Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/BfT_bgM-rV0AyMQFixNZ2AE-XaI.roa
File: BfT_bgM-rV0AyMQFixNZ2AE-XaI.roa (raw, json)
Hash identifier: iwW6voDV/+WpYOQMeTbjwioZlxDU4OTA5U9Ow8OeAzo=
Subject key identifier: 05:F4:FF:6E:03:3E:AD:5D:00:C8:C4:05:8B:13:59:D8:01:3E:5D:A2
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 1592D08C
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/BfT_bgM-rV0AyMQFixNZ2AE-XaI.roa
Signing time: Wed 09 Mar 2022 22:05:58 +0000
ROA not before: Wed 09 Mar 2022 22:05:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8641
IP address blocks: 213.208.160.0/21 maxlen: 21
213.208.168.0/23 maxlen: 23
213.208.170.0/24 maxlen: 24
213.208.172.0/22 maxlen: 22
213.208.176.0/21 maxlen: 21
213.208.186.0/23 maxlen: 23
213.208.184.0/24 maxlen: 24
213.208.188.0/22 maxlen: 22
81.26.144.0/21 maxlen: 21
81.26.144.0/24 maxlen: 24
81.26.152.0/22 maxlen: 22
185.106.107.0/24 maxlen: 24
77.94.160.0/19 maxlen: 19
84.47.128.0/22 maxlen: 22
77.94.175.0/24 maxlen: 24
84.47.134.0/23 maxlen: 23
84.47.136.0/24 maxlen: 24
84.47.140.0/22 maxlen: 22
84.47.144.0/23 maxlen: 23
84.47.152.0/23 maxlen: 23
85.91.96.0/21 maxlen: 21
84.47.147.0/24 maxlen: 24
77.94.189.0/24 maxlen: 24
84.47.148.0/22 maxlen: 22
84.47.156.0/22 maxlen: 22
84.47.160.0/22 maxlen: 22
85.91.112.0/22 maxlen: 22
84.47.164.0/23 maxlen: 23
84.47.168.0/21 maxlen: 21
85.91.118.0/23 maxlen: 23
213.135.64.0/22 maxlen: 22
213.135.70.0/23 maxlen: 23
85.91.122.0/24 maxlen: 24
84.47.176.0/24 maxlen: 24
213.135.69.0/24 maxlen: 24
84.47.177.0/24 maxlen: 24
84.47.176.0/23 maxlen: 23
85.91.120.0/23 maxlen: 23
84.47.181.0/24 maxlen: 24
213.135.72.0/23 maxlen: 23
84.47.182.0/23 maxlen: 23
84.47.186.0/23 maxlen: 23
213.135.77.0/24 maxlen: 24
213.135.80.0/24 maxlen: 24
84.47.190.0/23 maxlen: 23
213.135.79.0/24 maxlen: 24
213.135.80.0/21 maxlen: 21
213.135.88.0/22 maxlen: 22
2a02:bc8::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 361943180 (0x1592d08c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Mar 9 22:05:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=05f4ff6e033ead5d00c8c4058b1359d8013e5da2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ea:45:e7:9f:ed:c7:6a:23:ba:ad:b7:5b:1e:
11:8d:35:64:50:2a:73:2e:19:af:11:16:bf:5c:5c:
f4:47:5d:ea:42:ad:90:94:c1:97:fa:0c:c1:7c:cc:
27:48:0d:04:c2:0d:88:7e:d5:ff:36:b0:40:0f:af:
d4:6c:f3:d9:2a:d5:16:05:e5:7e:8e:9e:36:2d:ad:
f2:4b:7a:fc:b9:64:c6:e9:bf:fb:21:9e:a3:f1:f0:
df:bd:5a:b1:c9:c2:5f:38:b9:a5:56:95:f6:9e:98:
c5:aa:ea:c3:4f:6a:9f:c8:49:a4:66:51:90:ee:2c:
54:e0:bd:5a:f8:fb:de:11:44:71:24:00:12:a4:b1:
7c:ca:b4:f3:53:58:57:d6:f4:21:70:0b:f2:e4:f5:
75:fb:65:f2:fc:cf:b9:e4:35:2e:a3:d2:d4:04:a3:
13:56:44:57:bd:a6:25:5c:83:04:64:77:03:58:f9:
c0:1f:75:ec:83:d3:7d:71:44:57:fc:27:ad:e9:f8:
b9:2a:e6:3c:af:a9:ad:45:6a:dd:86:a9:a4:a2:1f:
5d:2f:f6:4b:ee:a0:ca:d9:1b:d1:84:23:92:1d:b6:
5d:e1:f1:a6:24:ed:21:78:d4:c0:f5:dc:0f:2d:9b:
70:da:73:7a:81:4a:87:a4:e5:f8:7e:d5:c2:47:93:
c9:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:F4:FF:6E:03:3E:AD:5D:00:C8:C4:05:8B:13:59:D8:01:3E:5D:A2
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/BfT_bgM-rV0AyMQFixNZ2AE-XaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.94.160.0/19
81.26.144.0-81.26.155.255
84.47.128.0/22
84.47.134.0-84.47.136.255
84.47.140.0-84.47.145.255
84.47.147.0-84.47.153.255
