Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/QJzFflI_7DbPLW35Hu7aORGEyO4.roa
File: QJzFflI_7DbPLW35Hu7aORGEyO4.roa (raw, json)
Hash identifier: QB9XF84OVpHM4OSwmJoK9DegNvspgeYcvdoiMU+2/tM=
Subject key identifier: 40:9C:C5:7E:52:3F:EC:36:CF:2D:6D:F9:1E:EE:DA:39:11:84:C8:EE
Certificate issuer: /CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Certificate serial: 018483FAD3DB20D0777427F10A8B221AD9E6
Authority key identifier: 99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/QJzFflI_7DbPLW35Hu7aORGEyO4.roa
Signing time: Thu 17 Nov 2022 05:06:04 +0000
ROA not before: Thu 17 Nov 2022 05:06:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13335
IP address blocks: 188.114.98.0/24 maxlen: 24
188.114.97.0/24 maxlen: 24
188.114.96.0/24 maxlen: 24
188.114.104.0/24 maxlen: 24
188.114.100.0/24 maxlen: 24
188.114.99.0/24 maxlen: 24
188.114.101.0/24 maxlen: 24
188.114.103.0/24 maxlen: 24
188.114.102.0/24 maxlen: 24
188.114.111.0/24 maxlen: 24
188.114.106.0/23 maxlen: 23
188.114.108.0/24 maxlen: 24
188.114.110.0/24 maxlen: 24
188.114.109.0/24 maxlen: 24
141.101.67.0/24 maxlen: 24
141.101.66.0/24 maxlen: 24
141.101.69.0/24 maxlen: 24
141.101.68.0/24 maxlen: 24
141.101.71.0/24 maxlen: 24
141.101.70.0/24 maxlen: 24
141.101.65.0/24 maxlen: 24
141.101.74.0/24 maxlen: 24
141.101.73.0/24 maxlen: 24
141.101.76.0/23 maxlen: 23
141.101.75.0/24 maxlen: 24
141.101.72.0/24 maxlen: 24
141.101.83.0/24 maxlen: 24
141.101.82.0/24 maxlen: 24
141.101.84.0/24 maxlen: 24
141.101.85.0/24 maxlen: 24
141.101.88.0/22 maxlen: 22
141.101.87.0/24 maxlen: 24
141.101.90.0/24 maxlen: 24
141.101.86.0/24 maxlen: 24
141.101.95.0/24 maxlen: 24
141.101.94.0/24 maxlen: 24
141.101.97.0/24 maxlen: 24
141.101.96.0/24 maxlen: 24
141.101.98.0/24 maxlen: 24
141.101.93.0/24 maxlen: 24
141.101.92.0/24 maxlen: 24
141.101.104.0/24 maxlen: 24
141.101.105.0/24 maxlen: 24
141.101.100.0/22 maxlen: 22
141.101.99.0/24 maxlen: 24
141.101.109.0/24 maxlen: 24
141.101.108.0/24 maxlen: 24
141.101.111.0/24 maxlen: 24
141.101.110.0/24 maxlen: 24
141.101.112.0/23 maxlen: 23
141.101.107.0/24 maxlen: 24
141.101.106.0/24 maxlen: 24
141.101.112.0/20 maxlen: 20
141.101.114.0/23 maxlen: 23
141.101.64.0/24 maxlen: 24
141.101.120.0/22 maxlen: 22
2a06:98c0:1c04::/48 maxlen: 48
2a06:98c1:310b::/48 maxlen: 48
2a06:98c1:3101::/48 maxlen: 48
2a06:98c1:50::/45 maxlen: 45
2a06:98c0:1c0e::/48 maxlen: 48
2a06:98c1:3108::/48 maxlen: 48
2a06:98c1:3123::/48 maxlen: 48
2a06:98c1:310f::/48 maxlen: 48
2a06:98c0:1c01::/48 maxlen: 48
2a06:98c1:3200::/48 maxlen: 48
2a06:98c1:3100::/48 maxlen: 48
2a06:98c0:1c0f::/48 maxlen: 48
2a06:98c0:1c05::/48 maxlen: 48
2a06:98c0:1c08::/48 maxlen: 48
2a06:98c1:3122::/48 maxlen: 48
2a06:98c1:3107::/48 maxlen: 48
2a06:98c1:58::/48 maxlen: 48
2a06:98c0:1c0c::/48 maxlen: 48
2a06:98c1:310e::/48 maxlen: 48
2a06:98c0:1c02::/48 maxlen: 48
2a06:98c1:3104::/48 maxlen: 48
2a06:98c1:3106::/48 maxlen: 48
2a06:98c1:3121::/48 maxlen: 48
2a06:98c0:1c09::/48 maxlen: 48
2a06:98c1:310d::/48 maxlen: 48
2a06:98c1:3103::/48 maxlen: 48
2a06:98c0:1c0d::/48 maxlen: 48
