Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/cG9SldqOyEFHcjNOFUKe1BGgPh4.roa
File: cG9SldqOyEFHcjNOFUKe1BGgPh4.roa (raw, json)
Hash identifier: 3lY2xl9bCd2E8DxV6YrTcYDaK1deZupp+58BfFuKyAU=
Subject key identifier: 70:6F:52:95:DA:8E:C8:41:47:72:33:4E:15:42:9E:D4:11:A0:3E:1E
Certificate issuer: /CN=3919f2ad91584baff0467447bac8fb978d1f9dd3
Certificate serial: 0AE8EC94
Authority key identifier: 39:19:F2:AD:91:58:4B:AF:F0:46:74:47:BA:C8:FB:97:8D:1F:9D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ORnyrZFYS6_wRnRHusj7l40fndM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/cG9SldqOyEFHcjNOFUKe1BGgPh4.roa
Signing time: Thu 07 Apr 2022 11:26:19 +0000
ROA not before: Thu 07 Apr 2022 11:26:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9021
IP address blocks: 213.161.128.0/19 maxlen: 19
213.161.128.0/21 maxlen: 21
213.161.136.0/21 maxlen: 21
213.161.135.0/24 maxlen: 24
213.161.145.0/24 maxlen: 24
213.161.144.0/23 maxlen: 23
213.161.144.0/24 maxlen: 24
213.161.146.0/24 maxlen: 24
213.161.150.0/24 maxlen: 24
213.161.148.0/23 maxlen: 23
213.161.149.0/24 maxlen: 24
213.161.148.0/24 maxlen: 24
213.161.152.0/24 maxlen: 24
213.161.151.0/24 maxlen: 24
213.161.152.0/21 maxlen: 21
90.159.128.0/20 maxlen: 20
90.159.136.0/21 maxlen: 21
90.159.44.0/22 maxlen: 22
90.159.50.0/24 maxlen: 24
90.159.51.0/24 maxlen: 24
90.159.58.0/24 maxlen: 24
90.159.59.0/24 maxlen: 24
90.159.68.0/24 maxlen: 24
90.159.64.0/18 maxlen: 18
90.159.240.0/20 maxlen: 20
90.159.246.0/24 maxlen: 24
90.158.136.0/21 maxlen: 21
90.158.139.0/24 maxlen: 24
212.98.0.0/19 maxlen: 19
212.98.2.0/24 maxlen: 24
212.98.1.0/24 maxlen: 24
212.98.0.0/20 maxlen: 20
90.158.160.0/24 maxlen: 24
212.98.8.0/21 maxlen: 21
212.98.9.0/24 maxlen: 24
212.98.16.0/24 maxlen: 24
212.98.16.0/21 maxlen: 21
90.158.96.0/22 maxlen: 22
90.158.101.0/24 maxlen: 24
90.158.100.0/24 maxlen: 24
90.158.105.0/24 maxlen: 24
90.158.104.0/24 maxlen: 24
90.158.102.0/23 maxlen: 23
90.158.111.0/24 maxlen: 24
90.158.110.0/24 maxlen: 24
90.158.109.0/24 maxlen: 24
90.158.114.0/24 maxlen: 24
90.158.112.0/20 maxlen: 20
90.158.116.0/24 maxlen: 24
90.158.119.0/24 maxlen: 24
90.158.122.0/24 maxlen: 24
90.158.121.0/24 maxlen: 24
90.158.120.0/24 maxlen: 24
90.158.123.0/24 maxlen: 24
90.158.126.0/24 maxlen: 24
90.158.128.0/21 maxlen: 21
90.158.127.0/24 maxlen: 24
90.158.128.0/17 maxlen: 17
90.158.240.0/21 maxlen: 21
90.158.248.0/21 maxlen: 21
90.158.249.0/24 maxlen: 24
90.159.2.0/24 maxlen: 24
90.159.1.0/24 maxlen: 24
90.159.0.0/24 maxlen: 24
90.159.0.0/22 maxlen: 22
90.159.3.0/24 maxlen: 24
90.159.0.0/16 maxlen: 16
90.159.10.0/24 maxlen: 24
90.159.15.0/24 maxlen: 24
90.159.20.0/24 maxlen: 24
90.159.29.0/24 maxlen: 24
90.159.27.0/24 maxlen: 24
90.159.31.0/24 maxlen: 24
90.159.33.0/24 maxlen: 24
90.159.36.0/24 maxlen: 24
90.159.34.0/24 maxlen: 24
90.159.38.0/24 maxlen: 24
90.159.37.0/24 maxlen: 24
212.98.28.0/22 maxlen: 22
90.158.200.0/23 maxlen: 23
213.143.255.0/24 maxlen: 24
213.143.254.0/24 maxlen: 24
90.158.28.0/24 maxlen: 24
90.158.27.0/24 maxlen: 24
90.158.26.0/24 maxlen: 24
90.158.30.0/24 maxlen: 24