84.47.156.0-84.47.165.255
84.47.168.0-84.47.177.255
84.47.181.0-84.47.183.255
84.47.186.0/23
84.47.190.0/23
85.91.96.0/21
85.91.112.0/22
85.91.118.0-85.91.122.255
185.106.107.0/24
213.135.64.0/22
213.135.69.0-213.135.73.255
213.135.77.0/24
213.135.79.0-213.135.91.255
213.208.160.0-213.208.170.255
213.208.172.0-213.208.184.255
213.208.186.0-213.208.191.255
IPv6:
2a02:bc8::/29
Signature Algorithm: sha256WithRSAEncryption
24:16:26:ef:c1:5c:cf:46:a2:be:f3:e1:5b:32:b9:43:2d:9a:
e7:6d:60:e3:51:0a:a5:b0:31:23:d5:75:0d:ea:10:c8:15:2c:
b8:d3:07:4e:99:c0:ee:51:7c:9c:8b:0e:3c:c2:00:14:9d:a4:
a1:52:b8:5a:07:7e:e2:d6:75:9d:c6:e9:14:06:53:19:ce:16:
b8:9a:86:32:6b:84:5d:61:6b:80:6d:ca:6a:99:01:f2:b2:36:
6a:eb:14:6b:6b:7e:53:7d:da:41:ed:0e:d2:f8:f6:b9:03:b5:
fa:39:58:ee:70:40:7a:a6:f4:a4:86:17:8b:9e:85:ec:6c:5e:
6f:37:f9:59:66:18:72:e1:00:9f:07:82:91:4f:0e:b0:b7:78:
2e:90:de:34:34:a5:c0:ea:e5:8c:6c:77:eb:da:a9:76:00:5b:
28:97:9e:e3:a2:5d:70:6b:27:d9:ff:d4:55:13:c6:cd:4c:d9:
b7:97:dd:35:10:e4:4e:3f:ac:85:32:2d:f4:8f:32:b6:66:a3:
ea:70:78:94:55:47:46:d8:f9:bf:46:fc:cf:be:f2:3c:f0:18:
51:f1:3a:ae:11:91:a8:e1:63:d2:ee:2d:07:a1:c8:0d:34:e2:
84:95:5a:9c:96:a1:a9:36:60:6e:6a:a9:ee:11:90:f9:bf:0b:
24:19:8d:c6
-----BEGIN CERTIFICATE-----
MIIF7DCCBNSgAwIBAgIEFZLQjDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZjM4MTg1NTRhNTE4MDhlZWZiODI5ZWM3NDY1YTMyMjJmMjcwMTIzMB4XDTIyMDMw
OTIyMDU1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDVmNGZmNmUwMzNl
YWQ1ZDAwYzhjNDA1OGIxMzU5ZDgwMTNlNWRhMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMDqReef7cdqI7qtt1seEY01ZFAqcy4ZrxEWv1xc9Edd6kKt
kJTBl/oMwXzMJ0gNBMINiH7V/zawQA+v1Gzz2SrVFgXlfo6eNi2t8kt6/Llkxum/
+yGeo/Hw371ascnCXzi5pVaV9p6Yxarqw09qn8hJpGZRkO4sVOC9Wvj73hFEcSQA
EqSxfMq081NYV9b0IXAL8uT1dftl8vzPueQ1LqPS1ASjE1ZEV72mJVyDBGR3A1j5
wB917IPTfXFEV/wnren4uSrmPK+prUVq3YappKIfXS/2S+6gytkb0YQjkh22XeHx
piTtIXjUwPXcDy2bcNpzeoFKh6Tl+H7VwkeTyV8CAwEAAaOCAwYwggMCMB0GA1Ud
DgQWBBQF9P9uAz6tXQDIxAWLE1nYAT5dojAfBgNVHSMEGDAWgBSPOBhVSlGAju+4
Kex0ZaMiLycBIzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2p6Z1lWVXBSZ0k3dnVDbnNkR1dqSWk4bkFTTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDYvMDlkYmE0LTFjOTMtNDlkNi04ODg4LWJmYjRiYTMwZTQ1YS8x
L0JmVF9iZ00tclYwQXlNUUZpeE5aMkFFLVhhSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDYv
MDlkYmE0LTFjOTMtNDlkNi04ODg4LWJmYjRiYTMwZTQ1YS8xL2p6Z1lWVXBSZ0k3
dnVDbnNkR1dqSWk4bkFTTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCC
ARoGCCsGAQUFBwEHAQH/BIIBCTCCAQUwgfMEAgABMIHsAwQFTV6gMAwDBARRGpAD
BAJRGpgDBAJUL4AwDAMEAVQvhgMEAFQviDAMAwQCVC+MAwQBVC+QMAwDBABUL5MD
BAFUL5gwDAMEAlQvnAMEAVQvpDAMAwQDVC+oAwQBVC+wMAwDBABUL7UDBANUL7AD
BAFUL7oDBAFUL74DBANVW2ADBAJVW3AwDAMEAVVbdgMEAFVbegMEALlqawMEAtWH
QDAMAwQA1YdFAwQB1YdIAwQA1YdNMAwDBADVh08DBALVh1gwDAMEBdXQoAMEANXQ
qjAMAwQC1dCsAwQA1dC4MAwDBAHV0LoDBAbV0IAwDQQCAAIwBwMFAyoCC8gwDQYJ
KoZIhvcNAQELBQADggEBACQWJu/BXM9Gor7z4VsyuUMtmudtYONRCqWwMSPVdQ3q
EMgVLLjTB06ZwO5RfJyLDjzCABSdpKFSuFoHfuLWdZ3G6RQGUxnOFriahjJrhF1h
a4BtymqZAfKyNmrrFGtrflN92kHtDtL49rkDtfo5WO5wQHqm9KSGF4uehexsXm83
+VlmGHLhAJ8HgpFPDrC3eC6Q3jQ0pcDq5Yxsd+vaqXYAWyiXnuOiXXBrJ9n/1FUT
xs1M2beX3TUQ5E4/rIUyLfSPMrZmo+pweJRVR0bY+b9G/M++8jzwGFHxOq4Rkajh
Y9LuLQehyA004oSVWpyWoak2YG5qqe4RkPm/CyQZjcY=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:03 2023 by rpki-client on console-ams.rpki-client.org