Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/edb4d3-33c8-45dc-a40e-c85b60fd8c8b/1/9YpEBGm714bsYFyyXtM8016imxw.roa
File: 9YpEBGm714bsYFyyXtM8016imxw.roa (raw, json)
Hash identifier: TKEgc8NiTrBeqIpFQx2NvgMQKAkbeWwJmgOyCpEw+Vc=
Subject key identifier: F5:8A:44:04:69:BB:D7:86:EC:60:5C:B2:5E:D3:3C:D3:5E:A2:9B:1C
Certificate issuer: /CN=8e36117135f6b86d0a9e1fa67e04baf5bcd86169
Certificate serial: 070E091F
Authority key identifier: 8E:36:11:71:35:F6:B8:6D:0A:9E:1F:A6:7E:04:BA:F5:BC:D8:61:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jjYRcTX2uG0Knh-mfgS69bzYYWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/edb4d3-33c8-45dc-a40e-c85b60fd8c8b/1/9YpEBGm714bsYFyyXtM8016imxw.roa
Signing time: Tue 17 May 2022 06:50:30 +0000
ROA not before: Tue 17 May 2022 06:50:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200064
IP address blocks: 79.98.217.0/24 maxlen: 24
79.98.216.0/24 maxlen: 24
79.98.219.0/24 maxlen: 24
79.98.218.0/24 maxlen: 24
79.98.221.0/24 maxlen: 24
79.98.220.0/24 maxlen: 24
79.98.223.0/24 maxlen: 24
79.98.222.0/24 maxlen: 24
141.105.98.0/24 maxlen: 24
141.105.97.0/24 maxlen: 24
141.105.96.0/24 maxlen: 24
141.105.105.0/24 maxlen: 24
141.105.104.0/24 maxlen: 24
141.105.103.0/24 maxlen: 24
141.105.102.0/24 maxlen: 24
141.105.101.0/24 maxlen: 24
141.105.100.0/24 maxlen: 24
141.105.99.0/24 maxlen: 24
141.105.108.0/24 maxlen: 24
141.105.107.0/24 maxlen: 24
141.105.106.0/24 maxlen: 24
141.105.111.0/24 maxlen: 24
141.105.110.0/24 maxlen: 24
141.105.109.0/24 maxlen: 24
185.28.140.0/22 maxlen: 22
185.28.140.0/24 maxlen: 24
185.28.143.0/24 maxlen: 24
185.28.142.0/24 maxlen: 24
185.28.141.0/24 maxlen: 24
2a02:2f80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118360351 (0x70e091f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e36117135f6b86d0a9e1fa67e04baf5bcd86169
Validity
Not Before: May 17 06:50:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f58a440469bbd786ec605cb25ed33cd35ea29b1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e5:fb:a7:d0:7a:65:ed:a2:f9:29:cc:31:29:
b5:3e:73:58:0e:77:c2:9a:86:e3:bf:86:75:f5:76:
78:a3:90:09:cf:b7:a9:1b:b9:85:d2:7f:b9:bb:a7:
52:4c:32:c5:0c:11:2f:86:dc:ec:77:0b:4c:ab:fc:
53:64:b5:5b:57:c7:46:df:94:85:ee:08:41:22:ce:
79:04:e5:4a:28:4f:fb:03:e1:f0:7a:12:a2:73:ef:
74:f7:06:81:28:f2:46:ee:9a:8d:f4:62:83:2a:fa:
4c:ba:dc:51:e9:dd:87:c5:9b:36:2a:d8:21:71:c7:
29:f9:b5:74:52:25:e5:ee:0d:43:fb:7e:51:11:e2:
a7:80:d3:63:0f:9d:dd:b9:24:24:98:6a:db:22:04:
0f:03:23:1d:e9:0a:f8:6b:5a:86:35:bb:7a:6c:13:
9b:98:71:af:2a:9a:36:09:eb:df:19:ee:10:72:2e:
ac:a5:20:e3:31:b9:ca:55:7b:7c:ba:ea:db:c7:60:
b3:64:0b:92:a9:b3:24:fa:9c:97:fd:93:0d:08:eb:
30:f7:ba:af:a6:99:36:11:69:aa:22:44:9a:48:39:
b6:12:53:a2:2b:f8:37:10:9e:a2:14:cb:a7:08:5e:
b5:74:68:a3:12:d5:ea:7c:72:0f:e0:71:b7:06:10:
62:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:8A:44:04:69:BB:D7:86:EC:60:5C:B2:5E:D3:3C:D3:5E:A2:9B:1C
X509v3 Authority Key Identifier:
keyid:8E:36:11:71:35:F6:B8:6D:0A:9E:1F:A6:7E:04:BA:F5:BC:D8:61:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jjYRcTX2uG0Knh-mfgS69bzYYWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/edb4d3-33c8-45dc-a40e-c85b60fd8c8b/1/9YpEBGm714bsYFyyXtM8016imxw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/edb4d3-33c8-45dc-a40e-c85b60fd8c8b/1/jjYRcTX2uG0Knh-mfgS69bzYYWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.98.216.0/21
141.105.96.0/20
185.28.140.0/22
IPv6:
2a02:2f80::/29
Signature Algorithm: sha256WithRSAEncryption
43:b4:f8:2e:31:6f:45:93:ca:3c:6e:9b:a8:20:0e:b3:90:03:
0f:d8:49:54:d3:d0:80:65:22:b2:88:5d:5c:a7:a4:23:bc:89:
8c:75:33:b2:d6:6f:d8:5e:0c:16:96:45:c1:35:dd:be:61:e5:
06:58:d8:b0:2c:2c:c1:6b:7f:30:47:93:f3:a1:3e:d8:c2:b1:
5b:8b:d6:65:c4:2f:fb:d6:93:c1:bc:dc:b3:97:f7:db:87:fb:
d3:e3:44:d2:16:60:bc:6c:00:c3:76:67:4f:e3:88:db:38:7c:
cf:c0:6e:b1:de:4c:64:36:fd:09:45:c5:f8:98:1d:cf:3d:9a:
ba:8d:63:52:df:77:44:70:c1:99:32:73:03:f1:31:dd:89:59:
35:1f:5e:c7:17:1a:52:58:ac:3f:4d:f0:09:a2:16:6f:a9:f9:
8f:c6:be:de:a9:6f:f8:34:0e:a0:48:a9:81:8e:89:38:31:5b:
6f:a8:c2:7d:a0:f5:80:53:6e:f8:25:f4:6f:9c:2a:2a:b5:ca:
84:e2:09:e4:f1:68:78:b0:6a:c0:e7:82:d7:bf:f4:43:9a:67:
80:13:fe:ca:f0:e3:f7:f7:01:33:2d:ff:c9:ee:06:30:b9:f5:
7b:63:10:6f:4e:eb:29:4c:59:cb:af:a0:4d:67:19:b5:de:5f:
24:53:24:aa
-----BEGIN CERTIFICATE-----
MIIFCjCCA/KgAwIBAgIEBw4JHzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZTM2MTE3MTM1ZjZiODZkMGE5ZTFmYTY3ZTA0YmFmNWJjZDg2MTY5MB4XDTIyMDUx
NzA2NTAzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjU4YTQ0MDQ2OWJi
ZDc4NmVjNjA1Y2IyNWVkMzNjZDM1ZWEyOWIxYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALPl+6fQemXtovkpzDEptT5zWA53wpqG47+GdfV2eKOQCc+3
qRu5hdJ/ubunUkwyxQwRL4bc7HcLTKv8U2S1W1fHRt+Uhe4IQSLOeQTlSihP+wPh
8HoSonPvdPcGgSjyRu6ajfRigyr6TLrcUendh8WbNirYIXHHKfm1dFIl5e4NQ/t+
URHip4DTYw+d3bkkJJhq2yIEDwMjHekK+GtahjW7emwTm5hxryqaNgnr3xnuEHIu
rKUg4zG5ylV7fLrq28dgs2QLkqmzJPqcl/2TDQjrMPe6r6aZNhFpqiJEmkg5thJT
oiv4NxCeohTLpwhetXRooxLV6nxyD+BxtwYQYikCAwEAAaOCAiQwggIgMB0GA1Ud
DgQWBBT1ikQEabvXhuxgXLJe0zzTXqKbHDAfBgNVHSMEGDAWgBSONhFxNfa4bQqe
H6Z+BLr1vNhhaTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2pqWVJjVFgydUcwS25oLW1mZ1M2OWJ6WVlXay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWUvZWRiNGQzLTMzYzgtNDVkYy1hNDBlLWM4NWI2MGZkOGM4Yi8x
LzlZcEVCR203MTRic1lGeXlYdE04MDE2aW14dy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWUv
ZWRiNGQzLTMzYzgtNDVkYy1hNDBlLWM4NWI2MGZkOGM4Yi8xL2pqWVJjVFgydUcw
S25oLW1mZ1M2OWJ6WVlXay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA6
BggrBgEFBQcBBwEB/wQrMCkwGAQCAAEwEgMEA09i2AMEBI1pYAMEArkcjDANBAIA
AjAHAwUDKgIvgDANBgkqhkiG9w0BAQsFAAOCAQEAQ7T4LjFvRZPKPG6bqCAOs5AD
D9hJVNPQgGUisohdXKekI7yJjHUzstZv2F4MFpZFwTXdvmHlBljYsCwswWt/MEeT
86E+2MKxW4vWZcQv+9aTwbzcs5f324f70+NE0hZgvGwAw3ZnT+OI2zh8z8Busd5M
ZDb9CUXF+Jgdzz2auo1jUt93RHDBmTJzA/Ex3YlZNR9exxcaUlisP03wCaIWb6n5
j8a+3qlv+DQOoEipgY6JODFbb6jCfaD1gFNu+CX0b5wqKrXKhOIJ5PFoeLBqwOeC
17/0Q5pngBP+yvDj9/cBMy3/ye4GMLn1e2MQb07rKUxZy6+gTWcZtd5fJFMkqg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:23 2024 by rpki-client on console-ams.rpki-client.org