Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/8Ry44bevPymMhW0lTG6xELhdS1Q.roa
File: 8Ry44bevPymMhW0lTG6xELhdS1Q.roa (raw, json)
Hash identifier: ibZ3NotvBuIweaDBb7I9w2KbP+IuPir4z5LgAhSIV5I=
Subject key identifier: F1:1C:B8:E1:B7:AF:3F:29:8C:85:6D:25:4C:6E:B1:10:B8:5D:4B:54
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 06808974
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/8Ry44bevPymMhW0lTG6xELhdS1Q.roa
Signing time: Sat 18 Jun 2022 16:24:46 +0000
ROA not before: Sat 18 Jun 2022 16:24:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 185.112.58.0/23 maxlen: 24
185.177.238.0/23 maxlen: 24
185.177.236.0/23 maxlen: 24
185.79.138.0/24 maxlen: 24
185.100.159.0/24 maxlen: 24
185.168.208.0/23 maxlen: 24
185.24.108.0/23 maxlen: 24
185.77.138.0/23 maxlen: 24
89.19.56.0/22 maxlen: 24
185.113.138.0/23 maxlen: 24
185.175.224.0/23 maxlen: 24
185.95.230.0/23 maxlen: 24
185.68.244.0/23 maxlen: 24
185.105.46.0/23 maxlen: 24
213.170.223.0/24 maxlen: 24
185.102.114.0/23 maxlen: 24
185.182.130.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109087092 (0x6808974)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Jun 18 16:24:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f11cb8e1b7af3f298c856d254c6eb110b85d4b54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:aa:5a:c2:c5:a5:0d:28:a8:be:55:2c:a5:f7:
01:06:d0:88:5a:0a:b8:f1:63:a6:ce:29:2d:cb:c4:
ad:65:44:dd:8c:88:26:f1:1c:97:bb:3d:12:d2:16:
34:a9:de:ba:36:9e:60:3e:e4:41:d2:8c:68:82:1a:
34:67:df:1f:a7:b1:8f:b9:f6:f0:9a:92:96:e0:2e:
24:79:88:60:32:d1:6f:c4:0a:a4:56:89:e6:49:e1:
7c:e7:6c:9c:84:62:5d:53:84:53:f6:5c:b8:56:0a:
f2:14:c1:e3:c2:69:d9:e5:f5:f9:04:64:6a:1e:1f:
d8:60:16:df:69:2b:25:24:d3:35:75:56:bd:a0:0d:
01:32:7a:ea:c2:be:7e:0d:cc:07:59:aa:f7:89:50:
24:c4:43:e9:06:26:8d:e1:6f:dc:c9:14:45:46:c2:
1b:e5:27:94:dd:93:a7:84:71:d0:f2:72:dc:f5:ee:
7c:5e:8c:29:df:46:04:cc:c1:9b:01:d5:37:43:6b:
ff:24:00:89:e2:bb:30:58:2c:73:e8:01:b3:9a:6a:
80:f2:22:d3:b8:1e:f9:1c:8d:ac:22:03:9c:20:44:
a0:cd:eb:28:74:ca:5c:b0:7c:27:9c:bf:39:95:55:
73:bd:f9:7a:ae:ef:6b:2e:71:60:6e:ab:ca:99:a9:
14:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:1C:B8:E1:B7:AF:3F:29:8C:85:6D:25:4C:6E:B1:10:B8:5D:4B:54
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/8Ry44bevPymMhW0lTG6xELhdS1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.19.56.0/22
185.24.108.0/23
185.68.244.0/23
185.77.138.0/23
185.79.138.0/24
185.95.230.0/23
185.100.159.0/24
185.102.114.0/23
185.105.46.0/23
185.112.58.0/23
185.113.138.0/23
185.168.208.0/23
185.175.224.0/23
185.177.236.0/22
185.182.130.0/23
213.170.223.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:a2:ea:07:d1:56:ac:93:5f:80:f1:01:8e:1f:43:67:b2:68:
bf:07:b0:11:9a:a5:c4:e6:b8:4d:54:eb:ad:18:52:00:7c:79:
34:13:19:0b:7f:56:3a:25:6f:52:1d:2e:7b:29:d2:d8:99:89:
05:3b:81:5a:cb:91:75:54:7c:79:e4:ac:a9:02:bc:e9:df:b2:
d2:14:cf:60:97:18:d1:7a:85:c3:a3:f4:5e:24:12:75:ef:9f:
37:f2:59:65:93:13:ec:cf:3c:20:47:01:f8:a4:49:41:71:50:
40:02:10:ba:6d:00:eb:95:ec:81:86:d1:0f:77:21:e7:f9:86:
49:26:ad:80:5c:f2:1e:8d:61:40:19:ba:66:46:58:d5:1f:5d:
8c:70:ef:a4:bb:c0:f3:b6:a2:dd:30:e8:98:17:ff:7a:fa:fa:
c4:46:30:a3:41:c5:26:f7:10:5a:ee:78:52:82:5a:d6:2a:50:
34:86:a9:62:b0:d1:ec:64:b5:c6:bd:7b:ce:31:f1:1b:fc:1f:
6f:46:76:8b:63:28:9a:e4:f6:52:28:5e:ff:fd:a4:ce:44:99:
d4:d3:8f:6b:ca:3e:3c:06:e2:a4:ca:55:df:04:c1:1a:d6:21:
e2:74:8e:c0:a1:a0:a1:38:2e:b6:b1:52:e1:c9:12:6c:32:30:
a2:9a:25:04
-----BEGIN CERTIFICATE-----
MIIFSTCCBDGgAwIBAgIEBoCJdDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
YWVlMTVjMzNkZTM1ODkzOGQ2OTAwYTFiM2MxNDQ4MGEzODllODViMB4XDTIyMDYx
ODE2MjQ0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjExY2I4ZTFiN2Fm
M2YyOThjODU2ZDI1NGM2ZWIxMTBiODVkNGI1NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALqqWsLFpQ0oqL5VLKX3AQbQiFoKuPFjps4pLcvErWVE3YyI
JvEcl7s9EtIWNKneujaeYD7kQdKMaIIaNGffH6exj7n28JqSluAuJHmIYDLRb8QK
pFaJ5knhfOdsnIRiXVOEU/ZcuFYK8hTB48Jp2eX1+QRkah4f2GAW32krJSTTNXVW
vaANATJ66sK+fg3MB1mq94lQJMRD6QYmjeFv3MkURUbCG+UnlN2Tp4Rx0PJy3PXu
fF6MKd9GBMzBmwHVN0Nr/yQAieK7MFgsc+gBs5pqgPIi07ge+RyNrCIDnCBEoM3r
KHTKXLB8J5y/OZVVc735eq7vay5xYG6rypmpFAECAwEAAaOCAmMwggJfMB0GA1Ud
DgQWBBTxHLjht68/KYyFbSVMbrEQuF1LVDAfBgNVHSMEGDAWgBSa7hXDPeNYk41p
AKGzwUSAo4noWzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L211NFZ3ejNqV0pPTmFRQ2hzOEZFZ0tPSjZGcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2EvNzJmNzdmLTc2YWItNGU3OS1hMDYyLTZlZTUzNGQ5MmU1Mi8x
LzhSeTQ0YmV2UHltTWhXMGxURzZ4RUxoZFMxUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Ev
NzJmNzdmLTc2YWItNGU3OS1hMDYyLTZlZTUzNGQ5MmU1Mi8xL211NFZ3ejNqV0pP
TmFRQ2hzOEZFZ0tPSjZGcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjB5
BggrBgEFBQcBBwEB/wRqMGgwZgQCAAEwYAMEAlkTOAMEAbkYbAMEAblE9AMEAblN
igMEALlPigMEAblf5gMEALlknwMEAblmcgMEAblpLgMEAblwOgMEAblxigMEAbmo
0AMEAbmv4AMEArmx7AMEAbm2ggMEANWq3zANBgkqhkiG9w0BAQsFAAOCAQEAo6Lq
B9FWrJNfgPEBjh9DZ7JovwewEZqlxOa4TVTrrRhSAHx5NBMZC39WOiVvUh0ueynS
2JmJBTuBWsuRdVR8eeSsqQK86d+y0hTPYJcY0XqFw6P0XiQSde+fN/JZZZMT7M88
IEcB+KRJQXFQQAIQum0A65XsgYbRD3ch5/mGSSatgFzyHo1hQBm6ZkZY1R9djHDv
pLvA87ai3TDomBf/evr6xEYwo0HFJvcQWu54UoJa1ipQNIapYrDR7GS1xr17zjHx
G/wfb0Z2i2MomuT2Uihe//2kzkSZ1NOPa8o+PAbipMpV3wTBGtYh4nSOwKGgoTgu
trFS4ckSbDIwopolBA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:17 2024 by rpki-client on console-ams.rpki-client.org