Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/iN7lYnwxZ_O90rDqHAdrrUzKa6k.roa
File: iN7lYnwxZ_O90rDqHAdrrUzKa6k.roa (raw, json)
Hash identifier: H8mpTiUrgel49ChBn8Zd2CD8CorohjhROlvvt6kJZ4Q=
Subject key identifier: 88:DE:E5:62:7C:31:67:F3:BD:D2:B0:EA:1C:07:6B:AD:4C:CA:6B:A9
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 18376DCD
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/iN7lYnwxZ_O90rDqHAdrrUzKa6k.roa
Signing time: Mon 09 May 2022 12:56:16 +0000
ROA not before: Mon 09 May 2022 12:56:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58272
IP address blocks: 37.230.187.0/24 maxlen: 24
188.72.119.0/24 maxlen: 24
178.170.231.0/24 maxlen: 24
178.170.139.0/24 maxlen: 24
178.170.137.0/24 maxlen: 24
178.170.140.0/24 maxlen: 24
217.150.90.0/24 maxlen: 24
217.150.89.0/24 maxlen: 24
217.150.88.0/24 maxlen: 24
217.150.91.0/24 maxlen: 24
217.150.94.0/24 maxlen: 24
217.150.93.0/24 maxlen: 24
217.150.92.0/24 maxlen: 24
217.150.95.0/24 maxlen: 24
46.243.149.0/24 maxlen: 24
37.18.0.0/24 maxlen: 24
185.4.150.0/24 maxlen: 24
37.18.15.0/24 maxlen: 24
185.4.149.0/24 maxlen: 24
185.4.148.0/24 maxlen: 24
185.4.151.0/24 maxlen: 24
141.101.248.0/24 maxlen: 24
141.101.255.0/24 maxlen: 24
46.243.139.0/24 maxlen: 24
46.243.138.0/24 maxlen: 24
37.230.134.0/24 maxlen: 24
188.72.83.0/24 maxlen: 24
188.72.81.0/24 maxlen: 24
188.72.80.0/24 maxlen: 24
188.72.85.0/24 maxlen: 24
188.72.84.0/24 maxlen: 24
37.230.163.0/24 maxlen: 24
188.72.86.0/24 maxlen: 24
37.230.170.0/24 maxlen: 24
37.230.171.0/24 maxlen: 24
37.230.176.0/24 maxlen: 24
37.230.183.0/24 maxlen: 24
37.230.182.0/24 maxlen: 24
46.243.204.0/24 maxlen: 24
46.243.208.0/24 maxlen: 24
46.243.207.0/24 maxlen: 24
46.243.214.0/24 maxlen: 24
46.243.217.0/24 maxlen: 24
46.243.216.0/24 maxlen: 24
46.243.222.0/24 maxlen: 24
46.243.221.0/24 maxlen: 24
46.243.225.0/24 maxlen: 24
46.243.223.0/24 maxlen: 24
46.243.232.0/24 maxlen: 24
46.243.233.0/24 maxlen: 24
37.18.63.0/24 maxlen: 24
46.243.240.0/24 maxlen: 24
46.243.236.0/24 maxlen: 24
46.243.235.0/24 maxlen: 24
46.243.234.0/24 maxlen: 24
46.243.238.0/24 maxlen: 24
46.243.237.0/24 maxlen: 24
46.243.243.0/24 maxlen: 24
46.243.242.0/24 maxlen: 24
46.243.241.0/24 maxlen: 24
46.243.246.0/24 maxlen: 24
46.243.250.0/24 maxlen: 24
46.243.249.0/24 maxlen: 24
46.243.248.0/24 maxlen: 24
46.243.247.0/24 maxlen: 24
37.230.131.0/24 maxlen: 24
46.243.251.0/24 maxlen: 24
128.0.71.0/24 maxlen: 24
141.101.191.0/24 maxlen: 24
141.101.132.0/24 maxlen: 24
141.101.133.0/24 maxlen: 24
141.101.135.0/24 maxlen: 24
141.101.145.0/24 maxlen: 24
141.101.143.0/24 maxlen: 24
141.101.148.0/24 maxlen: 24
141.101.147.0/24 maxlen: 24
141.101.150.0/24 maxlen: 24
141.101.149.0/24 maxlen: 24
141.101.155.0/24 maxlen: 24
141.101.154.0/24 maxlen: 24
