Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/8LAhV3TPs8PyLWYQoyrAwUN8kG0.roa
File: 8LAhV3TPs8PyLWYQoyrAwUN8kG0.roa (raw, json)
Hash identifier: Sw7vFKMuhgFKTW3jbQTa1xX9vXpCQXVL5cVUHkHrRuw=
Subject key identifier: F0:B0:21:57:74:CF:B3:C3:F2:2D:66:10:A3:2A:C0:C1:43:7C:90:6D
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0934E20E
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/8LAhV3TPs8PyLWYQoyrAwUN8kG0.roa
Signing time: Mon 02 May 2022 13:35:08 +0000
ROA not before: Mon 02 May 2022 13:35:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 94.241.176.0/21 maxlen: 24
91.186.196.0/22 maxlen: 24
91.186.194.0/23 maxlen: 24
94.241.136.0/21 maxlen: 24
91.186.200.0/22 maxlen: 24
91.186.212.0/22 maxlen: 24
91.186.216.0/22 maxlen: 24
91.186.220.0/22 maxlen: 24
94.241.160.0/21 maxlen: 24
94.241.168.0/21 maxlen: 24
178.253.12.0/23 maxlen: 24
83.147.216.0/23 maxlen: 24
83.147.222.0/23 maxlen: 24
178.253.32.0/23 maxlen: 24
178.253.44.0/23 maxlen: 24
178.253.38.0/23 maxlen: 24
83.147.232.0/22 maxlen: 24
83.147.240.0/22 maxlen: 24
178.253.52.0/23 maxlen: 24
178.253.55.0/24 maxlen: 24
83.147.252.0/22 maxlen: 24
83.147.248.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154460686 (0x934e20e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: May 2 13:35:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f0b0215774cfb3c3f22d6610a32ac0c1437c906d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:44:68:b7:60:92:fe:f6:f9:ef:5a:8d:30:8d:
dd:e2:35:29:52:df:f3:9d:9b:bb:72:86:dd:5c:e1:
61:0a:c1:21:c2:7a:b9:0a:9a:bc:6f:9d:0e:0a:4b:
1c:e9:cb:c7:44:d7:1f:c8:de:77:a5:8e:4d:2e:92:
4e:f9:35:79:bc:b5:57:98:6f:53:e6:2a:86:7a:f9:
24:3b:fd:f7:2a:ac:07:50:3c:fa:17:6d:61:5b:0f:
00:04:1b:0d:b2:5e:07:1e:9b:27:c7:67:99:5c:a9:
b5:4f:99:22:46:e9:b7:00:3a:32:89:66:22:35:69:
2a:b1:39:dd:0d:9e:f9:50:6d:39:0b:cd:3d:6a:13:
39:65:e9:bf:5d:a2:ec:25:f0:72:dc:00:12:cd:15:
61:89:b7:1e:ac:db:82:4f:20:fb:14:db:f5:ad:c0:
51:ca:37:e1:50:79:07:7e:a9:23:4f:d5:e9:ec:e9:
61:c4:db:d8:52:de:35:92:1d:b0:05:ce:aa:38:b4:
f2:80:ff:68:b3:a8:c4:03:98:44:47:77:be:26:80:
95:f7:28:19:3f:b9:71:06:73:f8:f6:6d:b7:db:b0:
d6:ed:43:5e:70:bf:41:d7:c9:13:c4:cd:30:fb:28:
fe:a7:4b:b6:91:d3:76:08:ac:e8:68:d5:78:00:16:
dd:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:B0:21:57:74:CF:B3:C3:F2:2D:66:10:A3:2A:C0:C1:43:7C:90:6D
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/8LAhV3TPs8PyLWYQoyrAwUN8kG0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.216.0/23
83.147.222.0/23
83.147.232.0/22
83.147.240.0/22
83.147.248.0/21
91.186.194.0-91.186.203.255
91.186.212.0-91.186.223.255
94.241.136.0/21
94.241.160.0-94.241.183.255
178.253.12.0/23
178.253.32.0/23
178.253.38.0/23
178.253.44.0/23
178.253.52.0/23
178.253.55.0/24
