Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/d2SQSUlnWqqVT6fVVwUTvzNq1y8.roa
File: d2SQSUlnWqqVT6fVVwUTvzNq1y8.roa (raw, json)
Hash identifier: F9i4fjWC0XeVNFxEKxkFm7ixzrm86FxrcLf1e93rCXY=
Subject key identifier: 77:64:90:49:49:67:5A:AA:95:4F:A7:D5:57:05:13:BF:33:6A:D7:2F
Certificate issuer: /CN=b14aba8b60749393478e83c360e6cbd75d156f89
Certificate serial: 085EB1D3
Authority key identifier: B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/d2SQSUlnWqqVT6fVVwUTvzNq1y8.roa
Signing time: Tue 01 Feb 2022 10:21:55 +0000
ROA not before: Tue 01 Feb 2022 10:21:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44565
IP address blocks: 188.124.4.0/24 maxlen: 24
188.124.1.0/24 maxlen: 24
188.124.0.0/24 maxlen: 24
188.124.3.0/24 maxlen: 24
188.124.2.0/24 maxlen: 24
188.124.11.0/24 maxlen: 24
188.124.6.0/24 maxlen: 24
188.124.5.0/24 maxlen: 24
188.124.8.0/24 maxlen: 24
188.124.7.0/24 maxlen: 24
188.124.10.0/24 maxlen: 24
188.124.9.0/24 maxlen: 24
188.124.13.0/24 maxlen: 24
188.124.12.0/24 maxlen: 24
188.124.15.0/24 maxlen: 24
188.124.14.0/24 maxlen: 24
188.124.17.0/24 maxlen: 24
188.124.16.0/24 maxlen: 24
188.124.18.0/24 maxlen: 24
188.124.20.0/24 maxlen: 24
188.124.19.0/24 maxlen: 24
188.124.22.0/24 maxlen: 24
188.124.21.0/24 maxlen: 24
188.124.24.0/24 maxlen: 24
188.124.25.0/24 maxlen: 24
188.124.27.0/24 maxlen: 24
188.124.26.0/24 maxlen: 24
188.124.29.0/24 maxlen: 24
188.124.28.0/24 maxlen: 24
188.124.31.0/24 maxlen: 24
188.124.30.0/24 maxlen: 24
79.171.17.0/24 maxlen: 24
79.171.16.0/24 maxlen: 24
79.171.19.0/24 maxlen: 24
79.171.18.0/24 maxlen: 24
79.171.21.0/24 maxlen: 24
79.171.20.0/24 maxlen: 24
93.186.112.0/24 maxlen: 24
93.186.113.0/24 maxlen: 24
93.186.115.0/24 maxlen: 24
93.186.114.0/24 maxlen: 24
93.186.117.0/24 maxlen: 24
93.186.116.0/24 maxlen: 24
93.186.118.0/24 maxlen: 24
93.186.120.0/24 maxlen: 24
93.186.119.0/24 maxlen: 24
93.186.122.0/24 maxlen: 24
93.186.121.0/24 maxlen: 24
93.186.124.0/24 maxlen: 24
93.186.123.0/24 maxlen: 24
93.186.127.0/24 maxlen: 24
93.186.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140423635 (0x85eb1d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b14aba8b60749393478e83c360e6cbd75d156f89
Validity
Not Before: Feb 1 10:21:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7764904949675aaa954fa7d5570513bf336ad72f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:36:bd:3a:78:8a:a0:6b:6e:7f:fc:58:12:12:
3c:1c:ae:40:82:a5:86:77:65:44:ab:2c:a6:b5:f2:
aa:55:92:26:85:87:da:ab:d6:45:f4:a7:22:e7:26:
25:63:0a:36:78:46:b9:51:06:d7:7f:65:fc:3c:1a:
ee:bd:70:4c:a0:aa:09:17:eb:be:b4:a8:4b:cd:d3:
50:c5:ac:54:31:0d:57:4a:2d:df:4e:41:6c:44:f5:
81:83:47:10:54:58:68:13:a6:de:87:2f:f8:37:63:
3f:46:90:ba:70:d0:8a:37:0e:24:58:42:1a:fe:83:
af:85:c4:c7:a9:65:52:68:af:c4:ed:4d:69:71:c7:
a5:19:73:d8:b8:5a:7f:1b:82:99:4e:4e:8a:85:30:
ca:b3:59:79:ec:dd:20:d5:d1:4a:aa:80:0e:39:03:
51:0d:dc:0b:e3:a0:0a:b8:51:07:20:e2:ce:5c:31:
a0:22:41:06:98:e5:55:55:6d:81:0c:3e:dc:31:50:
b7:4a:2d:47:84:ee:51:21:93:54:4f:a6:49:e9:62:
08:d6:99:9a:d4:c1:02:31:6e:d7:6b:6f:db:d0:bc:
d2:4f:67:53:42:25:80:cc:f9:05:75:eb:ae:f6:a4:
74:1f:f3:14:42:c7:c0:75:10:ec:72:d7:22:30:f7:
9c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:64:90:49:49:67:5A:AA:95:4F:A7:D5:57:05:13:BF:33:6A:D7:2F
X509v3 Authority Key Identifier:
keyid:B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/d2SQSUlnWqqVT6fVVwUTvzNq1y8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.171.16.0-79.171.21.255
93.186.112.0-93.186.124.255
93.186.126.0/23
188.124.0.0-188.124.22.255
188.124.24.0/21
Signature Algorithm: sha256WithRSAEncryption
87:31:17:a0:1c:9c:8a:f7:88:e1:54:0c:47:89:b1:9f:82:18:
13:27:85:1e:d3:57:97:f1:bc:cb:5a:c9:b6:e2:16:b6:d6:25:
a9:22:22:68:10:3a:5f:38:97:c1:e8:28:b3:05:ed:b3:9e:95:
0e:5b:22:55:fd:ef:8b:ba:be:ac:fd:b3:04:e0:79:6d:97:84:
04:2c:22:c9:87:fd:d6:9b:b6:db:4e:01:4a:8e:ee:c1:1a:98:
99:b3:8e:bb:fa:d0:e9:03:83:77:ba:52:ad:77:6b:df:48:6d:
8f:fa:8c:42:47:e8:f0:45:f0:fc:10:da:5d:e6:7a:79:41:ae:
d6:f8:b3:04:50:28:63:bf:c6:2f:21:5c:14:97:a8:f0:01:c7:
14:a3:08:91:29:10:68:0a:77:0c:c2:db:f2:6c:aa:f5:f0:cc:
5c:3e:8d:73:a3:02:37:a2:79:c4:6d:d3:32:22:70:ab:c9:a9:
64:ce:f8:74:46:bf:c0:5e:80:db:20:67:b9:79:aa:86:ab:55:
18:f9:22:78:ee:95:17:05:9b:b7:1a:24:07:15:3d:d3:4f:87:
dc:c3:e7:19:0f:d7:97:94:85:34:2e:ed:8f:87:c1:d9:ad:79:
8c:8a:18:6e:d1:0e:b1:b9:50:66:fc:51:75:7e:49:a1:aa:a1:
88:a4:c5:bb
-----BEGIN CERTIFICATE-----
MIIFHjCCBAagAwIBAgIECF6x0zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MTRhYmE4YjYwNzQ5MzkzNDc4ZTgzYzM2MGU2Y2JkNzVkMTU2Zjg5MB4XDTIyMDIw
MTEwMjE1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzc2NDkwNDk0OTY3
NWFhYTk1NGZhN2Q1NTcwNTEzYmYzMzZhZDcyZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMI2vTp4iqBrbn/8WBISPByuQIKlhndlRKssprXyqlWSJoWH
2qvWRfSnIucmJWMKNnhGuVEG139l/Dwa7r1wTKCqCRfrvrSoS83TUMWsVDENV0ot
305BbET1gYNHEFRYaBOm3ocv+DdjP0aQunDQijcOJFhCGv6Dr4XEx6llUmivxO1N
aXHHpRlz2LhafxuCmU5OioUwyrNZeezdINXRSqqADjkDUQ3cC+OgCrhRByDizlwx
oCJBBpjlVVVtgQw+3DFQt0otR4TuUSGTVE+mSeliCNaZmtTBAjFu12tv29C80k9n
U0IlgMz5BXXrrvakdB/zFELHwHUQ7HLXIjD3nLsCAwEAAaOCAjgwggI0MB0GA1Ud
DgQWBBR3ZJBJSWdaqpVPp9VXBRO/M2rXLzAfBgNVHSMEGDAWgBSxSrqLYHSTk0eO
g8Ng5svXXRVviTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3NVcTZpMkIwazVOSGpvUERZT2JMMTEwVmI0ay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvM2IvNDYxNjg1LTA3M2UtNDFhZi05YmI2LWNmNmMzMDUyMTJlYi8x
L2QyU1FTVWxuV3FxVlQ2ZlZWd1VUdnpOcTF5OC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2Iv
NDYxNjg1LTA3M2UtNDFhZi05YmI2LWNmNmMzMDUyMTJlYi8xL3NVcTZpMkIwazVO
SGpvUERZT2JMMTEwVmI0ay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBO
BggrBgEFBQcBBwEB/wQ/MD0wOwQCAAEwNTAMAwQET6sQAwQBT6sUMAwDBARdunAD
BABdunwDBAFdun4wCwMDArx8AwQAvHwWAwQDvHwYMA0GCSqGSIb3DQEBCwUAA4IB
AQCHMRegHJyK94jhVAxHibGfghgTJ4Ue01eX8bzLWsm24ha21iWpIiJoEDpfOJfB
6CizBe2znpUOWyJV/e+Lur6s/bME4Hltl4QELCLJh/3Wm7bbTgFKju7BGpiZs467
+tDpA4N3ulKtd2vfSG2P+oxCR+jwRfD8ENpd5np5Qa7W+LMEUChjv8YvIVwUl6jw
AccUowiRKRBoCncMwtvybKr18MxcPo1zowI3onnEbdMyInCryalkzvh0Rr/AXoDb
IGe5eaqGq1UY+SJ47pUXBZu3GiQHFT3TT4fcw+cZD9eXlIU0Lu2Ph8HZrXmMihhu
0Q6xuVBm/FF1fkmhqqGIpMW7
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:02 2024 by rpki-client on console-ams.rpki-client.org