Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/VNc2jAKJqCpVNCQs0HiKTaED5QA.roa
File: VNc2jAKJqCpVNCQs0HiKTaED5QA.roa (raw, json)
Hash identifier: Px/dbJR0Du/2Q7TYaAE7qWZR2jyUeYuQnGAMgXDmBco=
Subject key identifier: 54:D7:36:8C:02:89:A8:2A:55:34:24:2C:D0:78:8A:4D:A1:03:E5:00
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 05E70B45
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/VNc2jAKJqCpVNCQs0HiKTaED5QA.roa
Signing time: Thu 14 Apr 2022 20:56:50 +0000
ROA not before: Thu 14 Apr 2022 20:56:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207710
IP address blocks: 185.95.102.0/23 maxlen: 24
185.95.101.0/24 maxlen: 24
185.76.240.0/23 maxlen: 24
185.76.242.0/24 maxlen: 24
185.100.156.0/23 maxlen: 24
185.81.174.0/24 maxlen: 24
185.81.184.0/24 maxlen: 24
185.81.187.0/24 maxlen: 24
185.97.1.0/24 maxlen: 24
185.97.3.0/24 maxlen: 24
185.111.24.0/23 maxlen: 24
185.111.26.0/24 maxlen: 24
185.73.182.0/23 maxlen: 24
185.97.76.0/23 maxlen: 24
185.97.78.0/24 maxlen: 24
185.75.132.0/23 maxlen: 24
185.75.134.0/24 maxlen: 24
185.96.80.0/24 maxlen: 24
185.77.136.0/23 maxlen: 24
185.96.38.0/24 maxlen: 24
185.89.104.0/23 maxlen: 24
185.89.108.0/22 maxlen: 24
185.104.148.0/23 maxlen: 24
185.104.150.0/24 maxlen: 24
185.101.200.0/23 maxlen: 24
185.101.202.0/24 maxlen: 24
185.78.78.0/23 maxlen: 24
185.81.172.0/23 maxlen: 24
185.98.42.0/24 maxlen: 24
185.98.40.0/23 maxlen: 24
185.103.62.0/24 maxlen: 24
185.103.60.0/23 maxlen: 24
185.88.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99027781 (0x5e70b45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Apr 14 20:56:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=54d7368c0289a82a5534242cd0788a4da103e500
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:2a:b9:06:02:6f:e5:c8:10:2a:f2:63:55:3c:
5d:0d:88:1d:ba:6f:bd:6a:44:ce:0d:b6:b7:3d:71:
21:86:00:aa:17:7e:fb:a5:0f:00:04:3f:16:a5:0f:
38:eb:6a:49:c0:63:2b:d0:7a:58:b2:fb:d9:6f:78:
b0:d8:52:10:64:9a:95:ec:4b:89:df:ac:5b:6f:28:
15:64:52:0a:d7:5e:bd:ab:d7:80:44:b5:7a:3b:ac:
90:d0:f1:b4:89:f7:05:d9:6b:cd:36:29:37:e5:04:
e7:84:77:8f:fb:7f:12:d8:35:4b:1c:cf:39:7a:e9:
73:fe:6e:91:f4:86:13:e6:c8:46:69:ce:11:21:39:
3a:87:d4:b0:e2:1b:f7:92:c3:65:cf:b9:29:6e:0c:
37:6a:f3:b0:b8:f0:02:7c:fb:a9:58:87:93:75:e4:
3f:59:91:bc:ca:66:9c:0f:38:8d:6d:64:10:ed:2a:
4d:b9:3a:0f:2e:72:7d:c9:72:e8:c8:b0:49:98:ce:
44:51:a3:4c:b2:38:a5:34:05:cd:bd:74:b3:63:51:
f7:2f:d4:00:54:22:4b:ff:b9:36:dc:89:9b:04:c3:
3e:26:4a:dd:81:ff:96:19:a7:d7:07:57:1f:56:e3:
4f:a8:78:e5:e6:95:0f:2e:ea:9c:9e:50:1e:df:d9:
e2:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:D7:36:8C:02:89:A8:2A:55:34:24:2C:D0:78:8A:4D:A1:03:E5:00
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/VNc2jAKJqCpVNCQs0HiKTaED5QA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.73.182.0/23
185.75.132.0-185.75.134.255
185.76.240.0-185.76.242.255
185.77.136.0/23
185.78.78.0/23
185.81.172.0-185.81.174.255
185.81.184.0/24
185.81.187.0/24
185.88.38.0/24
185.89.104.0/23
185.89.108.0/22
185.95.101.0-185.95.103.255
185.96.38.0/24
185.96.80.0/24
185.97.1.0/24
