Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/i9USjLfNhEr6vaqEKBEbbeibfMk.roa
File: i9USjLfNhEr6vaqEKBEbbeibfMk.roa (raw, json)
Hash identifier: y0bl77B5lhz6tPmZbJYZujcbcXJzjIWFvoy7DoD2gvI=
Subject key identifier: 8B:D5:12:8C:B7:CD:84:4A:FA:BD:AA:84:28:11:1B:6D:E8:9B:7C:C9
Certificate issuer: /CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Certificate serial: 159FCC6F
Authority key identifier: 99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/i9USjLfNhEr6vaqEKBEbbeibfMk.roa
Signing time: Tue 07 Jun 2022 17:36:02 +0000
ROA not before: Tue 07 Jun 2022 17:36:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13335
IP address blocks: 188.114.98.0/24 maxlen: 24
188.114.97.0/24 maxlen: 24
188.114.96.0/24 maxlen: 24
188.114.104.0/24 maxlen: 24
188.114.100.0/24 maxlen: 24
188.114.99.0/24 maxlen: 24
188.114.101.0/24 maxlen: 24
188.114.103.0/24 maxlen: 24
188.114.102.0/24 maxlen: 24
188.114.111.0/24 maxlen: 24
188.114.106.0/23 maxlen: 23
188.114.108.0/24 maxlen: 24
188.114.110.0/24 maxlen: 24
188.114.109.0/24 maxlen: 24
141.101.67.0/24 maxlen: 24
141.101.66.0/24 maxlen: 24
141.101.69.0/24 maxlen: 24
141.101.68.0/24 maxlen: 24
141.101.71.0/24 maxlen: 24
141.101.70.0/24 maxlen: 24
141.101.65.0/24 maxlen: 24
141.101.74.0/24 maxlen: 24
141.101.73.0/24 maxlen: 24
141.101.76.0/23 maxlen: 23
141.101.75.0/24 maxlen: 24
141.101.72.0/24 maxlen: 24
141.101.83.0/24 maxlen: 24
141.101.82.0/24 maxlen: 24
141.101.84.0/24 maxlen: 24
141.101.85.0/24 maxlen: 24
141.101.88.0/22 maxlen: 22
141.101.90.0/24 maxlen: 24
141.101.95.0/24 maxlen: 24
141.101.94.0/24 maxlen: 24
141.101.97.0/24 maxlen: 24
141.101.96.0/24 maxlen: 24
141.101.98.0/24 maxlen: 24
141.101.104.0/24 maxlen: 24
141.101.105.0/24 maxlen: 24
141.101.100.0/22 maxlen: 22
141.101.99.0/24 maxlen: 24
141.101.109.0/24 maxlen: 24
141.101.108.0/24 maxlen: 24
141.101.111.0/24 maxlen: 24
141.101.110.0/24 maxlen: 24
141.101.112.0/23 maxlen: 23
141.101.107.0/24 maxlen: 24
141.101.106.0/24 maxlen: 24
141.101.112.0/20 maxlen: 20
141.101.114.0/23 maxlen: 23
141.101.64.0/24 maxlen: 24
141.101.120.0/22 maxlen: 22
2a06:98c0:1c04::/48 maxlen: 48
2a06:98c1:310b::/48 maxlen: 48
2a06:98c1:3101::/48 maxlen: 48
2a06:98c1:50::/45 maxlen: 45
2a06:98c1:3108::/48 maxlen: 48
2a06:98c1:3123::/48 maxlen: 48
2a06:98c1:310f::/48 maxlen: 48
2a06:98c0:1c01::/48 maxlen: 48
2a06:98c1:3200::/48 maxlen: 48
2a06:98c1:3100::/48 maxlen: 48
2a06:98c0:1c05::/48 maxlen: 48
2a06:98c0:1c08::/48 maxlen: 48
2a06:98c1:3122::/48 maxlen: 48
2a06:98c1:3107::/48 maxlen: 48
2a06:98c1:310e::/48 maxlen: 48
2a06:98c0:1c02::/48 maxlen: 48
2a06:98c1:3104::/48 maxlen: 48
2a06:98c1:3106::/48 maxlen: 48
2a06:98c1:3121::/48 maxlen: 48
2a06:98c1:310d::/48 maxlen: 48
2a06:98c1:3103::/48 maxlen: 48
2a06:98c1:54::/48 maxlen: 48
2a06:98c1:310a::/48 maxlen: 48
2a06:98c0:1c06::/48 maxlen: 48