90.158.29.0/24 maxlen: 24
90.158.32.0/24 maxlen: 24
90.158.33.0/24 maxlen: 24
90.158.37.0/24 maxlen: 24
90.158.36.0/24 maxlen: 24
90.158.39.0/24 maxlen: 24
90.158.44.0/24 maxlen: 24
90.158.43.0/24 maxlen: 24
90.158.50.0/23 maxlen: 23
90.158.51.0/24 maxlen: 24
90.158.46.0/24 maxlen: 24
90.158.48.0/20 maxlen: 20
90.158.48.0/24 maxlen: 24
90.158.47.0/24 maxlen: 24
90.158.52.0/23 maxlen: 23
90.158.53.0/24 maxlen: 24
90.158.52.0/24 maxlen: 24
90.158.56.0/24 maxlen: 24
90.158.55.0/24 maxlen: 24
90.158.54.0/23 maxlen: 23
90.158.60.0/24 maxlen: 24
90.158.62.0/24 maxlen: 24
90.158.64.0/21 maxlen: 21
90.158.64.0/24 maxlen: 24
90.158.66.0/24 maxlen: 24
90.158.65.0/24 maxlen: 24
90.158.68.0/24 maxlen: 24
90.158.67.0/24 maxlen: 24
90.158.73.0/24 maxlen: 24
90.158.72.0/24 maxlen: 24
90.158.72.0/22 maxlen: 22
90.158.75.0/24 maxlen: 24
90.158.74.0/24 maxlen: 24
90.158.0.0/23 maxlen: 23
90.158.0.0/22 maxlen: 22
90.158.0.0/18 maxlen: 18
90.158.3.0/24 maxlen: 24
90.158.0.0/16 maxlen: 16
90.158.8.0/24 maxlen: 24
90.158.16.0/24 maxlen: 24
90.158.15.0/24 maxlen: 24
90.158.18.0/24 maxlen: 24
90.158.19.0/24 maxlen: 24
90.158.24.0/24 maxlen: 24
213.143.224.0/20 maxlen: 20
213.143.226.0/24 maxlen: 24
213.143.226.0/23 maxlen: 23
213.143.228.0/24 maxlen: 24
213.143.227.0/24 maxlen: 24
213.143.230.0/24 maxlen: 24
213.143.229.0/24 maxlen: 24
213.143.233.0/24 maxlen: 24
213.143.235.0/24 maxlen: 24
213.143.234.0/24 maxlen: 24
213.143.238.0/24 maxlen: 24
213.143.236.0/22 maxlen: 22
213.143.240.0/24 maxlen: 24
213.143.240.0/22 maxlen: 22
213.143.239.0/24 maxlen: 24
213.143.240.0/20 maxlen: 20
213.143.241.0/24 maxlen: 24
213.143.244.0/22 maxlen: 22
213.143.243.0/24 maxlen: 24
213.143.252.0/24 maxlen: 24
213.143.251.0/24 maxlen: 24
213.143.250.0/24 maxlen: 24
213.143.253.0/24 maxlen: 24
2a00:1f90::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 183037076 (0xae8ec94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3919f2ad91584baff0467447bac8fb978d1f9dd3
Validity
Not Before: Apr 7 11:26:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=706f5295da8ec8414772334e15429ed411a03e1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a9:66:50:ff:90:e0:02:9f:ec:41:a4:ab:ab:
8f:ad:32:09:2f:f5:b8:80:63:f1:ba:64:09:74:12:
e0:9c:3a:2a:b5:5c:13:4f:72:83:11:d0:d6:4e:e6:
4c:fa:98:80:39:93:91:ca:0b:a3:bc:93:27:b0:cd:
87:02:89:b8:bb:79:3e:8a:89:76:d0:74:d2:1b:b8:
25:89:61:91:27:2f:ac:59:06:5b:5c:df:a6:34:ed:
49:30:c4:cd:08:19:ac:a7:e2:76:6c:b0:dc:96:b8:
40:df:b8:63:51:ff:33:a2:1f:97:26:4b:78:58:72:
03:de:1d:c0:5c:1c:b7:97:e8:81:f2:b0:91:03:27:
8d:91:df:89:b3:39:0b:fa:2d:b8:ff:d9:8b:7f:b5:
b2:44:69:89:ef:5e:1f:08:6e:a5:d8:51:1f:88:5d:
cb:fd:1c:a6:6e:f4:91:be:f0:d1:56:02:fe:23:76:
75:78:15:f3:09:51:15:95:e0:9e:be:1c:ca:6b:6f:
15:27:f7:22:0e:8f:d7:6c:30:9c:36:b5:c0:96:d0:
cb:fd:8c:4b:c3:48:4e:92:1e:bb:20:db:e0:46:06:
79:07:10:50:4f:12:7d:27:d2:5f:32:ed:6d:7f:8b:
fb:50:5e:b3:f1:6d:b7:50:eb:88:d3:eb:b2:a1:fe:
27:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:6F:52:95:DA:8E:C8:41:47:72:33:4E:15:42:9E:D4:11:A0:3E:1E
X509v3 Authority Key Identifier:
keyid:39:19:F2:AD:91:58:4B:AF:F0:46:74:47:BA:C8:FB:97:8D:1F:9D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ORnyrZFYS6_wRnRHusj7l40fndM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/cG9SldqOyEFHcjNOFUKe1BGgPh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/ORnyrZFYS6_wRnRHusj7l40fndM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
90.158.0.0/15
212.98.0.0/19
213.143.224.0/19
213.161.128.0/19
IPv6:
2a00:1f90::/32
Signature Algorithm: sha256WithRSAEncryption
18:42:a1:54:dc:55:09:07:be:73:b2:3a:d1:01:6c:0c:a9:96:
3d:1c:84:c0:32:4c:c5:51:86:06:8b:e8:a6:46:82:47:35:06:
f4:96:ba:be:62:a5:9f:af:24:f7:17:4f:7a:aa:39:ca:f8:67:
6d:65:39:26:d8:93:63:c5:f8:f4:33:08:92:ad:78:58:a2:92:
0f:a2:78:c4:63:4b:7a:f1:ff:96:55:4d:08:b6:32:cc:d4:57:
2a:63:2a:d8:d2:b0:d8:28:fc:a2:e3:6a:5f:ef:41:7e:0a:3c:
14:e2:4b:88:51:dc:16:70:4e:1e:d8:b3:c3:ca:24:6d:59:e2:
bf:bc:33:20:af:f0:91:73:d5:06:9d:43:9c:df:36:9d:29:e4:
34:2a:48:83:db:d5:0a:db:3b:23:81:35:be:ab:d9:74:3c:b3:
84:a6:b1:f0:39:72:6a:ec:17:91:b3:c6:89:6b:89:9d:5b:ea:
90:35:5b:97:09:84:dc:5e:c3:bb:fe:63:7a:ed:c3:4c:5b:2a:
30:a3:35:5a:b7:63:24:61:0d:4d:b8:6c:e9:2e:a0:64:27:99:
6b:94:e7:c8:33:c4:ca:fd:15:f7:15:87:83:9c:14:07:1a:82:
4f:da:7e:37:9d:b3:b0:90:38:2a:b9:67:ab:00:56:2c:1a:4a:
22:4e:51:74
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgIECujslDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
OTE5ZjJhZDkxNTg0YmFmZjA0Njc0NDdiYWM4ZmI5NzhkMWY5ZGQzMB4XDTIyMDQw
NzExMjYxOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzA2ZjUyOTVkYThl
Yzg0MTQ3NzIzMzRlMTU0MjllZDQxMWEwM2UxZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALWpZlD/kOACn+xBpKurj60yCS/1uIBj8bpkCXQS4Jw6KrVc
E09ygxHQ1k7mTPqYgDmTkcoLo7yTJ7DNhwKJuLt5PoqJdtB00hu4JYlhkScvrFkG
W1zfpjTtSTDEzQgZrKfidmyw3Ja4QN+4Y1H/M6IflyZLeFhyA94dwFwct5fogfKw
kQMnjZHfibM5C/otuP/Zi3+1skRpie9eHwhupdhRH4hdy/0cpm70kb7w0VYC/iN2
dXgV8wlRFZXgnr4cymtvFSf3Ig6P12wwnDa1wJbQy/2MS8NITpIeuyDb4EYGeQcQ
UE8SfSfSXzLtbX+L+1Bes/Ftt1DriNPrsqH+J30CAwEAAaOCAikwggIlMB0GA1Ud
DgQWBBRwb1KV2o7IQUdyM04VQp7UEaA+HjAfBgNVHSMEGDAWgBQ5GfKtkVhLr/BG
dEe6yPuXjR+d0zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L09SbnlyWkZZUzZfd1JuUkh1c2o3bDQwZm5kTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzUvOTExOGUyLWFlNzQtNGMyNC1hNzc1LTMyYWE2NzMxYzI5MS8x
L2NHOVNsZHFPeUVGSGNqTk9GVUtlMUJHZ1BoNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzUv
OTExOGUyLWFlNzQtNGMyNC1hNzc1LTMyYWE2NzMxYzI5MS8xL09SbnlyWkZZUzZf
d1JuUkh1c2o3bDQwZm5kTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA/
BggrBgEFBQcBBwEB/wQwMC4wHQQCAAEwFwMDAVqeAwQF1GIAAwQF1Y/gAwQF1aGA
MA0EAgACMAcDBQAqAB+QMA0GCSqGSIb3DQEBCwUAA4IBAQAYQqFU3FUJB75zsjrR
AWwMqZY9HITAMkzFUYYGi+imRoJHNQb0lrq+YqWfryT3F096qjnK+GdtZTkm2JNj
xfj0MwiSrXhYopIPonjEY0t68f+WVU0ItjLM1FcqYyrY0rDYKPyi42pf70F+CjwU
4kuIUdwWcE4e2LPDyiRtWeK/vDMgr/CRc9UGnUOc3zadKeQ0KkiD29UK2zsjgTW+
q9l0PLOEprHwOXJq7BeRs8aJa4mdW+qQNVuXCYTcXsO7/mN67cNMWyowozVat2Mk
YQ1NuGzpLqBkJ5lrlOfIM8TK/RX3FYeDnBQHGoJP2n43nbOwkDgquWerAFYsGkoi
TlF0
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:16 2024 by rpki-client on console-ams.rpki-client.org