Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/59a43f-881a-48ed-9c3e-82c085a92777/1/m4vQAZO0HcXc2PyeanFqMjI45LY.roa
File: m4vQAZO0HcXc2PyeanFqMjI45LY.roa (raw, json)
Hash identifier: vYTkoqYrEZNK1W5F+1y/I0ErmTWN1rlvbobyKww+lW8=
Subject key identifier: 9B:8B:D0:01:93:B4:1D:C5:DC:D8:FC:9E:6A:71:6A:32:32:38:E4:B6
Certificate issuer: /CN=1a6a1413cc8965ee92416b6059f90b18778c8b38
Certificate serial: 0182B029FB46C076C83F288D7D69B5717683
Authority key identifier: 1A:6A:14:13:CC:89:65:EE:92:41:6B:60:59:F9:0B:18:77:8C:8B:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GmoUE8yJZe6SQWtgWfkLGHeMizg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/59a43f-881a-48ed-9c3e-82c085a92777/1/m4vQAZO0HcXc2PyeanFqMjI45LY.roa
Signing time: Thu 18 Aug 2022 08:55:17 +0000
ROA not before: Thu 18 Aug 2022 08:55:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5385
IP address blocks: 194.208.56.0/24 maxlen: 24
194.208.52.0/24 maxlen: 24
194.208.63.0/24 maxlen: 24
194.208.61.0/24 maxlen: 24
194.208.62.0/24 maxlen: 24
194.208.60.0/24 maxlen: 24
194.208.68.0/24 maxlen: 24
194.208.76.0/24 maxlen: 24
194.208.77.0/24 maxlen: 24
194.208.74.0/24 maxlen: 24
194.208.72.0/24 maxlen: 24
194.208.78.0/24 maxlen: 24
194.208.83.0/24 maxlen: 24
194.208.82.0/24 maxlen: 24
194.208.80.0/24 maxlen: 24
194.208.81.0/24 maxlen: 24
194.208.79.0/24 maxlen: 24
194.208.89.0/24 maxlen: 24
194.208.96.0/23 maxlen: 23
194.208.92.0/24 maxlen: 24
194.208.93.0/24 maxlen: 24
194.208.104.0/24 maxlen: 24
194.208.105.0/24 maxlen: 24
194.208.102.0/24 maxlen: 24
194.208.1.0/24 maxlen: 24
194.208.0.0/17 maxlen: 17
194.208.7.0/24 maxlen: 24
194.208.10.0/24 maxlen: 24
194.208.11.0/24 maxlen: 24
194.208.17.0/24 maxlen: 24
194.208.15.0/24 maxlen: 24
194.208.12.0/24 maxlen: 24
194.208.13.0/24 maxlen: 24
194.208.18.0/24 maxlen: 24
194.208.23.0/24 maxlen: 24
194.208.25.0/24 maxlen: 24
194.208.43.0/24 maxlen: 24
194.208.42.0/24 maxlen: 24
194.208.40.0/24 maxlen: 24
194.208.41.0/24 maxlen: 24
194.208.49.0/24 maxlen: 24
194.208.45.0/24 maxlen: 24
194.208.46.0/24 maxlen: 24
194.208.51.0/24 maxlen: 24
194.208.160.0/20 maxlen: 20
194.208.186.0/24 maxlen: 24
194.208.184.0/21 maxlen: 21
194.208.187.0/24 maxlen: 24
194.208.192.0/18 maxlen: 18
194.208.207.0/24 maxlen: 24
194.208.108.0/24 maxlen: 24
194.208.107.0/24 maxlen: 24
194.208.116.0/24 maxlen: 24
194.208.117.0/24 maxlen: 24
194.208.120.0/24 maxlen: 24
194.208.121.0/24 maxlen: 24
194.208.127.0/24 maxlen: 24
194.183.148.0/24 maxlen: 24
194.183.146.0/24 maxlen: 24
194.183.147.0/24 maxlen: 24
