Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/EU7aOrGI-aOLDAVT8xH117xY-eI.roa
File: EU7aOrGI-aOLDAVT8xH117xY-eI.roa (raw, json)
Hash identifier: hS/i98D5/WrgglOCGUTjfeBxreEgz9xizVG/LHB0vVw=
Subject key identifier: 11:4E:DA:3A:B1:88:F9:A3:8B:0C:05:53:F3:11:F5:D7:BC:58:F9:E2
Certificate issuer: /CN=24147c8b3f37850e9f9074993845c4e069f8efe2
Certificate serial: 01853A29C81D7DF90FD8C95A17456F42DE6D
Authority key identifier: 24:14:7C:8B:3F:37:85:0E:9F:90:74:99:38:45:C4:E0:69:F8:EF:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JBR8iz83hQ6fkHSZOEXE4Gn47-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/EU7aOrGI-aOLDAVT8xH117xY-eI.roa
Signing time: Thu 22 Dec 2022 14:08:14 +0000
ROA not before: Thu 22 Dec 2022 14:08:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6830
IP address blocks: 83.144.64.0/19 maxlen: 19
83.144.64.0/18 maxlen: 18
31.178.0.0/16 maxlen: 16
83.144.96.0/19 maxlen: 19
31.178.0.0/15 maxlen: 15
91.150.192.0/20 maxlen: 20
91.150.192.0/19 maxlen: 19
91.150.208.0/20 maxlen: 20
188.93.164.0/22 maxlen: 22
188.93.160.0/21 maxlen: 21
188.93.160.0/22 maxlen: 22
84.10.0.0/17 maxlen: 17
213.134.160.0/20 maxlen: 20
213.134.160.0/19 maxlen: 19
84.10.0.0/16 maxlen: 16
213.134.176.0/20 maxlen: 20
95.158.64.0/18 maxlen: 18
85.222.64.0/18 maxlen: 18
85.222.0.0/18 maxlen: 18
85.222.0.0/17 maxlen: 17
81.18.192.0/20 maxlen: 20
81.18.192.0/21 maxlen: 21
194.187.40.0/22 maxlen: 22
81.18.200.0/21 maxlen: 21
81.18.208.0/21 maxlen: 21
81.18.208.0/20 maxlen: 20
81.18.216.0/21 maxlen: 21
212.76.32.0/20 maxlen: 20
212.76.32.0/19 maxlen: 19
212.76.48.0/20 maxlen: 20
31.187.0.0/18 maxlen: 18
31.187.0.0/19 maxlen: 19
31.187.32.0/19 maxlen: 19
178.73.32.0/19 maxlen: 19
178.73.0.0/18 maxlen: 18
178.73.0.0/19 maxlen: 19
94.75.64.0/19 maxlen: 19
94.75.64.0/18 maxlen: 18
89.72.0.0/13 maxlen: 13
31.186.192.0/19 maxlen: 19
87.207.0.0/16 maxlen: 16
92.244.32.0/20 maxlen: 20
92.244.32.0/19 maxlen: 19
92.244.48.0/20 maxlen: 20
94.75.96.0/19 maxlen: 19
94.172.0.0/17 maxlen: 17
77.236.0.0/20 maxlen: 20
77.236.0.0/19 maxlen: 19
89.64.0.0/13 maxlen: 13
94.172.0.0/16 maxlen: 16
77.236.16.0/20 maxlen: 20
84.10.128.0/17 maxlen: 17
94.172.128.0/17 maxlen: 17
89.64.0.0/12 maxlen: 12
31.179.0.0/16 maxlen: 16
83.175.176.0/20 maxlen: 20
83.175.176.0/21 maxlen: 21
83.175.184.0/21 maxlen: 21
87.206.0.0/16 maxlen: 16
87.206.0.0/15 maxlen: 15
2001:4050::/32 maxlen: 32
2001:4050::/33 maxlen: 33
2001:4050:8000::/33 maxlen: 33
