Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/v-aQnAEHp0YFRIpUUHjycObbxws.roa
File: v-aQnAEHp0YFRIpUUHjycObbxws.roa (raw, json)
Hash identifier: vIkmDuaWxSvLCNclqjJB24uxO+OWDWogT1JLuRJbRhg=
Subject key identifier: BF:E6:90:9C:01:07:A7:46:05:44:8A:54:50:78:F2:70:E6:DB:C7:0B
Certificate issuer: /CN=e909ee3d618974da0cbd805a2da80410a4989881
Certificate serial: 1C9135D6
Authority key identifier: E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/v-aQnAEHp0YFRIpUUHjycObbxws.roa
Signing time: Tue 17 May 2022 15:00:04 +0000
ROA not before: Tue 17 May 2022 15:00:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30781
IP address blocks: 46.231.216.0/21 maxlen: 24
185.53.80.0/22 maxlen: 24
212.114.16.0/20 maxlen: 24
46.22.192.0/20 maxlen: 24
45.80.8.0/22 maxlen: 24
45.80.20.0/22 maxlen: 24
45.80.24.0/22 maxlen: 24
45.80.32.0/22 maxlen: 24
46.255.200.0/21 maxlen: 24
95.178.88.0/22 maxlen: 24
185.114.100.0/22 maxlen: 24
94.100.160.0/20 maxlen: 24
37.110.192.0/21 maxlen: 24
193.151.84.0/24 maxlen: 24
193.151.87.0/24 maxlen: 24
37.26.184.0/21 maxlen: 24
185.146.220.0/22 maxlen: 24
194.116.142.0/23 maxlen: 24
185.15.140.0/22 maxlen: 24
185.62.184.0/22 maxlen: 24
212.85.229.0/24 maxlen: 24
212.85.230.0/23 maxlen: 24
195.234.35.0/24 maxlen: 24
95.143.64.0/20 maxlen: 24
176.241.120.0/21 maxlen: 24
212.18.240.0/21 maxlen: 24
130.180.208.0/20 maxlen: 24
78.153.224.0/19 maxlen: 24
185.61.184.0/22 maxlen: 24
185.61.184.0/21 maxlen: 24
185.61.188.0/22 maxlen: 24
31.172.232.0/21 maxlen: 24
31.172.238.0/24 maxlen: 24
185.78.156.0/22 maxlen: 24
185.92.36.0/22 maxlen: 24
31.7.248.0/21 maxlen: 24
31.172.160.0/22 maxlen: 24
193.189.124.0/23 maxlen: 24
185.4.60.0/23 maxlen: 24
185.91.220.0/22 maxlen: 24
185.91.224.0/22 maxlen: 24
77.72.88.0/21 maxlen: 24
37.61.240.0/21 maxlen: 24
85.31.192.0/19 maxlen: 24
82.163.36.0/22 maxlen: 24
5.226.0.0/21 maxlen: 24
88.212.144.0/21 maxlen: 24
88.212.152.0/22 maxlen: 24
185.209.52.0/22 maxlen: 24
82.196.24.0/21 maxlen: 24
88.202.236.0/22 maxlen: 24
77.246.80.0/20 maxlen: 24
2a05:6e00::/29 maxlen: 48
2a03:bdc0::/32 maxlen: 48
2a02:398::/32 maxlen: 48
2a0b:41c0::/29 maxlen: 48
2a00:68c0::/32 maxlen: 48
2a04:cc00::/29 maxlen: 48
2a01:240::/32 maxlen: 48
2a01:290::/32 maxlen: 48
2a00:78c0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 479278550 (0x1c9135d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e909ee3d618974da0cbd805a2da80410a4989881
Validity
Not Before: May 17 15:00:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bfe6909c0107a74605448a545078f270e6dbc70b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f4:ad:02:f4:29:69:0e:ac:26:30:00:c3:cf:
47:10:96:b6:cb:9c:a6:f0:f4:d3:97:e4:4f:26:53:
7b:5b:a3:ab:60:16:c3:60:65:97:c3:f4:8c:24:05:
2f:68:4a:0d:79:25:6c:9e:e2:62:9a:70:02:1f:69:
c7:8f:f0:34:28:12:6d:8b:6a:a1:5f:21:cb:30:97:
42:bf:49:06:48:3c:1a:d6:1e:f4:88:6d:e6:6d:f3:
4e:ae:48:6a:26:1f:8b:96:d9:21:7e:12:74:d3:15:
da:04:c4:95:29:f9:98:73:6b:2d:d0:e8:cb:61:02:
91:c5:24:51:68:49:55:44:83:31:7e:29:4d:c9:f5:
01:62:0f:a4:23:fd:2f:8f:16:2e:4d:d5:9e:e4:bf:
cb:9e:fb:08:18:ee:7b:f0:75:98:f7:ea:28:11:fa:
bb:39:a4:2f:b2:8c:e8:60:0f:e5:6e:04:ee:87:33:
19:58:ba:0b:18:fb:50:b7:55:87:a9:f9:61:72:d9:
2a:30:e3:77:dd:a7:95:2f:39:89:f5:d3:23:9e:b2:
48:9b:5b:99:45:f2:f2:24:4b:8e:93:2b:0b:7a:f4:
f4:bd:e3:3f:57:a4:f0:ff:c3:47:55:27:25:a3:0b:
4c:ae:ea:e0:0a:0c:69:a5:00:46:71:61:d9:c5:60:
8c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:E6:90:9C:01:07:A7:46:05:44:8A:54:50:78:F2:70:E6:DB:C7:0B
X509v3 Authority Key Identifier:
keyid:E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/v-aQnAEHp0YFRIpUUHjycObbxws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/6QnuPWGJdNoMvYBaLagEEKSYmIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.0.0/21
31.7.248.0/21
31.172.160.0/22
31.172.232.0/21
37.26.184.0/21
37.61.240.0/21
37.110.192.0/21
45.80.8.0/22
45.80.20.0-45.80.27.255
45.80.32.0/22
46.22.192.0/20
46.231.216.0/21
46.255.200.0/21
77.72.88.0/21
77.246.80.0/20
78.153.224.0/19
82.163.36.0/22
82.196.24.0/21
85.31.192.0/19
88.202.236.0/22
88.212.144.0-88.212.155.255
94.100.160.0/20
95.143.64.0/20
95.178.88.0/22
130.180.208.0/20
176.241.120.0/21
185.4.60.0/23
185.15.140.0/22
185.53.80.0/22
185.61.184.0/21
185.62.184.0/22
185.78.156.0/22
185.91.220.0-185.91.227.255
185.92.36.0/22
185.114.100.0/22
185.146.220.0/22
185.209.52.0/22
193.151.84.0/24
193.151.87.0/24
193.189.124.0/23
194.116.142.0/23
195.234.35.0/24
212.18.240.0/21
212.85.229.0-212.85.231.255
212.114.16.0/20
IPv6:
2a00:68c0::/32
2a00:78c0::/29
2a01:240::/32
2a01:290::/32
2a02:398::/32
2a03:bdc0::/32
2a04:cc00::/29
2a05:6e00::/29
2a0b:41c0::/29
Signature Algorithm: sha256WithRSAEncryption
38:7d:6f:fc:c1:5f:e7:c7:d2:d6:f9:5f:be:b1:96:6d:5d:7f:
2a:e7:53:85:b9:21:31:c4:28:fb:8d:f3:df:6c:4c:58:4a:68:
31:e2:e4:8f:25:9b:0d:31:90:e1:6e:72:e9:b8:67:e2:71:e2:
2c:4d:ec:5d:99:2f:4a:74:c7:87:d1:93:3f:e0:ef:1b:f5:94:
e5:d4:14:0b:eb:da:e6:8f:9e:f9:cc:78:af:ab:bb:e4:e9:ee:
42:ba:07:71:42:50:47:3e:89:1e:38:95:7b:88:87:e5:52:c0:
2a:0c:0d:f8:f0:1f:f3:0c:16:5e:16:e0:60:84:bd:35:12:14:
b5:ca:83:95:ad:98:00:30:20:b0:10:2e:54:98:69:8f:09:67:
4d:af:1f:d5:6b:6e:66:fd:51:d4:9a:06:1e:18:9e:80:d2:50:
ca:a3:a3:78:46:39:2f:38:ef:64:66:8e:4a:ae:fd:6d:8b:3b:
77:1e:bc:9e:dd:b0:fc:93:75:9a:d7:65:f4:76:06:bd:da:cb:
67:5c:3d:d6:e2:bb:76:10:2f:4c:a8:29:3a:79:b5:67:ff:f2:
35:8c:c9:23:05:08:56:91:b8:55:80:a6:52:68:2f:70:45:3d:
92:6c:e2:25:56:bd:90:38:eb:91:61:f2:d5:0e:28:e7:02:32:
6b:d4:66:fe
-----BEGIN CERTIFICATE-----
MIIGaDCCBVCgAwIBAgIEHJE11jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
OTA5ZWUzZDYxODk3NGRhMGNiZDgwNWEyZGE4MDQxMGE0OTg5ODgxMB4XDTIyMDUx
NzE1MDAwNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmZlNjkwOWMwMTA3
YTc0NjA1NDQ4YTU0NTA3OGYyNzBlNmRiYzcwYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJr0rQL0KWkOrCYwAMPPRxCWtsucpvD005fkTyZTe1ujq2AW
w2Bll8P0jCQFL2hKDXklbJ7iYppwAh9px4/wNCgSbYtqoV8hyzCXQr9JBkg8GtYe
9Iht5m3zTq5IaiYfi5bZIX4SdNMV2gTElSn5mHNrLdDoy2ECkcUkUWhJVUSDMX4p
Tcn1AWIPpCP9L48WLk3VnuS/y577CBjue/B1mPfqKBH6uzmkL7KM6GAP5W4E7ocz
GVi6Cxj7ULdVh6n5YXLZKjDjd92nlS85ifXTI56ySJtbmUXy8iRLjpMrC3r09L3j
P1ek8P/DR1UnJaMLTK7q4AoMaaUARnFh2cVgjPUCAwEAAaOCA4IwggN+MB0GA1Ud
DgQWBBS/5pCcAQenRgVEilRQePJw5tvHCzAfBgNVHSMEGDAWgBTpCe49YYl02gy9
gFotqAQQpJiYgTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzZRbnVQV0dKZE5vTXZZQmFMYWdFRUtTWW1JRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWUvMmI1ZjVmLWJiOTYtNGIzMS04YTZhLWRkMTE1ZjllMzMwMS8x
L3YtYVFuQUVIcDBZRlJJcFVVSGp5Y09iYnh3cy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWUv
MmI1ZjVmLWJiOTYtNGIzMS04YTZhLWRkMTE1ZjllMzMwMS8xLzZRbnVQV0dKZE5v
TXZZQmFMYWdFRUtTWW1JRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCC
AZYGCCsGAQUFBwEHAQH/BIIBhTCCAYEwggE2BAIAATCCAS4DBAMF4gADBAMfB/gD
BAIfrKADBAMfrOgDBAMlGrgDBAMlPfADBAMlbsADBAItUAgwDAMEAi1QFAMEAi1Q
GAMEAi1QIAMEBC4WwAMEAy7n2AMEAy7/yAMEA01IWAMEBE32UAMEBU6Z4AMEAlKj
JAMEA1LEGAMEBVUfwAMEAljK7DAMAwQEWNSQAwQCWNSYAwQEXmSgAwQEX49AAwQC
X7JYAwQEgrTQAwQDsPF4AwQBuQQ8AwQCuQ+MAwQCuTVQAwQDuT24AwQCuT64AwQC
uU6cMAwDBAK5W9wDBAK5W+ADBAK5XCQDBAK5cmQDBAK5ktwDBAK50TQDBADBl1QD
BADBl1cDBAHBvXwDBAHCdI4DBADD6iMDBAPUEvAwDAMEANRV5QMEA9RV4AMEBNRy
EDBFBAIAAjA/AwUAKgBowAMFAyoAeMADBQAqAQJAAwUAKgECkAMFACoCA5gDBQAq
A73AAwUDKgTMAAMFAyoFbgADBQMqC0HAMA0GCSqGSIb3DQEBCwUAA4IBAQA4fW/8
wV/nx9LW+V++sZZtXX8q51OFuSExxCj7jfPfbExYSmgx4uSPJZsNMZDhbnLpuGfi
ceIsTexdmS9KdMeH0ZM/4O8b9ZTl1BQL69rmj575zHivq7vk6e5CugdxQlBHPoke
OJV7iIflUsAqDA348B/zDBZeFuBghL01EhS1yoOVrZgAMCCwEC5UmGmPCWdNrx/V
a25m/VHUmgYeGJ6A0lDKo6N4RjkvOO9kZo5Krv1tizt3Hrye3bD8k3Wa12X0dga9
2stnXD3W4rt2EC9MqCk6ebVn//I1jMkjBQhWkbhVgKZSaC9wRT2SbOIlVr2QOOuR
YfLVDijnAjJr1Gb+
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:44 2024 by rpki-client on console-fra.rpki-client.org