185.97.3.0/24
185.97.76.0-185.97.78.255
185.98.40.0-185.98.42.255
185.100.156.0/23
185.101.200.0-185.101.202.255
185.103.60.0-185.103.62.255
185.104.148.0-185.104.150.255
185.111.24.0-185.111.26.255
Signature Algorithm: sha256WithRSAEncryption
1a:83:32:33:b7:5a:b9:37:a1:4a:6c:a4:4b:55:04:20:e7:df:
07:18:fa:04:a4:9d:08:f7:69:27:97:81:df:f2:d8:49:fe:39:
cb:2e:32:23:32:f9:d4:e9:71:e6:0c:2b:df:59:5d:10:70:11:
33:ef:e6:32:b9:ea:53:c8:6b:56:71:a4:52:e4:d6:72:09:41:
9d:94:0c:d8:2d:14:c7:fe:2c:71:ad:46:06:c6:47:c0:a5:c1:
dd:75:70:a7:26:5e:5d:71:a9:94:e7:91:6f:0f:40:7c:67:5f:
cf:ba:60:4d:26:40:c8:e4:e2:ef:58:d4:11:b6:5e:16:c7:08:
48:f1:4a:8d:14:8f:a2:d6:50:22:55:76:d6:0d:9d:38:97:7c:
76:f2:9f:b5:47:06:f4:4b:2b:3a:39:47:7e:a5:9c:cf:5d:1c:
91:13:4d:88:19:4e:41:de:88:b3:a2:51:93:c0:06:53:77:ac:
72:d7:4b:9c:7b:ab:a3:01:08:a6:88:8e:91:6a:a4:0f:4f:2f:
2b:8c:3a:73:74:f3:b0:fc:ec:6a:32:5a:58:61:2d:d3:54:57:
72:eb:d8:a1:01:c2:18:f6:56:2f:b7:f6:de:ca:00:16:70:a9:
94:52:db:d3:bc:75:d0:6b:97:2f:61:59:56:ef:0b:88:5d:59:
1e:cd:7f:ed
-----BEGIN CERTIFICATE-----
MIIFyDCCBLCgAwIBAgIEBecLRTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
YWVlMTVjMzNkZTM1ODkzOGQ2OTAwYTFiM2MxNDQ4MGEzODllODViMB4XDTIyMDQx
NDIwNTY1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTRkNzM2OGMwMjg5
YTgyYTU1MzQyNDJjZDA3ODhhNGRhMTAzZTUwMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM8quQYCb+XIECryY1U8XQ2IHbpvvWpEzg22tz1xIYYAqhd+
+6UPAAQ/FqUPOOtqScBjK9B6WLL72W94sNhSEGSalexLid+sW28oFWRSCtdevavX
gES1ejuskNDxtIn3BdlrzTYpN+UE54R3j/t/Etg1SxzPOXrpc/5ukfSGE+bIRmnO
ESE5OofUsOIb95LDZc+5KW4MN2rzsLjwAnz7qViHk3XkP1mRvMpmnA84jW1kEO0q
Tbk6Dy5yfcly6MiwSZjORFGjTLI4pTQFzb10s2NR9y/UAFQiS/+5NtyJmwTDPiZK
3YH/lhmn1wdXH1bjT6h45eaVDy7qnJ5QHt/Z4icCAwEAAaOCAuIwggLeMB0GA1Ud
DgQWBBRU1zaMAomoKlU0JCzQeIpNoQPlADAfBgNVHSMEGDAWgBSa7hXDPeNYk41p
AKGzwUSAo4noWzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L211NFZ3ejNqV0pPTmFRQ2hzOEZFZ0tPSjZGcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2EvNzJmNzdmLTc2YWItNGU3OS1hMDYyLTZlZTUzNGQ5MmU1Mi8x
L1ZOYzJqQUtKcUNwVk5DUXMwSGlLVGFFRDVRQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Ev
NzJmNzdmLTc2YWItNGU3OS1hMDYyLTZlZTUzNGQ5MmU1Mi8xL211NFZ3ejNqV0pP
TmFRQ2hzOEZFZ0tPSjZGcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
9wYIKwYBBQUHAQcBAf8EgecwgeQwgeEEAgABMIHaAwQBuUm2MAwDBAK5S4QDBAC5
S4YwDAMEBLlM8AMEALlM8gMEAblNiAMEAblOTjAMAwQCuVGsAwQAuVGuAwQAuVG4
AwQAuVG7AwQAuVgmAwQBuVloAwQCuVlsMAwDBAC5X2UDBAO5X2ADBAC5YCYDBAC5
YFADBAC5YQEDBAC5YQMwDAMEArlhTAMEALlhTjAMAwQDuWIoAwQAuWIqAwQBuWSc
MAwDBAO5ZcgDBAC5ZcowDAMEArlnPAMEALlnPjAMAwQCuWiUAwQAuWiWMAwDBAO5
bxgDBAC5bxowDQYJKoZIhvcNAQELBQADggEBABqDMjO3Wrk3oUpspEtVBCDn3wcY
+gSknQj3aSeXgd/y2En+OcsuMiMy+dTpceYMK99ZXRBwETPv5jK56lPIa1ZxpFLk
1nIJQZ2UDNgtFMf+LHGtRgbGR8Clwd11cKcmXl1xqZTnkW8PQHxnX8+6YE0mQMjk
4u9Y1BG2XhbHCEjxSo0Uj6LWUCJVdtYNnTiXfHbyn7VHBvRLKzo5R36lnM9dHJET
TYgZTkHeiLOiUZPABlN3rHLXS5x7q6MBCKaIjpFqpA9PLyuMOnN087D87GoyWlhh
LdNUV3Lr2KEBwhj2Vi+39t7KABZwqZRS29O8ddBrly9hWVbvC4hdWR7Nf+0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:59 2024 by rpki-client on console-fra.rpki-client.org