS9OguDxo3U1pgjpzE2xZrhkZ2DPepM0Pu13
l1MMo+Z9Jq3aROsjHrhvVF5h7V7phESJSzUJ2JtuwocPPlQquZmFpZzsbjRmYzI/
1P8+cx7g
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:07 2023 by rpki-client on console-ams.rpki-client.org