Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/kru-wlNsakdLvIsrCk5C-opDVT0.roa
File: kru-wlNsakdLvIsrCk5C-opDVT0.roa (raw, json)
Hash identifier: LPcNgOOsrMRQnqsIUIO2FW8k/nwYAeI1U4BsarSpDnA=
Subject key identifier: 92:BB:BE:C2:53:6C:6A:47:4B:BC:8B:2B:0A:4E:42:FA:8A:43:55:3D
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 0C999993
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/kru-wlNsakdLvIsrCk5C-opDVT0.roa
Signing time: Mon 30 May 2022 10:53:13 +0000
ROA not before: Mon 30 May 2022 10:53:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12880
IP address blocks: 2.188.2.0/24 maxlen: 24
2.188.3.0/24 maxlen: 24
2.188.4.0/24 maxlen: 24
2.188.5.0/24 maxlen: 24
2.188.0.0/16 maxlen: 16
2.188.10.0/24 maxlen: 24
2.188.9.0/24 maxlen: 24
2.188.8.0/24 maxlen: 24
2.188.7.0/24 maxlen: 24
2.188.14.0/24 maxlen: 24
2.188.13.0/24 maxlen: 24
2.188.17.0/24 maxlen: 24
2.188.12.0/24 maxlen: 24
2.188.12.0/22 maxlen: 22
2.188.15.0/24 maxlen: 24
2.188.22.0/24 maxlen: 24
2.188.18.0/24 maxlen: 24
2.188.21.0/24 maxlen: 24
2.188.20.0/24 maxlen: 24
2.188.19.0/24 maxlen: 24
2.188.26.0/23 maxlen: 23
2.188.30.0/24 maxlen: 24
2.188.25.0/24 maxlen: 24
2.188.31.0/24 maxlen: 24
78.39.165.0/24 maxlen: 24
78.39.179.0/24 maxlen: 24
2.188.58.0/24 maxlen: 24
2.188.64.0/21 maxlen: 21
2.188.78.0/24 maxlen: 24
2.188.77.0/24 maxlen: 24
2.188.76.0/24 maxlen: 24
2.188.79.0/24 maxlen: 24
78.38.242.0/24 maxlen: 24
78.38.241.0/24 maxlen: 24
78.38.244.0/24 maxlen: 24
78.38.245.0/24 maxlen: 24
78.38.249.0/24 maxlen: 24
78.38.253.0/24 maxlen: 24
78.38.255.0/24 maxlen: 24
78.39.0.0/16 maxlen: 16
78.38.193.0/24 maxlen: 24
78.38.201.0/24 maxlen: 24
78.38.209.0/24 maxlen: 24
2.187.0.0/16 maxlen: 16
78.38.220.0/23 maxlen: 23
78.38.238.0/24 maxlen: 24
78.38.240.0/24 maxlen: 24
78.39.130.0/24 maxlen: 24
78.38.32.0/19 maxlen: 19
217.219.236.0/22 maxlen: 22
78.38.0.0/16 maxlen: 16
78.38.160.0/19 maxlen: 19
195.146.37.0/24 maxlen: 24
195.146.32.0/19 maxlen: 19
195.146.32.0/20 maxlen: 20
195.146.36.0/24 maxlen: 24
195.146.32.0/24 maxlen: 24
195.146.50.0/24 maxlen: 24
195.146.46.0/23 maxlen: 23
195.146.60.0/24 maxlen: 24
195.146.63.0/24 maxlen: 24
217.219.40.0/22 maxlen: 22
2.178.192.0/18 maxlen: 18
217.219.0.0/16 maxlen: 16
217.219.24.0/21 maxlen: 21
217.219.152.0/21 maxlen: 21
85.185.230.0/23 maxlen: 23
85.185.192.0/22 maxlen: 22
217.218.85.0/24 maxlen: 24
80.191.103.0/24 maxlen: 24
217.218.94.0/24 maxlen: 24
217.218.96.0/19 maxlen: 19
217.218.105.0/24 maxlen: 24
217.218.104.0/24 maxlen: 24
2.178.0.0/19 maxlen: 19
217.218.114.0/24 maxlen: 24
217.218.131.0/24 maxlen: 24
217.218.127.0/24 maxlen: 24
217.218.132.0/24 maxlen: 24
80.191.41.0/24 maxlen: 24
80.191.64.0/23 maxlen: 23
