Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/vs-OxY8poCJF9p82HymDLUeWUSQ.roa
File: vs-OxY8poCJF9p82HymDLUeWUSQ.roa (raw, json)
Hash identifier: 03nQNW15Idoq1kViMOxmbWUCQ4OzFdrCPHDJ9cxSBQQ=
Subject key identifier: BE:CF:8E:C5:8F:29:A0:22:45:F6:9F:36:1F:29:83:2D:47:96:51:24
Certificate issuer: /CN=84f824d32df1a5113d82101345d785a38addbde5
Certificate serial: 088536B7
Authority key identifier: 84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/vs-OxY8poCJF9p82HymDLUeWUSQ.roa
Signing time: Tue 21 Jun 2022 17:55:44 +0000
ROA not before: Tue 21 Jun 2022 17:55:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203120
IP address blocks: 89.37.96.0/24 maxlen: 24
89.33.254.0/24 maxlen: 24
89.36.141.0/24 maxlen: 24
188.172.160.0/19 maxlen: 19
188.172.176.0/20 maxlen: 20
188.209.120.0/23 maxlen: 23
89.34.102.0/24 maxlen: 24
93.115.59.0/24 maxlen: 24
93.119.120.0/23 maxlen: 23
86.106.10.0/24 maxlen: 24
46.102.180.0/24 maxlen: 24
86.105.176.0/24 maxlen: 24
89.37.130.0/23 maxlen: 23
89.41.190.0/23 maxlen: 23
89.37.134.0/24 maxlen: 24
77.81.90.0/23 maxlen: 23
86.105.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142948023 (0x88536b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84f824d32df1a5113d82101345d785a38addbde5
Validity
Not Before: Jun 21 17:55:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=becf8ec58f29a02245f69f361f29832d47965124
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:3f:51:b2:62:66:15:16:f2:26:e6:ae:bb:69:
1e:4e:31:9d:66:df:cf:37:dd:62:04:65:c1:dd:0e:
36:a7:fc:60:4a:dd:5b:50:82:af:c0:58:99:c7:bf:
92:dd:56:3c:3a:53:29:7a:bb:9a:54:3c:2e:be:d9:
9a:c0:1a:0c:dd:40:c3:e2:54:bf:f8:40:1a:42:e3:
7a:7e:d4:ca:ae:88:e9:c2:70:af:cb:49:2a:28:5a:
c5:e9:6e:90:54:f7:61:01:74:f4:e8:0b:3d:26:45:
cb:ed:0c:a0:3e:21:a7:eb:96:13:71:8a:47:b1:64:
79:ab:ae:95:a6:35:fd:ce:a9:1a:b4:55:51:97:06:
7c:8b:b1:15:80:d4:f8:46:de:40:5f:1e:ff:f6:64:
c9:f4:58:06:0d:01:f6:bf:93:5c:4f:40:37:1e:45:
aa:aa:0a:88:c5:8a:95:27:b4:ad:da:f5:ab:e6:26:
ad:0d:cc:57:9e:ea:8c:af:31:c5:d0:c2:e7:48:87:
b6:c9:76:c1:8f:72:ae:ba:03:87:25:87:d7:8e:8f:
98:72:20:1a:21:c7:af:da:d8:eb:80:0a:b6:02:91:
03:0c:2f:ff:b0:fd:9b:5c:4c:1c:11:da:29:ea:ba:
83:99:fc:e0:e3:43:74:25:ea:a5:58:94:73:67:b3:
a0:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:CF:8E:C5:8F:29:A0:22:45:F6:9F:36:1F:29:83:2D:47:96:51:24
X509v3 Authority Key Identifier:
keyid:84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/vs-OxY8poCJF9p82HymDLUeWUSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/hPgk0y3xpRE9ghATRdeFo4rdveU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.180.0/24
77.81.90.0/23
86.105.6.0/24
86.105.176.0/24
86.106.10.0/24
89.33.254.0/24
89.34.102.0/24
89.36.141.0/24
89.37.96.0/24
89.37.130.0/23
89.37.134.0/24
89.41.190.0/23
