Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/Iw87qJPYSzvSdunkqnEYtDejy_8.roa
File: Iw87qJPYSzvSdunkqnEYtDejy_8.roa (raw, json)
Hash identifier: XGNs5s+LAOp187kwQoNGNDrnSdIvsQ4JAF3HHv6xadU=
Subject key identifier: 23:0F:3B:A8:93:D8:4B:3B:D2:76:E9:E4:AA:71:18:B4:37:A3:CB:FF
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0CBD870D
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/Iw87qJPYSzvSdunkqnEYtDejy_8.roa
Signing time: Thu 05 May 2022 21:26:58 +0000
ROA not before: Thu 05 May 2022 21:26:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34450
IP address blocks: 89.43.42.0/24 maxlen: 24
89.43.43.0/24 maxlen: 24
89.43.40.0/24 maxlen: 24
89.43.41.0/24 maxlen: 24
89.43.45.0/24 maxlen: 24
89.43.46.0/24 maxlen: 24
89.43.73.0/24 maxlen: 24
89.39.252.0/24 maxlen: 24
188.213.18.0/24 maxlen: 24
188.240.14.0/24 maxlen: 24
93.113.202.0/24 maxlen: 24
93.113.203.0/24 maxlen: 24
89.44.209.0/24 maxlen: 24
93.114.99.0/24 maxlen: 24
89.33.163.0/24 maxlen: 24
89.45.34.0/24 maxlen: 24
93.114.55.0/24 maxlen: 24
188.215.72.0/23 maxlen: 24
86.106.80.0/24 maxlen: 24
93.114.187.0/24 maxlen: 24
86.106.97.0/24 maxlen: 24
86.106.104.0/24 maxlen: 24
89.34.8.0/21 maxlen: 21
93.114.171.0/24 maxlen: 24
85.204.125.0/24 maxlen: 24
85.204.127.0/24 maxlen: 24
93.113.158.0/24 maxlen: 24
89.37.136.0/24 maxlen: 24
2a05:b680:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 213747469 (0xcbd870d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: May 5 21:26:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=230f3ba893d84b3bd276e9e4aa7118b437a3cbff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a2:35:b9:66:ac:5a:f5:46:ad:bb:6e:5c:6f:
67:2e:a8:a4:09:83:4c:75:9c:fc:80:11:46:1d:14:
41:2c:bf:82:7e:26:e1:e9:69:92:1f:1c:37:f1:d8:
88:bc:b7:b2:6e:a9:f6:49:12:94:cf:fa:df:69:a3:
b4:69:d1:b5:37:20:c6:44:db:17:2f:84:ab:3d:e0:
27:54:2f:f9:b3:6d:f1:92:d1:86:2d:f9:15:f8:e7:
3c:7d:03:c7:3e:cc:00:74:d2:b8:b6:d2:5d:57:da:
35:eb:8f:e0:c8:75:e1:b8:11:86:77:69:03:f2:15:
66:ec:67:23:67:0f:ef:b5:f4:91:f4:d9:57:37:3c:
04:fb:a5:b4:ee:12:c5:b2:43:9b:45:3a:94:4f:a7:
29:cf:4b:e2:db:5a:c2:8d:d3:21:9a:36:d7:ee:ce:
6e:1b:58:e7:1f:a8:0c:a2:ae:ed:5a:08:20:a5:c1:
47:1c:32:e9:04:b4:e3:bc:52:79:49:5f:5d:b7:d2:
e2:27:fe:77:fc:19:5e:02:aa:39:22:00:6e:6d:40:
89:85:dd:99:03:19:3e:a4:2e:21:9b:f4:42:29:c8:
59:e2:96:da:a6:5e:46:71:79:7d:dc:50:32:a2:81:
02:f4:ec:08:f2:dc:4f:8e:f4:81:32:be:f4:d4:72:
bf:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:0F:3B:A8:93:D8:4B:3B:D2:76:E9:E4:AA:71:18:B4:37:A3:CB:FF
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/Iw87qJPYSzvSdunkqnEYtDejy_8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.125.0/24
85.204.127.0/24
86.106.80.0/24
86.106.97.0/24
86.106.104.0/24
89.33.163.0/24
89.34.8.0/21
89.37.136.0/24
89.39.252.0/24
89.43.40.0/22
89.43.45.0-89.43.46.255
89.43.73.0/24
89.44.209.0/24
89.45.34.0/24
93.113.158.0/24
93.113.202.0/23
93.114.55.0/24
