Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/A0Ng_fy6MLE4mmrvfs1ZqYNInT0.roa
File: A0Ng_fy6MLE4mmrvfs1ZqYNInT0.roa (raw, json)
Hash identifier: Br+9ehCaoWALG6md0bkXYaB8TingYgyDwcbrjpwyEPM=
Subject key identifier: 03:43:60:FD:FC:BA:30:B1:38:9A:6A:EF:7E:CD:59:A9:83:48:9D:3D
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 14F1B727
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/A0Ng_fy6MLE4mmrvfs1ZqYNInT0.roa
Signing time: Sat 01 Jan 2022 13:06:24 +0000
ROA not before: Sat 01 Jan 2022 13:06:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8641
IP address blocks: 213.208.160.0/21 maxlen: 21
213.208.168.0/23 maxlen: 23
213.208.170.0/24 maxlen: 24
213.208.172.0/22 maxlen: 22
213.208.176.0/21 maxlen: 21
213.208.186.0/23 maxlen: 23
213.208.184.0/24 maxlen: 24
213.208.188.0/22 maxlen: 22
81.26.144.0/21 maxlen: 21
81.26.144.0/24 maxlen: 24
81.26.152.0/22 maxlen: 22
185.106.107.0/24 maxlen: 24
77.94.160.0/19 maxlen: 19
84.47.128.0/22 maxlen: 22
84.47.134.0/23 maxlen: 23
84.47.136.0/24 maxlen: 24
84.47.140.0/22 maxlen: 22
84.47.144.0/23 maxlen: 23
84.47.152.0/23 maxlen: 23
85.91.96.0/21 maxlen: 21
84.47.147.0/24 maxlen: 24
84.47.148.0/22 maxlen: 22
84.47.156.0/22 maxlen: 22
84.47.160.0/22 maxlen: 22
85.91.112.0/22 maxlen: 22
84.47.164.0/23 maxlen: 23
84.47.168.0/21 maxlen: 21
85.91.118.0/23 maxlen: 23
213.135.64.0/22 maxlen: 22
213.135.70.0/23 maxlen: 23
85.91.122.0/24 maxlen: 24
213.135.69.0/24 maxlen: 24
84.47.176.0/23 maxlen: 23
85.91.120.0/23 maxlen: 23
84.47.181.0/24 maxlen: 24
213.135.72.0/23 maxlen: 23
84.47.182.0/23 maxlen: 23
84.47.186.0/23 maxlen: 23
213.135.77.0/24 maxlen: 24
213.135.80.0/24 maxlen: 24
84.47.190.0/23 maxlen: 23
213.135.79.0/24 maxlen: 24
213.135.80.0/21 maxlen: 21
2a02:bc8::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 351385383 (0x14f1b727)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Jan 1 13:06:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=034360fdfcba30b1389a6aef7ecd59a983489d3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:c3:5a:c0:a9:54:91:37:70:18:76:9a:5c:11:
e7:a1:70:35:4f:0c:d7:0b:1a:e3:cb:5d:51:21:08:
98:c4:97:84:f9:d7:62:a6:72:d5:f4:31:d5:14:a0:
d3:1c:61:32:85:6b:21:97:71:80:2b:0d:36:ce:3f:
20:fc:85:e5:73:72:65:16:a7:59:ef:f9:cf:95:7e:
c2:9b:da:8b:00:9e:05:7e:83:d5:49:bc:2d:98:76:
48:ed:9e:4e:14:3d:c0:d1:38:c0:c6:3d:04:34:71:
59:8a:e2:8d:d2:ca:9c:b4:4e:bc:ab:ec:ea:4b:cf:
6d:ac:ca:a0:8f:24:94:05:56:84:5f:e7:63:ec:a7:
f3:bc:59:99:9c:bb:c2:62:a8:be:f8:d3:c6:47:f0:
62:76:b0:cd:d6:07:46:5d:bd:99:cf:4a:d9:ec:d0:
c2:7d:ab:dc:aa:dd:ce:bc:5a:73:16:ac:fb:ed:a3:
fa:7b:e8:0f:b7:5c:e5:3b:39:fb:00:fe:04:07:fc:
42:42:41:fe:d2:6b:c3:41:56:24:01:f3:10:cb:f7:
c5:5d:17:8c:6e:1e:8f:3c:07:17:44:36:10:3c:19:
b1:e3:ac:e0:40:37:19:54:5a:46:9d:8c:90:b0:20:
91:50:d7:12:3b:cd:47:bc:c2:68:4f:ce:38:9e:8f:
20:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:43:60:FD:FC:BA:30:B1:38:9A:6A:EF:7E:CD:59:A9:83:48:9D:3D
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/A0Ng_fy6MLE4mmrvfs1ZqYNInT0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.94.160.0/19
81.26.144.0-81.26.155.255
84.47.128.0/22
84.47.134.0-84.47.136.255
84.47.140.0-84.47.145.255
84.47.147.0-84.47.153.255
84.47.156.0-84.47.165.255
84.47.168.0-84.47.177.255
