Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/N4h8W10HrJvZMd494lH7zSeDweQ.roa
File: N4h8W10HrJvZMd494lH7zSeDweQ.roa (raw, json)
Hash identifier: igmh2qD+fAA3+/JihsINlcNrAtJkjdn6AVQJPw/Bljg=
Subject key identifier: 37:88:7C:5B:5D:07:AC:9B:D9:31:DE:3D:E2:51:FB:CD:27:83:C1:E4
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 07D0D248
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/N4h8W10HrJvZMd494lH7zSeDweQ.roa
Signing time: Fri 14 Jan 2022 12:10:06 +0000
ROA not before: Fri 14 Jan 2022 12:10:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8888
IP address blocks: 141.98.196.0/22 maxlen: 24
80.66.196.0/22 maxlen: 24
94.124.116.0/22 maxlen: 24
185.200.64.0/22 maxlen: 24
149.62.44.0/22 maxlen: 24
45.90.210.0/24 maxlen: 24
193.111.30.0/23 maxlen: 24
45.139.192.0/22 maxlen: 24
195.245.219.0/24 maxlen: 24
45.92.157.0/24 maxlen: 24
45.131.152.0/22 maxlen: 24
45.130.20.0/22 maxlen: 24
194.104.152.0/22 maxlen: 24
45.147.48.0/22 maxlen: 24
194.36.27.0/24 maxlen: 24
95.214.164.0/22 maxlen: 24
45.143.232.0/22 maxlen: 24
194.169.54.0/23 maxlen: 24
185.222.216.0/21 maxlen: 24
185.194.52.0/22 maxlen: 24
2a06:57c0::/29 maxlen: 48
2a09::/29 maxlen: 128
2a07:fa00::/29 maxlen: 48
2a0d:7540::/29 maxlen: 48
2a0d:3640::/29 maxlen: 48
2a0c:ed40::/29 maxlen: 48
2a06:4fc0::/29 maxlen: 48
2a0d:4340::/29 maxlen: 48
2a0d:de80::/29 maxlen: 48
2a0e:6200::/29 maxlen: 48
2a07:e900::/29 maxlen: 48
2a0d:1fc0::/29 maxlen: 48
2a10:2600::/29 maxlen: 48
2a0d:4bc0::/29 maxlen: 48
2a09:6::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131125832 (0x7d0d248)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jan 14 12:10:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=37887c5b5d07ac9bd931de3de251fbcd2783c1e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:f0:1f:27:4e:b5:de:ee:b7:ad:7a:c7:82:85:
77:4f:cf:ba:ba:02:cf:7a:ee:3a:61:3a:ab:91:67:
67:38:73:d0:60:19:0a:5e:11:2b:b9:cc:ea:1f:c9:
bc:79:15:98:bd:9b:ff:e5:1a:39:b2:9b:3c:42:c2:
a4:d2:64:87:f9:48:90:f5:92:12:2a:92:ce:80:e7:
c0:e9:52:c4:7c:5c:0c:93:40:25:e4:45:04:a5:ee:
cb:96:85:de:36:a8:b4:14:e8:ed:03:c8:21:26:ec:
bc:85:39:7f:04:37:07:81:04:92:ea:d8:6a:a0:92:
44:b2:c8:b7:78:06:a0:b3:b8:92:04:31:af:20:cf:
09:3e:ce:62:66:01:15:dc:89:0d:47:71:ab:ae:63:
51:40:65:6f:45:1f:07:b0:f9:f9:6f:1e:ce:fc:1c:
b3:75:20:d8:7d:85:1d:4c:43:32:25:95:0d:3d:46:
30:98:f5:2d:d0:37:af:51:b5:f4:a1:41:5b:17:29:
3a:ba:37:74:d9:33:43:5e:f9:a6:e3:ff:b9:e7:c5:
f0:10:ca:b3:ad:d8:ea:a7:4a:e3:a6:d7:70:36:d3:
7b:2d:fa:43:62:06:a7:c6:a0:1e:e8:5e:af:0f:ac:
05:54:98:0c:3b:21:7b:80:1a:0e:36:72:29:ab:31:
86:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:88:7C:5B:5D:07:AC:9B:D9:31:DE:3D:E2:51:FB:CD:27:83:C1:E4
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/N4h8W10HrJvZMd494lH7zSeDweQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.210.0/24
45.92.157.0/24
45.130.20.0/22
45.131.152.0/22
45.139.192.0/22
45.143.232.0/22
45.147.48.0/22
80.66.196.0/22
94.124.116.0/22
95.214.164.0/22
141.98.196.0/22
149.62.44.0/22
185.194.52.0/22
185.200.64.0/22
185.222.216.0/21
193.111.30.0/23
194.36.27.0/24
194.104.152.0/22
194.169.54.0/23
