Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/nq9wfrvdkB1yzhjGNhoB99pNacA.roa
File: nq9wfrvdkB1yzhjGNhoB99pNacA.roa (raw, json)
Hash identifier: eFi6Cr/EGvYkAXfLhJscWN3p9klpyLPlki/7kTnGNbs=
Subject key identifier: 9E:AF:70:7E:BB:DD:90:1D:72:CE:18:C6:36:1A:01:F7:DA:4D:69:C0
Certificate issuer: /CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Certificate serial: 14D0A91B
Authority key identifier: 99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/nq9wfrvdkB1yzhjGNhoB99pNacA.roa
Signing time: Mon 07 Mar 2022 19:01:22 +0000
ROA not before: Mon 07 Mar 2022 19:01:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13335
IP address blocks: 188.114.98.0/24 maxlen: 24
188.114.97.0/24 maxlen: 24
188.114.96.0/24 maxlen: 24
188.114.104.0/24 maxlen: 24
188.114.100.0/24 maxlen: 24
188.114.99.0/24 maxlen: 24
188.114.101.0/24 maxlen: 24
188.114.103.0/24 maxlen: 24
188.114.102.0/24 maxlen: 24
188.114.111.0/24 maxlen: 24
188.114.106.0/23 maxlen: 23
188.114.108.0/24 maxlen: 24
188.114.110.0/24 maxlen: 24
188.114.109.0/24 maxlen: 24
141.101.67.0/24 maxlen: 24
141.101.66.0/24 maxlen: 24
141.101.69.0/24 maxlen: 24
141.101.68.0/24 maxlen: 24
141.101.71.0/24 maxlen: 24
141.101.70.0/24 maxlen: 24
141.101.65.0/24 maxlen: 24
141.101.74.0/24 maxlen: 24
141.101.73.0/24 maxlen: 24
141.101.76.0/23 maxlen: 23
141.101.75.0/24 maxlen: 24
141.101.72.0/24 maxlen: 24
141.101.83.0/24 maxlen: 24
141.101.82.0/24 maxlen: 24
141.101.84.0/24 maxlen: 24
141.101.85.0/24 maxlen: 24
141.101.88.0/22 maxlen: 22
141.101.95.0/24 maxlen: 24
141.101.94.0/24 maxlen: 24
141.101.97.0/24 maxlen: 24
141.101.96.0/24 maxlen: 24
141.101.98.0/24 maxlen: 24
141.101.104.0/24 maxlen: 24
141.101.105.0/24 maxlen: 24
141.101.100.0/22 maxlen: 22
141.101.99.0/24 maxlen: 24
141.101.109.0/24 maxlen: 24
141.101.108.0/24 maxlen: 24
141.101.111.0/24 maxlen: 24
141.101.110.0/24 maxlen: 24
141.101.112.0/23 maxlen: 23
141.101.107.0/24 maxlen: 24
141.101.106.0/24 maxlen: 24
141.101.112.0/20 maxlen: 20
141.101.114.0/23 maxlen: 23
141.101.64.0/24 maxlen: 24
141.101.120.0/22 maxlen: 22
2a06:98c1:310b::/48 maxlen: 48
2a06:98c1:3101::/48 maxlen: 48
2a06:98c1:50::/45 maxlen: 45
2a06:98c1:3108::/48 maxlen: 48
2a06:98c1:3123::/48 maxlen: 48
2a06:98c1:310f::/48 maxlen: 48
2a06:98c1:3100::/48 maxlen: 48
2a06:98c1:3122::/48 maxlen: 48
2a06:98c1:3107::/48 maxlen: 48
2a06:98c1:310e::/48 maxlen: 48
2a06:98c1:3104::/48 maxlen: 48
2a06:98c1:3106::/48 maxlen: 48
2a06:98c1:3121::/48 maxlen: 48
2a06:98c1:310d::/48 maxlen: 48
2a06:98c1:3103::/48 maxlen: 48
2a06:98c1:54::/48 maxlen: 48
2a06:98c1:310a::/48 maxlen: 48
2a06:98c1:3120::/48 maxlen: 48
