Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/VCtT-8oFXt-zk2L13RSyvj-6DpM.roa
File: VCtT-8oFXt-zk2L13RSyvj-6DpM.roa (raw, json)
Hash identifier: YvsOLzBaqLPK9ExkTjqJr82PDFFI4JGw1aRAuj7Fj1E=
Subject key identifier: 54:2B:53:FB:CA:05:5E:DF:B3:93:62:F5:DD:14:B2:BE:3F:BA:0E:93
Certificate issuer: /CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Certificate serial: 15CAF32D
Authority key identifier: 99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/VCtT-8oFXt-zk2L13RSyvj-6DpM.roa
Signing time: Tue 28 Jun 2022 17:19:57 +0000
ROA not before: Tue 28 Jun 2022 17:19:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13335
IP address blocks: 188.114.98.0/24 maxlen: 24
188.114.97.0/24 maxlen: 24
188.114.96.0/24 maxlen: 24
188.114.104.0/24 maxlen: 24
188.114.100.0/24 maxlen: 24
188.114.99.0/24 maxlen: 24
188.114.101.0/24 maxlen: 24
188.114.103.0/24 maxlen: 24
188.114.102.0/24 maxlen: 24
188.114.111.0/24 maxlen: 24
188.114.106.0/23 maxlen: 23
188.114.108.0/24 maxlen: 24
188.114.110.0/24 maxlen: 24
188.114.109.0/24 maxlen: 24
141.101.67.0/24 maxlen: 24
141.101.66.0/24 maxlen: 24
141.101.69.0/24 maxlen: 24
141.101.68.0/24 maxlen: 24
141.101.71.0/24 maxlen: 24
141.101.70.0/24 maxlen: 24
141.101.65.0/24 maxlen: 24
141.101.74.0/24 maxlen: 24
141.101.73.0/24 maxlen: 24
141.101.76.0/23 maxlen: 23
141.101.75.0/24 maxlen: 24
141.101.72.0/24 maxlen: 24
141.101.83.0/24 maxlen: 24
141.101.82.0/24 maxlen: 24
141.101.84.0/24 maxlen: 24
141.101.85.0/24 maxlen: 24
141.101.88.0/22 maxlen: 22
141.101.90.0/24 maxlen: 24
141.101.95.0/24 maxlen: 24
141.101.94.0/24 maxlen: 24
141.101.97.0/24 maxlen: 24
141.101.96.0/24 maxlen: 24
141.101.98.0/24 maxlen: 24
141.101.104.0/24 maxlen: 24
141.101.105.0/24 maxlen: 24
141.101.100.0/22 maxlen: 22
141.101.99.0/24 maxlen: 24
141.101.109.0/24 maxlen: 24
141.101.108.0/24 maxlen: 24
141.101.111.0/24 maxlen: 24
141.101.110.0/24 maxlen: 24
141.101.112.0/23 maxlen: 23
141.101.107.0/24 maxlen: 24
141.101.106.0/24 maxlen: 24
141.101.112.0/20 maxlen: 20
141.101.114.0/23 maxlen: 23
141.101.64.0/24 maxlen: 24
141.101.120.0/22 maxlen: 22
2a06:98c0:1c04::/48 maxlen: 48
2a06:98c1:310b::/48 maxlen: 48
2a06:98c1:3101::/48 maxlen: 48
2a06:98c1:50::/45 maxlen: 45
2a06:98c1:3108::/48 maxlen: 48
2a06:98c1:3123::/48 maxlen: 48
2a06:98c0:1c0b::/48 maxlen: 48
2a06:98c1:310f::/48 maxlen: 48
2a06:98c0:1c01::/48 maxlen: 48
2a06:98c1:3100::/48 maxlen: 48
2a06:98c1:3200::/48 maxlen: 48
2a06:98c0:1c05::/48 maxlen: 48
2a06:98c0:1c08::/48 maxlen: 48
2a06:98c1:3122::/48 maxlen: 48
