Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/d0bDWlm75zJDIZnwX7MnIidPdZ4.roa
File: d0bDWlm75zJDIZnwX7MnIidPdZ4.roa (raw, json)
Hash identifier: QrOyd/MlZOGC8ub9y7tAu2Lx9dxiLnDoRPOygh+4CF4=
Subject key identifier: 77:46:C3:5A:59:BB:E7:32:43:21:99:F0:5F:B3:27:22:27:4F:75:9E
Certificate issuer: /CN=c1098a1905bbd3381533828f6b7fd227170431ef
Certificate serial: 01828D4BA9952FCD1F5637569F55013ACEBD
Authority key identifier: C1:09:8A:19:05:BB:D3:38:15:33:82:8F:6B:7F:D2:27:17:04:31:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wQmKGQW70zgVM4KPa3_SJxcEMe8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/d0bDWlm75zJDIZnwX7MnIidPdZ4.roa
Signing time: Thu 11 Aug 2022 14:25:22 +0000
ROA not before: Thu 11 Aug 2022 14:25:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57324
IP address blocks: 109.230.112.0/24 maxlen: 24
202.164.192.0/24 maxlen: 24
202.164.195.0/24 maxlen: 24
202.164.194.0/24 maxlen: 24
109.230.113.0/24 maxlen: 24
109.230.115.0/24 maxlen: 24
109.230.117.0/24 maxlen: 24
109.230.116.0/24 maxlen: 24
109.230.118.0/24 maxlen: 24
79.132.195.0/24 maxlen: 24
79.132.196.0/24 maxlen: 24
109.230.114.0/24 maxlen: 24
202.164.193.0/24 maxlen: 24
79.132.198.0/24 maxlen: 24
79.132.199.0/24 maxlen: 24
79.132.197.0/24 maxlen: 24
202.164.198.0/24 maxlen: 24
202.164.196.0/24 maxlen: 24
202.164.197.0/24 maxlen: 24
202.164.199.0/24 maxlen: 24
122.102.117.0/24 maxlen: 24
122.102.118.0/24 maxlen: 24
122.102.116.0/24 maxlen: 24
202.164.205.0/24 maxlen: 24
109.230.124.0/24 maxlen: 24
109.230.125.0/24 maxlen: 24
202.164.203.0/24 maxlen: 24
109.230.122.0/24 maxlen: 24
109.230.121.0/24 maxlen: 24
122.102.119.0/24 maxlen: 24
109.230.123.0/24 maxlen: 24
202.164.204.0/24 maxlen: 24
202.164.201.0/24 maxlen: 24
202.164.200.0/24 maxlen: 24
202.164.202.0/24 maxlen: 24
109.230.120.0/24 maxlen: 24
109.230.119.0/24 maxlen: 24
109.230.127.0/24 maxlen: 24
109.230.126.0/24 maxlen: 24
86.111.144.0/24 maxlen: 24
86.111.145.0/24 maxlen: 24
86.111.146.0/24 maxlen: 24
86.111.147.0/24 maxlen: 24
185.113.105.0/24 maxlen: 24
185.113.107.0/24 maxlen: 24
2a03:c340::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:8d:4b:a9:95:2f:cd:1f:56:37:56:9f:55:01:3a:ce:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1098a1905bbd3381533828f6b7fd227170431ef
Validity
Not Before: Aug 11 14:25:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7746c35a59bbe732432199f05fb32722274f759e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:04:7a:58:19:e9:bd:4f:ba:5d:e5:d7:61:47:
ca:c5:3d:2c:a4:82:e1:b2:41:f3:2c:d5:61:de:f8:
e7:a3:00:60:3e:e8:ba:7e:05:4c:1c:ab:6d:b9:b6:
65:2c:90:a6:b4:a3:8f:17:49:ea:e4:3d:49:66:e7:
eb:0c:f9:c2:b8:fc:01:8d:c1:77:de:18:7c:2e:f9:
d5:b8:4d:34:e4:6c:9b:04:11:7c:91:55:03:11:39:
ea:ab:ee:36:82:63:a9:7a:cd:8b:d6:d0:fc:9d:df:
08:37:17:47:cb:fa:b1:de:ef:07:f6:e1:41:c6:2c:
95:fd:8c:2a:e3:c0:12:c3:b5:22:aa:40:5a:fa:dc:
a5:ed:a1:14:2e:ee:86:ba:ed:a6:37:a5:a6:a4:70:
3b:37:5b:50:47:29:73:44:d1:e9:35:bb:86:04:f5:
d1:87:bc:d5:bd:71:b4:94:a7:cf:ce:51:91:89:bb:
5f:04:7f:62:fa:80:62:1e:fd:53:f6:fb:54:cf:38:
ac:0a:11:43:d8:96:30:bd:cc:3b:e6:16:dd:a1:70:
4d:4e:9e:02:29:8f:d3:9a:cb:e5:b6:d2:34:9f:bf:
d8:fe:9d:05:c9:81:32:e4:a6:b6:7d:88:70:f5:ff:
4b:7c:13:cf:68:3c:63:89:fe:e6:87:6f:fb:7d:92:
62:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:46:C3:5A:59:BB:E7:32:43:21:99:F0:5F:B3:27:22:27:4F:75:9E
