Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/gq7Bh-rNf9pmeJFLP0X-8s9VDNI.roa
File: gq7Bh-rNf9pmeJFLP0X-8s9VDNI.roa (raw, json)
Hash identifier: jY3vozpjOyYq/plmHx0g7S9Ej16LsC/nPzDJ6LQYIXc=
Subject key identifier: 82:AE:C1:87:EA:CD:7F:DA:66:78:91:4B:3F:45:FE:F2:CF:55:0C:D2
Certificate issuer: /CN=b6d14118dbd227298daa80c7acab11eea6d63e21
Certificate serial: 01839D749CCF2D5A5A039ED2CE80FC66B7E8
Authority key identifier: B6:D1:41:18:DB:D2:27:29:8D:AA:80:C7:AC:AB:11:EE:A6:D6:3E:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ttFBGNvSJymNqoDHrKsR7qbWPiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/gq7Bh-rNf9pmeJFLP0X-8s9VDNI.roa
Signing time: Mon 03 Oct 2022 10:46:48 +0000
ROA not before: Mon 03 Oct 2022 10:46:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34636
IP address blocks: 185.237.11.0/24 maxlen: 24
185.237.9.0/24 maxlen: 24
185.237.10.0/24 maxlen: 24
185.237.8.0/24 maxlen: 24
185.237.8.0/22 maxlen: 22
185.189.122.0/23 maxlen: 23
185.189.122.0/24 maxlen: 24
185.189.123.0/24 maxlen: 24
185.189.120.0/24 maxlen: 24
185.189.120.0/22 maxlen: 22
185.189.120.0/23 maxlen: 23
185.189.121.0/24 maxlen: 24
185.132.80.0/24 maxlen: 24
185.132.80.0/23 maxlen: 23
185.132.80.0/22 maxlen: 22
185.132.82.0/23 maxlen: 23
185.132.83.0/24 maxlen: 24
185.132.81.0/24 maxlen: 24
185.67.102.0/24 maxlen: 24
185.67.103.0/24 maxlen: 24
185.67.100.0/22 maxlen: 22
185.67.100.0/24 maxlen: 24
185.67.101.0/24 maxlen: 24
185.233.14.0/24 maxlen: 24
185.233.15.0/24 maxlen: 24
185.233.12.0/22 maxlen: 22
185.233.12.0/24 maxlen: 24
185.233.13.0/24 maxlen: 24
2a04:f080::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:9d:74:9c:cf:2d:5a:5a:03:9e:d2:ce:80:fc:66:b7:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6d14118dbd227298daa80c7acab11eea6d63e21
Validity
Not Before: Oct 3 10:46:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82aec187eacd7fda6678914b3f45fef2cf550cd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a6:2f:51:f0:6f:51:38:5e:14:48:65:6a:d8:
08:4a:07:ea:d7:c6:ba:b0:90:0c:3d:4c:96:c0:95:
5f:8a:6e:44:18:da:f2:bb:65:1c:90:d4:71:32:5a:
7b:da:d4:96:bf:50:8a:6d:d1:e2:1f:5c:31:d5:95:
64:f5:64:91:e1:e1:c5:78:70:27:e5:08:51:85:cf:
00:3c:94:44:8f:49:ea:d4:bd:7c:15:c4:b0:af:62:
e8:bc:91:a1:05:0b:53:32:48:68:23:4f:7a:f2:60:
69:bf:e8:ab:67:13:37:b2:4a:02:78:74:3f:78:5e:
c2:cc:e0:b6:f4:e5:85:33:92:4f:a9:a6:44:66:ba:
ac:26:c3:74:88:bf:0f:a1:84:53:77:3d:f9:62:7d:
30:b4:1c:df:74:ab:18:8e:6e:bb:81:b2:25:97:4a:
94:c6:25:3e:8c:cb:83:25:e7:60:22:bb:84:e0:7e:
30:6c:86:00:3a:4f:89:af:38:75:04:4f:d3:c7:25:
b2:74:41:e7:24:2c:21:44:19:d4:7c:c6:58:00:f3:
6e:e4:c6:ee:fe:b4:0c:71:1f:86:ba:d2:63:cc:a2:
bf:17:2e:90:e3:97:f4:bd:9d:fa:2c:42:57:fa:ac:
ae:19:8f:aa:5f:a0:fc:3c:36:db:95:2d:c1:b9:09:
3d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:AE:C1:87:EA:CD:7F:DA:66:78:91:4B:3F:45:FE:F2:CF:55:0C:D2
X509v3 Authority Key Identifier:
keyid:B6:D1:41:18:DB:D2:27:29:8D:AA:80:C7:AC:AB:11:EE:A6:D6:3E:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ttFBGNvSJymNqoDHrKsR7qbWPiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/gq7Bh-rNf9pmeJFLP0X-8s9VDNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/ttFBGNvSJymNqoDHrKsR7qbWPiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.67.100.0/22
185.132.80.0/22
185.189.120.0/22
185.233.12.0/22
185.237.8.0/22
IPv6:
2a04:f080::/29
Signature Algorithm: sha256WithRSAEncryption
4a:1b:2a:a2:18:16:45:1a:cd:9f:2a:49:0d:f3:5f:19:73:11:
b8:bc:5f:f5:67:07:5b:e8:ca:ff:41:79:c4:c4:7c:ba:58:1b:
a2:dd:86:63:25:3a:57:2c:7a:1d:86:2a:ab:59:8e:49:ea:57:
4b:20:fe:99:0a:20:47:97:b6:d8:46:f0:74:d1:d6:e2:ba:18:
dc:42:1d:82:7f:64:76:bf:fc:42:d7:01:d8:45:a9:64:62:36:
2f:a1:e9:92:8e:82:ab:86:ec:82:9e:48:89:8f:4a:96:de:e8:
7a:de:bd:c3:d6:b2:e1:60:d2:27:ba:88:19:a0:59:4f:11:db:
65:10:49:09:c0:83:a8:3f:a5:9a:e6:50:a0:c0:bd:0e:89:48:
95:23:4b:bf:3b:37:a1:9b:70:ce:8b:0a:ff:88:a1:dd:96:7d:
48:b9:6a:aa:d1:f8:87:b7:4c:40:cf:cb:bb:0b:d8:b2:27:6d:
72:8a:24:23:15:bb:df:c2:55:e8:d1:10:cf:8f:71:12:e2:7c:
be:db:d6:d9:9a:37:3d:1f:0f:ff:a4:b4:61:ae:ba:4b:9c:17:
4e:82:83:92:fe:e3:d6:a0:9c:16:b1:27:e9:47:72:f2:17:16:
74:ed:6b:c0:34:50:d1:07:df:3e:e2:39:29:cf:87:96:70:37:
55:0a:61:fe
-----BEGIN CERTIFICATE-----
MIIFJDCCBAygAwIBAgISAYOddJzPLVpaA57SzoD8ZrfoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2ZDE0MTE4ZGJkMjI3Mjk4ZGFhODBjN2FjYWIxMWVlYTZk
NjNlMjEwHhcNMjIxMDAzMTA0NjQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MmFlYzE4N2VhY2Q3ZmRhNjY3ODkxNGIzZjQ1ZmVmMmNmNTUwY2QyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp6YvUfBvUTheFEhlatgISgfq18a6
sJAMPUyWwJVfim5EGNryu2UckNRxMlp72tSWv1CKbdHiH1wx1ZVk9WSR4eHFeHAn
5QhRhc8APJREj0nq1L18FcSwr2LovJGhBQtTMkhoI0968mBpv+irZxM3skoCeHQ/
eF7CzOC29OWFM5JPqaZEZrqsJsN0iL8PoYRTdz35Yn0wtBzfdKsYjm67gbIll0qU
xiU+jMuDJedgIruE4H4wbIYAOk+Jrzh1BE/TxyWydEHnJCwhRBnUfMZYAPNu5Mbu
/rQMcR+GutJjzKK/Fy6Q45f0vZ36LEJX+qyuGY+qX6D8PDbblS3BuQk9bQIDAQAB
o4ICMDCCAiwwHQYDVR0OBBYEFIKuwYfqzX/aZniRSz9F/vLPVQzSMB8GA1UdIwQY
MBaAFLbRQRjb0icpjaqAx6yrEe6m1j4hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdHRGQkdOdlNKeW1OcW9ESHJLc1I3cWJXUGlFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9lZDUxZDctNjRmZC00YzczLTllOGMt
MGUzN2UxMWQwZWMzLzEvZ3E3Qmgtck5mOXBtZUpGTFAwWC04czlWRE5JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni9lZDUxZDctNjRmZC00YzczLTllOGMtMGUzN2UxMWQwZWMz
LzEvdHRGQkdOdlNKeW1OcW9ESHJLc1I3cWJXUGlFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQCuUNkAwQC
uYRQAwQCub14AwQCuekMAwQCue0IMA0EAgACMAcDBQMqBPCAMA0GCSqGSIb3DQEB
CwUAA4IBAQBKGyqiGBZFGs2fKkkN818ZcxG4vF/1Zwdb6Mr/QXnExHy6WBui3YZj
JTpXLHodhiqrWY5J6ldLIP6ZCiBHl7bYRvB00dbiuhjcQh2Cf2R2v/xC1wHYRalk
YjYvoemSjoKrhuyCnkiJj0qW3uh63r3D1rLhYNInuogZoFlPEdtlEEkJwIOoP6Wa
5lCgwL0OiUiVI0u/Ozehm3DOiwr/iKHdln1IuWqq0fiHt0xAz8u7C9iyJ21yiiQj
FbvfwlXo0RDPj3ES4ny+29bZmjc9Hw//pLRhrrpLnBdOgoOS/uPWoJwWsSfpR3Ly
FxZ07WvANFDRB98+4jkpz4eWcDdVCmH+
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:38 2023 by rpki-client on console-fra.rpki-client.org