Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/847d17-ba7c-4eae-9d55-25846d59fd60/1/jWa4NW4A0VGzt0XB1sxyeqnJn4M.roa
File: jWa4NW4A0VGzt0XB1sxyeqnJn4M.roa (raw, json)
Hash identifier: +6BfWbE/4LPHrZMv5Ik41pv95AQsXmim01USDXQtyTc=
Subject key identifier: 8D:66:B8:35:6E:00:D1:51:B3:B7:45:C1:D6:CC:72:7A:A9:C9:9F:83
Certificate issuer: /CN=5f1fa06d5dbada43de44f4e4b1dc9492bb287c9d
Certificate serial: 056C13E9
Authority key identifier: 5F:1F:A0:6D:5D:BA:DA:43:DE:44:F4:E4:B1:DC:94:92:BB:28:7C:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xx-gbV262kPeRPTksdyUkrsofJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/847d17-ba7c-4eae-9d55-25846d59fd60/1/jWa4NW4A0VGzt0XB1sxyeqnJn4M.roa
Signing time: Sat 01 Jan 2022 02:57:00 +0000
ROA not before: Sat 01 Jan 2022 02:57:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34244
IP address blocks: 94.46.136.0/22 maxlen: 22
45.152.172.0/22 maxlen: 22
178.255.112.0/22 maxlen: 22
193.221.219.0/24 maxlen: 24
141.98.236.0/22 maxlen: 22
193.221.120.0/24 maxlen: 24
193.221.123.0/24 maxlen: 24
185.186.32.0/22 maxlen: 22
185.176.28.0/22 maxlen: 22
185.216.152.0/22 maxlen: 22
5.180.0.0/22 maxlen: 22
185.121.44.0/22 maxlen: 22
185.223.236.0/22 maxlen: 22
185.240.208.0/22 maxlen: 22
45.93.232.0/22 maxlen: 22
195.210.52.0/23 maxlen: 23
128.127.184.0/21 maxlen: 21
94.46.240.0/22 maxlen: 22
81.92.220.0/22 maxlen: 22
185.247.236.0/22 maxlen: 22
45.131.188.0/22 maxlen: 22
92.39.32.0/20 maxlen: 20
81.92.196.0/22 maxlen: 22
45.8.152.0/22 maxlen: 22
85.30.128.0/18 maxlen: 18
155.137.24.0/21 maxlen: 21
185.4.8.0/22 maxlen: 22
193.221.93.0/24 maxlen: 24
37.221.104.0/22 maxlen: 22
185.197.224.0/22 maxlen: 22
188.66.48.0/22 maxlen: 22
45.14.4.0/22 maxlen: 22
2a02:80::/32 maxlen: 32
2a02:80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90969065 (0x56c13e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f1fa06d5dbada43de44f4e4b1dc9492bb287c9d
Validity
Not Before: Jan 1 02:57:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d66b8356e00d151b3b745c1d6cc727aa9c99f83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:77:72:1e:88:92:14:ac:d1:c8:ac:8a:1e:1d:
0e:ce:87:cc:2a:d7:6a:2d:b3:45:a6:ae:f9:ae:00:
c6:9f:9c:46:bc:e6:9e:e0:9b:4c:ca:e7:a4:d8:be:
80:78:c8:38:a9:2b:b2:9d:f1:61:df:09:62:16:2d:
b7:19:0a:a5:ab:e2:47:2a:15:09:6b:74:62:14:cc:
a4:77:33:3d:1e:8b:c4:23:f2:36:74:07:ec:5d:00:
f9:b2:d2:5a:84:8d:b2:41:90:9c:bd:e8:97:82:ac:
d9:07:ab:36:29:b9:59:ed:ab:51:87:36:3b:00:9a:
73:a2:0f:7e:aa:cc:bc:14:1b:d7:9f:22:cd:94:17:
07:ca:d9:b8:46:cf:0c:3d:f9:05:34:bd:c6:ef:4b:
0a:23:b7:a1:20:ce:50:81:9e:99:a6:ce:7b:42:0e:
34:30:3a:2c:89:33:ff:37:4c:3f:29:17:9b:2e:39:
ec:22:b1:66:60:0b:35:d1:20:0f:8c:53:43:99:5c:
09:9b:3e:e2:fe:62:9b:40:b2:1d:a1:dc:ca:66:41:
1b:08:27:c1:8d:6b:e1:32:6c:1b:27:9f:4f:6c:1c:
1e:ab:c3:8d:39:46:0f:a3:3d:71:70:31:ac:d7:4f:
ab:43:08:c8:d2:c4:b1:ff:82:e1:bf:b6:43:7a:08:
c5:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:66:B8:35:6E:00:D1:51:B3:B7:45:C1:D6:CC:72:7A:A9:C9:9F:83
X509v3 Authority Key Identifier:
keyid:5F:1F:A0:6D:5D:BA:DA:43:DE:44:F4:E4:B1:DC:94:92:BB:28:7C:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xx-gbV262kPeRPTksdyUkrsofJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/847d17-ba7c-4eae-9d55-25846d59fd60/1/jWa4NW4A0VGzt0XB1sxyeqnJn4M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/847d17-ba7c-4eae-9d55-25846d59fd60/1/Xx-gbV262kPeRPTksdyUkrsofJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.0.0/22
37.221.104.0/22
45.8.152.0/22
45.14.4.0/22
45.93.232.0/22
45.131.188.0/22
45.152.172.0/22
81.92.196.0/22
81.92.220.0/22
85.30.128.0/18
92.39.32.0/20
94.46.136.0/22
94.46.240.0/22
128.127.184.0/21
141.98.236.0/22
155.137.24.0/21
178.255.112.0/22
185.4.8.0/22
185.121.44.0/22
185.176.28.0/22
185.186.32.0/22
185.197.224.0/22
185.216.152.0/22
185.223.236.0/22
185.240.208.0/22
185.247.236.0/22
188.66.48.0/22
193.221.93.0/24
193.221.120.0/24
193.221.123.0/24
193.221.219.0/24
195.210.52.0/23
IPv6:
2a02:80::/29
Signature Algorithm: sha256WithRSAEncryption
36:59:1c:37:02:59:b9:fb:8b:63:bb:59:18:af:7b:07:c3:0d:
e4:51:7a:d7:1d:f0:25:fe:08:e8:42:f7:ba:69:36:4f:d7:37:
f4:5f:d8:f1:be:11:30:ed:9e:0a:d1:20:e0:47:2c:bd:3d:37:
96:92:33:a6:ab:d7:ee:61:f6:a0:c9:c7:2f:0a:7e:e6:5a:91:
51:3e:c0:a9:4f:69:0c:be:b0:5b:0d:20:b5:4a:b2:a5:6d:40:
b5:6d:71:77:8e:a6:d5:fe:8d:86:9e:f7:f5:60:39:a8:b7:83:
b5:41:7c:8a:a4:3e:eb:9d:e4:87:fc:91:a2:00:7f:98:11:b3:
04:3e:1c:c5:5b:7a:76:be:89:e7:53:4e:a1:31:c8:86:ad:07:
25:cf:32:17:62:8e:cb:4f:01:4e:8b:bb:08:58:a1:4d:ed:b6:
53:27:dc:56:15:5f:52:18:6c:76:da:c6:c1:77:45:6a:0b:46:
1c:5e:e1:e1:70:84:44:d6:2e:61:10:01:e0:97:77:db:f0:6a:
f9:b8:d8:34:7b:20:76:d7:b9:fd:fc:82:8a:82:e6:f4:3f:b7:
6d:44:2f:69:8d:44:03:2e:4f:3d:f6:79:d1:1c:e9:56:5d:08:
f7:5b:8c:81:24:c7:69:8d:c9:cc:a5:24:3b:b7:bb:bc:66:0f:
15:18:41:7d
-----BEGIN CERTIFICATE-----
MIIFvTCCBKWgAwIBAgIEBWwT6TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ZjFmYTA2ZDVkYmFkYTQzZGU0NGY0ZTRiMWRjOTQ5MmJiMjg3YzlkMB4XDTIyMDEw
MTAyNTcwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGQ2NmI4MzU2ZTAw
ZDE1MWIzYjc0NWMxZDZjYzcyN2FhOWM5OWY4MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANp3ch6IkhSs0cisih4dDs6HzCrXai2zRaau+a4Axp+cRrzm
nuCbTMrnpNi+gHjIOKkrsp3xYd8JYhYttxkKpaviRyoVCWt0YhTMpHczPR6LxCPy
NnQH7F0A+bLSWoSNskGQnL3ol4Ks2QerNim5We2rUYc2OwCac6IPfqrMvBQb158i
zZQXB8rZuEbPDD35BTS9xu9LCiO3oSDOUIGemabOe0IONDA6LIkz/zdMPykXmy45
7CKxZmALNdEgD4xTQ5lcCZs+4v5im0CyHaHcymZBGwgnwY1r4TJsGyefT2wcHqvD
jTlGD6M9cXAxrNdPq0MIyNLEsf+C4b+2Q3oIxekCAwEAAaOCAtcwggLTMB0GA1Ud
DgQWBBSNZrg1bgDRUbO3RcHWzHJ6qcmfgzAfBgNVHSMEGDAWgBRfH6BtXbraQ95E
9OSx3JSSuyh8nTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1h4LWdiVjI2MmtQZVJQVGtzZHlVa3Jzb2ZKMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGEvODQ3ZDE3LWJhN2MtNGVhZS05ZDU1LTI1ODQ2ZDU5ZmQ2MC8x
L2pXYTROVzRBMFZHenQwWEIxc3h5ZXFuSm40TS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGEv
ODQ3ZDE3LWJhN2MtNGVhZS05ZDU1LTI1ODQ2ZDU5ZmQ2MC8xL1h4LWdiVjI2MmtQ
ZVJQVGtzZHlVa3Jzb2ZKMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
7AYIKwYBBQUHAQcBAf8EgdwwgdkwgccEAgABMIHAAwQCBbQAAwQCJd1oAwQCLQiY
AwQCLQ4EAwQCLV3oAwQCLYO8AwQCLZisAwQCUVzEAwQCUVzcAwQGVR6AAwQEXCcg
AwQCXi6IAwQCXi7wAwQDgH+4AwQCjWLsAwQDm4kYAwQCsv9wAwQCuQQIAwQCuXks
AwQCubAcAwQCubogAwQCucXgAwQCudiYAwQCud/sAwQCufDQAwQCuffsAwQCvEIw
AwQAwd1dAwQAwd14AwQAwd17AwQAwd3bAwQBw9I0MA0EAgACMAcDBQMqAgCAMA0G
CSqGSIb3DQEBCwUAA4IBAQA2WRw3Alm5+4tju1kYr3sHww3kUXrXHfAl/gjoQve6
aTZP1zf0X9jxvhEw7Z4K0SDgRyy9PTeWkjOmq9fuYfagyccvCn7mWpFRPsCpT2kM
vrBbDSC1SrKlbUC1bXF3jqbV/o2Gnvf1YDmot4O1QXyKpD7rneSH/JGiAH+YEbME
PhzFW3p2vonnU06hMciGrQclzzIXYo7LTwFOi7sIWKFN7bZTJ9xWFV9SGGx22sbB
d0VqC0YcXuHhcIRE1i5hEAHgl3fb8Gr5uNg0eyB217n9/IKKgub0P7dtRC9pjUQD
Lk899nnRHOlWXQj3W4yBJMdpjcnMpSQ7t7u8Zg8VGEF9
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:05 2024 by rpki-client on console-ams.rpki-client.org