Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/q_ISuHRhm_BrtMpyKijVD0oa4ys.roa
File: q_ISuHRhm_BrtMpyKijVD0oa4ys.roa (raw, json)
Hash identifier: uOn7vip8OyBy33QKk7rtA8PavMpJZ41OnRwq7M+07j0=
Subject key identifier: AB:F2:12:B8:74:61:9B:F0:6B:B4:CA:72:2A:28:D5:0F:4A:1A:E3:2B
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 0182D20E687EDEEE1B9D5E24C8BB01FA7EE2
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/q_ISuHRhm_BrtMpyKijVD0oa4ys.roa
Signing time: Wed 24 Aug 2022 22:52:15 +0000
ROA not before: Wed 24 Aug 2022 22:52:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52116
IP address blocks: 188.255.130.0/24 maxlen: 24
188.255.208.0/24 maxlen: 24
188.255.213.0/24 maxlen: 24
188.255.216.0/24 maxlen: 24
188.255.219.0/24 maxlen: 24
188.255.236.0/24 maxlen: 24
188.255.238.0/24 maxlen: 24
188.255.239.0/24 maxlen: 24
109.121.56.0/24 maxlen: 24
188.255.246.0/24 maxlen: 24
188.255.244.0/23 maxlen: 23
188.255.248.0/24 maxlen: 24
188.255.252.0/24 maxlen: 24
188.255.247.0/24 maxlen: 24
188.255.250.0/23 maxlen: 23
188.255.190.0/24 maxlen: 24
212.69.12.0/24 maxlen: 24
178.253.207.0/24 maxlen: 24
178.253.210.0/24 maxlen: 24
178.253.213.0/24 maxlen: 24
178.253.219.0/24 maxlen: 24
178.253.214.0/24 maxlen: 24
178.253.222.0/24 maxlen: 24
93.186.64.0/24 maxlen: 24
93.186.67.0/24 maxlen: 24
93.186.71.0/24 maxlen: 24
93.186.72.0/24 maxlen: 24
212.69.6.0/24 maxlen: 24
212.69.7.0/24 maxlen: 24
178.253.236.0/24 maxlen: 24
178.253.240.0/24 maxlen: 24
81.18.49.0/24 maxlen: 24
81.18.50.0/24 maxlen: 24
81.18.55.0/24 maxlen: 24
81.18.52.0/23 maxlen: 23
81.18.61.0/24 maxlen: 24
79.175.103.0/24 maxlen: 24
79.175.116.0/24 maxlen: 24
79.175.118.0/24 maxlen: 24
79.175.115.0/24 maxlen: 24
188.255.254.0/24 maxlen: 24
188.255.255.0/24 maxlen: 24
178.219.11.0/24 maxlen: 24
178.219.8.0/23 maxlen: 23
185.47.88.0/24 maxlen: 24
185.47.89.0/24 maxlen: 24
185.47.90.0/24 maxlen: 24
77.105.18.0/23 maxlen: 23
77.105.31.0/24 maxlen: 24
80.74.173.0/24 maxlen: 24
77.105.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d2:0e:68:7e:de:ee:1b:9d:5e:24:c8:bb:01:fa:7e:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Aug 24 22:52:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=abf212b874619bf06bb4ca722a28d50f4a1ae32b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:29:68:c7:76:bb:82:ab:f8:c7:bd:0d:c1:58:
9e:65:0b:ba:ea:02:57:e2:40:a3:de:9f:87:c9:72:
15:18:3a:a6:fc:08:1d:be:33:9d:0c:a6:73:45:5b:
db:e0:40:9f:12:87:cc:a4:f9:39:f0:b8:63:2e:aa:
b7:8d:09:bf:b0:a9:40:b5:2e:7c:fe:c3:25:fb:01:
04:af:df:c7:fb:06:18:0d:2e:19:d4:8c:25:8f:3f:
ca:35:6f:47:15:29:9a:47:b5:56:e5:d5:33:2e:7e:
54:9d:68:cd:15:3b:70:18:e3:8c:6a:55:00:32:3c:
e3:ff:13:90:eb:db:fe:74:73:37:f7:65:85:fb:12:
af:11:65:8b:d4:5d:dd:51:bd:00:be:89:b9:b1:f0:
bf:09:5f:a6:8f:42:e8:9d:00:45:f6:c0:38:c0:94:
a6:29:e7:ee:b2:0f:6e:5a:ca:7d:c7:30:d0:dc:b9:
5e:4f:87:c6:ef:07:63:f3:f8:39:3a:bb:77:5b:18:
b0:ad:18:63:0f:74:7d:fb:00:f2:90:7c:de:e0:cf:
f4:a9:5d:b3:ba:6a:12:c0:1d:52:f1:f4:5f:30:ae:
2f:c6:e6:07:95:4b:46:bc:f1:a7:12:61:c1:35:a9:
fe:17:47:fc:eb:d3:f8:f1:aa:92:43:c7:53:95:71:
1f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:F2:12:B8:74:61:9B:F0:6B:B4:CA:72:2A:28:D5:0F:4A:1A:E3:2B
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/q_ISuHRhm_BrtMpyKijVD0oa4ys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.11.0/24
77.105.18.0/23
77.105.31.0/24
79.175.103.0/24
79.175.115.0-79.175.116.255
79.175.118.0/24
80.74.173.0/24
81.18.49.0-81.18.50.255
81.18.52.0/23
81.18.55.0/24
81.18.61.0/24
93.186.64.0/24
93.186.67.0/24
93.186.71.0-93.186.72.255
109.121.56.0/24
178.219.8.0/23
178.219.11.0/24
178.253.207.0/24
178.253.210.0/24
178.253.213.0-178.253.214.255
178.253.219.0/24
178.253.222.0/24
178.253.236.0/24
178.253.240.0/24
185.47.88.0-185.47.90.255
188.255.130.0/24
188.255.190.0/24
188.255.208.0/24
188.255.213.0/24
188.255.216.0/24
188.255.219.0/24
188.255.236.0/24
188.255.238.0/23
188.255.244.0-188.255.248.255
188.255.250.0-188.255.252.255
188.255.254.0/23
212.69.6.0/23
212.69.12.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:b2:d9:6c:a6:47:2e:3c:ee:d2:78:58:7d:c8:47:c5:97:3c:
bb:6f:cb:97:25:b2:1c:8e:62:ce:74:f6:0d:93:8d:92:e7:46:
c5:64:a6:fc:a0:05:fb:60:83:cf:53:88:d3:21:94:1c:3e:9d:
72:93:e6:38:31:ea:18:4d:32:5a:83:c0:2c:5e:fe:04:66:37:
c8:b9:c1:5f:40:b2:bc:64:17:25:a9:7b:04:2e:da:db:2c:e4:
46:13:18:32:d5:98:71:f1:99:4c:8f:11:47:63:b0:97:c0:c2:
1a:cd:f3:c6:fd:a9:1f:b9:f6:08:7a:1b:06:9b:3a:33:af:8b:
d5:bb:c5:dc:b7:1d:1a:fd:d1:71:5c:11:e6:b7:61:22:fb:d5:
48:06:6b:39:54:12:6f:43:3d:81:5b:5d:cb:28:38:a8:bd:df:
28:68:b4:85:71:03:ef:3d:ea:28:33:92:2d:be:69:70:e6:c7:
91:21:c2:c6:60:0a:de:bf:44:ec:a0:7f:9e:24:42:7e:a7:1d:
11:a3:f9:d2:07:62:aa:5c:bd:a8:cd:a9:c1:18:db:f9:69:de:
8e:3c:be:c9:38:fb:33:f5:f2:de:3c:7b:e9:d0:4d:37:6c:3e:
5f:0a:a9:18:c9:50:c7:62:33:c2:e4:0e:72:4b:8f:1f:f1:5c:
d2:c4:b8:74
-----BEGIN CERTIFICATE-----
MIIGHTCCBQWgAwIBAgISAYLSDmh+3u4bnV4kyLsB+n7iMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmODRlNDczOGE3MGVhMzljMDhjZWYyMTA0MzJhZTM5OWVj
N2U5MTUwHhcNMjIwODI0MjI1MjE1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYmYyMTJiODc0NjE5YmYwNmJiNGNhNzIyYTI4ZDUwZjRhMWFlMzJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkilox3a7gqv4x70NwVieZQu66gJX
4kCj3p+HyXIVGDqm/AgdvjOdDKZzRVvb4ECfEofMpPk58LhjLqq3jQm/sKlAtS58
/sMl+wEEr9/H+wYYDS4Z1Iwljz/KNW9HFSmaR7VW5dUzLn5UnWjNFTtwGOOMalUA
Mjzj/xOQ69v+dHM392WF+xKvEWWL1F3dUb0Avom5sfC/CV+mj0LonQBF9sA4wJSm
Kefusg9uWsp9xzDQ3LleT4fG7wdj8/g5Ort3WxiwrRhjD3R9+wDykHze4M/0qV2z
umoSwB1S8fRfMK4vxuYHlUtGvPGnEmHBNan+F0f869P48aqSQ8dTlXEfbQIDAQAB
o4IDKTCCAyUwHQYDVR0OBBYEFKvyErh0YZvwa7TKcioo1Q9KGuMrMB8GA1UdIwQY
MBaAFG+E5HOKcOo5wIzvIQQyrjmex+kVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYt
ZmFlNWRiZWQzYjFiLzEvcV9JU3VIUmhtX0JydE1weUtpalZEMG9hNHlzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYtZmFlNWRiZWQzYjFi
LzEvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBPQYIKwYBBQUHAQcBAf8EggEsMIIBKDCCASQEAgABMIIB
HAMEAE1pCwMEAU1pEgMEAE1pHwMEAE+vZzAMAwQAT69zAwQAT690AwQAT692AwQA
UEqtMAwDBABREjEDBABREjIDBAFREjQDBABREjcDBABREj0DBABdukADBABdukMw
DAMEAF26RwMEAF26SAMEAG15OAMEAbLbCAMEALLbCwMEALL9zwMEALL90jAMAwQA
sv3VAwQAsv3WAwQAsv3bAwQAsv3eAwQAsv3sAwQAsv3wMAwDBAO5L1gDBAC5L1oD
BAC8/4IDBAC8/74DBAC8/9ADBAC8/9UDBAC8/9gDBAC8/9sDBAC8/+wDBAG8/+4w
DAMEArz/9AMEALz/+DAMAwQBvP/6AwQAvP/8AwQBvP/+AwQB1EUGAwQA1EUMMA0G
CSqGSIb3DQEBCwUAA4IBAQB9stlspkcuPO7SeFh9yEfFlzy7b8uXJbIcjmLOdPYN
k42S50bFZKb8oAX7YIPPU4jTIZQcPp1yk+Y4MeoYTTJag8AsXv4EZjfIucFfQLK8
ZBclqXsELtrbLORGExgy1Zhx8ZlMjxFHY7CXwMIazfPG/akfufYIehsGmzozr4vV
u8Xctx0a/dFxXBHmt2Ei+9VIBms5VBJvQz2BW13LKDiovd8oaLSFcQPvPeooM5It
vmlw5seRIcLGYArev0TsoH+eJEJ+px0Ro/nSB2KqXL2ozanBGNv5ad6OPL7JOPsz
9fLePHvp0E03bD5fCqkYyVDHYjPC5A5yS48f8VzSxLh0
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:35 2023 by rpki-client on console-fra.rpki-client.org