194.183.152.0/24 maxlen: 24
194.183.151.0/24 maxlen: 24
194.183.153.0/24 maxlen: 24
80.75.224.0/20 maxlen: 20
194.183.128.0/19 maxlen: 19
194.183.131.0/24 maxlen: 24
194.183.132.0/24 maxlen: 24
194.183.129.0/24 maxlen: 24
194.183.130.0/24 maxlen: 24
194.183.128.0/24 maxlen: 24
194.183.138.0/24 maxlen: 24
194.183.136.0/24 maxlen: 24
194.183.137.0/24 maxlen: 24
194.183.140.0/24 maxlen: 24
194.183.143.0/24 maxlen: 24
194.208.243.0/24 maxlen: 24
194.208.245.0/24 maxlen: 24
2001:af8:6106::/48 maxlen: 48
2001:af8::/32 maxlen: 32
2001:af8:3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b0:29:fb:46:c0:76:c8:3f:28:8d:7d:69:b5:71:76:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a6a1413cc8965ee92416b6059f90b18778c8b38
Validity
Not Before: Aug 18 08:55:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b8bd00193b41dc5dcd8fc9e6a716a323238e4b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:f5:0e:2c:ea:91:67:23:81:20:ac:eb:11:e0:
b9:0e:d8:c0:30:72:b8:0f:c3:36:5a:4e:1b:ca:7d:
7e:0b:c3:e8:9a:2c:3f:b6:6d:8e:00:6c:a6:ec:e2:
f1:ea:fb:17:56:87:7e:72:80:1b:21:bf:46:f2:c0:
22:0c:41:72:06:91:b9:b5:07:2f:a7:7a:e8:b3:d8:
d9:1c:18:25:c8:3a:3b:a5:d8:d8:80:f0:d2:6a:92:
77:d1:4a:33:95:e3:ab:0b:62:af:07:00:14:20:8b:
5c:a1:7c:98:92:62:89:ec:17:d5:34:2e:e5:e8:60:
4d:c3:5a:8d:01:b8:46:3c:ba:fa:e5:b0:32:57:85:
88:8c:17:de:b7:f6:eb:a6:7d:9b:29:ad:59:b2:56:
52:78:e6:82:83:1b:14:1e:8e:f2:3e:40:dc:2c:b6:
1a:04:dd:e8:32:a5:2a:2a:e5:75:f4:2a:b2:34:01:
c2:50:c9:51:60:27:63:6e:7d:36:6a:5d:68:0c:15:
90:8d:bc:29:7f:7f:96:40:81:02:ca:01:c4:ec:ad:
25:2d:fe:6e:4a:31:41:0b:59:e5:40:8c:b2:4d:d8:
6c:6a:47:9d:7a:ca:05:be:45:0b:0d:4a:d7:a1:8e:
1a:04:9b:8d:1f:36:98:e3:1a:1e:3c:c6:64:7c:f3:
84:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:8B:D0:01:93:B4:1D:C5:DC:D8:FC:9E:6A:71:6A:32:32:38:E4:B6
X509v3 Authority Key Identifier:
keyid:1A:6A:14:13:CC:89:65:EE:92:41:6B:60:59:F9:0B:18:77:8C:8B:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GmoUE8yJZe6SQWtgWfkLGHeMizg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/59a43f-881a-48ed-9c3e-82c085a92777/1/m4vQAZO0HcXc2PyeanFqMjI45LY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/59a43f-881a-48ed-9c3e-82c085a92777/1/GmoUE8yJZe6SQWtgWfkLGHeMizg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.75.224.0/20
194.183.128.0/19
194.208.0.0/17
194.208.160.0/20
194.208.184.0-194.208.255.255
IPv6:
2001:af8::/32
Signature Algorithm: sha256WithRSAEncryption
0c:f6:7a:31:27:90:67:06:67:a3:05:61:ba:e0:37:e6:91:3c:
2a:f8:b7:16:c3:2d:ae:47:57:0d:8b:34:e9:a9:9f:98:72:f8:
96:32:35:5d:43:38:36:85:e9:71:0b:40:b2:1a:f1:4a:8f:a5:
3d:ef:08:d3:fa:ff:de:c3:e0:c0:8b:eb:ef:d4:e1:63:be:10:
8b:59:0a:ec:64:48:a3:90:68:65:5b:d0:68:fb:3e:e1:c0:1d:
ac:ec:a4:66:b8:c0:4e:54:f5:94:e3:90:6c:cc:c0:57:5a:fe:
d5:89:f0:ca:e1:73:96:a8:2a:c0:7b:c6:33:3e:2c:94:90:80:
f7:21:f0:46:d1:a8:96:92:e4:8e:84:09:67:9f:9e:56:12:97:
9d:5c:a2:80:59:fe:7a:74:3b:21:f9:bd:91:88:41:86:34:5f:
82:17:1f:ab:21:3b:ed:a2:3a:92:0b:5c:87:13:54:3b:07:68:
a4:de:4d:4c:63:64:8a:41:fc:01:ae:6b:7b:49:98:5e:f4:a5:
14:f9:3c:f4:29:ed:dc:99:ff:10:03:d1:41:dd:d1:26:97:01:
32:6d:80:1a:7b:04:eb:af:7a:cf:e4:b6:48:a3:06:32:24:0e:
49:b5:ef:d5:89:ec:94:9e:d0:a7:64:15:92:d6:11:61:29:a9:
c0:6c:5e:af
-----BEGIN CERTIFICATE-----
MIIFKzCCBBOgAwIBAgISAYKwKftGwHbIPyiNfWm1cXaDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFhNmExNDEzY2M4OTY1ZWU5MjQxNmI2MDU5ZjkwYjE4Nzc4
YzhiMzgwHhcNMjIwODE4MDg1NTE3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YjhiZDAwMTkzYjQxZGM1ZGNkOGZjOWU2YTcxNmEzMjMyMzhlNGI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgfUOLOqRZyOBIKzrEeC5DtjAMHK4
D8M2Wk4byn1+C8Pomiw/tm2OAGym7OLx6vsXVod+coAbIb9G8sAiDEFyBpG5tQcv
p3ros9jZHBglyDo7pdjYgPDSapJ30UozleOrC2KvBwAUIItcoXyYkmKJ7BfVNC7l
6GBNw1qNAbhGPLr65bAyV4WIjBfet/brpn2bKa1ZslZSeOaCgxsUHo7yPkDcLLYa
BN3oMqUqKuV19CqyNAHCUMlRYCdjbn02al1oDBWQjbwpf3+WQIECygHE7K0lLf5u
SjFBC1nlQIyyTdhsakedesoFvkULDUrXoY4aBJuNHzaY4xoePMZkfPOEbwIDAQAB
o4ICNzCCAjMwHQYDVR0OBBYEFJuL0AGTtB3F3Nj8nmpxajIyOOS2MB8GA1UdIwQY
MBaAFBpqFBPMiWXukkFrYFn5Cxh3jIs4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR21vVUU4eUpaZTZTUVd0Z1dma0xHSGVNaXpnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC81OWE0M2YtODgxYS00OGVkLTljM2Ut
ODJjMDg1YTkyNzc3LzEvbTR2UUFaTzBIY1hjMlB5ZWFuRnFNakk0NUxZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC81OWE0M2YtODgxYS00OGVkLTljM2UtODJjMDg1YTkyNzc3
LzEvR21vVUU4eUpaZTZTUVd0Z1dma0xHSGVNaXpnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CME0GCCsGAQUFBwEHAQH/BD4wPDArBAIAATAlAwQEUEvgAwQF
wreAAwQHwtAAAwQEwtCgMAsDBAPC0LgDAwDC0DANBAIAAjAHAwUAIAEK+DANBgkq
hkiG9w0BAQsFAAOCAQEADPZ6MSeQZwZnowVhuuA35pE8Kvi3FsMtrkdXDYs06amf
mHL4ljI1XUM4NoXpcQtAshrxSo+lPe8I0/r/3sPgwIvr79ThY74Qi1kK7GRIo5Bo
ZVvQaPs+4cAdrOykZrjATlT1lOOQbMzAV1r+1YnwyuFzlqgqwHvGMz4slJCA9yHw
RtGolpLkjoQJZ5+eVhKXnVyigFn+enQ7Ifm9kYhBhjRfghcfqyE77aI6kgtchxNU
OwdopN5NTGNkikH8Aa5re0mYXvSlFPk89Cnt3Jn/EAPRQd3RJpcBMm2AGnsE6696
z+S2SKMGMiQOSbXv1YnslJ7Qp2QVktYRYSmpwGxerw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:54 2024 by rpki-client on console-fra.rpki-client.org