Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/VtmRK8D_E2WS3tOyhSon46Fk2cs.roa
File: VtmRK8D_E2WS3tOyhSon46Fk2cs.roa (raw, json)
Hash identifier: BgIPml+GEVvw4zy5ghKTqm3zq8+FpjyHDMHqmaNd8ps=
Subject key identifier: 56:D9:91:2B:C0:FF:13:65:92:DE:D3:B2:85:2A:27:E3:A1:64:D9:CB
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 0184572DB5BB6859A6C1D256604540BBE174
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/VtmRK8D_E2WS3tOyhSon46Fk2cs.roa
Signing time: Tue 08 Nov 2022 12:18:44 +0000
ROA not before: Tue 08 Nov 2022 12:18:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.134.40.0/22 maxlen: 24
212.63.118.0/24 maxlen: 24
212.63.117.0/24 maxlen: 24
212.63.116.0/24 maxlen: 24
212.63.116.0/22 maxlen: 24
212.63.121.0/24 maxlen: 24
212.63.119.0/24 maxlen: 24
212.63.123.0/24 maxlen: 24
212.63.122.0/24 maxlen: 24
185.83.104.0/22 maxlen: 24
45.144.12.0/22 maxlen: 24
188.208.20.0/22 maxlen: 24
193.32.236.0/22 maxlen: 24
45.90.52.0/22 maxlen: 24
185.94.48.0/22 maxlen: 24
91.245.200.0/21 maxlen: 24
185.93.232.0/22 maxlen: 24
185.131.13.0/24 maxlen: 24
185.131.12.0/22 maxlen: 24
93.92.224.0/22 maxlen: 24
85.217.132.0/24 maxlen: 24
85.217.129.0/24 maxlen: 24
85.217.139.0/24 maxlen: 24
85.217.138.0/24 maxlen: 24
85.217.137.0/24 maxlen: 24
85.217.136.0/24 maxlen: 24
85.217.135.0/24 maxlen: 24
85.217.134.0/24 maxlen: 24
85.217.133.0/24 maxlen: 24
85.217.141.0/24 maxlen: 24
85.217.143.0/24 maxlen: 24
85.217.142.0/24 maxlen: 24
85.217.152.0/24 maxlen: 24
85.217.151.0/24 maxlen: 24
85.217.150.0/24 maxlen: 24
85.217.147.0/24 maxlen: 24
85.217.146.0/24 maxlen: 24
85.217.155.0/24 maxlen: 24
85.217.154.0/24 maxlen: 24
85.217.153.0/24 maxlen: 24
85.217.159.0/24 maxlen: 24
85.217.158.0/24 maxlen: 24
85.217.157.0/24 maxlen: 24
85.217.156.0/24 maxlen: 24
185.130.24.0/23 maxlen: 24
194.49.0.0/22 maxlen: 24
185.130.26.0/23 maxlen: 24
188.241.96.0/21 maxlen: 24
45.157.56.0/22 maxlen: 24
185.234.184.0/24 maxlen: 24
185.234.186.0/23 maxlen: 23
185.234.185.0/24 maxlen: 24
185.44.233.0/24 maxlen: 24
185.44.234.0/23 maxlen: 24
185.176.84.0/22 maxlen: 24
185.210.16.0/22 maxlen: 24
79.142.184.0/22 maxlen: 24
185.51.108.0/22 maxlen: 24
185.162.172.0/23 maxlen: 24
185.162.175.0/24 maxlen: 24
185.162.174.0/24 maxlen: 24
86.105.234.0/24 maxlen: 24
195.82.105.0/24 maxlen: 24
195.82.104.0/24 maxlen: 24
195.82.106.0/24 maxlen: 24
195.82.124.0/24 maxlen: 24
185.216.216.0/22 maxlen: 22
185.216.218.0/23 maxlen: 23
185.216.217.0/24 maxlen: 24
139.28.76.0/22 maxlen: 22
185.196.203.0/24 maxlen: 24
185.196.202.0/24 maxlen: 24
185.196.200.0/23 maxlen: 24
212.104.160.0/19 maxlen: 24
5.226.16.0/20 maxlen: 24
91.242.144.0/22 maxlen: 24
85.117.244.0/22 maxlen: 24
193.91.0.0/24 maxlen: 24