84.47.181.0-84.47.183.255
84.47.186.0/23
84.47.190.0/23
85.91.96.0/21
85.91.112.0/22
85.91.118.0-85.91.122.255
185.106.107.0/24
213.135.64.0/22
213.135.69.0-213.135.73.255
213.135.77.0/24
213.135.79.0-213.135.87.255
213.208.160.0-213.208.170.255
213.208.172.0-213.208.184.255
213.208.186.0-213.208.191.255
IPv6:
2a02:bc8::/29
Signature Algorithm: sha256WithRSAEncryption
1e:64:57:c2:a3:db:50:9a:3a:73:3e:7a:f6:49:a6:13:36:a4:
4a:72:0e:68:6d:9a:aa:41:df:34:92:58:12:81:d1:4b:ef:ce:
a3:37:f1:b1:53:51:1f:b5:0f:15:41:1e:2d:93:47:34:ac:37:
60:d4:c9:c9:9f:c1:52:24:2a:0c:cd:79:58:b4:fa:d6:b4:97:
05:fd:8b:66:b8:38:94:47:52:2d:7b:48:13:5b:93:b0:fd:f3:
e8:de:dd:89:fa:4c:e3:2b:3a:d2:5a:6c:84:67:87:22:ba:75:
48:6f:a4:81:43:08:8f:b6:d0:36:16:e7:a0:d8:2c:b7:c5:bb:
76:eb:86:a6:d5:0c:04:a4:6b:f7:c5:04:0d:44:78:40:bf:33:
6b:bc:0c:96:07:ce:39:a7:8e:15:f3:31:67:59:24:21:90:ca:
20:80:bd:96:16:67:d6:42:4d:a7:5b:3e:3d:82:50:02:a9:33:
3f:7d:95:2d:7e:1d:86:4a:fc:e6:b5:45:66:51:77:b2:76:23:
ee:f6:4f:42:4a:40:42:fa:48:7e:81:c3:9a:49:3a:f3:81:12:
25:9d:95:59:93:42:26:0b:1f:99:aa:f2:69:8e:3e:e6:2a:92:
ca:a0:42:69:5f:e5:8d:5e:1f:b1:46:29:d8:08:a7:e8:d9:6d:
aa:c7:b9:77
-----BEGIN CERTIFICATE-----
MIIF7DCCBNSgAwIBAgIEFPG3JzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZjM4MTg1NTRhNTE4MDhlZWZiODI5ZWM3NDY1YTMyMjJmMjcwMTIzMB4XDTIyMDEw
MTEzMDYyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDM0MzYwZmRmY2Jh
MzBiMTM4OWE2YWVmN2VjZDU5YTk4MzQ4OWQzZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPDDWsCpVJE3cBh2mlwR56FwNU8M1wsa48tdUSEImMSXhPnX
YqZy1fQx1RSg0xxhMoVrIZdxgCsNNs4/IPyF5XNyZRanWe/5z5V+wpvaiwCeBX6D
1Um8LZh2SO2eThQ9wNE4wMY9BDRxWYrijdLKnLROvKvs6kvPbazKoI8klAVWhF/n
Y+yn87xZmZy7wmKovvjTxkfwYnawzdYHRl29mc9K2ezQwn2r3Krdzrxacxas++2j
+nvoD7dc5Ts5+wD+BAf8QkJB/tJrw0FWJAHzEMv3xV0XjG4ejzwHF0Q2EDwZseOs
4EA3GVRaRp2MkLAgkVDXEjvNR7zCaE/OOJ6PIGECAwEAAaOCAwYwggMCMB0GA1Ud
DgQWBBQDQ2D9/LowsTiaau9+zVmpg0idPTAfBgNVHSMEGDAWgBSPOBhVSlGAju+4
Kex0ZaMiLycBIzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2p6Z1lWVXBSZ0k3dnVDbnNkR1dqSWk4bkFTTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDYvMDlkYmE0LTFjOTMtNDlkNi04ODg4LWJmYjRiYTMwZTQ1YS8x
L0EwTmdfZnk2TUxFNG1tcnZmczFacVlOSW5UMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDYv
MDlkYmE0LTFjOTMtNDlkNi04ODg4LWJmYjRiYTMwZTQ1YS8xL2p6Z1lWVXBSZ0k3
dnVDbnNkR1dqSWk4bkFTTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCC
ARoGCCsGAQUFBwEHAQH/BIIBCTCCAQUwgfMEAgABMIHsAwQFTV6gMAwDBARRGpAD
BAJRGpgDBAJUL4AwDAMEAVQvhgMEAFQviDAMAwQCVC+MAwQBVC+QMAwDBABUL5MD
BAFUL5gwDAMEAlQvnAMEAVQvpDAMAwQDVC+oAwQBVC+wMAwDBABUL7UDBANUL7AD
BAFUL7oDBAFUL74DBANVW2ADBAJVW3AwDAMEAVVbdgMEAFVbegMEALlqawMEAtWH
QDAMAwQA1YdFAwQB1YdIAwQA1YdNMAwDBADVh08DBAPVh1AwDAMEBdXQoAMEANXQ
qjAMAwQC1dCsAwQA1dC4MAwDBAHV0LoDBAbV0IAwDQQCAAIwBwMFAyoCC8gwDQYJ
KoZIhvcNAQELBQADggEBAB5kV8Kj21CaOnM+evZJphM2pEpyDmhtmqpB3zSSWBKB
0UvvzqM38bFTUR+1DxVBHi2TRzSsN2DUycmfwVIkKgzNeVi0+ta0lwX9i2a4OJRH
Ui17SBNbk7D98+je3Yn6TOMrOtJabIRnhyK6dUhvpIFDCI+20DYW56DYLLfFu3br
hqbVDASka/fFBA1EeEC/M2u8DJYHzjmnjhXzMWdZJCGQyiCAvZYWZ9ZCTadbPj2C
UAKpMz99lS1+HYZK/Oa1RWZRd7J2I+72T0JKQEL6SH6Bw5pJOvOBEiWdlVmTQiYL
H5mq8mmOPuYqksqgQmlf5Y1eH7FGKdgIp+jZbarHuXc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:05 2024 by rpki-client on console-ams.rpki-client.org