2a06:98c1:3105::/48 maxlen: 48
2a06:98c1:310c::/48 maxlen: 48
2a06:98c1:3102::/48 maxlen: 48
2a06:98c1:3109::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 349219099 (0x14d0a91b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Validity
Not Before: Mar 7 19:01:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9eaf707ebbdd901d72ce18c6361a01f7da4d69c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:8b:ea:61:69:3d:6c:31:09:ac:48:d0:49:a2:
26:a0:76:57:da:5c:e0:b0:64:b4:33:3c:e0:23:bc:
95:a8:f7:98:18:19:61:13:cf:58:d8:9a:54:4b:0e:
f8:93:0f:15:3d:8f:0f:bc:3d:86:1d:9d:53:d1:05:
5f:a0:da:03:b0:74:56:fe:98:a1:a2:dc:12:ec:a8:
69:0d:0c:cb:47:3e:f8:8e:a2:4c:17:37:e7:0d:3a:
1b:04:05:92:15:53:d4:e7:93:97:54:2f:cf:4d:ef:
b0:37:b6:cb:71:dd:a6:8b:82:64:6b:33:de:de:31:
66:62:03:ee:d8:de:5c:f6:9e:01:97:10:84:e7:24:
19:fa:3a:cb:85:d5:81:ed:c9:99:f1:ee:25:6e:98:
66:76:a9:2c:d1:9e:47:bb:dd:7f:bd:56:27:61:76:
f7:48:d9:0d:38:4d:d9:3d:02:65:73:c4:52:6b:a1:
22:e5:f1:03:ea:97:38:d4:72:06:57:34:3d:21:0e:
8c:2d:2a:97:a8:d9:a3:27:6d:bf:1a:fb:26:01:7d:
29:11:8c:5d:e4:3c:65:6d:83:02:06:63:ef:c8:87:
9c:80:42:23:1c:b5:db:a6:0d:d7:8a:f2:0b:88:07:
07:41:65:6b:56:8c:71:83:c2:85:ff:d2:c2:f2:e1:
6c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:AF:70:7E:BB:DD:90:1D:72:CE:18:C6:36:1A:01:F7:DA:4D:69:C0
X509v3 Authority Key Identifier:
keyid:99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/nq9wfrvdkB1yzhjGNhoB99pNacA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.64.0-141.101.77.255
141.101.82.0-141.101.85.255
141.101.88.0/22
141.101.94.0-141.101.127.255
188.114.96.0-188.114.104.255
188.114.106.0-188.114.111.255
IPv6:
2a06:98c1:50::/45
2a06:98c1:3100::/44
2a06:98c1:3120::/46
Signature Algorithm: sha256WithRSAEncryption
5e:80:61:94:52:2e:62:00:cc:75:c2:f1:31:6f:82:bf:08:8d:
c6:ef:18:6b:ae:b1:5d:ee:10:01:b1:f8:63:da:e3:bd:48:ff:
35:31:52:7c:14:3b:5c:54:f9:00:df:13:be:bd:a7:5d:9c:c1:
84:a1:da:d8:0b:11:fc:4f:b8:19:57:3f:d6:f7:3e:b5:34:66:
aa:e2:eb:98:1b:65:a0:a3:21:47:a3:0c:67:c3:b5:4f:86:46:
d3:c6:53:d7:ed:46:51:58:c0:26:20:58:98:e8:3c:e7:d7:1b:
aa:3a:52:81:c9:e6:75:ae:f6:5b:3b:36:63:6d:db:89:db:3d:
e8:51:84:5b:17:d3:65:f9:27:42:24:a2:34:ae:69:4b:46:75:
e7:22:11:34:54:70:32:4b:89:b9:b0:45:0f:73:a8:b5:71:53:
eb:47:83:21:11:86:a2:85:d0:76:2f:4d:88:f8:c5:30:0b:0c:
58:fb:61:23:03:58:c9:ab:dd:24:9e:60:98:92:d0:74:cc:99:
19:6c:4f:81:bd:8b:00:68:4e:d8:82:30:be:aa:23:d1:67:e0:
9a:15:b7:bb:f9:cc:b7:27:a3:38:6f:67:34:b0:2d:ab:49:2d:
ee:8a:79:af:c6:1b:eb:a3:be:0b:3d:cf:a0:ed:de:59:92:6d:
94:13:ff:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:15 2024 by rpki-client on console-fra.rpki-client.org