Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/3hq-0bphafTREpOihgeoYDhPDqQ.roa
File: 3hq-0bphafTREpOihgeoYDhPDqQ.roa (raw, json)
Hash identifier: PIdkPwlXG/nSt+keFB016wEKUSnFS4xHPYlWCehQDR4=
Subject key identifier: DE:1A:BE:D1:BA:61:69:F4:D1:12:93:A2:86:07:A8:60:38:4F:0E:A4
Certificate issuer: /CN=c2d2a234e224bf87996f2f0df559ead882f9e651
Certificate serial: 17AEE756
Authority key identifier: C2:D2:A2:34:E2:24:BF:87:99:6F:2F:0D:F5:59:EA:D8:82:F9:E6:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtKiNOIkv4eZby8N9Vnq2IL55lE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/3hq-0bphafTREpOihgeoYDhPDqQ.roa
Signing time: Wed 18 May 2022 07:12:17 +0000
ROA not before: Wed 18 May 2022 07:12:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50926
IP address blocks: 185.70.92.0/22 maxlen: 22
188.164.192.0/21 maxlen: 21
188.164.192.0/24 maxlen: 24
188.164.197.0/24 maxlen: 24
188.164.199.0/24 maxlen: 24
94.127.186.0/24 maxlen: 24
188.164.198.0/24 maxlen: 24
94.127.185.0/24 maxlen: 24
94.127.184.0/24 maxlen: 24
188.164.196.0/24 maxlen: 24
188.164.195.0/24 maxlen: 24
188.164.194.0/24 maxlen: 24
188.164.193.0/24 maxlen: 24
94.127.191.0/24 maxlen: 24
94.127.190.0/24 maxlen: 24
94.127.188.0/24 maxlen: 24
94.127.187.0/24 maxlen: 24
149.62.172.0/22 maxlen: 22
149.62.168.0/21 maxlen: 21
149.62.168.0/22 maxlen: 22
195.5.116.0/23 maxlen: 23
91.200.140.0/22 maxlen: 22
188.95.112.0/21 maxlen: 21
185.176.9.0/24 maxlen: 24
185.176.8.0/24 maxlen: 24
185.176.11.0/24 maxlen: 24
185.176.10.0/24 maxlen: 24
84.246.213.0/24 maxlen: 24
84.246.212.0/24 maxlen: 24
84.246.211.0/24 maxlen: 24
84.246.210.0/24 maxlen: 24
84.246.209.0/24 maxlen: 24
84.246.208.0/21 maxlen: 21
84.246.208.0/24 maxlen: 24
109.68.84.0/24 maxlen: 24
109.68.82.0/24 maxlen: 24
84.246.215.0/24 maxlen: 24
109.68.80.0/24 maxlen: 24
109.68.80.0/21 maxlen: 21
84.246.214.0/24 maxlen: 24
91.213.46.0/24 maxlen: 24
31.24.152.0/21 maxlen: 21
31.24.152.0/24 maxlen: 24
31.24.159.0/24 maxlen: 24
31.24.158.0/24 maxlen: 24
31.24.157.0/24 maxlen: 24
31.24.156.0/24 maxlen: 24
31.24.155.0/24 maxlen: 24
31.24.154.0/24 maxlen: 24
91.142.208.0/20 maxlen: 20
185.222.156.0/22 maxlen: 22
5.175.42.0/24 maxlen: 24
5.175.41.0/24 maxlen: 24
5.175.40.0/24 maxlen: 24
5.175.40.0/21 maxlen: 21
5.175.44.0/24 maxlen: 24
5.175.43.0/24 maxlen: 24
5.175.47.0/24 maxlen: 24
5.175.46.0/24 maxlen: 24
31.24.43.0/24 maxlen: 24
31.24.40.0/24 maxlen: 24
