Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/6npKhcjKdY7KZvbDiEClUDB6Tvg.roa
File: 6npKhcjKdY7KZvbDiEClUDB6Tvg.roa (raw, json)
Hash identifier: dqYpueNAZGz8HnXFICtfCwBrVXwYNv7yx/Pibv50LuA=
Subject key identifier: EA:7A:4A:85:C8:CA:75:8E:CA:66:F6:C3:88:40:A5:50:30:7A:4E:F8
Certificate issuer: /CN=0d87142bdc2b3f0d0848a0d800b6930b1abb34bc
Certificate serial: 05E0B191
Authority key identifier: 0D:87:14:2B:DC:2B:3F:0D:08:48:A0:D8:00:B6:93:0B:1A:BB:34:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DYcUK9wrPw0ISKDYALaTCxq7NLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/6npKhcjKdY7KZvbDiEClUDB6Tvg.roa
Signing time: Wed 01 Jun 2022 11:09:20 +0000
ROA not before: Wed 01 Jun 2022 11:09:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1820
IP address blocks: 80.92.224.0/20 maxlen: 32
212.110.144.0/21 maxlen: 32
212.110.152.0/22 maxlen: 32
92.119.220.0/22 maxlen: 32
82.117.229.0/24 maxlen: 32
193.111.48.0/22 maxlen: 32
82.117.244.0/24 maxlen: 32
92.60.176.0/20 maxlen: 32
185.38.208.0/23 maxlen: 32
185.39.196.0/22 maxlen: 32
212.110.128.0/20 maxlen: 32
128.0.168.0/21 maxlen: 32
193.111.0.0/23 maxlen: 32
85.90.211.0/24 maxlen: 32
31.172.136.0/21 maxlen: 32
85.90.223.0/24 maxlen: 32
217.20.160.0/19 maxlen: 32
2a01:6b0::/32 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98611601 (0x5e0b191)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d87142bdc2b3f0d0848a0d800b6930b1abb34bc
Validity
Not Before: Jun 1 11:09:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea7a4a85c8ca758eca66f6c38840a550307a4ef8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:b9:62:aa:89:5b:5f:a3:49:b5:08:fe:75:61:
96:c1:47:65:f5:ad:6a:3d:86:df:e4:17:9b:8e:49:
6f:55:d7:cd:43:9c:c1:9b:73:7f:aa:51:32:b8:96:
45:7e:a5:9c:50:5e:a2:f2:40:ac:e9:e0:e3:be:37:
77:67:33:1b:83:75:4c:79:10:ae:8c:45:e0:3d:e9:
a5:d6:3d:c8:53:f6:a9:34:51:f7:7b:bf:d7:72:3d:
df:38:c6:5b:3e:d6:b8:2d:ee:d1:a1:8a:86:d9:15:
91:7b:bf:69:7b:97:00:e6:fe:8b:05:6b:11:57:24:
c4:5a:61:ca:19:ee:8c:aa:3d:48:aa:46:e0:8d:00:
52:72:c0:79:d6:09:58:4c:7a:3f:d2:7d:4a:54:33:
7b:12:db:6b:0f:43:5b:88:c2:9e:5e:90:a3:e9:f8:
24:24:c2:a2:cf:b5:d8:c1:1e:87:bd:dc:d8:71:b9:
c4:f1:0d:e5:2d:ee:c5:ad:f9:53:5a:d8:f5:ac:72:
a1:e0:51:83:0d:64:da:55:fd:c8:f7:d5:48:ad:4c:
63:91:c4:f9:34:00:1f:ba:ab:c8:88:82:1b:14:6b:
cf:63:94:11:f3:26:f8:99:f7:62:a9:91:38:56:27:
3b:8b:e9:c0:de:ae:38:4c:c1:3a:e8:56:f3:cc:59:
96:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:7A:4A:85:C8:CA:75:8E:CA:66:F6:C3:88:40:A5:50:30:7A:4E:F8
X509v3 Authority Key Identifier:
keyid:0D:87:14:2B:DC:2B:3F:0D:08:48:A0:D8:00:B6:93:0B:1A:BB:34:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DYcUK9wrPw0ISKDYALaTCxq7NLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/6npKhcjKdY7KZvbDiEClUDB6Tvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/DYcUK9wrPw0ISKDYALaTCxq7NLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.172.136.0/21
80.92.224.0/20
82.117.229.0/24
82.117.244.0/24
