Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/r18Jf1rLW1w6d-3ktABJ8KQMFU4.roa
File: r18Jf1rLW1w6d-3ktABJ8KQMFU4.roa (raw, json)
Hash identifier: 81YNWDdO+wjNDlFLQT2/Fup5z8KgPCGn02Si+FKqV+4=
Subject key identifier: AF:5F:09:7F:5A:CB:5B:5C:3A:77:ED:E4:B4:00:49:F0:A4:0C:15:4E
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 1B5B938A
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/r18Jf1rLW1w6d-3ktABJ8KQMFU4.roa
Signing time: Sat 01 Jan 2022 10:02:31 +0000
ROA not before: Sat 01 Jan 2022 10:02:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15555
IP address blocks: 81.182.245.0/24 maxlen: 24
84.1.30.0/23 maxlen: 23
84.1.32.0/23 maxlen: 23
84.2.224.0/21 maxlen: 21
84.2.226.0/24 maxlen: 24
195.228.156.0/23 maxlen: 23
195.228.82.0/23 maxlen: 23
195.228.80.0/23 maxlen: 23
62.201.96.0/21 maxlen: 21
194.149.58.0/24 maxlen: 24
188.36.224.0/23 maxlen: 23
195.228.224.0/23 maxlen: 23
188.36.228.0/24 maxlen: 24
188.36.227.0/24 maxlen: 24
195.228.236.0/24 maxlen: 24
195.228.240.0/24 maxlen: 24
195.228.240.0/20 maxlen: 20
195.228.243.0/24 maxlen: 24
195.228.244.0/24 maxlen: 24
188.6.167.0/24 maxlen: 24
195.228.249.0/24 maxlen: 24
195.228.250.0/24 maxlen: 24
195.228.251.0/24 maxlen: 24
195.228.248.0/24 maxlen: 24
195.228.253.0/24 maxlen: 24
195.228.163.0/24 maxlen: 24
195.228.203.0/24 maxlen: 24
84.1.118.0/23 maxlen: 23
188.6.252.0/23 maxlen: 23
188.6.250.0/23 maxlen: 23
81.183.232.0/23 maxlen: 23
81.183.238.0/23 maxlen: 23
80.249.160.0/20 maxlen: 20
84.2.40.0/23 maxlen: 23
84.2.44.0/23 maxlen: 23
84.2.41.0/24 maxlen: 24
84.2.46.0/23 maxlen: 23
84.2.56.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 458986378 (0x1b5b938a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 1 10:02:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af5f097f5acb5b5c3a77ede4b40049f0a40c154e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:60:92:f8:4d:c7:25:c9:3c:81:c5:04:06:54:
e6:41:36:13:1b:74:50:a2:9c:ed:36:0d:6d:e3:f8:
93:90:50:7b:97:61:f3:cd:34:3f:6e:71:55:b7:78:
a9:47:86:77:63:1e:ea:61:5d:87:79:5c:d8:ee:c2:
b8:3b:21:90:1d:0d:aa:cc:f7:46:50:b6:bb:0c:27:
75:5f:76:b7:c3:b6:4e:6b:a6:98:86:1b:fa:5f:2a:
aa:88:ab:11:63:33:d1:36:07:54:a4:4d:09:33:c2:
e1:61:4d:bd:94:c8:36:a5:df:27:93:b2:f3:64:a7:
4a:86:85:4f:4a:37:e4:4a:71:ef:94:fd:00:db:a7:
c7:91:dc:47:97:57:9e:8e:7f:c3:1f:4b:bf:ca:c5:
f1:ef:a2:4c:53:5a:fe:0d:e4:35:0c:12:dd:58:59:
15:97:c2:9f:85:8d:d1:54:52:2f:5b:80:4f:08:10:
4a:7a:a1:12:f2:b6:99:d9:32:f7:19:9c:6b:af:91:
e0:9f:49:7f:56:c2:fe:d0:a1:84:27:07:34:9f:ea:
77:91:c5:c8:f6:42:7b:48:f4:0b:ed:9d:a2:9c:09:
f7:58:07:07:a1:b5:46:4d:d4:03:00:aa:58:7b:79:
e2:8d:c8:c4:74:19:48:45:32:b9:9b:a2:dd:42:ac:
e8:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:5F:09:7F:5A:CB:5B:5C:3A:77:ED:E4:B4:00:49:F0:A4:0C:15:4E
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/r18Jf1rLW1w6d-3ktABJ8KQMFU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.201.96.0/21
80.249.160.0/20
81.182.245.0/24
81.183.232.0/23
81.183.238.0/23
84.1.30.0-84.1.33.255
84.1.118.0/23
84.2.40.0/23
84.2.44.0/22