2a06:98c1:3120::/48 maxlen: 48
2a06:98c1:3105::/48 maxlen: 48
2a06:98c1:310c::/48 maxlen: 48
2a06:98c0:1c03::/48 maxlen: 48
2a06:98c1:3102::/48 maxlen: 48
2a06:98c0:1c07::/48 maxlen: 48
2a06:98c0:1c00::/48 maxlen: 48
2a06:98c1:3109::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 362794095 (0x159fcc6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Validity
Not Before: Jun 7 17:36:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8bd5128cb7cd844afabdaa8428111b6de89b7cc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:86:64:ca:07:f2:77:d4:18:c4:09:99:8f:ab:
76:82:0b:4a:8f:f5:6a:84:97:45:43:c3:d1:6d:85:
1a:70:1c:a9:11:d9:e8:36:3e:dd:0d:c3:8a:b8:08:
73:1d:3c:5d:45:48:dc:86:53:67:ee:cd:3a:61:6f:
94:91:2a:a0:5e:67:5e:08:40:b8:d7:82:e9:ad:d3:
a7:6f:d9:68:1a:a9:7f:42:7e:ab:59:c6:4d:b9:1d:
3f:e8:7a:90:4e:3f:9a:a6:1c:8c:d3:17:8c:a3:31:
07:1e:6a:0d:e5:c3:4b:aa:98:aa:25:1d:71:99:e4:
bf:1e:89:9c:e1:1d:e7:e2:f5:af:86:db:25:47:0c:
09:41:bc:94:51:8c:92:a2:a9:52:7e:f9:0a:8d:fa:
fe:5a:6b:df:e1:d5:be:77:d0:53:6e:5f:c0:c6:7a:
0d:52:54:89:50:bf:99:b8:83:30:7b:20:d2:2a:92:
3c:67:c6:65:3e:41:49:d2:4b:4a:34:d5:18:56:71:
0b:bf:56:53:3e:7c:92:2a:d8:08:ea:fd:92:d5:01:
7e:6b:a9:3d:c2:67:27:7f:cd:1d:1f:4f:e5:bd:b9:
44:46:92:81:dc:e9:db:15:a4:04:fb:7b:d6:c8:90:
bb:77:2d:d2:56:84:62:54:cd:b3:8e:ad:ea:ea:b0:
c3:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:D5:12:8C:B7:CD:84:4A:FA:BD:AA:84:28:11:1B:6D:E8:9B:7C:C9
X509v3 Authority Key Identifier:
keyid:99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/i9USjLfNhEr6vaqEKBEbbeibfMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.64.0-141.101.77.255
141.101.82.0-141.101.85.255
141.101.88.0/22
141.101.94.0-141.101.127.255
188.114.96.0-188.114.104.255
188.114.106.0-188.114.111.255
IPv6:
2a06:98c0:1c00::-2a06:98c0:1c08:ffff:ffff:ffff:ffff:ffff
2a06:98c1:50::/45
2a06:98c1:3100::/44
2a06:98c1:3120::/46
2a06:98c1:3200::/48
Signature Algorithm: sha256WithRSAEncryption
3a:3f:e7:f0:85:69:ed:ba:ef:b2:4d:ff:7f:df:34:55:af:fe:
71:9c:7c:db:12:75:25:88:2f:c8:03:d9:af:f8:a4:67:59:38:
0f:da:14:6f:30:0a:f3:52:d6:77:e3:fc:1c:12:d0:8e:29:ea:
ca:5a:78:ba:fc:81:59:05:5d:b8:77:01:bc:67:fc:c6:0a:36:
da:a9:17:41:da:d0:3f:1f:dc:a6:1f:b3:38:49:a3:b0:8d:ba:
da:ad:f0:96:75:4f:1b:fb:ca:fa:1f:ad:9f:ab:83:38:c6:99:
a0:fe:52:53:a9:19:55:80:6a:c5:34:d6:02:52:52:77:fd:6c:
88:0a:d1:f0:3b:aa:e8:93:2c:ce:37:0f:54:d0:e0:2f:81:8a:
61:bb:9f:b8:8b:8d:6c:d6:87:80:0a:90:21:c2:8b:4d:be:de:
64:2d:e3:78:02:9a:9f:9b:cc:56:a2:b3:ec:2d:46:a8:73:b3:
17:60:65:53:82:59:3b:c0:7c:77:a7:21:b8:cb:e2:8f:65:33:
11:8c:02:29:7e:99:14:fa:60:75:53:65:50:97:c3:41:50:d7:
d7:2c:df:56:2a:fe:8d:7f:bc:2b:30:36:b1:95:96:4d:de:78:
98:49:cf:db:ff:ae:76:d6:41:d5:00:06:4a:25:fd:ca:a5:9f:
5c:90:36:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:15 2024 by rpki-client on console-fra.rpki-client.org