85.90.211.0/24
85.90.223.0/24
92.60.176.0/20
92.119.220.0/22
128.0.168.0/21
185.38.208.0/23
185.39.196.0/22
193.111.0.0/23
193.111.48.0/22
212.110.128.0-212.110.155.255
217.20.160.0/19
IPv6:
2a01:6b0::/32
Signature Algorithm: sha256WithRSAEncryption
23:83:49:52:ff:a8:8a:20:12:9a:08:5a:66:49:3c:4f:c8:5e:
dd:a3:32:7c:c1:fb:99:57:8c:59:81:65:38:67:19:0d:6b:00:
a8:46:bb:df:d2:01:e5:9f:8b:0f:60:01:cd:f9:a4:46:a0:ab:
ec:4c:2d:5a:dd:0f:64:a2:16:80:01:57:86:aa:6b:8b:c6:ed:
f9:5b:a6:2c:0c:4d:a2:34:64:42:f8:fc:cd:8b:7d:d0:24:aa:
b6:1c:3f:ba:8b:b8:a2:ff:2e:2d:53:4f:61:5e:c9:0c:fb:17:
d3:0c:5b:ec:9b:e8:17:c0:fb:90:a3:4c:a5:54:da:08:c3:95:
ad:8b:e7:01:5f:7e:9c:21:72:7c:f8:e1:c4:e7:8f:98:6f:7f:
bb:55:23:ce:c2:19:56:19:4f:20:20:98:db:d1:ef:47:87:46:
a7:16:02:2b:67:d5:df:15:79:73:1c:45:72:90:00:ad:cf:85:
10:9f:97:53:55:78:d8:31:18:d8:fe:b0:9a:e5:1f:fb:7b:91:
d2:33:21:86:9a:1d:54:02:30:49:26:4d:a5:49:ad:73:1e:e0:
ae:6e:4a:e5:d2:98:16:d6:b3:e7:2c:e6:41:56:68:6d:e4:a9:
af:6f:bb:6c:3a:cc:4b:af:a7:30:b7:bb:f9:64:cf:5f:48:d8:
83:4c:38:99
-----BEGIN CERTIFICATE-----
MIIFWzCCBEOgAwIBAgIEBeCxkTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
ZDg3MTQyYmRjMmIzZjBkMDg0OGEwZDgwMGI2OTMwYjFhYmIzNGJjMB4XDTIyMDYw
MTExMDkyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWE3YTRhODVjOGNh
NzU4ZWNhNjZmNmMzODg0MGE1NTAzMDdhNGVmODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIW5YqqJW1+jSbUI/nVhlsFHZfWtaj2G3+QXm45Jb1XXzUOc
wZtzf6pRMriWRX6lnFBeovJArOng4743d2czG4N1THkQroxF4D3ppdY9yFP2qTRR
93u/13I93zjGWz7WuC3u0aGKhtkVkXu/aXuXAOb+iwVrEVckxFphyhnujKo9SKpG
4I0AUnLAedYJWEx6P9J9SlQzexLbaw9DW4jCnl6Qo+n4JCTCos+12MEeh73c2HG5
xPEN5S3uxa35U1rY9axyoeBRgw1k2lX9yPfVSK1MY5HE+TQAH7qryIiCGxRrz2OU
EfMm+Jn3YqmROFYnO4vpwN6uOEzBOuhW88xZltMCAwEAAaOCAnUwggJxMB0GA1Ud
DgQWBBTqekqFyMp1jspm9sOIQKVQMHpO+DAfBgNVHSMEGDAWgBQNhxQr3Cs/DQhI
oNgAtpMLGrs0vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0RZY1VLOXdyUHcwSVNLRFlBTGFUQ3hxN05Mdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODgvOGY4Y2MwLWY2OTMtNDIxYy1iYzU0LWEzMTcwOGQ0MDM5MS8x
LzZucEtoY2pLZFk3S1p2YkRpRUNsVURCNlR2Zy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODgv
OGY4Y2MwLWY2OTMtNDIxYy1iYzU0LWEzMTcwOGQ0MDM5MS8xL0RZY1VLOXdyUHcw
SVNLRFlBTGFUQ3hxN05Mdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
igYIKwYBBQUHAQcBAf8EezB5MGgEAgABMGIDBAMfrIgDBARQXOADBABSdeUDBABS
dfQDBABVWtMDBABVWt8DBARcPLADBAJcd9wDBAOAAKgDBAG5JtADBAK5J8QDBAHB
bwADBALBbzAwDAMEB9RugAMEAtRumAMEBdkUoDANBAIAAjAHAwUAKgEGsDANBgkq
hkiG9w0BAQsFAAOCAQEAI4NJUv+oiiASmghaZkk8T8he3aMyfMH7mVeMWYFlOGcZ
DWsAqEa739IB5Z+LD2ABzfmkRqCr7EwtWt0PZKIWgAFXhqpri8bt+VumLAxNojRk
Qvj8zYt90CSqthw/uou4ov8uLVNPYV7JDPsX0wxb7JvoF8D7kKNMpVTaCMOVrYvn
AV9+nCFyfPjhxOePmG9/u1UjzsIZVhlPICCY29HvR4dGpxYCK2fV3xV5cxxFcpAA
rc+FEJ+XU1V42DEY2P6wmuUf+3uR0jMhhpodVAIwSSZNpUmtcx7grm5K5dKYFtaz
5yzmQVZobeSpr2+7bDrMS6+nMLe7+WTPX0jYg0w4mQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:01 2023 by rpki-client on console-fra.rpki-client.org