217.218.48.0/21 maxlen: 21
80.191.61.0/24 maxlen: 24
80.191.67.0/24 maxlen: 24
217.218.56.0/24 maxlen: 24
80.191.69.0/24 maxlen: 24
80.191.70.0/24 maxlen: 24
217.218.55.0/24 maxlen: 24
217.218.64.0/24 maxlen: 24
217.218.64.0/18 maxlen: 18
80.191.81.0/24 maxlen: 24
217.218.67.0/24 maxlen: 24
80.191.88.0/21 maxlen: 21
2.189.79.64/27 maxlen: 27
85.185.42.0/24 maxlen: 24
85.185.45.0/24 maxlen: 24
217.218.239.0/24 maxlen: 24
217.218.235.0/24 maxlen: 24
2.178.128.0/18 maxlen: 18
217.218.143.0/24 maxlen: 24
2.178.32.0/19 maxlen: 19
217.218.141.0/24 maxlen: 24
217.218.155.0/24 maxlen: 24
2.178.64.0/18 maxlen: 18
85.185.0.0/16 maxlen: 16
217.218.180.0/24 maxlen: 24
2.185.0.0/16 maxlen: 16
2.177.0.0/17 maxlen: 17
2.177.128.0/17 maxlen: 17
80.191.0.0/24 maxlen: 24
80.191.0.0/16 maxlen: 16
2.191.0.0/16 maxlen: 16
217.218.0.0/17 maxlen: 17
217.218.0.0/16 maxlen: 16
80.191.24.0/24 maxlen: 24
80.191.27.0/24 maxlen: 24
80.191.29.0/24 maxlen: 24
80.191.36.0/24 maxlen: 24
217.218.21.0/24 maxlen: 24
80.191.32.0/24 maxlen: 24
2.189.5.32/28 maxlen: 28
2.182.248.0/22 maxlen: 22
2.182.214.0/23 maxlen: 23
2.189.79.32/27 maxlen: 27
2.176.192.0/18 maxlen: 18
2.176.0.0/12 maxlen: 12
2.188.183.0/24 maxlen: 24
2.188.185.0/24 maxlen: 24
2.188.192.0/18 maxlen: 18
2.189.79.0/24 maxlen: 24
2.182.96.0/19 maxlen: 19
2001:4188::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 211392915 (0xc999993)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: May 30 10:53:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=92bbbec2536c6a474bbc8b2b0a4e42fa8a43553d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c1:82:f2:d2:b8:ee:03:16:ba:63:02:1f:f7:
a1:6f:28:5e:5b:93:f7:b6:42:b2:84:66:01:8c:18:
3d:c5:ea:ea:56:32:61:94:ff:81:43:db:73:9e:9e:
a3:9b:bc:b5:5b:5a:eb:80:0d:01:fd:fd:df:71:6d:
4c:da:6e:b0:d3:e7:35:1e:7c:09:89:38:fe:13:5f:
be:f6:1f:78:de:4e:2b:e1:1b:6b:d0:d1:e8:88:80:
68:d5:b5:3b:53:88:a2:34:7e:b0:dd:bb:2a:6e:d3:
a0:4f:81:d1:ef:d9:b1:db:71:4c:f5:fd:fe:c8:73:
84:b6:13:be:08:0c:28:fa:83:46:98:ca:dd:c9:fa:
bb:b2:41:75:2d:8a:9d:19:16:e2:e6:28:7a:61:9a:
f0:0b:56:4a:d9:ca:e8:5b:b3:44:58:33:3a:c4:6c:
ab:a4:38:d5:a3:6a:43:08:39:05:6d:f9:08:ff:c8:
51:c8:2f:d0:e0:09:35:62:8a:fc:75:ff:51:88:02:
ac:3d:1d:8f:d5:05:dc:99:e1:f0:c0:f9:4e:81:3e:
22:37:22:0f:fe:f8:33:f7:18:62:8a:e6:1b:c9:cf:
f3:48:fb:a8:8b:1f:2d:ae:cb:62:bf:28:ab:ac:7e:
5a:0a:04:cc:59:91:73:b3:4e:b2:a6:f6:34:83:e0:
db:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:BB:BE:C2:53:6C:6A:47:4B:BC:8B:2B:0A:4E:42:FA:8A:43:55:3D
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/kru-wlNsakdLvIsrCk5C-opDVT0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.176.0.0/12
78.38.0.0/15
80.191.0.0/16
85.185.0.0/16
