Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/59a43f-881a-48ed-9c3e-82c085a92777/1/R39JeLon3ngAoX9hlJ03rJgSoDs.roa
File: R39JeLon3ngAoX9hlJ03rJgSoDs.roa (raw, json)
Hash identifier: x/yDr1v/ZDVedo+AqnnqtiHPVFzud8ZokGxheIlxLz0=
Subject key identifier: 47:7F:49:78:BA:27:DE:78:00:A1:7F:61:94:9D:37:AC:98:12:A0:3B
Certificate issuer: /CN=1a6a1413cc8965ee92416b6059f90b18778c8b38
Certificate serial: 016F33DC
Authority key identifier: 1A:6A:14:13:CC:89:65:EE:92:41:6B:60:59:F9:0B:18:77:8C:8B:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GmoUE8yJZe6SQWtgWfkLGHeMizg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/59a43f-881a-48ed-9c3e-82c085a92777/1/R39JeLon3ngAoX9hlJ03rJgSoDs.roa
Signing time: Tue 08 Mar 2022 10:47:04 +0000
ROA not before: Tue 08 Mar 2022 10:47:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5385
IP address blocks: 194.208.56.0/24 maxlen: 24
194.208.52.0/24 maxlen: 24
194.208.63.0/24 maxlen: 24
194.208.61.0/24 maxlen: 24
194.208.60.0/24 maxlen: 24
194.208.68.0/24 maxlen: 24
194.208.76.0/24 maxlen: 24
194.208.77.0/24 maxlen: 24
194.208.74.0/24 maxlen: 24
194.208.72.0/24 maxlen: 24
194.208.78.0/24 maxlen: 24
194.208.83.0/24 maxlen: 24
194.208.82.0/24 maxlen: 24
194.208.80.0/24 maxlen: 24
194.208.81.0/24 maxlen: 24
194.208.79.0/24 maxlen: 24
194.208.89.0/24 maxlen: 24
194.208.96.0/23 maxlen: 23
194.208.92.0/24 maxlen: 24
194.208.93.0/24 maxlen: 24
194.208.104.0/24 maxlen: 24
194.208.105.0/24 maxlen: 24
194.208.102.0/24 maxlen: 24
194.208.1.0/24 maxlen: 24
194.208.0.0/17 maxlen: 17
194.208.7.0/24 maxlen: 24
194.208.10.0/24 maxlen: 24
194.208.11.0/24 maxlen: 24
194.208.17.0/24 maxlen: 24
194.208.15.0/24 maxlen: 24
194.208.12.0/24 maxlen: 24
194.208.13.0/24 maxlen: 24
194.208.18.0/24 maxlen: 24
194.208.23.0/24 maxlen: 24
194.208.25.0/24 maxlen: 24
194.208.43.0/24 maxlen: 24
194.208.42.0/24 maxlen: 24
194.208.40.0/24 maxlen: 24
194.208.41.0/24 maxlen: 24
194.208.49.0/24 maxlen: 24
194.208.45.0/24 maxlen: 24
194.208.46.0/24 maxlen: 24
194.208.51.0/24 maxlen: 24
194.208.160.0/20 maxlen: 20
194.208.186.0/24 maxlen: 24
194.208.184.0/21 maxlen: 21
194.208.187.0/24 maxlen: 24
194.208.192.0/18 maxlen: 18
194.208.207.0/24 maxlen: 24
194.208.107.0/24 maxlen: 24
194.208.116.0/24 maxlen: 24
194.208.117.0/24 maxlen: 24
194.208.120.0/24 maxlen: 24
194.208.121.0/24 maxlen: 24
194.208.127.0/24 maxlen: 24
194.183.148.0/24 maxlen: 24
194.183.146.0/24 maxlen: 24
194.183.147.0/24 maxlen: 24
194.183.152.0/24 maxlen: 24
