Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/ca618c-35ce-4d31-bb89-ce8dd6898b27/1/g_AuBMBZS2P7Y42eD0fuCZxoTFA.roa
File: g_AuBMBZS2P7Y42eD0fuCZxoTFA.roa (raw, json)
Hash identifier: kYDLNZGiHLuIGQXjdoCo96j6X2qO/7Cx1xvSwcec+6E=
Subject key identifier: 83:F0:2E:04:C0:59:4B:63:FB:63:8D:9E:0F:47:EE:09:9C:68:4C:50
Certificate issuer: /CN=5484b53ec069e302623596fb3aa79f5d782c09f9
Certificate serial: 36E01930
Authority key identifier: 54:84:B5:3E:C0:69:E3:02:62:35:96:FB:3A:A7:9F:5D:78:2C:09:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VIS1PsBp4wJiNZb7OqefXXgsCfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/ca618c-35ce-4d31-bb89-ce8dd6898b27/1/g_AuBMBZS2P7Y42eD0fuCZxoTFA.roa
Signing time: Sat 01 Jan 2022 11:04:47 +0000
ROA not before: Sat 01 Jan 2022 11:04:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34949
IP address blocks: 185.60.24.0/23 maxlen: 23
185.60.24.0/24 maxlen: 24
185.60.25.0/24 maxlen: 24
185.60.26.0/23 maxlen: 23
185.60.26.0/24 maxlen: 24
185.85.227.0/24 maxlen: 24
159.100.35.0/24 maxlen: 24
159.100.34.0/23 maxlen: 23
159.100.34.0/24 maxlen: 24
159.100.32.0/24 maxlen: 24
159.100.32.0/23 maxlen: 23
159.100.33.0/24 maxlen: 24
159.100.38.0/24 maxlen: 24
159.100.38.0/23 maxlen: 23
159.100.39.0/24 maxlen: 24
159.100.40.0/24 maxlen: 24
159.100.40.0/23 maxlen: 23
217.112.58.0/24 maxlen: 24
217.112.52.0/24 maxlen: 24
217.112.52.0/23 maxlen: 23
217.112.53.0/24 maxlen: 24
217.112.58.0/23 maxlen: 23
217.112.57.0/24 maxlen: 24
217.112.54.0/24 maxlen: 24
217.112.54.0/23 maxlen: 23
217.112.56.0/24 maxlen: 24
217.112.56.0/23 maxlen: 23
217.112.55.0/24 maxlen: 24
217.112.59.0/24 maxlen: 24
217.112.61.0/24 maxlen: 24
217.112.60.0/23 maxlen: 23
217.112.60.0/24 maxlen: 24
217.112.63.0/24 maxlen: 24
217.112.62.0/23 maxlen: 24
217.112.50.0/23 maxlen: 23
217.112.51.0/24 maxlen: 24
217.112.50.0/24 maxlen: 24
217.112.49.0/24 maxlen: 24
217.112.48.0/23 maxlen: 24
185.85.224.0/24 maxlen: 24
185.85.224.0/23 maxlen: 23
185.85.226.0/24 maxlen: 24
185.85.226.0/23 maxlen: 23
185.85.225.0/24 maxlen: 24
109.239.112.0/24 maxlen: 24
109.239.112.0/23 maxlen: 23
109.239.114.0/23 maxlen: 24
109.239.113.0/24 maxlen: 24
109.239.118.0/23 maxlen: 23
109.239.118.0/24 maxlen: 24
109.239.116.0/24 maxlen: 24
109.239.116.0/23 maxlen: 23
109.239.117.0/24 maxlen: 24
109.239.119.0/24 maxlen: 24
