Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/b7be64-86d4-443b-9686-f66317977968/1/28RMk0OLRlOIGcL5iA37Pr5RJYs.roa
File: 28RMk0OLRlOIGcL5iA37Pr5RJYs.roa (raw, json)
Hash identifier: BrtPc5xeVmr0klO+LjAXJMuXBMPByT/FWfiZiTy51B0=
Subject key identifier: DB:C4:4C:93:43:8B:46:53:88:19:C2:F9:88:0D:FB:3E:BE:51:25:8B
Certificate issuer: /CN=84bfc451fc4f2411addd00a9fbb17346ad6e8996
Certificate serial: 04C01B07
Authority key identifier: 84:BF:C4:51:FC:4F:24:11:AD:DD:00:A9:FB:B1:73:46:AD:6E:89:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hL_EUfxPJBGt3QCp-7FzRq1uiZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/b7be64-86d4-443b-9686-f66317977968/1/28RMk0OLRlOIGcL5iA37Pr5RJYs.roa
Signing time: Wed 19 Jan 2022 06:28:01 +0000
ROA not before: Wed 19 Jan 2022 06:28:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207375
IP address blocks: 89.33.17.0/24 maxlen: 24
89.33.30.0/24 maxlen: 24
188.240.70.0/24 maxlen: 24
188.213.86.0/23 maxlen: 23
188.211.172.0/22 maxlen: 22
188.213.88.0/21 maxlen: 21
31.14.182.0/24 maxlen: 24
31.14.180.0/23 maxlen: 23
176.223.144.0/20 maxlen: 20
194.145.194.0/23 maxlen: 23
89.32.240.0/21 maxlen: 21
86.105.232.0/24 maxlen: 24
178.239.16.0/22 maxlen: 22
89.35.76.0/24 maxlen: 24
86.107.186.0/23 maxlen: 23
89.35.91.0/24 maxlen: 24
89.35.88.0/24 maxlen: 24
84.247.44.0/23 maxlen: 25
89.33.65.0/24 maxlen: 24
37.156.70.0/24 maxlen: 24
37.156.69.0/24 maxlen: 24
89.35.34.0/24 maxlen: 24
188.212.112.0/22 maxlen: 22
89.35.163.0/24 maxlen: 24
217.148.134.0/23 maxlen: 23
188.212.157.0/24 maxlen: 24
89.37.40.0/24 maxlen: 24
85.204.109.0/24 maxlen: 24
86.105.24.0/24 maxlen: 24
89.32.171.0/24 maxlen: 24
89.46.40.0/23 maxlen: 23
91.132.40.0/22 maxlen: 22
93.113.72.0/21 maxlen: 21
89.47.176.0/23 maxlen: 23
89.47.178.0/24 maxlen: 24
89.47.182.0/24 maxlen: 24
89.47.180.0/23 maxlen: 23
89.35.248.0/24 maxlen: 24
2a00:bba0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79698695 (0x4c01b07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84bfc451fc4f2411addd00a9fbb17346ad6e8996
Validity
Not Before: Jan 19 06:28:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dbc44c93438b46538819c2f9880dfb3ebe51258b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:eb:d7:88:c9:2b:db:52:ca:9a:35:c9:54:d6:
2b:e8:27:7c:41:7b:4d:26:cf:f9:61:56:60:cd:be:
01:c6:22:29:e7:a0:dd:8d:0b:a0:af:72:fb:04:ad:
68:df:54:b3:79:5c:c2:cc:65:30:e5:a8:bf:ec:a0:
52:67:de:62:ce:0d:3d:e3:36:85:68:42:7f:17:15:
21:e0:f0:61:d1:e2:97:b0:0c:e6:57:c6:bf:b2:fa:
1e:2b:61:30:c5:0f:0d:3d:9b:58:cd:f0:bd:3f:3f:
9b:b8:96:72:35:35:4d:f1:93:61:9e:58:cf:56:89:
14:db:b8:9f:ad:c0:e4:b9:8d:9e:ec:8f:e7:85:aa:
77:38:9e:18:a3:2d:73:c5:56:78:1f:39:76:56:e2:
ab:10:59:a0:09:24:f7:41:f7:6f:52:6b:f7:9b:a0:
ca:a9:f8:ab:aa:f2:07:11:e8:59:ff:9b:4a:70:0e:
7c:4e:7c:34:05:5e:77:12:dc:43:83:20:c4:47:d6:
29:8a:d3:a0:32:bb:e6:f3:5e:e7:3a:81:f2:d1:12:
1c:9a:1f:16:fc:bc:6d:51:d4:01:51:82:4f:e3:9c:
40:9f:86:63:85:4a:f6:66:91:e2:a3:eb:5d:38:98:
aa:37:d4:4c:0c:b5:b2:c1:36:f7:fe:fc:3b:3c:6f:
a1:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:C4:4C:93:43:8B:46:53:88:19:C2:F9:88:0D:FB:3E:BE:51:25:8B
X509v3 Authority Key Identifier:
keyid:84:BF:C4:51:FC:4F:24:11:AD:DD:00:A9:FB:B1:73:46:AD:6E:89:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hL_EUfxPJBGt3QCp-7FzRq1uiZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/b7be64-86d4-443b-9686-f66317977968/1/28RMk0OLRlOIGcL5iA37Pr5RJYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/b7be64-86d4-443b-9686-f66317977968/1/hL_EUfxPJBGt3QCp-7FzRq1uiZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.180.0-31.14.182.255
37.156.69.0-37.156.70.255
84.247.44.0/23
85.204.109.0/24
86.105.24.0/24
86.105.232.0/24
86.107.186.0/23
89.32.171.0/24
89.32.240.0/21
89.33.17.0/24
89.33.30.0/24
89.33.65.0/24
89.35.34.0/24
89.35.76.0/24
89.35.88.0/24
89.35.91.0/24
89.35.163.0/24
89.35.248.0/24
89.37.40.0/24
89.46.40.0/23
89.47.176.0-89.47.178.255
89.47.180.0-89.47.182.255
91.132.40.0/22
93.113.72.0/21
176.223.144.0/20
178.239.16.0/22
188.211.172.0/22
188.212.112.0/22
188.212.157.0/24
188.213.86.0-188.213.95.255
188.240.70.0/24
194.145.194.0/23
217.148.134.0/23
IPv6:
2a00:bba0::/32
Signature Algorithm: sha256WithRSAEncryption
1c:b7:e7:d4:e9:fa:a2:e7:f1:b8:2c:b8:ad:d4:6d:76:f9:34:
09:b5:05:6d:dc:9e:ff:79:72:5f:c3:59:ba:7f:87:15:2a:c7:
f3:ee:14:4d:3d:2a:1e:16:11:e8:a1:ed:fc:39:38:d7:8e:55:
2b:f4:a0:bb:4e:33:72:aa:5e:40:a3:2f:c5:bb:c2:fd:27:53:
0d:db:76:26:d6:a3:a1:d3:1b:6d:2c:88:7b:f7:04:32:f4:49:
93:eb:f5:c9:35:7f:48:8b:0f:39:42:d0:d4:94:a6:85:57:e2:
a4:0b:ca:76:60:f4:98:b4:63:d6:73:3f:23:63:8d:b0:d1:0d:
b2:07:14:3c:21:b1:ad:c8:0b:bb:58:40:f2:38:28:31:4e:2d:
35:92:6b:86:1f:cf:c9:95:9d:75:78:3b:0b:32:77:08:ab:f8:
9e:60:e0:af:85:e0:a1:85:46:f8:bb:b8:c3:65:12:ae:d0:44:
cd:cd:e7:de:58:bc:e9:9a:e2:6f:76:03:40:59:b8:2b:dd:e8:
a1:4c:8a:23:3d:7a:9d:8b:33:1d:ba:b0:20:95:d2:bf:03:91:
2c:3d:e9:1e:15:e6:b9:7d:f8:bb:86:aa:72:3e:45:fe:4b:d0:
19:cf:ed:c0:99:75:8a:c4:97:d7:e9:8e:0f:a3:99:e6:e5:9f:
78:56:42:9f
-----BEGIN CERTIFICATE-----
MIIF7jCCBNagAwIBAgIEBMAbBzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NGJmYzQ1MWZjNGYyNDExYWRkZDAwYTlmYmIxNzM0NmFkNmU4OTk2MB4XDTIyMDEx
OTA2MjgwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGJjNDRjOTM0Mzhi
NDY1Mzg4MTljMmY5ODgwZGZiM2ViZTUxMjU4YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKfr14jJK9tSypo1yVTWK+gnfEF7TSbP+WFWYM2+AcYiKeeg
3Y0LoK9y+wStaN9Us3lcwsxlMOWov+ygUmfeYs4NPeM2hWhCfxcVIeDwYdHil7AM
5lfGv7L6HithMMUPDT2bWM3wvT8/m7iWcjU1TfGTYZ5Yz1aJFNu4n63A5LmNnuyP
54WqdzieGKMtc8VWeB85dlbiqxBZoAkk90H3b1Jr95ugyqn4q6ryBxHoWf+bSnAO
fE58NAVedxLcQ4MgxEfWKYrToDK75vNe5zqB8tESHJofFvy8bVHUAVGCT+OcQJ+G
Y4VK9maR4qPrXTiYqjfUTAy1ssE29/78OzxvoecCAwEAAaOCAwgwggMEMB0GA1Ud
DgQWBBTbxEyTQ4tGU4gZwvmIDfs+vlElizAfBgNVHSMEGDAWgBSEv8RR/E8kEa3d
AKn7sXNGrW6JljAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2hMX0VVZnhQSkJHdDNRQ3AtN0Z6UnExdWlaWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTIvYjdiZTY0LTg2ZDQtNDQzYi05Njg2LWY2NjMxNzk3Nzk2OC8x
LzI4Uk1rME9MUmxPSUdjTDVpQTM3UHI1UkpZcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTIv
YjdiZTY0LTg2ZDQtNDQzYi05Njg2LWY2NjMxNzk3Nzk2OC8xL2hMX0VVZnhQSkJH
dDNRQ3AtN0Z6UnExdWlaWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCC
ARwGCCsGAQUFBwEHAQH/BIIBCzCCAQcwgfUEAgABMIHuMAwDBAIfDrQDBAAfDrYw
DAMEACWcRQMEACWcRgMEAVT3LAMEAFXMbQMEAFZpGAMEAFZp6AMEAVZrugMEAFkg
qwMEA1kg8AMEAFkhEQMEAFkhHgMEAFkhQQMEAFkjIgMEAFkjTAMEAFkjWAMEAFkj
WwMEAFkjowMEAFkj+AMEAFklKAMEAVkuKDAMAwQEWS+wAwQAWS+yMAwDBAJZL7QD
BABZL7YDBAJbhCgDBANdcUgDBASw35ADBAKy7xADBAK806wDBAK81HADBAC81J0w
DAMEAbzVVgMEBbzVQAMEALzwRgMEAcKRwgMEAdmUhjANBAIAAjAHAwUAKgC7oDAN
BgkqhkiG9w0BAQsFAAOCAQEAHLfn1On6oufxuCy4rdRtdvk0CbUFbdye/3lyX8NZ
un+HFSrH8+4UTT0qHhYR6KHt/Dk4145VK/Sgu04zcqpeQKMvxbvC/SdTDdt2Jtaj
odMbbSyIe/cEMvRJk+v1yTV/SIsPOULQ1JSmhVfipAvKdmD0mLRj1nM/I2ONsNEN
sgcUPCGxrcgLu1hA8jgoMU4tNZJrhh/PyZWddXg7CzJ3CKv4nmDgr4XgoYVG+Lu4
w2USrtBEzc3n3li86Zrib3YDQFm4K93ooUyKIz16nYszHbqwIJXSvwORLD3pHhXm
uX34u4aqcj5F/kvQGc/twJl1isSX1+mOD6OZ5uWfeFZCnw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:10 2024 by rpki-client on console-ams.rpki-client.org