2a06:98c1:54::/48 maxlen: 48
2a06:98c0:1c10::/48 maxlen: 48
2a06:98c1:310a::/48 maxlen: 48
2a06:98c0:1c06::/48 maxlen: 48
2a06:98c1:3120::/48 maxlen: 48
2a06:98c1:3105::/48 maxlen: 48
2a06:98c0:1c0a::/48 maxlen: 48
2a06:98c1:310c::/48 maxlen: 48
2a06:98c0:1c03::/48 maxlen: 48
2a06:98c1:3102::/48 maxlen: 48
2a06:98c0:1c07::/48 maxlen: 48
2a06:98c0:1c00::/48 maxlen: 48
2a06:98c1:3109::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:83:fa:d3:db:20:d0:77:74:27:f1:0a:8b:22:1a:d9:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Validity
Not Before: Nov 17 05:06:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=409cc57e523fec36cf2d6df91eeeda391184c8ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ea:e3:1d:2c:70:85:6f:06:78:41:02:c0:07:
ab:f6:23:01:f1:7f:ba:da:4c:fa:4b:ef:cb:7a:de:
d4:1f:f7:6a:3a:97:d3:0b:24:b5:95:03:18:9e:51:
65:88:cb:54:88:1b:08:ee:e7:96:a5:45:a4:4c:28:
fb:02:9d:ef:19:5e:09:07:8e:5f:ee:28:9a:a3:af:
21:44:f2:6a:01:1b:0c:4d:54:16:27:d5:0d:2e:1d:
2b:13:53:97:00:0e:2c:26:7a:0f:b4:83:46:e7:33:
74:eb:6d:2d:02:8e:80:3d:4b:96:47:32:34:40:0b:
70:fa:c9:a0:75:d7:85:39:b1:47:38:bb:bb:62:58:
6d:13:81:ef:3f:79:03:44:0b:c3:48:01:c3:96:14:
d4:32:55:de:1c:c6:73:3c:7a:7b:65:e4:49:90:7c:
fa:d7:3f:90:e9:77:a2:64:fb:de:3f:74:a0:69:bb:
f3:c3:51:86:eb:79:45:85:f1:83:5b:18:1b:e4:ab:
9f:75:74:db:21:db:1c:8c:46:8e:f2:80:e4:f5:e4:
04:5b:47:9a:10:bd:5c:cd:ea:bf:3f:bf:e6:b5:f4:
c6:d9:7c:b8:39:7f:1e:9f:26:23:0d:63:d2:94:ce:
4e:26:67:d8:e9:39:40:ce:4f:38:c1:ac:30:7e:4e:
f9:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:9C:C5:7E:52:3F:EC:36:CF:2D:6D:F9:1E:EE:DA:39:11:84:C8:EE
X509v3 Authority Key Identifier:
keyid:99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/QJzFflI_7DbPLW35Hu7aORGEyO4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.64.0-141.101.77.255
141.101.82.0-141.101.127.255
188.114.96.0-188.114.104.255
188.114.106.0-188.114.111.255
IPv6:
2a06:98c0:1c00::-2a06:98c0:1c0a:ffff:ffff:ffff:ffff:ffff
2a06:98c0:1c0c::-2a06:98c0:1c10:ffff:ffff:ffff:ffff:ffff
2a06:98c1:50::-2a06:98c1:58:ffff:ffff:ffff:ffff:ffff
2a06:98c1:3100::/44
2a06:98c1:3120::/46
2a06:98c1:3200::/48
Signature Algorithm: sha256WithRSAEncryption
3f:47:be:f9:6c:69:3b:b1:5f:9a:d0:56:ce:18:eb:fa:44:f0:
75:2d:e3:c5:a5:12:1b:d1:fd:28:7c:a2:a5:a1:87:7d:6c:ad:
e4:ec:20:ed:10:52:86:46:5c:b5:4b:ed:4d:75:c9:93:8e:24:
9e:bf:5c:5f:1b:f3:00:b4:ee:cf:cc:a2:f8:3c:df:7b:91:0e:
57:a6:18:45:ee:8e:24:ca:2c:fd:17:a9:2c:00:c4:df:aa:1b:
84:10:0d:fc:af:67:e2:bb:fd:b2:c1:4b:4c:bf:fe:58:e7:29:
ca:13:fa:85:c2:1f:12:01:39:1f:ac:cb:24:49:89:8b:d5:dd:
52:60:cc:27:99:1a:9b:4a:58:f6:ca:53:bd:cc:ae:a2:e8:11:
c9:1e:73:46:f1:82:98:61:5d:8f:c3:bc:32:95:b6:cb:3a:d7:
81:c5:d7:a2:8f:63:62:b4:19:98:91:36:ff:b5:9a:e7:0a:f4:
b4:a0:8b:02:50:c1:ea:cf:8c:a5:91:a2:5b:4d:85:4f:c4:bb:
f4:53:75:b7:cd:48:c1:01:9e:91:96:63:e0:2f:f8:c7:f1:97:
e5:08:66:27:ee:4a:a4:f9:22:0d:1b:0b:27:9e:0d:2f:26:f4:
8b:27:e2:d1:5e:45:78:83:00:8a:21:03:96:68:67:b1:74:0c:
94:3b:7c:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:48 2024 by rpki-client on console-ams.rpki-client.org