193.91.10.0/24 maxlen: 24
185.43.252.0/22 maxlen: 24
185.202.188.0/22 maxlen: 24
88.98.98.0/24 maxlen: 24
88.98.96.0/20 maxlen: 24
88.98.96.0/23 maxlen: 23
88.98.104.0/23 maxlen: 24
88.98.100.0/22 maxlen: 24
88.98.99.0/24 maxlen: 24
88.98.111.0/24 maxlen: 24
88.98.110.0/24 maxlen: 24
88.98.108.0/23 maxlen: 24
88.98.108.0/22 maxlen: 24
88.98.106.0/23 maxlen: 24
88.98.112.0/20 maxlen: 24
141.98.52.0/22 maxlen: 24
2a06:8840::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:57:2d:b5:bb:68:59:a6:c1:d2:56:60:45:40:bb:e1:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Nov 8 12:18:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=56d9912bc0ff136592ded3b2852a27e3a164d9cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:f3:00:26:ce:b1:c0:82:c2:ba:f8:a4:c7:0d:
68:5b:4e:89:c4:57:08:b0:e1:a9:6e:6d:fb:3a:96:
7f:13:ba:e2:70:54:70:d1:d1:4a:21:e5:62:5a:83:
3e:31:6c:41:2a:c0:7e:29:9f:1a:3e:58:66:13:52:
b7:3f:e1:20:51:bc:b5:e5:34:a8:38:91:92:b5:01:
cc:0b:ab:2f:a2:cf:ef:f8:93:ef:cf:fd:ed:70:5a:
e4:81:4f:4d:57:c8:2b:8f:03:a8:29:8e:c5:67:9a:
89:9f:fe:97:79:14:49:42:4e:d8:9f:49:1b:94:05:
b8:ca:34:f6:31:95:5e:f5:3d:5a:ef:8a:f3:0f:bb:
ad:d0:27:1c:37:ea:da:e8:c5:ac:bf:ae:e8:99:2f:
75:e8:f5:5f:42:88:a5:c0:5b:25:a3:37:82:ac:03:
1b:45:c5:80:59:07:19:d5:21:33:a3:9b:7c:71:54:
70:ff:65:e0:5c:9c:70:76:36:de:bd:8a:f4:75:80:
6b:14:cb:14:ac:74:2d:a4:5e:9f:37:8b:c0:20:15:
63:97:d9:d6:2d:c0:49:38:f8:f5:2b:31:0a:93:4f:
b7:b1:bb:2c:5d:80:c3:09:49:78:8b:2b:5c:82:f0:
1f:e6:dc:81:3d:c9:f1:2f:f1:dc:03:1f:7a:f3:29:
d3:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:D9:91:2B:C0:FF:13:65:92:DE:D3:B2:85:2A:27:E3:A1:64:D9:CB
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/VtmRK8D_E2WS3tOyhSon46Fk2cs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.16.0/20
45.90.52.0/22
45.144.12.0/22
45.157.56.0/22
79.142.184.0/22
85.117.244.0/22
85.217.129.0/24
85.217.132.0-85.217.139.255
85.217.141.0-85.217.143.255
85.217.146.0/23
85.217.150.0-85.217.159.255
86.105.234.0/24
88.98.96.0/19
91.242.144.0/22
91.245.200.0/21
93.92.224.0/22
139.28.76.0/22
141.98.52.0/22
185.43.252.0/22
185.44.233.0-185.44.235.255
185.51.108.0/22
185.83.104.0/22
185.93.232.0/22
185.94.48.0/22
185.130.24.0/22
185.131.12.0/22
185.134.40.0/22
185.162.172.0/22
185.176.84.0/22
185.196.200.0/22
185.202.188.0/22
185.210.16.0/22
185.216.216.0/22
185.234.184.0/22
188.208.20.0/22
188.241.96.0/21
193.32.236.0/22
193.91.0.0/24
193.91.10.0/24
194.49.0.0/22
195.82.104.0-195.82.106.255
195.82.124.0/24
212.63.116.0/22
212.63.121.0-212.63.123.255
212.104.160.0/19
IPv6:
2a06:8840::/29
Signature Algorithm: sha256WithRSAEncryption
92:15:d9:75:b3:79:2b:9b:01:f1:6b:60:b5:97:b7:2f:ae:ca:
ea:40:06:84:75:13:e3:2b:7c:ea:5a:82:a3:58:21:cf:c6:3e:
25:ca:7e:b0:b4:c5:af:af:ab:3e:16:5f:5b:4d:f6:19:90:e9:
92:0b:b6:70:a7:2a:04:73:4f:44:6d:1f:de:d2:b4:81:cf:61:
82:e7:21:8d:c1:ce:1f:4e:73:f9:19:e9:66:35:82:28:fc:c0:
0f:a3:2f:91:11:55:ae:5c:1c:77:8c:c2:9b:d2:d9:88:d6:b0:
55:3c:5f:24:8e:d7:40:90:00:89:a1:1d:8b:a9:9d:88:ca:57:
bd:ca:4c:f7:d9:48:39:b5:3b:cb:b4:a8:3f:e9:8d:9c:03:6c:
22:84:b4:96:24:c4:0f:77:3f:b6:83:15:33:b3:1c:c2:df:f2:
43:e5:d6:d4:94:cc:2f:ce:8e:1f:d1:6e:b7:48:aa:3c:ce:a0:
28:52:fe:08:12:03:3f:6d:57:25:60:57:82:a3:ca:34:5f:9a:
a9:bb:65:84:1c:c5:4e:f1:e1:66:f1:57:96:f5:48:65:f3:05:
20:d6:df:8f:fa:a7:df:3c:f4:32:3e:9b:7f:24:8a:9c:73:f9:
52:d8:ec:9f:5f:0d:99:e1:89:66:e6:3d:ac:1c:ce:40:60:7d:
7a:e4:ac:79
-----BEGIN CERTIFICATE-----
MIIGTjCCBTagAwIBAgISAYRXLbW7aFmmwdJWYEVAu+F0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0NzVmYjA5MzRjZjZhNThkY2NlZjExMDg3NWRiZTVlM2U4
YjZiNzUwHhcNMjIxMTA4MTIxODQ0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NmQ5OTEyYmMwZmYxMzY1OTJkZWQzYjI4NTJhMjdlM2ExNjRkOWNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAivMAJs6xwILCuvikxw1oW06JxFcI
sOGpbm37OpZ/E7ricFRw0dFKIeViWoM+MWxBKsB+KZ8aPlhmE1K3P+EgUby15TSo
OJGStQHMC6svos/v+JPvz/3tcFrkgU9NV8grjwOoKY7FZ5qJn/6XeRRJQk7Yn0kb
lAW4yjT2MZVe9T1a74rzD7ut0CccN+ra6MWsv67omS916PVfQoilwFslozeCrAMb
RcWAWQcZ1SEzo5t8cVRw/2XgXJxwdjbevYr0dYBrFMsUrHQtpF6fN4vAIBVjl9nW
LcBJOPj1KzEKk0+3sbssXYDDCUl4iytcgvAf5tyBPcnxL/HcAx968ynT3QIDAQAB
o4IDWjCCA1YwHQYDVR0OBBYEFFbZkSvA/xNlkt7TsoUqJ+OhZNnLMB8GA1UdIwQY
MBaAFNR1+wk0z2pY3M7xEIddvl4+i2t1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYt
Yzc5MTRhYjY0MjczLzEvVnRtUks4RF9FMldTM3RPeWhTb240NkZrMmNzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYtYzc5MTRhYjY0Mjcz
LzEvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBbgYIKwYBBQUHAQcBAf8EggFdMIIBWTCCAUYEAgABMIIB
PgMEBAXiEAMEAi1aNAMEAi2QDAMEAi2dOAMEAk+OuAMEAlV19AMEAFXZgTAMAwQC
VdmEAwQCVdmIMAwDBABV2Y0DBARV2YADBAFV2ZIwDAMEAVXZlgMEBVXZgAMEAFZp
6gMEBVhiYAMEAlvykAMEA1v1yAMEAl1c4AMEAoscTAMEAo1iNAMEArkr/DAMAwQA
uSzpAwQCuSzoAwQCuTNsAwQCuVNoAwQCuV3oAwQCuV4wAwQCuYIYAwQCuYMMAwQC
uYYoAwQCuaKsAwQCubBUAwQCucTIAwQCucq8AwQCudIQAwQCudjYAwQCueq4AwQC
vNAUAwQDvPFgAwQCwSDsAwQAwVsAAwQAwVsKAwQCwjEAMAwDBAPDUmgDBADDUmoD
BADDUnwDBALUP3QwDAMEANQ/eQMEAtQ/eAMEBdRooDANBAIAAjAHAwUDKgaIQDAN
BgkqhkiG9w0BAQsFAAOCAQEAkhXZdbN5K5sB8WtgtZe3L67K6kAGhHUT4yt86lqC
o1ghz8Y+Jcp+sLTFr6+rPhZfW032GZDpkgu2cKcqBHNPRG0f3tK0gc9hguchjcHO
H05z+RnpZjWCKPzAD6MvkRFVrlwcd4zCm9LZiNawVTxfJI7XQJAAiaEdi6mdiMpX
vcpM99lIObU7y7SoP+mNnANsIoS0liTED3c/toMVM7Mcwt/yQ+XW1JTML86OH9Fu
t0iqPM6gKFL+CBIDP21XJWBXgqPKNF+aqbtlhBzFTvHhZvFXlvVIZfMFINbfj/qn
3zz0Mj6bfySKnHP5Utjsn18NmeGJZuY9rBzOQGB9euSseQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:36 2024 by rpki-client on console-fra.rpki-client.org