194.183.151.0/24 maxlen: 24
194.183.153.0/24 maxlen: 24
80.75.224.0/20 maxlen: 20
194.183.128.0/19 maxlen: 19
194.183.131.0/24 maxlen: 24
194.183.132.0/24 maxlen: 24
194.183.129.0/24 maxlen: 24
194.183.130.0/24 maxlen: 24
194.183.128.0/24 maxlen: 24
194.183.138.0/24 maxlen: 24
194.183.136.0/24 maxlen: 24
194.183.137.0/24 maxlen: 24
194.183.140.0/24 maxlen: 24
194.183.143.0/24 maxlen: 24
194.208.243.0/24 maxlen: 24
194.208.245.0/24 maxlen: 24
2001:af8::/32 maxlen: 32
2001:af8:3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24064988 (0x16f33dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a6a1413cc8965ee92416b6059f90b18778c8b38
Validity
Not Before: Mar 8 10:47:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=477f4978ba27de7800a17f61949d37ac9812a03b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:52:7d:a9:be:5a:bf:5a:03:e9:d3:61:0d:d9:
34:bd:d0:8e:d8:71:a0:2c:a6:6e:c3:b5:b2:ef:d6:
cf:74:37:cc:dd:d3:45:8e:4d:1f:d2:bf:6e:68:2a:
66:ba:13:91:a3:9b:04:aa:f6:be:11:f5:1f:75:7c:
39:be:76:ea:1c:b3:f1:2e:35:dc:61:af:78:65:48:
4e:53:c0:cd:48:d0:e4:67:6c:8c:ae:00:5b:23:59:
af:ab:c7:73:77:71:e7:56:4d:c4:09:47:5a:1e:6a:
f1:fb:a6:9f:ed:89:b6:e8:33:cf:85:48:87:92:c5:
0a:c1:29:47:0f:a4:6d:1d:b1:eb:be:cd:90:68:53:
90:56:6c:a7:4f:ed:c0:e0:9c:e2:73:bd:4c:ba:74:
7e:e9:6d:7e:22:8b:e2:cf:30:6e:b3:dd:a5:3e:5c:
7d:ea:29:7d:d6:ff:a3:9b:af:de:12:c9:ee:e7:b3:
c0:d7:6c:cb:32:9e:05:aa:be:c2:48:33:41:c3:6a:
a5:8e:90:60:a0:e3:2c:7e:dc:5b:ef:40:7d:6f:15:
03:ea:ae:af:0f:dc:ea:12:04:81:5a:8c:64:e1:03:
34:33:a8:c3:50:c6:f8:5d:cf:ba:3d:df:69:8d:9e:
c1:28:89:6f:32:06:d0:dc:8c:90:69:c3:8d:dd:15:
a1:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:7F:49:78:BA:27:DE:78:00:A1:7F:61:94:9D:37:AC:98:12:A0:3B
X509v3 Authority Key Identifier:
keyid:1A:6A:14:13:CC:89:65:EE:92:41:6B:60:59:F9:0B:18:77:8C:8B:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GmoUE8yJZe6SQWtgWfkLGHeMizg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/59a43f-881a-48ed-9c3e-82c085a92777/1/R39JeLon3ngAoX9hlJ03rJgSoDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/59a43f-881a-48ed-9c3e-82c085a92777/1/GmoUE8yJZe6SQWtgWfkLGHeMizg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.75.224.0/20
194.183.128.0/19
194.208.0.0/17
194.208.160.0/20
194.208.184.0-194.208.255.255
IPv6:
2001:af8::/32
Signature Algorithm: sha256WithRSAEncryption
38:74:a5:cc:bf:86:69:37:d1:7b:f3:aa:72:fa:1d:40:7d:42:
90:08:01:93:e3:8a:22:b7:ff:75:f1:c4:62:05:74:9c:f6:99:
03:2e:07:4c:73:db:34:68:8c:55:cb:3c:09:0f:62:70:4e:0f:
ef:95:d3:d7:00:6b:1a:aa:23:e5:bf:ff:90:91:e6:62:d2:38:
06:d6:e1:be:ca:36:42:70:8d:70:41:52:ed:97:6f:d8:8f:09:
73:e9:83:46:a8:15:9e:96:df:ad:54:09:c6:7a:73:5c:ff:8d:
b0:87:84:18:0a:af:af:16:2b:6c:70:aa:f6:10:53:60:9b:96:
2e:59:dc:a5:22:74:7b:12:88:0a:d0:d7:03:1b:f8:50:d3:81:
71:f0:f7:61:09:9d:50:09:23:4e:38:79:8d:6f:c1:99:36:c9:
65:24:19:90:c4:52:16:61:fd:cd:77:d4:ae:af:13:f2:1d:2c:
ab:60:ea:e6:cb:22:77:c8:1d:02:82:d0:70:75:13:d1:6c:a4:
a3:1c:f7:02:19:5d:da:4b:96:88:ae:d2:cc:17:65:61:01:8a:
b5:46:ba:06:77:af:7f:1a:cb:d7:f8:65:a1:d6:cf:7a:67:e1:
11:25:c8:82:b5:e6:77:3c:98:a7:8b:9d:f7:bf:86:d1:16:f0:
20:75:18:94
-----BEGIN CERTIFICATE-----
MIIFHTCCBAWgAwIBAgIEAW8z3DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
YTZhMTQxM2NjODk2NWVlOTI0MTZiNjA1OWY5MGIxODc3OGM4YjM4MB4XDTIyMDMw
ODEwNDcwNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDc3ZjQ5NzhiYTI3
ZGU3ODAwYTE3ZjYxOTQ5ZDM3YWM5ODEyYTAzYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK5Sfam+Wr9aA+nTYQ3ZNL3QjthxoCymbsO1su/Wz3Q3zN3T
RY5NH9K/bmgqZroTkaObBKr2vhH1H3V8Ob526hyz8S413GGveGVITlPAzUjQ5Gds
jK4AWyNZr6vHc3dx51ZNxAlHWh5q8fumn+2Jtugzz4VIh5LFCsEpRw+kbR2x677N
kGhTkFZsp0/twOCc4nO9TLp0fultfiKL4s8wbrPdpT5cfeopfdb/o5uv3hLJ7uez
wNdsyzKeBaq+wkgzQcNqpY6QYKDjLH7cW+9AfW8VA+qurw/c6hIEgVqMZOEDNDOo
w1DG+F3Puj3faY2ewSiJbzIG0NyMkGnDjd0VoWMCAwEAAaOCAjcwggIzMB0GA1Ud
DgQWBBRHf0l4uifeeAChf2GUnTesmBKgOzAfBgNVHSMEGDAWgBQaahQTzIll7pJB
a2BZ+QsYd4yLODAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0dtb1VFOHlKWmU2U1FXdGdXZmtMR0hlTWl6Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmQvNTlhNDNmLTg4MWEtNDhlZC05YzNlLTgyYzA4NWE5Mjc3Ny8x
L1IzOUplTG9uM25nQW9YOWhsSjAzckpnU29Ecy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmQv
NTlhNDNmLTg4MWEtNDhlZC05YzNlLTgyYzA4NWE5Mjc3Ny8xL0dtb1VFOHlKWmU2
U1FXdGdXZmtMR0hlTWl6Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBN
BggrBgEFBQcBBwEB/wQ+MDwwKwQCAAEwJQMEBFBL4AMEBcK3gAMEB8LQAAMEBMLQ
oDALAwQDwtC4AwMAwtAwDQQCAAIwBwMFACABCvgwDQYJKoZIhvcNAQELBQADggEB
ADh0pcy/hmk30XvzqnL6HUB9QpAIAZPjiiK3/3XxxGIFdJz2mQMuB0xz2zRojFXL
PAkPYnBOD++V09cAaxqqI+W//5CR5mLSOAbW4b7KNkJwjXBBUu2Xb9iPCXPpg0ao
FZ6W361UCcZ6c1z/jbCHhBgKr68WK2xwqvYQU2Cbli5Z3KUidHsSiArQ1wMb+FDT
gXHw92EJnVAJI044eY1vwZk2yWUkGZDEUhZh/c131K6vE/IdLKtg6ubLInfIHQKC
0HB1E9FspKMc9wIZXdpLloiu0swXZWEBirVGugZ3r38ay9f4ZaHWz3pn4RElyIK1
5nc8mKeLnfe/htEW8CB1GJQ=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:41 2023 by rpki-client on console-ams.rpki-client.org