93.114.99.0/24
93.114.171.0/24
93.114.187.0/24
188.213.18.0/24
188.215.72.0/23
188.240.14.0/24
IPv6:
2a05:b680:1::/48
Signature Algorithm: sha256WithRSAEncryption
d5:22:71:86:ad:fb:e9:cc:3b:f7:9e:93:97:51:65:f3:8f:ce:
19:bc:ee:cc:6b:d5:a4:5e:ce:ad:54:e6:03:58:ac:9f:97:01:
cc:f5:31:75:28:c4:a5:cf:ff:ae:ef:c6:7b:ee:d2:51:e5:50:
5f:5b:a2:43:f5:9e:55:5a:6c:1d:d3:7c:e4:49:7c:bd:a0:df:
34:cf:73:01:a5:dd:d7:64:2b:25:7a:7f:9b:0e:45:79:85:a0:
2c:43:fa:02:98:a0:c9:e8:32:91:65:63:04:31:c6:35:24:b1:
13:37:1e:92:9f:fd:5f:14:16:a0:c4:e4:6c:34:eb:ca:a3:e2:
00:e0:81:f1:40:c7:fa:a6:db:de:a4:f3:6c:65:2b:cb:47:41:
ba:fd:89:de:c4:5c:8a:5e:de:62:7a:4f:58:dc:d4:2f:d9:b4:
51:69:6e:36:7f:a1:b3:2c:c7:aa:99:53:e5:8a:0c:f5:21:a0:
43:fa:53:2b:96:02:17:c7:74:c7:b8:a4:a3:f2:cb:36:b3:fa:
ff:6d:47:65:e3:18:66:35:47:ca:44:a4:ec:71:40:9a:c6:7b:
d6:33:3d:1d:5e:3f:1e:ba:e1:ba:ef:75:2e:d8:b2:7f:a7:a7:
e4:77:13:5a:47:28:9c:af:1f:2c:41:4b:d5:ca:43:9a:02:80:
a7:dd:b6:5c
-----BEGIN CERTIFICATE-----
MIIFkTCCBHmgAwIBAgIEDL2HDTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ZTU4OTUyZDM5MzkzNWYwZDNiY2U4MTRmZDkxNzhkMDQ2OTNhZWI5MB4XDTIyMDUw
NTIxMjY1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjMwZjNiYTg5M2Q4
NGIzYmQyNzZlOWU0YWE3MTE4YjQzN2EzY2JmZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMeiNblmrFr1Rq27blxvZy6opAmDTHWc/IARRh0UQSy/gn4m
4elpkh8cN/HYiLy3sm6p9kkSlM/632mjtGnRtTcgxkTbFy+Eqz3gJ1Qv+bNt8ZLR
hi35FfjnPH0Dxz7MAHTSuLbSXVfaNeuP4Mh14bgRhndpA/IVZuxnI2cP77X0kfTZ
Vzc8BPultO4SxbJDm0U6lE+nKc9L4ttawo3TIZo21+7ObhtY5x+oDKKu7VoIIKXB
Rxwy6QS047xSeUlfXbfS4if+d/wZXgKqOSIAbm1AiYXdmQMZPqQuIZv0QinIWeKW
2qZeRnF5fdxQMqKBAvTsCPLcT470gTK+9NRyv88CAwEAAaOCAqswggKnMB0GA1Ud
DgQWBBQjDzuok9hLO9J26eSqcRi0N6PL/zAfBgNVHSMEGDAWgBT+WJUtOTk18NO8
6BT9kXjQRpOuuTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19saVZMVGs1TmZEVHZPZ1VfWkY0MEVhVHJyay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzAvYjI2YWE4LWFjZTctNGZhNi05ZThlLTVkNDhiNjVjZTU3My8x
L0l3ODdxSlBZU3p2U2R1bmtxbkVZdERlanlfOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzAv
YjI2YWE4LWFjZTctNGZhNi05ZThlLTVkNDhiNjVjZTU3My8xL19saVZMVGs1TmZE
VHZPZ1VfWkY0MEVhVHJyay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
wAYIKwYBBQUHAQcBAf8EgbAwga0wgZkEAgABMIGSAwQAVcx9AwQAVcx/AwQAVmpQ
AwQAVmphAwQAVmpoAwQAWSGjAwQDWSIIAwQAWSWIAwQAWSf8AwQCWSsoMAwDBABZ
Ky0DBABZKy4DBABZK0kDBABZLNEDBABZLSIDBABdcZ4DBAFdccoDBABdcjcDBABd
cmMDBABdcqsDBABdcrsDBAC81RIDBAG810gDBAC88A4wDwQCAAIwCQMHACoFtoAA
ATANBgkqhkiG9w0BAQsFAAOCAQEA1SJxhq376cw7956Tl1Fl84/OGbzuzGvVpF7O
rVTmA1isn5cBzPUxdSjEpc//ru/Ge+7SUeVQX1uiQ/WeVVpsHdN85El8vaDfNM9z
AaXd12QrJXp/mw5FeYWgLEP6ApigyegykWVjBDHGNSSxEzcekp/9XxQWoMTkbDTr
yqPiAOCB8UDH+qbb3qTzbGUry0dBuv2J3sRcil7eYnpPWNzUL9m0UWluNn+hsyzH
qplT5YoM9SGgQ/pTK5YCF8d0x7iko/LLNrP6/21HZeMYZjVHykSk7HFAmsZ71jM9
HV4/Hrrhuu91Ltiyf6en5HcTWkconK8fLEFL1cpDmgKAp922XA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:38 2024 by rpki-client on console-ams.rpki-client.org