Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/J8oaNWDp2EF-f8sapGC9rDwfIHs.roa
File: J8oaNWDp2EF-f8sapGC9rDwfIHs.roa (raw, json)
Hash identifier: drxz3o/oeAYGfwFBDFl/JGBwiGiypW4K74KBG1W22J0=
Subject key identifier: 27:CA:1A:35:60:E9:D8:41:7E:7F:CB:1A:A4:60:BD:AC:3C:1F:20:7B
Certificate issuer: /CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Certificate serial: 01831C87C67583123857C2BB89036838BEDC
Authority key identifier: F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/J8oaNWDp2EF-f8sapGC9rDwfIHs.roa
Signing time: Thu 08 Sep 2022 09:56:43 +0000
ROA not before: Thu 08 Sep 2022 09:56:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13194
IP address blocks: 84.46.139.0/24 maxlen: 24
89.117.69.0/24 maxlen: 24
89.117.93.0/24 maxlen: 24
89.117.92.0/24 maxlen: 24
89.117.14.0/24 maxlen: 24
82.140.177.0/24 maxlen: 24
82.140.180.0/24 maxlen: 24
217.9.248.0/23 maxlen: 23
89.117.225.0/24 maxlen: 24
89.117.223.0/24 maxlen: 24
89.117.221.0/24 maxlen: 24
89.117.220.0/24 maxlen: 24
89.117.125.0/24 maxlen: 24
89.117.127.0/24 maxlen: 24
84.46.204.0/24 maxlen: 24
89.117.138.0/24 maxlen: 24
84.46.207.0/24 maxlen: 24
89.117.141.0/24 maxlen: 24
89.117.156.0/24 maxlen: 24
89.117.165.0/24 maxlen: 24
86.38.245.0/24 maxlen: 24
89.116.124.0/24 maxlen: 24
89.116.129.0/24 maxlen: 24
89.116.143.0/24 maxlen: 24
89.116.151.0/24 maxlen: 24
89.116.155.0/24 maxlen: 24
86.38.215.0/24 maxlen: 24
86.38.230.0/24 maxlen: 24
86.38.228.0/24 maxlen: 24
89.116.232.0/24 maxlen: 24
89.116.235.0/24 maxlen: 24
82.140.130.0/24 maxlen: 24
82.140.128.0/24 maxlen: 24
82.140.129.0/24 maxlen: 24
82.140.159.0/24 maxlen: 24
89.117.10.0/24 maxlen: 24
89.116.162.0/24 maxlen: 24
89.116.160.0/24 maxlen: 24
89.116.176.0/24 maxlen: 24
89.116.174.0/24 maxlen: 24
89.116.178.0/24 maxlen: 24
86.38.41.0/24 maxlen: 24
86.38.73.0/24 maxlen: 24
86.38.74.0/24 maxlen: 24
86.38.72.0/24 maxlen: 24
86.38.75.0/24 maxlen: 24
86.38.1.0/24 maxlen: 24
185.189.154.0/24 maxlen: 24
86.38.152.0/24 maxlen: 24
84.15.0.0/16 maxlen: 24
86.38.153.0/24 maxlen: 24
86.38.81.0/24 maxlen: 24
86.38.84.0/24 maxlen: 24
86.38.97.0/24 maxlen: 24
213.252.223.0/24 maxlen: 24
213.252.224.0/22 maxlen: 22
213.252.234.0/23 maxlen: 23
213.252.236.0/23 maxlen: 23
213.252.252.0/24 maxlen: 24
213.252.254.0/24 maxlen: 24
89.117.247.0/24 maxlen: 24
213.252.192.0/20 maxlen: 20
89.117.255.0/24 maxlen: 24
213.226.128.0/18 maxlen: 24
2a00:f500::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:1c:87:c6:75:83:12:38:57:c2:bb:89:03:68:38:be:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Validity