X509v3 Authority Key Identifier:
keyid:C1:09:8A:19:05:BB:D3:38:15:33:82:8F:6B:7F:D2:27:17:04:31:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wQmKGQW70zgVM4KPa3_SJxcEMe8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/d0bDWlm75zJDIZnwX7MnIidPdZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/wQmKGQW70zgVM4KPa3_SJxcEMe8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.132.195.0-79.132.199.255
86.111.144.0/22
109.230.112.0/20
122.102.116.0/22
185.113.105.0/24
185.113.107.0/24
202.164.192.0-202.164.205.255
IPv6:
2a03:c340::/32
Signature Algorithm: sha256WithRSAEncryption
73:91:2c:82:96:b2:e3:7f:94:78:be:c8:b8:65:be:a9:90:4f:
aa:0c:bf:c9:a8:5e:ab:f5:60:b0:02:9d:67:a7:0a:62:6a:2b:
0f:25:58:02:97:93:8a:1a:46:c7:a8:af:d4:fd:79:d0:ea:b2:
18:06:fe:b1:e1:ab:f5:2d:dc:02:06:36:af:cd:75:59:b7:1c:
65:0f:77:88:76:20:73:a4:de:0a:3b:84:ef:e3:4a:33:b4:2f:
57:f2:e2:4c:4f:ba:a3:8d:a6:6b:54:ef:d8:0c:a6:db:5f:8a:
50:e2:ae:96:c7:bd:4d:62:30:f8:d1:3f:59:f6:7b:51:b8:32:
f0:34:ec:80:8f:3f:11:91:0f:3b:52:d1:e5:ad:79:fd:70:05:
79:27:8f:30:ee:a1:a5:86:26:cd:2a:c9:9e:4f:59:c0:fa:d0:
9d:af:bd:7b:f5:0d:7a:c6:f0:38:8e:28:61:8a:29:dc:fe:c5:
bc:0e:0d:4c:cb:56:bb:15:1e:0e:8c:e3:a2:5f:d6:55:19:cd:
a4:42:9c:09:9b:3d:25:66:80:48:c7:3e:c9:6e:0c:b3:6d:88:
43:db:ee:f9:8d:19:f5:ea:f7:5c:ac:04:ec:28:f4:36:71:e7:
05:65:1a:1a:83:86:64:57:d7:5f:06:f7:41:1b:0f:11:73:08:
28:2f:89:1e
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgISAYKNS6mVL80fVjdWn1UBOs69MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMxMDk4YTE5MDViYmQzMzgxNTMzODI4ZjZiN2ZkMjI3MTcw
NDMxZWYwHhcNMjIwODExMTQyNTIyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NzQ2YzM1YTU5YmJlNzMyNDMyMTk5ZjA1ZmIzMjcyMjI3NGY3NTllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAigR6WBnpvU+6XeXXYUfKxT0spILh
skHzLNVh3vjnowBgPui6fgVMHKttubZlLJCmtKOPF0nq5D1JZufrDPnCuPwBjcF3
3hh8LvnVuE005GybBBF8kVUDETnqq+42gmOpes2L1tD8nd8INxdHy/qx3u8H9uFB
xiyV/Ywq48ASw7UiqkBa+tyl7aEULu6Guu2mN6WmpHA7N1tQRylzRNHpNbuGBPXR
h7zVvXG0lKfPzlGRibtfBH9i+oBiHv1T9vtUzzisChFD2JYwvcw75hbdoXBNTp4C
KY/TmsvlttI0n7/Y/p0FyYEy5Ka2fYhw9f9LfBPPaDxjif7mh2/7fZJivwIDAQAB
o4ICTDCCAkgwHQYDVR0OBBYEFHdGw1pZu+cyQyGZ8F+zJyInT3WeMB8GA1UdIwQY
MBaAFMEJihkFu9M4FTOCj2t/0icXBDHvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd1FtS0dRVzcwemdWTTRLUGEzX1NKeGNFTWU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi8yZWVkNzEtNDY2NS00OTQ4LWEzYzUt
YjJhNzEzZDJlYWIyLzEvZDBiRFdsbTc1ekpESVpud1g3TW5JaWRQZFo0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Mi8yZWVkNzEtNDY2NS00OTQ4LWEzYzUtYjJhNzEzZDJlYWIy
LzEvd1FtS0dRVzcwemdWTTRLUGEzX1NKeGNFTWU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGIGCCsGAQUFBwEHAQH/BFMwUTBABAIAATA6MAwDBABPhMMD
BANPhMADBAJWb5ADBARt5nADBAJ6ZnQDBAC5cWkDBAC5cWswDAMEBsqkwAMEAcqk
zDANBAIAAjAHAwUAKgPDQDANBgkqhkiG9w0BAQsFAAOCAQEAc5Esgpay43+UeL7I
uGW+qZBPqgy/yaheq/VgsAKdZ6cKYmorDyVYApeTihpGx6iv1P150OqyGAb+seGr
9S3cAgY2r811WbccZQ93iHYgc6TeCjuE7+NKM7QvV/LiTE+6o42ma1Tv2Aym21+K
UOKulse9TWIw+NE/WfZ7Ubgy8DTsgI8/EZEPO1LR5a15/XAFeSePMO6hpYYmzSrJ
nk9ZwPrQna+9e/UNesbwOI4oYYop3P7FvA4NTMtWuxUeDozjol/WVRnNpEKcCZs9
JWaASMc+yW4Ms22IQ9vu+Y0Z9er3XKwE7Cj0NnHnBWUaGoOGZFfXXwb3QRsPEXMI
KC+JHg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:43 2023 by rpki-client on console-fra.rpki-client.org