Signature Algorithm: sha256WithRSAEncryption
92:12:a4:76:dc:84:42:3a:59:0e:9c:0a:ca:58:6c:84:32:1c:
14:86:05:8f:3c:29:09:67:30:74:9f:45:e5:82:93:04:ca:7b:
54:ba:bb:5c:87:e6:45:aa:19:72:b7:30:62:b1:05:a1:84:ac:
17:9f:7f:15:5b:a1:fe:0f:11:74:ae:dd:66:6a:d6:88:f2:b9:
e2:99:d0:a0:bd:c6:0e:89:a2:77:6b:7e:bd:a0:8b:7d:7e:35:
f4:57:fc:02:d6:86:08:7a:2c:1f:f1:13:aa:4b:ac:3e:9e:26:
3f:ec:99:3c:d7:73:0e:7b:94:c2:8a:c0:c2:9b:84:d2:9b:e2:
60:3b:a2:71:90:c0:0f:f7:a8:63:c2:92:a9:af:b9:71:36:38:
e3:0d:4c:91:9f:ff:79:39:8d:56:c4:88:ac:86:b0:6f:2e:a1:
76:b0:5d:4a:d4:36:18:06:19:98:e2:88:de:78:96:a7:01:5b:
7f:88:5f:15:be:f5:d8:9e:e4:60:b8:fa:d8:01:b3:10:60:f3:
76:71:b6:b6:52:ec:25:6a:3c:20:20:e6:4d:f9:18:05:78:d4:
5a:0a:24:58:f0:cd:56:30:aa:b8:06:99:07:76:8d:8b:2e:4e:
b7:e9:a8:5b:b3:68:87:51:92:c6:34:24:4f:27:64:34:d7:5e:
eb:0e:0b:be
-----BEGIN CERTIFICATE-----
MIIFXDCCBESgAwIBAgIECTTiDjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
Mjc3OGRlMmE5YmU5ODAyMTIwMzgyZTc1MGQxNTllOTU4NzJjMmFlMB4XDTIyMDUw
MjEzMzUwOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjBiMDIxNTc3NGNm
YjNjM2YyMmQ2NjEwYTMyYWMwYzE0MzdjOTA2ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALNEaLdgkv72+e9ajTCN3eI1KVLf852bu3KG3VzhYQrBIcJ6
uQqavG+dDgpLHOnLx0TXH8jed6WOTS6STvk1eby1V5hvU+Yqhnr5JDv99yqsB1A8
+hdtYVsPAAQbDbJeBx6bJ8dnmVyptU+ZIkbptwA6MolmIjVpKrE53Q2e+VBtOQvN
PWoTOWXpv12i7CXwctwAEs0VYYm3Hqzbgk8g+xTb9a3AUco34VB5B36pI0/V6ezp
YcTb2FLeNZIdsAXOqji08oD/aLOoxAOYREd3viaAlfcoGT+5cQZz+PZtt9uw1u1D
XnC/QdfJE8TNMPso/qdLtpHTdgis6GjVeAAW3W8CAwEAAaOCAnYwggJyMB0GA1Ud
DgQWBBTwsCFXdM+zw/ItZhCjKsDBQ3yQbTAfBgNVHSMEGDAWgBTCd43iqb6YAhID
gudQ0VnpWHLCrjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3duZU40cW0tbUFJU0E0TG5VTkZaNlZoeXdxNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjgvNDEwOTMwLTlkNjUtNGJlOC05ZWJhLWY5OGRhNTRhZjQzNC8x
LzhMQWhWM1RQczhQeUxXWVFveXJBd1VOOGtHMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjgv
NDEwOTMwLTlkNjUtNGJlOC05ZWJhLWY5OGRhNTRhZjQzNC8xL3duZU40cW0tbUFJ
U0E0TG5VTkZaNlZoeXdxNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
iwYIKwYBBQUHAQcBAf8EfDB6MHgEAgABMHIDBAFTk9gDBAFTk94DBAJTk+gDBAJT
k/ADBANTk/gwDAMEAVu6wgMEAlu6yDAMAwQCW7rUAwQFW7rAAwQDXvGIMAwDBAVe
8aADBANe8bADBAGy/QwDBAGy/SADBAGy/SYDBAGy/SwDBAGy/TQDBACy/TcwDQYJ
KoZIhvcNAQELBQADggEBAJISpHbchEI6WQ6cCspYbIQyHBSGBY88KQlnMHSfReWC
kwTKe1S6u1yH5kWqGXK3MGKxBaGErBeffxVbof4PEXSu3WZq1ojyueKZ0KC9xg6J
ondrfr2gi31+NfRX/ALWhgh6LB/xE6pLrD6eJj/smTzXcw57lMKKwMKbhNKb4mA7
onGQwA/3qGPCkqmvuXE2OOMNTJGf/3k5jVbEiKyGsG8uoXawXUrUNhgGGZjiiN54
lqcBW3+IXxW+9die5GC4+tgBsxBg83ZxtrZS7CVqPCAg5k35GAV41FoKJFjwzVYw
qrgGmQd2jYsuTrfpqFuzaIdRksY0JE8nZDTXXusOC74=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:44 2023 by rpki-client on console-fra.rpki-client.org