93.115.59.0/24
93.119.120.0/23
188.172.160.0/19
188.209.120.0/23
Signature Algorithm: sha256WithRSAEncryption
57:4c:55:96:d8:1a:fb:f9:64:30:48:81:30:28:d8:a2:16:b5:
ef:02:9a:6d:b2:72:0b:14:09:a0:84:01:ab:54:53:bc:67:0a:
c9:b9:dc:d1:81:fa:50:f9:a8:66:dc:e6:b8:4e:e6:00:24:36:
2e:bb:83:7b:09:a6:64:5c:3d:4a:96:94:55:df:81:04:c7:4f:
74:f8:7a:7a:5f:23:7e:57:5d:4b:ad:4f:e7:dd:24:73:5a:83:
64:ba:a7:3c:7f:78:05:37:0c:7d:93:8f:58:6a:60:22:77:19:
53:9e:1c:00:75:79:40:58:3b:b8:69:53:eb:4b:ba:33:5e:0f:
b3:24:c6:8a:35:36:82:be:22:41:28:00:96:a4:13:69:c1:a2:
bd:c5:76:78:90:6d:c9:c0:2f:47:7d:53:76:8c:65:9a:2e:1c:
ea:1e:b5:0f:cd:38:a4:47:41:dd:ba:09:bd:6b:40:18:1e:fa:
e1:04:31:8e:53:b8:58:8b:fe:4b:07:08:aa:31:0a:23:02:ea:
85:65:a0:09:8a:4a:72:3a:ae:16:90:27:f5:e0:9b:c9:30:21:
3f:9e:c2:e5:8b:ad:9a:e7:41:2d:92:80:c9:f9:65:71:83:81:
83:90:fe:8d:67:84:8f:a3:ed:2c:e0:21:37:d2:96:bb:86:33:
ef:9d:a5:f1
-----BEGIN CERTIFICATE-----
MIIFSTCCBDGgAwIBAgIECIU2tzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NGY4MjRkMzJkZjFhNTExM2Q4MjEwMTM0NWQ3ODVhMzhhZGRiZGU1MB4XDTIyMDYy
MTE3NTU0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmVjZjhlYzU4ZjI5
YTAyMjQ1ZjY5ZjM2MWYyOTgzMmQ0Nzk2NTEyNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALQ/UbJiZhUW8ibmrrtpHk4xnWbfzzfdYgRlwd0ONqf8YErd
W1CCr8BYmce/kt1WPDpTKXq7mlQ8Lr7ZmsAaDN1Aw+JUv/hAGkLjen7Uyq6I6cJw
r8tJKihaxelukFT3YQF09OgLPSZFy+0MoD4hp+uWE3GKR7FkeauulaY1/c6pGrRV
UZcGfIuxFYDU+EbeQF8e//ZkyfRYBg0B9r+TXE9ANx5FqqoKiMWKlSe0rdr1q+Ym
rQ3MV57qjK8xxdDC50iHtsl2wY9yrroDhyWH146PmHIgGiHHr9rY64AKtgKRAwwv
/7D9m1xMHBHaKeq6g5n84ONDdCXqpViUc2ezoDUCAwEAAaOCAmMwggJfMB0GA1Ud
DgQWBBS+z47FjymgIkX2nzYfKYMtR5ZRJDAfBgNVHSMEGDAWgBSE+CTTLfGlET2C
EBNF14Wjit295TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2hQZ2sweTN4cFJFOWdoQVRSZGVGbzRyZHZlVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTEvOWQ2NWJiLWFiNGYtNDNhYS1iYmE4LTQzNzM5NDkzOGM1Mi8x
L3ZzLU94WThwb0NKRjlwODJIeW1ETFVlV1VTUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTEv
OWQ2NWJiLWFiNGYtNDNhYS1iYmE4LTQzNzM5NDkzOGM1Mi8xL2hQZ2sweTN4cFJF
OWdoQVRSZGVGbzRyZHZlVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjB5
BggrBgEFBQcBBwEB/wRqMGgwZgQCAAEwYAMEAC5mtAMEAU1RWgMEAFZpBgMEAFZp
sAMEAFZqCgMEAFkh/gMEAFkiZgMEAFkkjQMEAFklYAMEAVklggMEAFklhgMEAVkp
vgMEAF1zOwMEAV13eAMEBbysoAMEAbzReDANBgkqhkiG9w0BAQsFAAOCAQEAV0xV
ltga+/lkMEiBMCjYoha17wKabbJyCxQJoIQBq1RTvGcKybnc0YH6UPmoZtzmuE7m
ACQ2LruDewmmZFw9SpaUVd+BBMdPdPh6el8jflddS61P590kc1qDZLqnPH94BTcM
fZOPWGpgIncZU54cAHV5QFg7uGlT60u6M14PsyTGijU2gr4iQSgAlqQTacGivcV2
eJBtycAvR31Tdoxlmi4c6h61D804pEdB3boJvWtAGB764QQxjlO4WIv+SwcIqjEK
IwLqhWWgCYpKcjquFpAn9eCbyTAhP57C5YutmudBLZKAyfllcYOBg5D+jWeEj6Pt
LOAhN9KWu4Yz752l8Q==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:35 2023 by rpki-client on console-fra.rpki-client.org