2a06:98c1:3107::/48 maxlen: 48
2a06:98c1:310e::/48 maxlen: 48
2a06:98c0:1c02::/48 maxlen: 48
2a06:98c1:3104::/48 maxlen: 48
2a06:98c1:3106::/48 maxlen: 48
2a06:98c1:3121::/48 maxlen: 48
2a06:98c1:310d::/48 maxlen: 48
2a06:98c1:3103::/48 maxlen: 48
2a06:98c1:54::/48 maxlen: 48
2a06:98c1:310a::/48 maxlen: 48
2a06:98c0:1c06::/48 maxlen: 48
2a06:98c1:3120::/48 maxlen: 48
2a06:98c1:3105::/48 maxlen: 48
2a06:98c1:310c::/48 maxlen: 48
2a06:98c0:1c03::/48 maxlen: 48
2a06:98c1:3102::/48 maxlen: 48
2a06:98c0:1c07::/48 maxlen: 48
2a06:98c0:1c00::/48 maxlen: 48
2a06:98c1:3109::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 365622061 (0x15caf32d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Validity
Not Before: Jun 28 17:19:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=542b53fbca055edfb39362f5dd14b2be3fba0e93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:22:ae:16:32:d5:31:70:73:c4:11:58:7c:46:
a7:43:17:8e:54:cd:1b:b8:61:95:49:38:05:9d:a5:
ad:1e:af:e7:a6:75:e0:4d:60:8a:be:91:ea:c7:89:
88:83:37:97:49:0c:33:d3:f6:51:f7:6a:3c:c2:52:
dc:38:cc:3a:43:09:48:fa:33:72:27:55:57:d0:08:
d7:c5:38:67:96:7e:fc:ae:23:99:e2:f3:ab:52:93:
3b:6b:31:c9:42:f8:16:68:5d:5a:8e:e1:d6:3b:31:
8d:8d:83:9d:f6:af:36:be:ed:03:56:58:fd:aa:8d:
e5:fb:6a:9f:35:fa:a0:62:24:f1:65:57:ba:8d:ee:
8f:a2:e0:7a:1b:00:e9:49:6f:45:8c:8d:e2:75:e6:
f7:71:4e:6e:64:0e:d8:a9:ef:6e:d2:e3:8a:e6:53:
54:c9:88:46:38:25:6f:68:6b:c1:5c:26:21:f8:c5:
ee:86:fd:f0:06:7b:b5:c7:84:53:48:1a:26:15:57:
c9:0c:78:51:57:cc:88:eb:1a:dd:e2:7c:a9:83:4d:
bd:d5:f8:45:7f:6b:98:da:06:bb:55:36:65:55:9c:
ca:47:bd:f2:1d:c7:cb:56:9a:24:95:59:e8:42:3f:
a9:1b:2a:f0:79:fe:ac:4e:02:4b:b3:f8:e4:8f:e9:
cc:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:2B:53:FB:CA:05:5E:DF:B3:93:62:F5:DD:14:B2:BE:3F:BA:0E:93
X509v3 Authority Key Identifier:
keyid:99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/VCtT-8oFXt-zk2L13RSyvj-6DpM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.64.0-141.101.77.255
141.101.82.0-141.101.85.255
141.101.88.0/22
141.101.94.0-141.101.127.255
188.114.96.0-188.114.104.255
188.114.106.0-188.114.111.255
IPv6:
2a06:98c0:1c00::-2a06:98c0:1c08:ffff:ffff:ffff:ffff:ffff
2a06:98c0:1c0b::/48
2a06:98c1:50::/45
2a06:98c1:3100::/44
2a06:98c1:3120::/46
2a06:98c1:3200::/48
Signature Algorithm: sha256WithRSAEncryption
7c:95:a0:1c:a6:89:18:85:bd:bd:29:c4:ae:88:25:b3:cb:87:
13:23:31:9f:95:cc:43:ad:12:45:3a:05:fa:e0:bc:58:0b:94:
47:11:e9:7a:81:8e:f3:cd:12:b0:9e:f3:ab:3d:9a:c9:48:94:
69:da:51:43:45:7c:84:66:c5:14:c2:b3:9e:35:ad:38:18:dd:
76:14:c2:23:60:81:05:7c:63:66:77:55:6a:cd:1f:14:f4:e3:
93:25:c5:a1:f0:4b:3c:e3:af:82:08:41:1f:9f:13:15:c8:f4:
7c:fc:3d:d4:87:eb:74:92:32:5f:94:dd:15:6f:32:94:a1:c9:
2b:c7:89:6c:54:4c:1b:10:9a:6e:1d:01:4b:59:3b:f6:9c:19:
09:7f:e8:6d:11:f5:d1:bd:8d:66:4b:e9:14:c3:1f:ef:b5:1e:
22:2c:9e:7b:75:01:77:56:46:8f:ff:48:b5:10:93:56:19:06:
59:b3:60:0f:a6:a1:84:4d:02:a2:b7:e6:7a:0e:e1:c2:f6:2d:
13:ec:c5:2f:55:0e:a1:aa:3c:a7:aa:19:7f:71:81:65:92:6f:
07:22:9b:a5:49:ee:7a:a2:a9:ae:26:f2:25:fb:7a:f6:4a:e9:
7a:1a:69:05:81:18:b8:cc:7f:c8:52:7f:a6:f3:94:11:d8:cd:
18:6a:3b:94
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgIEFcrzLTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
OWQ1YmZhZDQ1ZDdjNjVhNmUzNDMwMjg1MDlmZDE4OTJlOTdiOWQwMB4XDTIyMDYy
ODE3MTk1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTQyYjUzZmJjYTA1
NWVkZmIzOTM2MmY1ZGQxNGIyYmUzZmJhMGU5MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKgirhYy1TFwc8QRWHxGp0MXjlTNG7hhlUk4BZ2lrR6v56Z1
4E1gir6R6seJiIM3l0kMM9P2UfdqPMJS3DjMOkMJSPozcidVV9AI18U4Z5Z+/K4j
meLzq1KTO2sxyUL4FmhdWo7h1jsxjY2DnfavNr7tA1ZY/aqN5ftqnzX6oGIk8WVX
uo3uj6LgehsA6UlvRYyN4nXm93FObmQO2KnvbtLjiuZTVMmIRjglb2hrwVwmIfjF
7ob98AZ7tceEU0gaJhVXyQx4UVfMiOsa3eJ8qYNNvdX4RX9rmNoGu1U2ZVWcyke9
8h3Hy1aaJJVZ6EI/qRsq8Hn+rE4CS7P45I/pzBcCAwEAAaOCApowggKWMB0GA1Ud
DgQWBBRUK1P7ygVe37OTYvXdFLK+P7oOkzAfBgNVHSMEGDAWgBSZ1b+tRdfGWm40
MChQn9GJLpe50DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L21kV19yVVhYeGxwdU5EQW9VSl9SaVM2WHVkQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTAvODE3MWUzLTJkMjktNGNiNi04YTk0LTc1NTE4MDljYjczMS8x
L1ZDdFQtOG9GWHQtemsyTDEzUlN5dmotNkRwTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTAv
ODE3MWUzLTJkMjktNGNiNi04YTk0LTc1NTE4MDljYjczMS8xL21kV19yVVhYeGxw
dU5EQW9VSl9SaVM2WHVkQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
rwYIKwYBBQUHAQcBAf8EgZ8wgZwwUgQCAAEwTDAMAwQGjWVAAwQBjWVMMAwDBAGN
ZVIDBAGNZVQDBAKNZVgwDAMEAY1lXgMEB41lADAMAwQFvHJgAwQAvHJoMAwDBAG8
cmoDBAS8cmAwRgQCAAIwQDARAwYCKgaYwBwDBwAqBpjAHAgDBwAqBpjAHAsDBwMq
BpjBAFADBwQqBpjBMQADBwIqBpjBMSADBwAqBpjBMgAwDQYJKoZIhvcNAQELBQAD
ggEBAHyVoBymiRiFvb0pxK6IJbPLhxMjMZ+VzEOtEkU6BfrgvFgLlEcR6XqBjvPN
ErCe86s9mslIlGnaUUNFfIRmxRTCs541rTgY3XYUwiNggQV8Y2Z3VWrNHxT045Ml
xaHwSzzjr4IIQR+fExXI9Hz8PdSH63SSMl+U3RVvMpShySvHiWxUTBsQmm4dAUtZ
O/acGQl/6G0R9dG9jWZL6RTDH++1HiIsnnt1AXdWRo//SLUQk1YZBlmzYA+moYRN
AqK35noO4cL2LRPsxS9VDqGqPKeqGX9xgWWSbwcim6VJ7nqiqa4m8iX7evZK6Xoa
aQWBGLjMf8hSf6bzlBHYzRhqO5Q=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:15 2024 by rpki-client on console-fra.rpki-client.org