109.239.125.0/24 maxlen: 24
109.239.122.0/23 maxlen: 23
109.239.122.0/24 maxlen: 24
109.239.123.0/24 maxlen: 24
109.239.124.0/23 maxlen: 23
109.239.126.0/24 maxlen: 24
109.239.126.0/23 maxlen: 23
109.239.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 920656176 (0x36e01930)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5484b53ec069e302623596fb3aa79f5d782c09f9
Validity
Not Before: Jan 1 11:04:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83f02e04c0594b63fb638d9e0f47ee099c684c50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:06:03:c7:25:ae:7c:8b:0d:44:04:d8:5d:9c:
ce:38:f2:47:4c:6a:39:1c:e0:d3:c9:cc:60:3f:f1:
da:05:a7:21:5f:03:88:6e:cf:2c:e4:2b:c8:53:20:
24:ae:29:83:41:f3:e4:c0:36:8e:49:3a:cf:e1:07:
00:52:3c:e3:e5:d6:ac:a5:c5:d2:93:ae:29:37:f4:
c1:4f:36:97:48:cb:b3:c3:38:1b:b9:26:f6:d7:fc:
e8:3b:6b:f1:6d:0a:66:d9:41:b0:68:1a:44:64:d5:
27:bf:0b:20:b3:32:37:88:98:7b:0d:11:65:a4:74:
04:5a:ce:21:2b:53:e2:fe:94:c3:28:05:03:a5:23:
2f:fc:b7:98:99:06:b1:12:46:95:d6:62:e9:6e:bf:
f6:29:77:f3:74:df:70:0c:f9:c5:79:f0:5e:9a:bf:
fa:1a:19:7c:6e:41:b6:2a:c0:be:90:b1:c7:4f:fd:
cf:7c:30:c7:63:81:ab:f0:40:ff:e1:15:7e:c1:50:
20:2a:1a:8a:11:bf:4b:a5:ec:5a:73:00:e9:b7:e7:
3c:a1:60:46:0f:07:28:10:23:56:af:a6:74:c5:b8:
1a:67:cf:c2:2d:c5:7a:9d:bc:00:29:38:b9:55:93:
7b:fa:c4:55:be:ee:82:ab:60:fc:61:cd:f3:90:62:
1e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:F0:2E:04:C0:59:4B:63:FB:63:8D:9E:0F:47:EE:09:9C:68:4C:50
X509v3 Authority Key Identifier:
keyid:54:84:B5:3E:C0:69:E3:02:62:35:96:FB:3A:A7:9F:5D:78:2C:09:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VIS1PsBp4wJiNZb7OqefXXgsCfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/ca618c-35ce-4d31-bb89-ce8dd6898b27/1/g_AuBMBZS2P7Y42eD0fuCZxoTFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/ca618c-35ce-4d31-bb89-ce8dd6898b27/1/VIS1PsBp4wJiNZb7OqefXXgsCfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.239.112.0/21
109.239.122.0-109.239.127.255
159.100.32.0/22
159.100.38.0-159.100.41.255
185.60.24.0/22
185.85.224.0/22
217.112.48.0/20
Signature Algorithm: sha256WithRSAEncryption
04:17:6d:e1:c3:d6:45:59:e1:f0:da:50:f4:dc:18:e3:83:3b:
da:36:31:e5:9d:88:d1:d7:cc:79:ea:cf:2d:36:73:84:44:19:
cd:5a:ef:eb:36:3b:da:31:18:67:5f:5b:b2:d1:1f:65:b8:66:
3b:17:05:ae:61:4c:58:0b:8c:fd:92:1b:6e:d9:04:10:dd:9b:
14:5f:2b:74:20:ff:52:35:dc:0a:79:f5:af:78:a2:d3:2c:f2:
f6:bb:6b:41:27:2f:b3:9e:bd:f5:b4:c1:55:ea:22:d6:8a:42:
27:29:4e:b2:f7:fa:af:f3:bd:e5:14:20:c8:38:a6:43:e0:9f:
82:ca:d9:f0:59:2f:f5:7b:9d:a7:6b:9d:48:eb:42:f2:85:18:
4b:5a:f2:01:04:4f:ee:9d:08:54:67:3f:6b:83:e7:0b:3c:8f:
86:86:3c:6d:8a:43:5b:47:35:ad:3d:b4:f7:47:13:3b:45:71:
91:ed:01:d8:ea:a8:2a:68:40:bc:d3:f0:6f:4c:f0:08:04:bd:
05:26:90:7c:13:68:fb:61:e6:e4:35:ba:02:44:ef:5c:0e:18:
52:81:c7:02:8a:05:df:0d:4c:1c:f6:23:e5:1b:33:5f:2d:b6:
45:02:75:76:09:19:1f:f7:a3:9e:1d:e6:bc:3c:1f:e6:30:4f:
72:3e:59:db
-----BEGIN CERTIFICATE-----
MIIFIzCCBAugAwIBAgIENuAZMDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NDg0YjUzZWMwNjllMzAyNjIzNTk2ZmIzYWE3OWY1ZDc4MmMwOWY5MB4XDTIyMDEw
MTExMDQ0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODNmMDJlMDRjMDU5
NGI2M2ZiNjM4ZDllMGY0N2VlMDk5YzY4NGM1MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALYGA8clrnyLDUQE2F2czjjyR0xqORzg08nMYD/x2gWnIV8D
iG7PLOQryFMgJK4pg0Hz5MA2jkk6z+EHAFI84+XWrKXF0pOuKTf0wU82l0jLs8M4
G7km9tf86Dtr8W0KZtlBsGgaRGTVJ78LILMyN4iYew0RZaR0BFrOIStT4v6UwygF
A6UjL/y3mJkGsRJGldZi6W6/9il383TfcAz5xXnwXpq/+hoZfG5BtirAvpCxx0/9
z3wwx2OBq/BA/+EVfsFQICoaihG/S6XsWnMA6bfnPKFgRg8HKBAjVq+mdMW4GmfP
wi3Fep28ACk4uVWTe/rEVb7ugqtg/GHN85BiHhcCAwEAAaOCAj0wggI5MB0GA1Ud
DgQWBBSD8C4EwFlLY/tjjZ4PR+4JnGhMUDAfBgNVHSMEGDAWgBRUhLU+wGnjAmI1
lvs6p59deCwJ+TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ZJUzFQc0JwNHdKaU5aYjdPcWVmWFhnc0Nmay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDAvY2E2MThjLTM1Y2UtNGQzMS1iYjg5LWNlOGRkNjg5OGIyNy8x
L2dfQXVCTUJaUzJQN1k0MmVEMGZ1Q1p4b1RGQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDAv
Y2E2MThjLTM1Y2UtNGQzMS1iYjg5LWNlOGRkNjg5OGIyNy8xL1ZJUzFQc0JwNHdK
aU5aYjdPcWVmWFhnc0Nmay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBT
BggrBgEFBQcBBwEB/wREMEIwQAQCAAEwOgMEA23vcDAMAwQBbe96AwQHbe8AAwQC
n2QgMAwDBAGfZCYDBAGfZCgDBAK5PBgDBAK5VeADBATZcDAwDQYJKoZIhvcNAQEL
BQADggEBAAQXbeHD1kVZ4fDaUPTcGOODO9o2MeWdiNHXzHnqzy02c4REGc1a7+s2
O9oxGGdfW7LRH2W4ZjsXBa5hTFgLjP2SG27ZBBDdmxRfK3Qg/1I13Ap59a94otMs
8va7a0EnL7OevfW0wVXqItaKQicpTrL3+q/zveUUIMg4pkPgn4LK2fBZL/V7nadr
nUjrQvKFGEta8gEET+6dCFRnP2uD5ws8j4aGPG2KQ1tHNa09tPdHEztFcZHtAdjq
qCpoQLzT8G9M8AgEvQUmkHwTaPth5uQ1ugJE71wOGFKBxwKKBd8NTBz2I+UbM18t
tkUCdXYJGR/3o54d5rw8H+YwT3I+Wds=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:47 2023 by rpki-client on console-ams.rpki-client.org