31.24.40.0/21 maxlen: 21
31.24.46.0/24 maxlen: 24
31.24.45.0/24 maxlen: 24
2a00:5ac0:100::/40 maxlen: 40
2a0a:680::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 397338454 (0x17aee756)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d2a234e224bf87996f2f0df559ead882f9e651
Validity
Not Before: May 18 07:12:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de1abed1ba6169f4d11293a28607a860384f0ea4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c7:ed:46:82:8b:ec:9d:1f:19:54:a2:39:b8:
02:78:4e:81:2a:d3:f8:df:4f:91:71:15:4b:7d:fd:
15:62:e1:b4:30:3d:62:fa:f0:25:54:d4:a9:71:32:
0b:81:de:35:60:4f:c9:2f:06:b7:b0:51:81:ff:e4:
8a:d3:a3:78:a5:d4:55:53:33:b8:c6:94:d9:d3:bb:
a9:aa:3d:71:a9:27:6e:89:75:54:34:fa:dd:ac:a0:
74:e2:71:7f:21:b3:2e:7d:ab:65:50:f4:93:6e:f8:
40:e5:3e:84:55:cc:f0:c0:54:97:be:60:0c:29:c8:
77:f3:91:8f:ed:d2:a2:e7:d9:d0:dc:65:81:cb:6d:
1d:d9:a9:b0:a4:83:71:85:3d:ab:3b:e4:e5:3e:b0:
86:56:ab:01:0a:c4:23:bf:ca:e9:07:1d:fb:82:e6:
f7:b4:8a:9b:69:5a:c2:18:f0:91:8c:0c:55:9c:ea:
8d:91:3b:49:d0:02:ec:64:79:78:fd:fd:fc:b9:a9:
85:ab:09:b8:26:42:a4:98:5a:6e:2a:6b:0f:e0:d7:
72:09:fe:7c:95:69:95:fc:8d:ff:af:32:2c:e0:d2:
85:3b:d5:87:a4:02:67:60:09:29:c1:13:99:e7:75:
81:62:76:e7:34:19:36:6e:88:25:fc:90:35:8b:d6:
1b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:1A:BE:D1:BA:61:69:F4:D1:12:93:A2:86:07:A8:60:38:4F:0E:A4
X509v3 Authority Key Identifier:
keyid:C2:D2:A2:34:E2:24:BF:87:99:6F:2F:0D:F5:59:EA:D8:82:F9:E6:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtKiNOIkv4eZby8N9Vnq2IL55lE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/3hq-0bphafTREpOihgeoYDhPDqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/wtKiNOIkv4eZby8N9Vnq2IL55lE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.175.40.0/21
31.24.40.0/21
31.24.152.0/21
84.246.208.0/21
91.142.208.0/20
91.200.140.0/22
91.213.46.0/24
94.127.184.0-94.127.188.255
94.127.190.0/23
109.68.80.0/21
149.62.168.0/21
185.70.92.0/22
185.176.8.0/22
185.222.156.0/22
188.95.112.0/21
188.164.192.0/21
195.5.116.0/23
IPv6:
2a00:5ac0:100::/40
2a0a:680::/29
Signature Algorithm: sha256WithRSAEncryption
ab:a1:1c:bd:af:65:53:7a:d6:7a:24:ea:c8:14:99:9b:e7:2d:
e5:ed:82:78:a7:f1:81:3c:7e:56:cf:bb:af:35:2c:99:78:2b:
b2:3d:a5:ba:05:30:bc:98:d7:52:a9:ae:1f:1e:12:ea:4c:ee:
ee:03:ab:2f:64:75:c1:d3:08:90:ca:a8:3b:7a:60:3f:56:f6:
bb:cc:88:92:dc:19:32:db:13:7a:fa:50:db:86:a9:2f:ff:f1:
b4:8b:f6:be:b1:e9:4c:4b:92:8b:da:50:a1:53:23:d8:d3:18:
81:bb:ba:1f:3d:4b:ca:ac:70:41:9d:e9:0f:76:5c:02:c2:0c:
76:92:8c:9f:9c:1b:e9:2d:05:6c:f0:e3:e2:09:60:e6:03:86:
b4:c3:62:57:fd:c6:f6:c0:64:d1:17:80:30:c7:b1:34:34:76:
6c:18:39:80:6c:78:cb:33:40:e5:33:e0:e3:c5:f7:0f:ee:8a:
40:ba:42:c7:11:24:bd:82:0a:f0:46:93:0a:ac:1f:7f:a2:28:
45:10:e2:d5:46:6e:79:77:d2:93:b1:f7:87:04:f0:61:e9:de:
91:7c:41:23:13:d9:24:d2:5e:6d:2a:82:41:6d:16:2c:db:43:
6c:8b:4f:cc:f6:d5:72:4a:db:f1:04:12:84:20:6f:24:8a:d4:
b9:72:9e:20
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgIEF67nVjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
MmQyYTIzNGUyMjRiZjg3OTk2ZjJmMGRmNTU5ZWFkODgyZjllNjUxMB4XDTIyMDUx
ODA3MTIxN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGUxYWJlZDFiYTYx
NjlmNGQxMTI5M2EyODYwN2E4NjAzODRmMGVhNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJTH7UaCi+ydHxlUojm4AnhOgSrT+N9PkXEVS339FWLhtDA9
YvrwJVTUqXEyC4HeNWBPyS8Gt7BRgf/kitOjeKXUVVMzuMaU2dO7qao9caknbol1
VDT63aygdOJxfyGzLn2rZVD0k274QOU+hFXM8MBUl75gDCnId/ORj+3SoufZ0Nxl
gcttHdmpsKSDcYU9qzvk5T6whlarAQrEI7/K6Qcd+4Lm97SKm2lawhjwkYwMVZzq
jZE7SdAC7GR5eP39/LmphasJuCZCpJhabiprD+DXcgn+fJVplfyN/68yLODShTvV
h6QCZ2AJKcETmed1gWJ25zQZNm6IJfyQNYvWGxECAwEAAaOCAoswggKHMB0GA1Ud
DgQWBBTeGr7RumFp9NESk6KGB6hgOE8OpDAfBgNVHSMEGDAWgBTC0qI04iS/h5lv
Lw31WerYgvnmUTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3d0S2lOT0lrdjRlWmJ5OE45Vm5xMklMNTVsRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODEvZDFlZTRiLWU4OGEtNGU0MS1hNjE2LTRiMjQ4ZGE2Yzk2Yy8x
LzNocS0wYnBoYWZUUkVwT2loZ2VvWURoUERxUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODEv
ZDFlZTRiLWU4OGEtNGU0MS1hNjE2LTRiMjQ4ZGE2Yzk2Yy8xL3d0S2lOT0lrdjRl
WmJ5OE45Vm5xMklMNTVsRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
oAYIKwYBBQUHAQcBAf8EgZAwgY0wdAQCAAEwbgMEAwWvKAMEAx8YKAMEAx8YmAME
A1T20AMEBFuO0AMEAlvIjAMEAFvVLjAMAwQDXn+4AwQAXn+8AwQBXn++AwQDbURQ
AwQDlT6oAwQCuUZcAwQCubAIAwQCud6cAwQDvF9wAwQDvKTAAwQBwwV0MBUEAgAC
MA8DBgAqAFrAAQMFAyoKBoAwDQYJKoZIhvcNAQELBQADggEBAKuhHL2vZVN61nok
6sgUmZvnLeXtgnin8YE8flbPu681LJl4K7I9pboFMLyY11Kprh8eEupM7u4Dqy9k
dcHTCJDKqDt6YD9W9rvMiJLcGTLbE3r6UNuGqS//8bSL9r6x6UxLkovaUKFTI9jT
GIG7uh89S8qscEGd6Q92XALCDHaSjJ+cG+ktBWzw4+IJYOYDhrTDYlf9xvbAZNEX
gDDHsTQ0dmwYOYBseMszQOUz4OPF9w/uikC6QscRJL2CCvBGkwqsH3+iKEUQ4tVG
bnl30pOx94cE8GHp3pF8QSMT2STSXm0qgkFtFizbQ2yLT8z21XJK2/EEEoQgbySK
1LlyniA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:04 2024 by rpki-client on console-fra.rpki-client.org