84.2.56.0/23
84.2.224.0/21
188.6.167.0/24
188.6.250.0-188.6.253.255
188.36.224.0/23
188.36.227.0-188.36.228.255
194.149.58.0/24
195.228.80.0/22
195.228.156.0/23
195.228.163.0/24
195.228.203.0/24
195.228.224.0/23
195.228.236.0/24
195.228.240.0/20
Signature Algorithm: sha256WithRSAEncryption
79:f5:e8:7a:86:5f:df:39:a7:9b:61:8f:a0:4c:d2:0e:8c:b8:
d8:9b:a5:3c:ba:19:5a:73:cd:c2:d2:ee:a0:5e:32:af:d0:85:
2d:b9:19:ae:77:8e:81:24:2a:66:bf:f1:2b:e9:86:a7:08:2f:
bf:b4:99:4f:a1:c0:ab:45:c7:6f:78:a8:45:19:03:11:b1:d8:
ae:bc:8f:38:d5:ef:dc:26:19:46:95:2c:60:d2:48:c1:de:db:
81:ee:25:3b:f8:d8:36:17:28:ff:57:54:0e:cc:81:da:dc:b7:
59:81:97:6a:64:9d:9b:b0:fc:25:50:b2:ce:a8:2c:49:13:c4:
72:4e:08:17:7a:d7:18:8b:83:78:87:11:1f:2c:3f:3f:5e:7a:
c0:64:8c:99:4e:07:16:af:2f:d6:3b:1c:36:39:57:56:5d:93:
54:7e:18:70:73:b4:7e:cd:5e:b9:6a:d1:c7:ae:9e:9a:52:7a:
ca:76:db:32:10:f7:bd:08:fb:9c:88:93:75:f3:6c:7d:26:e2:
2e:c2:28:e6:6e:90:a3:1d:d0:bf:e9:a9:b8:0d:3d:eb:4d:db:
79:11:ee:95:26:06:dd:8c:df:49:a3:68:10:e1:97:45:1e:e1:
65:07:ef:b5:e1:96:65:5c:46:be:01:29:f6:67:ed:39:a1:73:
16:f9:c2:03
-----BEGIN CERTIFICATE-----
MIIFkDCCBHigAwIBAgIEG1uTijANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
MDJkYWM2MDVmNDY1OTcxOGMwYTE1ZTFmNzMyY2JkNGY0OGFhZTdiMB4XDTIyMDEw
MTEwMDIzMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWY1ZjA5N2Y1YWNi
NWI1YzNhNzdlZGU0YjQwMDQ5ZjBhNDBjMTU0ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALNgkvhNxyXJPIHFBAZU5kE2Ext0UKKc7TYNbeP4k5BQe5dh
8800P25xVbd4qUeGd2Me6mFdh3lc2O7CuDshkB0Nqsz3RlC2uwwndV92t8O2Tmum
mIYb+l8qqoirEWMz0TYHVKRNCTPC4WFNvZTINqXfJ5Oy82SnSoaFT0o35Epx75T9
ANunx5HcR5dXno5/wx9Lv8rF8e+iTFNa/g3kNQwS3VhZFZfCn4WN0VRSL1uATwgQ
SnqhEvK2mdky9xmca6+R4J9Jf1bC/tChhCcHNJ/qd5HFyPZCe0j0C+2dopwJ91gH
B6G1Rk3UAwCqWHt54o3IxHQZSEUyuZui3UKs6OUCAwEAAaOCAqowggKmMB0GA1Ud
DgQWBBSvXwl/WstbXDp37eS0AEnwpAwVTjAfBgNVHSMEGDAWgBTwLaxgX0ZZcYwK
FeH3MsvU9IquezAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzhDMnNZRjlHV1hHTUNoWGg5ekxMMVBTS3Jucy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGQvZTkwOTc2LTNkZDEtNDcxNi1iYmY2LTI5MmFlNDZlNjMwMi8x
L3IxOEpmMXJMVzF3NmQtM2t0QUJKOEtRTUZVNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGQv
ZTkwOTc2LTNkZDEtNDcxNi1iYmY2LTI5MmFlNDZlNjMwMi8xLzhDMnNZRjlHV1hH
TUNoWGg5ekxMMVBTS3Jucy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
vwYIKwYBBQUHAQcBAf8Ega8wgawwgakEAgABMIGiAwQDPslgAwQEUPmgAwQAUbb1
AwQBUbfoAwQBUbfuMAwDBAFUAR4DBAFUASADBAFUAXYDBAFUAigDBAJUAiwDBAFU
AjgDBANUAuADBAC8BqcwDAMEAbwG+gMEAbwG/AMEAbwk4DAMAwQAvCTjAwQAvCTk
AwQAwpU6AwQCw+RQAwQBw+ScAwQAw+SjAwQAw+TLAwQBw+TgAwQAw+TsAwQEw+Tw
MA0GCSqGSIb3DQEBCwUAA4IBAQB59eh6hl/fOaebYY+gTNIOjLjYm6U8uhlac83C
0u6gXjKv0IUtuRmud46BJCpmv/Er6YanCC+/tJlPocCrRcdveKhFGQMRsdiuvI84
1e/cJhlGlSxg0kjB3tuB7iU7+Ng2Fyj/V1QOzIHa3LdZgZdqZJ2bsPwlULLOqCxJ
E8RyTggXetcYi4N4hxEfLD8/XnrAZIyZTgcWry/WOxw2OVdWXZNUfhhwc7R+zV65
atHHrp6aUnrKdtsyEPe9CPuciJN182x9JuIuwijmbpCjHdC/6am4DT3rTdt5Ee6V
JgbdjN9Jo2gQ4ZdFHuFlB++14ZZlXEa+ASn2Z+05oXMW+cID
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:17 2023 by rpki-client on console-fra.rpki-client.org