195.146.32.0/19
217.218.0.0/15
IPv6:
2001:4188::/48
Signature Algorithm: sha256WithRSAEncryption
42:1c:1d:2e:8d:74:d9:27:3d:79:9e:32:27:10:a7:02:aa:98:
8c:21:42:18:f4:c0:c9:90:fa:44:0b:57:64:ff:71:7a:63:93:
4e:b5:5a:0f:be:dd:18:34:28:a0:a2:e6:dc:d2:0e:dd:ea:94:
4a:3d:42:5c:2e:f1:3b:ee:3c:2c:8b:46:6b:10:ff:0a:9a:26:
84:c5:3c:62:2d:bd:47:06:9f:84:10:88:95:76:5d:9f:ec:b7:
97:11:cc:cb:96:65:b8:b4:a6:7a:74:7a:fb:88:7b:d0:13:29:
4f:8d:dc:90:b9:eb:f1:cc:86:c1:ec:19:dc:5d:bf:a3:dd:6c:
32:38:a5:ea:cc:a0:77:0a:36:a7:95:18:ed:de:82:a3:11:a4:
e9:ad:7a:0a:9c:02:4d:f3:f3:f0:e6:5c:7f:d4:01:f6:05:e6:
fa:9c:62:28:7d:60:61:e4:70:dc:a2:2c:c6:c9:20:bc:46:ca:
ae:e4:b4:52:54:99:af:fa:e0:44:a3:40:38:97:78:e3:d7:cf:
ea:0a:4a:4d:81:b6:db:ce:c8:c2:0c:8a:84:34:c7:ee:7a:70:
be:e9:83:fd:ad:58:e3:f7:41:33:31:25:85:c0:2c:1e:79:b2:
47:35:b4:e2:96:62:df:71:f1:56:f1:55:76:c5:d3:c2:f8:da:
c8:57:96:9d
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgIEDJmZkzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
N2EzOWU0Nzk0YzM0NjEyZTdmMjI1NjliMWE2YTgxNzEwMjYwYWU1MB4XDTIyMDUz
MDEwNTMxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTJiYmJlYzI1MzZj
NmE0NzRiYmM4YjJiMGE0ZTQyZmE4YTQzNTUzZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKHBgvLSuO4DFrpjAh/3oW8oXluT97ZCsoRmAYwYPcXq6lYy
YZT/gUPbc56eo5u8tVta64ANAf3933FtTNpusNPnNR58CYk4/hNfvvYfeN5OK+Eb
a9DR6IiAaNW1O1OIojR+sN27Km7ToE+B0e/ZsdtxTPX9/shzhLYTvggMKPqDRpjK
3cn6u7JBdS2KnRkW4uYoemGa8AtWStnK6FuzRFgzOsRsq6Q41aNqQwg5BW35CP/I
Ucgv0OAJNWKK/HX/UYgCrD0dj9UF3Jnh8MD5ToE+IjciD/74M/cYYormG8nP80j7
qIsfLa7LYr8oq6x+WgoEzFmRc7NOsqb2NIPg278CAwEAAaOCAjMwggIvMB0GA1Ud
DgQWBBSSu77CU2xqR0u8iysKTkL6ikNVPTAfBgNVHSMEGDAWgBQno55HlMNGEufy
JWmxpqgXECYK5TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0o2T2VSNVREUmhMbjhpVnBzYWFvRnhBbUN1VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDAvMzhmYzMzLTA2YzEtNDAwNi05ZTIzLWY3NGQ5NTE4NTc2Yy8x
L2tydS13bE5zYWtkTHZJc3JDazVDLW9wRFZUMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDAv
MzhmYzMzLTA2YzEtNDAwNi05ZTIzLWY3NGQ5NTE4NTc2Yy8xL0o2T2VSNVREUmhM
bjhpVnBzYWFvRnhBbUN1VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBJ
BggrBgEFBQcBBwEB/wQ6MDgwJQQCAAEwHwMDBAKwAwMBTiYDAwBQvwMDAFW5AwQF
w5IgAwMB2dowDwQCAAIwCQMHACABQYgAADANBgkqhkiG9w0BAQsFAAOCAQEAQhwd
Lo102Sc9eZ4yJxCnAqqYjCFCGPTAyZD6RAtXZP9xemOTTrVaD77dGDQooKLm3NIO
3eqUSj1CXC7xO+48LItGaxD/CpomhMU8Yi29RwafhBCIlXZdn+y3lxHMy5ZluLSm
enR6+4h70BMpT43ckLnr8cyGwewZ3F2/o91sMjil6sygdwo2p5UY7d6CoxGk6a16
CpwCTfPz8OZcf9QB9gXm+pxiKH1gYeRw3KIsxskgvEbKruS0UlSZr/rgRKNAOJd4
49fP6gpKTYG2287IwgyKhDTH7npwvumD/a1Y4/dBMzElhcAsHnmyRzW04pZi33Hx
VvFVdsXTwvjayFeWnQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:02 2023 by rpki-client on console-fra.rpki-client.org