2a02:a300::/28 maxlen: 28
2a02:a310::/28 maxlen: 28
2a02:a300::/27 maxlen: 27
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:3a:29:c8:1d:7d:f9:0f:d8:c9:5a:17:45:6f:42:de:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24147c8b3f37850e9f9074993845c4e069f8efe2
Validity
Not Before: Dec 22 14:08:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=114eda3ab188f9a38b0c0553f311f5d7bc58f9e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:19:d9:b8:89:f1:68:55:47:ef:06:a1:52:f0:
71:9f:dc:6d:99:5c:f7:12:4d:a1:d4:25:d2:50:cd:
05:9e:5b:53:7f:50:5a:53:78:4c:49:8c:c9:34:3e:
f7:cb:58:07:c6:10:c2:2e:37:d4:db:93:95:83:e5:
bb:3a:23:69:a3:04:41:f4:f4:b3:b6:55:ab:d6:c4:
eb:17:3a:6a:ea:3b:f3:5a:1b:0e:e2:64:e0:97:46:
85:e2:02:06:18:72:21:51:4b:e8:c5:70:ac:98:85:
9c:4b:92:ff:1b:e7:a4:79:cc:09:36:85:6b:16:e4:
88:d8:d3:82:69:b1:16:ff:8e:5e:d3:dc:f9:e1:b8:
cf:9f:b0:58:1a:23:07:22:9a:81:68:92:a2:30:2c:
dd:c5:e9:e5:c7:1f:86:60:11:14:6b:b9:e2:33:35:
fd:0e:80:a9:18:bb:b9:37:e7:2c:98:7e:ac:c3:db:
86:1a:42:fd:c3:e9:8d:51:63:e3:ee:23:01:61:2a:
c0:52:ab:40:82:19:cb:65:7c:ca:bb:81:4f:65:71:
08:a3:25:ff:d3:dc:fa:c2:3f:ae:d7:a6:17:88:02:
79:2c:e1:05:67:28:e0:94:31:ac:a3:99:f5:69:10:
01:ef:42:7e:cd:da:82:a9:a0:04:14:b5:0a:95:8a:
a0:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:4E:DA:3A:B1:88:F9:A3:8B:0C:05:53:F3:11:F5:D7:BC:58:F9:E2
X509v3 Authority Key Identifier:
keyid:24:14:7C:8B:3F:37:85:0E:9F:90:74:99:38:45:C4:E0:69:F8:EF:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JBR8iz83hQ6fkHSZOEXE4Gn47-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/EU7aOrGI-aOLDAVT8xH117xY-eI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/JBR8iz83hQ6fkHSZOEXE4Gn47-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.178.0.0/15
31.186.192.0/19
31.187.0.0/18
77.236.0.0/19
81.18.192.0/19
83.144.64.0/18
83.175.176.0/20
84.10.0.0/16
85.222.0.0/17
87.206.0.0/15
89.64.0.0/12
91.150.192.0/19
92.244.32.0/19
94.75.64.0/18
94.172.0.0/16
95.158.64.0/18
178.73.0.0/18
188.93.160.0/21
194.187.40.0/22
212.76.32.0/19
213.134.160.0/19
IPv6:
2001:4050::/32
2a02:a300::/27
Signature Algorithm: sha256WithRSAEncryption
4d:f4:b8:e0:1e:61:64:48:6c:ab:1c:c0:32:86:34:0b:f2:ee:
34:00:21:34:bb:2e:43:05:1d:1e:5c:01:17:db:cd:87:6d:fa:
86:04:ef:18:e2:31:77:57:8c:23:07:75:ab:2f:c3:3c:91:ec:
2e:21:59:35:50:e8:c2:29:fa:29:f1:a8:df:63:2b:c1:f2:4b:
20:71:9c:88:2a:49:23:a8:5b:4e:3e:ec:f2:3b:43:fc:8e:41:
dd:aa:56:c4:09:b4:c2:99:6d:ed:60:dc:f1:7a:29:c4:5d:98:
38:e5:1c:9d:93:70:21:63:57:4d:b6:ef:4a:a3:7a:c3:4c:aa:
c2:ac:db:46:12:da:55:f0:5b:b3:4b:ed:40:c8:ba:c8:35:f2:
ab:88:66:9c:9d:c8:c6:6f:d2:f4:7e:74:d2:11:c8:3f:1d:0b:
45:b9:19:7c:f2:f7:ff:52:9d:ee:f9:fa:69:ab:80:e2:71:4e:
c8:29:f2:3b:ee:0a:76:ef:77:6f:45:5e:f1:74:fd:c2:7b:bf:
14:81:c0:5c:6e:10:58:fd:28:65:51:da:3a:77:21:8e:82:a6:
e6:45:21:dc:6c:5e:4d:4a:8a:3e:1e:78:f5:91:8e:75:00:66:
58:50:26:4e:49:4a:b7:5f:e4:e0:27:c2:71:f6:4c:d3:22:3f:
0d:88:dc:8a
-----BEGIN CERTIFICATE-----
MIIFiTCCBHGgAwIBAgISAYU6KcgdffkP2MlaF0VvQt5tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI0MTQ3YzhiM2YzNzg1MGU5ZjkwNzQ5OTM4NDVjNGUwNjlm
OGVmZTIwHhcNMjIxMjIyMTQwODE0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMTRlZGEzYWIxODhmOWEzOGIwYzA1NTNmMzExZjVkN2JjNThmOWUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsBnZuInxaFVH7wahUvBxn9xtmVz3
Ek2h1CXSUM0FnltTf1BaU3hMSYzJND73y1gHxhDCLjfU25OVg+W7OiNpowRB9PSz
tlWr1sTrFzpq6jvzWhsO4mTgl0aF4gIGGHIhUUvoxXCsmIWcS5L/G+ekecwJNoVr
FuSI2NOCabEW/45e09z54bjPn7BYGiMHIpqBaJKiMCzdxenlxx+GYBEUa7niMzX9
DoCpGLu5N+csmH6sw9uGGkL9w+mNUWPj7iMBYSrAUqtAghnLZXzKu4FPZXEIoyX/
09z6wj+u16YXiAJ5LOEFZyjglDGso5n1aRAB70J+zdqCqaAEFLUKlYqgAwIDAQAB
o4IClTCCApEwHQYDVR0OBBYEFBFO2jqxiPmjiwwFU/MR9de8WPniMB8GA1UdIwQY
MBaAFCQUfIs/N4UOn5B0mThFxOBp+O/iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSkJSOGl6ODNoUTZma0hTWk9FWEU0R240Ny1JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS84ZGE1ZmUtZjQwNS00Y2UwLWIyZDEt
YjM1MzViNGNhNTBmLzEvRVU3YU9yR0ktYU9MREFWVDh4SDExN3hZLWVJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS84ZGE1ZmUtZjQwNS00Y2UwLWIyZDEtYjM1MzViNGNhNTBm
LzEvSkJSOGl6ODNoUTZma0hTWk9FWEU0R240Ny1JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGqBggrBgEFBQcBBwEB/wSBmjCBlzB/BAIAATB5AwMBH7ID
BAUfusADBAYfuwADBAVN7AADBAVREsADBAZTkEADBARTr7ADAwBUCgMEB1XeAAMD
AVfOAwMEWUADBAVblsADBAVc9CADBAZeS0ADAwBerAMEBl+eQAMEBrJJAAMEA7xd
oAMEAsK7KAMEBdRMIAMEBdWGoDAUBAIAAjAOAwUAIAFAUAMFBSoCowAwDQYJKoZI
hvcNAQELBQADggEBAE30uOAeYWRIbKscwDKGNAvy7jQAITS7LkMFHR5cARfbzYdt
+oYE7xjiMXdXjCMHdasvwzyR7C4hWTVQ6MIp+inxqN9jK8HySyBxnIgqSSOoW04+
7PI7Q/yOQd2qVsQJtMKZbe1g3PF6KcRdmDjlHJ2TcCFjV02270qjesNMqsKs20YS
2lXwW7NL7UDIusg18quIZpydyMZv0vR+dNIRyD8dC0W5GXzy9/9Sne75+mmrgOJx
Tsgp8jvuCnbvd29FXvF0/cJ7vxSBwFxuEFj9KGVR2jp3IY6CpuZFIdxsXk1Kij4e
ePWRjnUAZlhQJk5JSrdf5OAnwnH2TNMiPw2I3Io=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:02 2024 by rpki-client on console-fra.rpki-client.org