141.101.153.0/24 maxlen: 24
141.101.159.0/24 maxlen: 24
141.101.158.0/24 maxlen: 24
141.101.156.0/24 maxlen: 24
141.101.162.0/24 maxlen: 24
141.101.161.0/24 maxlen: 24
141.101.160.0/24 maxlen: 24
141.101.166.0/24 maxlen: 24
141.101.165.0/24 maxlen: 24
141.101.164.0/24 maxlen: 24
141.101.168.0/24 maxlen: 24
141.101.167.0/24 maxlen: 24
141.101.171.0/24 maxlen: 24
141.101.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 406285773 (0x18376dcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: May 9 12:56:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88dee5627c3167f3bdd2b0ea1c076bad4cca6ba9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d4:85:e8:ee:7a:0f:a6:18:fe:a9:be:41:23:
e3:22:2b:02:5f:cd:b5:23:cd:a5:e8:d4:4c:a5:f7:
23:22:49:f1:aa:ad:77:47:92:ed:5a:8d:14:e8:c5:
bc:cc:c2:09:ea:88:8e:34:22:e3:7e:39:e9:ac:9f:
03:94:fe:27:7f:86:b2:ac:7e:40:1d:e9:b0:9c:cd:
f0:29:65:37:72:2c:2c:3b:09:56:c7:f4:59:9e:4f:
35:16:6f:9d:3d:9f:ba:40:c1:eb:83:93:70:df:b3:
26:33:9d:8b:00:93:34:16:d6:79:ed:b3:c9:16:66:
96:e0:4a:88:18:80:8b:47:19:e7:6f:df:9b:77:de:
cf:65:18:d5:3f:26:d5:68:fc:20:30:13:48:7f:d1:
1f:fc:f6:b9:f3:fe:31:b8:43:bf:7c:c9:4a:68:05:
c8:af:b4:8b:c5:e7:51:a3:72:74:4e:00:5b:09:b7:
00:3e:9f:19:a3:1f:4c:0f:0d:6a:41:15:3f:e4:03:
86:0b:6b:7a:8d:b1:05:a2:a0:94:67:3f:a9:54:bf:
61:1b:04:89:ad:aa:aa:60:82:76:09:09:6e:8d:7f:
4d:dc:80:9e:10:f4:3d:bb:dc:d3:15:e8:02:d7:db:
92:ee:c1:6a:7f:2f:e1:9a:91:ba:7c:02:89:68:9b:
99:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:DE:E5:62:7C:31:67:F3:BD:D2:B0:EA:1C:07:6B:AD:4C:CA:6B:A9
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/iN7lYnwxZ_O90rDqHAdrrUzKa6k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.0.0/24
37.18.15.0/24
37.18.63.0/24
37.230.131.0/24
37.230.134.0/24
37.230.163.0/24
37.230.170.0/23
37.230.176.0/24
37.230.182.0/23
37.230.187.0/24
46.243.138.0/23
46.243.149.0/24
46.243.204.0/24
46.243.207.0-46.243.208.255
46.243.214.0/24
46.243.216.0/23
46.243.221.0-46.243.223.255
46.243.225.0/24
46.243.232.0-46.243.238.255
46.243.240.0/22
46.243.246.0-46.243.251.255
128.0.71.0/24
141.101.132.0/23
141.101.135.0/24
141.101.143.0/24
141.101.145.0/24
141.101.147.0-141.101.150.255
141.101.153.0-141.101.156.255
141.101.158.0-141.101.162.255
141.101.164.0-141.101.168.255
141.101.170.0/23
141.101.191.0/24
141.101.248.0/24
141.101.255.0/24
178.170.137.0/24
178.170.139.0-178.170.140.255
178.170.231.0/24
185.4.148.0/22
188.72.80.0/23
188.72.83.0-188.72.86.255
188.72.119.0/24
217.150.88.0/21
Signature Algorithm: sha256WithRSAEncryption
9c:1c:72:56:f6:58:6d:4e:77:71:db:55:d9:4d:c2:a7:b2:04:
e0:e7:00:f2:9d:a1:51:ec:49:25:8b:eb:b6:60:7e:cd:41:b8:
99:67:85:76:eb:24:30:f4:14:ba:27:59:dc:df:83:d8:f3:66:
6d:e9:cb:a5:76:9c:df:f6:1a:c0:b0:91:ae:20:10:a0:0e:ae:
0a:10:f0:c2:2a:57:59:90:b2:41:d3:10:a6:d6:3d:58:a3:f6:
80:65:a1:97:f1:3a:3d:49:de:0d:49:78:f5:03:b0:02:d1:45:
c5:4e:f4:22:64:f9:cb:2f:06:99:d1:c4:68:5e:a5:a6:56:dd:
62:e9:22:8f:c8:c2:e1:8d:8b:2b:df:74:a4:0b:b1:7a:66:a6:
7d:01:e1:86:8a:97:41:1b:84:96:87:72:9a:65:55:9f:93:6b:
27:04:d1:b3:41:b1:bd:62:a7:fb:50:b9:8c:20:c8:1c:51:72:
06:d7:5f:2f:92:ab:3e:03:0b:0c:01:38:21:fe:1c:50:18:31:
9c:6d:d5:5e:6b:f7:63:c1:36:d9:db:e0:3e:b7:59:76:c3:8e:
1d:5b:1a:2d:16:2d:3f:6e:f6:56:98:05:69:ed:7d:67:7f:9c:
ab:bd:de:f7:d6:89:5f:de:63:c6:f1:48:e3:16:02:c2:e1:56:
6a:f8:df:50
-----BEGIN CERTIFICATE-----
MIIGPzCCBSegAwIBAgIEGDdtzTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ODg1ZTg4NGMyZmM3YTc1ZDEyZGQxZGVhNDljZTIzNDljNDcwNjdlMB4XDTIyMDUw
OTEyNTYxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODhkZWU1NjI3YzMx
NjdmM2JkZDJiMGVhMWMwNzZiYWQ0Y2NhNmJhOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANDUhejueg+mGP6pvkEj4yIrAl/NtSPNpejUTKX3IyJJ8aqt
d0eS7VqNFOjFvMzCCeqIjjQi43456ayfA5T+J3+Gsqx+QB3psJzN8CllN3IsLDsJ
Vsf0WZ5PNRZvnT2fukDB64OTcN+zJjOdiwCTNBbWee2zyRZmluBKiBiAi0cZ52/f
m3fez2UY1T8m1Wj8IDATSH/RH/z2ufP+MbhDv3zJSmgFyK+0i8XnUaNydE4AWwm3
AD6fGaMfTA8NakEVP+QDhgtreo2xBaKglGc/qVS/YRsEia2qqmCCdgkJbo1/TdyA
nhD0Pbvc0xXoAtfbku7Ban8v4ZqRunwCiWibmZECAwEAAaOCA1kwggNVMB0GA1Ud
DgQWBBSI3uVifDFn873SsOocB2utTMprqTAfBgNVHSMEGDAWgBRYheiEwvx6ddEt
0d6knOI0nEcGfjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1dJWG9oTUw4ZW5YUkxkSGVwSnppTkp4SEJuNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODYvNmMwYmY3LTVmMTMtNDRhMi05OTg5LThjOTU4MWQ5NmQ4Zi8x
L2lON2xZbnd4Wl9POTByRHFIQWRyclV6S2E2ay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODYv
NmMwYmY3LTVmMTMtNDRhMi05OTg5LThjOTU4MWQ5NmQ4Zi8xL1dJWG9oTUw4ZW5Y
UkxkSGVwSnppTkp4SEJuNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCC
AW0GCCsGAQUFBwEHAQH/BIIBXDCCAVgwggFUBAIAATCCAUwDBAAlEgADBAAlEg8D
BAAlEj8DBAAl5oMDBAAl5oYDBAAl5qMDBAEl5qoDBAAl5rADBAEl5rYDBAAl5rsD
BAEu84oDBAAu85UDBAAu88wwDAMEAC7zzwMEAC7z0AMEAC7z1gMEAS7z2DAMAwQA
LvPdAwQFLvPAAwQALvPhMAwDBAMu8+gDBAAu8+4DBAIu8/AwDAMEAS7z9gMEAi7z
+AMEAIAARwMEAY1lhAMEAI1lhwMEAI1ljwMEAI1lkTAMAwQAjWWTAwQAjWWWMAwD
BACNZZkDBACNZZwwDAMEAY1lngMEAI1lojAMAwQCjWWkAwQAjWWoAwQBjWWqAwQA
jWW/AwQAjWX4AwQAjWX/AwQAsqqJMAwDBACyqosDBACyqowDBACyqucDBAK5BJQD
BAG8SFAwDAMEALxIUwMEALxIVgMEALxIdwMEA9mWWDANBgkqhkiG9w0BAQsFAAOC
AQEAnBxyVvZYbU53cdtV2U3Cp7IE4OcA8p2hUexJJYvrtmB+zUG4mWeFduskMPQU
uidZ3N+D2PNmbenLpXac3/YawLCRriAQoA6uChDwwipXWZCyQdMQptY9WKP2gGWh
l/E6PUneDUl49QOwAtFFxU70ImT5yy8GmdHEaF6lplbdYukij8jC4Y2LK990pAux
emamfQHhhoqXQRuElodymmVVn5NrJwTRs0GxvWKn+1C5jCDIHFFyBtdfL5KrPgML
DAE4If4cUBgxnG3VXmv3Y8E22dvgPrdZdsOOHVsaLRYtP272VpgFae19Z3+cq73e
99aJX95jxvFI4xYCwuFWavjfUA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:32 2023 by rpki-client on console-ams.rpki-client.org