Not Before: Sep 8 09:56:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27ca1a3560e9d8417e7fcb1aa460bdac3c1f207b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:a3:74:47:77:03:f3:6b:98:13:b9:bb:21:ce:
67:18:f3:34:03:4f:bc:04:13:97:ac:79:68:36:1e:
a0:2e:8d:a8:87:45:89:b5:48:e0:e8:c2:bb:d1:b7:
b8:e1:f0:94:ae:45:37:98:75:c1:0a:2a:d2:25:f7:
c5:31:37:db:19:82:da:13:48:86:74:91:4f:1e:68:
aa:66:00:b5:bb:64:93:b5:27:f5:e2:87:66:95:e2:
1c:ba:5b:ae:f2:3c:d5:82:ca:a1:c5:6b:3c:d6:e5:
2c:f3:69:aa:c8:1b:a3:d1:4b:ed:b5:8a:62:6c:08:
b2:cf:01:3e:51:e5:b1:a1:02:a4:62:d8:62:61:80:
ac:b9:e3:03:dd:7a:64:92:c4:f5:08:ca:0b:1c:61:
53:b1:96:37:68:60:96:e8:e6:48:aa:2c:90:24:c0:
ad:ac:33:91:f2:72:5f:5d:d1:10:2d:b8:64:9f:15:
fe:f9:42:13:e3:e1:3d:2e:c5:ae:3e:9d:22:40:0b:
2e:7e:eb:a8:2a:f8:87:59:ff:f5:cb:3c:a7:8b:e6:
24:b8:7b:e2:da:91:93:84:0d:4a:11:2a:29:03:94:
f9:48:a2:b3:3b:52:54:44:3e:5b:20:71:df:1b:30:
a1:81:87:ab:fc:fc:19:95:74:78:dd:cc:4f:ec:97:
a6:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:CA:1A:35:60:E9:D8:41:7E:7F:CB:1A:A4:60:BD:AC:3C:1F:20:7B
X509v3 Authority Key Identifier:
keyid:F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/J8oaNWDp2EF-f8sapGC9rDwfIHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.128.0-82.140.130.255
82.140.159.0/24
82.140.177.0/24
82.140.180.0/24
84.15.0.0/16
84.46.139.0/24
84.46.204.0/24
84.46.207.0/24
86.38.1.0/24
86.38.41.0/24
86.38.72.0/22
86.38.81.0/24
86.38.84.0/24
86.38.97.0/24
86.38.152.0/23
86.38.215.0/24
86.38.228.0/24
86.38.230.0/24
86.38.245.0/24
89.116.124.0/24
89.116.129.0/24
89.116.143.0/24
89.116.151.0/24
89.116.155.0/24
89.116.160.0/24
89.116.162.0/24
89.116.174.0/24
89.116.176.0/24
89.116.178.0/24
89.116.232.0/24
89.116.235.0/24
89.117.10.0/24
89.117.14.0/24
89.117.69.0/24
89.117.92.0/23
89.117.125.0/24
89.117.127.0/24
89.117.138.0/24
89.117.141.0/24
89.117.156.0/24
89.117.165.0/24
89.117.220.0/23
89.117.223.0/24
89.117.225.0/24
89.117.247.0/24
89.117.255.0/24
185.189.154.0/24
213.226.128.0/18
213.252.192.0/20
213.252.223.0-213.252.227.255
213.252.234.0-213.252.237.255
213.252.252.0/24
213.252.254.0/24
217.9.248.0/23
IPv6:
2a00:f500::/29
Signature Algorithm: sha256WithRSAEncryption
82:c6:e0:08:ea:ab:bc:da:44:5e:b5:c5:0e:3c:3d:d6:9f:71:
ed:58:a1:e4:c8:41:43:8a:a8:45:48:37:32:b8:e9:90:28:7c:
4d:b7:b7:77:6a:e2:72:c5:1e:d9:ba:40:a1:27:b6:61:4b:5b:
8a:b6:7b:b2:e5:d1:bb:62:71:cc:c1:0a:ad:3a:0b:01:77:9b:
c8:e6:52:5e:3f:dc:80:97:1b:a6:ca:9d:27:4b:e4:df:3d:f2:
a9:c5:c4:f3:0f:5b:0c:49:19:1d:38:8e:52:4e:3c:6b:44:cb:
ef:1d:fc:30:65:52:64:85:6e:8b:4c:67:88:f9:39:a0:74:e1:
44:33:0f:ef:3f:0d:ee:ce:bc:51:63:b7:2c:e8:03:8a:d3:44:
18:84:f3:b7:1e:0f:30:14:8d:6c:82:df:b8:2e:ad:36:13:d4:
b8:d9:67:da:a4:47:48:76:d2:8e:a8:3f:3f:e5:64:fc:39:5b:
18:bc:10:1e:48:a3:c1:38:4d:66:60:a7:66:a5:07:e9:34:ad:
e4:ad:58:d3:e1:f7:49:30:70:22:78:61:4d:fb:85:16:51:c3:
1b:67:26:6d:c0:ba:ba:c9:47:23:47:b0:97:3b:47:4d:22:e4:
92:91:68:18:c6:80:a2:26:4b:d8:e8:5d:7a:aa:9a:d9:e8:01:
23:6f:87:ba
-----BEGIN CERTIFICATE-----
MIIGazCCBVOgAwIBAgISAYMch8Z1gxI4V8K7iQNoOL7cMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwZGQ4MWE4MzNkOWIwNDNjN2ZmZDYzNWE1OTg3ZjUzNjk3
MTE4MGQwHhcNMjIwOTA4MDk1NjQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyN2NhMWEzNTYwZTlkODQxN2U3ZmNiMWFhNDYwYmRhYzNjMWYyMDdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlKN0R3cD82uYE7m7Ic5nGPM0A0+8
BBOXrHloNh6gLo2oh0WJtUjg6MK70be44fCUrkU3mHXBCirSJffFMTfbGYLaE0iG
dJFPHmiqZgC1u2STtSf14odmleIculuu8jzVgsqhxWs81uUs82mqyBuj0UvttYpi
bAiyzwE+UeWxoQKkYthiYYCsueMD3XpkksT1CMoLHGFTsZY3aGCW6OZIqiyQJMCt
rDOR8nJfXdEQLbhknxX++UIT4+E9LsWuPp0iQAsufuuoKviHWf/1yzyni+YkuHvi
2pGThA1KESopA5T5SKKzO1JURD5bIHHfGzChgYer/PwZlXR43cxP7JemCQIDAQAB
o4IDdzCCA3MwHQYDVR0OBBYEFCfKGjVg6dhBfn/LGqRgvaw8HyB7MB8GA1UdIwQY
MBaAFPDdgagz2bBDx//WNaWYf1NpcRgNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOE4yQnFEUFpzRVBIXzlZMXBaaF9VMmx4R0EwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS9hOGViZTQtZDBiMy00ZTdkLWFmMjUt
MDQ2ODA0MjQ4NmRjLzEvSjhvYU5XRHAyRUYtZjhzYXBHQzlyRHdmSUhzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS9hOGViZTQtZDBiMy00ZTdkLWFmMjUtMDQ2ODA0MjQ4NmRj
LzEvOE4yQnFEUFpzRVBIXzlZMXBaaF9VMmx4R0EwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBiwYIKwYBBQUHAQcBAf8EggF6MIIBdjCCAWMEAgABMIIB
WzAMAwQHUoyAAwQAUoyCAwQAUoyfAwQAUoyxAwQAUoy0AwMAVA8DBABULosDBABU
LswDBABULs8DBABWJgEDBABWJikDBAJWJkgDBABWJlEDBABWJlQDBABWJmEDBAFW
JpgDBABWJtcDBABWJuQDBABWJuYDBABWJvUDBABZdHwDBABZdIEDBABZdI8DBABZ
dJcDBABZdJsDBABZdKADBABZdKIDBABZdK4DBABZdLADBABZdLIDBABZdOgDBABZ
dOsDBABZdQoDBABZdQ4DBABZdUUDBAFZdVwDBABZdX0DBABZdX8DBABZdYoDBABZ
dY0DBABZdZwDBABZdaUDBAFZddwDBABZdd8DBABZdeEDBABZdfcDBABZdf8DBAC5
vZoDBAbV4oADBATV/MAwDAMEANX83wMEAtX84DAMAwQB1fzqAwQB1fzsAwQA1fz8
AwQA1fz+AwQB2Qn4MA0EAgACMAcDBQMqAPUAMA0GCSqGSIb3DQEBCwUAA4IBAQCC
xuAI6qu82kRetcUOPD3Wn3HtWKHkyEFDiqhFSDcyuOmQKHxNt7d3auJyxR7ZukCh
J7ZhS1uKtnuy5dG7YnHMwQqtOgsBd5vI5lJeP9yAlxumyp0nS+TfPfKpxcTzD1sM
SRkdOI5STjxrRMvvHfwwZVJkhW6LTGeI+TmgdOFEMw/vPw3uzrxRY7cs6AOK00QY
hPO3Hg8wFI1sgt+4Lq02E9S42WfapEdIdtKOqD8/5WT8OVsYvBAeSKPBOE1mYKdm
pQfpNK3krVjT4fdJMHAieGFN+4UWUcMbZyZtwLq6yUcjR7CXO0dNIuSSkWgYxoCi
JkvY6F16qprZ6AEjb4e6
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:06 2023 by rpki-client on console-ams.rpki-client.org