195.245.219.0/24
IPv6:
2a06:4fc0::/29
2a06:57c0::/29
2a07:e900::/29
2a07:fa00::/29
2a09::/29
2a0c:ed40::/29
2a0d:1fc0::/29
2a0d:3640::/29
2a0d:4340::/29
2a0d:4bc0::/29
2a0d:7540::/29
2a0d:de80::/29
2a0e:6200::/29
2a10:2600::/29
Signature Algorithm: sha256WithRSAEncryption
a4:d1:64:d9:de:46:8c:d5:79:9c:1b:64:c7:e7:29:d5:b2:de:
3d:7a:ea:93:5e:33:13:aa:7e:81:d1:58:f4:8d:07:59:7e:b8:
11:69:8f:f2:14:03:f9:5d:3b:8a:83:5d:4c:22:00:60:2a:2f:
12:8e:ce:9a:38:a7:30:58:97:9f:52:09:96:dd:a0:80:5b:3d:
fe:1b:45:78:05:4b:45:66:9f:46:a7:41:40:1f:20:57:28:56:
2e:01:13:42:7a:90:99:c9:02:50:fe:e9:23:6a:ab:fa:ec:92:
51:95:98:73:1e:3a:44:4c:9b:c7:3a:bb:d5:c8:e5:e4:4c:c4:
59:06:17:a9:27:69:10:ac:af:54:d3:bb:fc:a0:88:59:87:ae:
ea:e4:98:37:40:00:5b:f2:1d:ed:3a:c5:b6:e0:41:51:71:bb:
23:8f:6e:1c:14:6a:52:97:57:ef:88:79:d8:9e:fc:77:5a:0f:
15:74:48:b9:a0:a2:c9:44:00:6e:a7:cd:92:e2:ad:ab:32:37:
5c:f0:78:18:25:a1:22:9b:01:e4:a9:ed:a2:b6:68:c0:39:aa:
3c:dc:4f:7f:cc:01:5a:d5:91:ca:04:fa:30:7b:16:e0:a8:ad:
fa:e8:27:a0:cd:3b:b2:e7:b9:6e:54:d5:5f:eb:47:ea:e3:de:
6b:d2:93:2f
-----BEGIN CERTIFICATE-----
MIIFzjCCBLagAwIBAgIEB9DSSDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NTc2ZWIyY2M0NjJlNmU0YmYwZGU2OWI5ZjYzNDg3NWRlYmJhYWUyMB4XDTIyMDEx
NDEyMTAwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzc4ODdjNWI1ZDA3
YWM5YmQ5MzFkZTNkZTI1MWZiY2QyNzgzYzFlNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOXwHydOtd7ut616x4KFd0/PuroCz3ruOmE6q5FnZzhz0GAZ
Cl4RK7nM6h/JvHkVmL2b/+UaObKbPELCpNJkh/lIkPWSEiqSzoDnwOlSxHxcDJNA
JeRFBKXuy5aF3jaotBTo7QPIISbsvIU5fwQ3B4EEkurYaqCSRLLIt3gGoLO4kgQx
ryDPCT7OYmYBFdyJDUdxq65jUUBlb0UfB7D5+W8ezvwcs3Ug2H2FHUxDMiWVDT1G
MJj1LdA3r1G19KFBWxcpOro3dNkzQ175puP/uefF8BDKs63Y6qdK46bXcDbTey36
Q2IGp8agHuherw+sBVSYDDshe4AaDjZyKasxhrUCAwEAAaOCAugwggLkMB0GA1Ud
DgQWBBQ3iHxbXQesm9kx3j3iUfvNJ4PB5DAfBgNVHSMEGDAWgBSldussxGLm5L8N
5pufY0h13ruq4jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3BYYnJMTVJpNXVTX0RlYWJuMk5JZGQ2N3F1SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODcvOTMxOTI3LTlmMzgtNDFiNi04N2ZhLTI1NGFjZDkyYjRlMS8x
L040aDhXMTBIckp2Wk1kNDk0bEg3elNlRHdlUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODcv
OTMxOTI3LTlmMzgtNDFiNi04N2ZhLTI1NGFjZDkyYjRlMS8xL3BYYnJMTVJpNXVT
X0RlYWJuMk5JZGQ2N3F1SS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
/QYIKwYBBQUHAQcBAf8Ege0wgeowfgQCAAEweAMEAC1a0gMEAC1cnQMEAi2CFAME
Ai2DmAMEAi2LwAMEAi2P6AMEAi2TMAMEAlBCxAMEAl58dAMEAl/WpAMEAo1ixAME
ApU+LAMEArnCNAMEArnIQAMEA7ne2AMEAcFvHgMEAMIkGwMEAsJomAMEAcKpNgME
AMP12zBoBAIAAjBiAwUDKgZPwAMFAyoGV8ADBQMqB+kAAwUDKgf6AAMFAyoJAAAD
BQMqDO1AAwUDKg0fwAMFAyoNNkADBQMqDUNAAwUDKg1LwAMFAyoNdUADBQMqDd6A
AwUDKg5iAAMFAyoQJgAwDQYJKoZIhvcNAQELBQADggEBAKTRZNneRozVeZwbZMfn
KdWy3j166pNeMxOqfoHRWPSNB1l+uBFpj/IUA/ldO4qDXUwiAGAqLxKOzpo4pzBY
l59SCZbdoIBbPf4bRXgFS0Vmn0anQUAfIFcoVi4BE0J6kJnJAlD+6SNqq/rsklGV
mHMeOkRMm8c6u9XI5eRMxFkGF6knaRCsr1TTu/ygiFmHrurkmDdAAFvyHe06xbbg
QVFxuyOPbhwUalKXV++Iedie/HdaDxV0SLmgoslEAG6nzZLirasyN1zweBgloSKb
AeSp7aK2aMA5qjzcT3/MAVrVkcoE+jB7FuCorfroJ6DNO7LnuW5U1V/rR+rj3mvS
ky8=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:58 2023 by rpki-client on console-fra.rpki-client.org