Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/wa-bLFsp7B7gtwLf19Y4BVNYoCo.roa
File: wa-bLFsp7B7gtwLf19Y4BVNYoCo.roa (raw, json)
Hash identifier: IbsftOSsU8yOsDVahcilvnGpiAlmNjgPrxQ46yBpFKw=
Subject key identifier: C1:AF:9B:2C:5B:29:EC:1E:E0:B7:02:DF:D7:D6:38:05:53:58:A0:2A
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 0183A37B3B779844BE39FB9C7809B033E376
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/wa-bLFsp7B7gtwLf19Y4BVNYoCo.roa
Signing time: Tue 04 Oct 2022 14:51:45 +0000
ROA not before: Tue 04 Oct 2022 14:51:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.134.40.0/22 maxlen: 24
212.63.118.0/24 maxlen: 24
212.63.117.0/24 maxlen: 24
212.63.116.0/24 maxlen: 24
212.63.116.0/22 maxlen: 24
212.63.121.0/24 maxlen: 24
212.63.119.0/24 maxlen: 24
212.63.123.0/24 maxlen: 24
212.63.122.0/24 maxlen: 24
185.83.104.0/22 maxlen: 24
45.144.12.0/22 maxlen: 24
188.208.20.0/22 maxlen: 24
193.32.236.0/22 maxlen: 24
45.90.52.0/22 maxlen: 24
185.94.48.0/22 maxlen: 24
91.245.200.0/21 maxlen: 24
185.93.232.0/22 maxlen: 24
185.131.12.0/22 maxlen: 22
93.92.224.0/22 maxlen: 24
85.217.132.0/24 maxlen: 24
85.217.129.0/24 maxlen: 24
85.217.139.0/24 maxlen: 24
85.217.138.0/24 maxlen: 24
85.217.137.0/24 maxlen: 24
85.217.136.0/24 maxlen: 24
85.217.135.0/24 maxlen: 24
85.217.134.0/24 maxlen: 24
85.217.133.0/24 maxlen: 24
85.217.141.0/24 maxlen: 24
85.217.143.0/24 maxlen: 24
85.217.142.0/24 maxlen: 24
85.217.152.0/24 maxlen: 24
85.217.151.0/24 maxlen: 24
85.217.150.0/24 maxlen: 24
85.217.147.0/24 maxlen: 24
85.217.146.0/24 maxlen: 24
85.217.155.0/24 maxlen: 24
85.217.154.0/24 maxlen: 24
85.217.153.0/24 maxlen: 24
85.217.159.0/24 maxlen: 24
85.217.158.0/24 maxlen: 24
85.217.157.0/24 maxlen: 24
85.217.156.0/24 maxlen: 24
185.130.24.0/23 maxlen: 24
194.49.0.0/22 maxlen: 24
185.130.26.0/23 maxlen: 24
188.241.96.0/21 maxlen: 24
45.157.56.0/22 maxlen: 24
185.234.184.0/24 maxlen: 24
185.234.186.0/23 maxlen: 23
185.234.185.0/24 maxlen: 24
185.44.233.0/24 maxlen: 24
185.44.234.0/23 maxlen: 24
185.176.84.0/22 maxlen: 24
185.210.16.0/22 maxlen: 24
79.142.184.0/22 maxlen: 24
185.51.108.0/22 maxlen: 24
185.162.172.0/23 maxlen: 24
185.162.175.0/24 maxlen: 24
185.162.174.0/24 maxlen: 24
195.82.105.0/24 maxlen: 24
195.82.104.0/24 maxlen: 24
195.82.106.0/24 maxlen: 24
195.82.124.0/24 maxlen: 24
185.216.216.0/22 maxlen: 22
185.216.218.0/23 maxlen: 23
185.216.217.0/24 maxlen: 24
139.28.76.0/22 maxlen: 22
185.196.203.0/24 maxlen: 24
185.196.202.0/24 maxlen: 24
185.196.200.0/23 maxlen: 24
5.226.16.0/20 maxlen: 24
91.242.144.0/22 maxlen: 24
85.117.244.0/22 maxlen: 24
185.202.188.0/22 maxlen: 24
88.98.98.0/24 maxlen: 24
88.98.96.0/20 maxlen: 24
88.98.96.0/23 maxlen: 23
88.98.104.0/23 maxlen: 24
88.98.100.0/22 maxlen: 24
88.98.99.0/24 maxlen: 24
88.98.111.0/24 maxlen: 24
88.98.110.0/24 maxlen: 24
88.98.108.0/22 maxlen: 24
88.98.106.0/23 maxlen: 24
88.98.112.0/20 maxlen: 24
141.98.52.0/22 maxlen: 24
2a06:8840::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a3:7b:3b:77:98:44:be:39:fb:9c:78:09:b0:33:e3:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Oct 4 14:51:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c1af9b2c5b29ec1ee0b702dfd7d638055358a02a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:06:0b:2b:2a:85:c3:a2:ac:34:be:ec:b7:1c:
53:26:3c:b2:2e:1c:a5:b0:3c:e3:51:c5:8e:0b:14:
ec:79:84:6a:96:ac:90:69:19:7d:03:7d:88:da:ed:
98:68:17:53:dd:d5:41:24:8a:a5:58:ea:50:b2:fa:
5d:dc:32:40:69:76:a8:18:d9:c4:e5:8e:8d:ea:7d:
d8:56:19:38:ed:2c:66:0b:89:6e:f4:0e:1c:2f:a8:
a8:99:61:e1:37:fc:04:4e:0c:20:23:c7:16:70:7a:
5c:fa:bc:1e:1e:a6:0b:29:4c:4a:88:ee:4e:a8:c2:
2e:bb:0f:ad:db:d6:47:8a:9b:cd:9d:41:16:b9:02:
da:d0:6e:e8:d1:50:b3:5d:4f:2c:fc:62:5d:c9:4a:
6c:d6:35:ee:d0:2c:29:97:e3:a4:1d:c1:99:81:a8:
82:5f:64:e9:9a:35:07:ad:dd:cd:90:0e:2c:2a:91:
12:aa:77:ae:31:23:43:8e:e4:29:9c:08:90:48:30:
8d:5a:b3:74:e3:c0:e1:3b:1c:0c:bc:fa:c1:8e:fc:
41:16:7d:6b:ee:70:91:ca:7b:2e:81:cb:7a:44:22:
9a:56:2a:e1:5e:ba:52:fc:b6:59:c0:24:78:68:57:
3e:3d:99:f5:23:47:6d:c8:d6:a9:b1:86:1d:c0:23:
ac:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:AF:9B:2C:5B:29:EC:1E:E0:B7:02:DF:D7:D6:38:05:53:58:A0:2A
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/wa-bLFsp7B7gtwLf19Y4BVNYoCo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.16.0/20
45.90.52.0/22
45.144.12.0/22
45.157.56.0/22
79.142.184.0/22
85.117.244.0/22
85.217.129.0/24
85.217.132.0-85.217.139.255
85.217.141.0-85.217.143.255
85.217.146.0/23
85.217.150.0-85.217.159.255
88.98.96.0/19
91.242.144.0/22
91.245.200.0/21
93.92.224.0/22
139.28.76.0/22
141.98.52.0/22
185.44.233.0-185.44.235.255
185.51.108.0/22
185.83.104.0/22
185.93.232.0/22
185.94.48.0/22
185.130.24.0/22
185.131.12.0/22
185.134.40.0/22
185.162.172.0/22
185.176.84.0/22
185.196.200.0/22
185.202.188.0/22
185.210.16.0/22
185.216.216.0/22
185.234.184.0/22
188.208.20.0/22
188.241.96.0/21
193.32.236.0/22
194.49.0.0/22
195.82.104.0-195.82.106.255
195.82.124.0/24
212.63.116.0/22
212.63.121.0-212.63.123.255
IPv6:
2a06:8840::/29
Signature Algorithm: sha256WithRSAEncryption
2f:65:cf:e2:ba:e6:ee:98:cb:43:35:32:d5:a7:26:80:55:14:
57:5b:32:aa:3a:70:2b:f5:7e:50:b4:9b:8e:31:c5:09:c3:6a:
b0:5c:1f:8e:b3:bd:a1:9b:e3:ad:37:4d:1e:49:dc:8a:94:a9:
2c:77:45:57:f6:9d:6f:c1:80:b7:6e:1d:ae:06:af:d6:3a:e9:
3d:47:9c:7b:e6:9b:a5:b1:81:8f:c9:35:69:28:9d:32:ef:83:
ac:27:b9:db:27:ba:63:38:82:8b:b5:7d:03:f4:5e:6f:b2:f0:
fa:e8:21:d0:13:d6:f6:fa:78:ed:1f:5d:6b:23:d0:56:f0:3a:
5d:e3:65:f3:66:62:fe:81:6b:59:7b:7a:18:c7:a2:90:77:25:
04:1d:72:43:66:cf:25:57:0a:ab:53:50:75:c0:f5:bc:81:06:
9e:95:07:67:9d:03:9e:cb:c7:01:8f:88:14:8d:36:21:bc:fb:
4d:27:5a:3b:b1:d4:10:00:2e:5e:ba:30:54:a7:70:7f:61:6a:
51:9a:ce:78:71:79:fc:de:e9:12:4d:32:f3:3c:b3:a2:db:14:
c2:0c:67:8b:7b:58:ff:51:11:69:3d:6d:68:af:7a:b3:00:5e:
32:f7:cb:5a:66:07:27:8d:22:09:df:fb:a2:96:0b:ba:22:b6:
c5:f1:08:5b
-----BEGIN CERTIFICATE-----
MIIGMDCCBRigAwIBAgISAYOjezt3mES+OfuceAmwM+N2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0NzVmYjA5MzRjZjZhNThkY2NlZjExMDg3NWRiZTVlM2U4
YjZiNzUwHhcNMjIxMDA0MTQ1MTQ1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMWFmOWIyYzViMjllYzFlZTBiNzAyZGZkN2Q2MzgwNTUzNThhMDJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmQYLKyqFw6KsNL7stxxTJjyyLhyl
sDzjUcWOCxTseYRqlqyQaRl9A32I2u2YaBdT3dVBJIqlWOpQsvpd3DJAaXaoGNnE
5Y6N6n3YVhk47SxmC4lu9A4cL6iomWHhN/wETgwgI8cWcHpc+rweHqYLKUxKiO5O
qMIuuw+t29ZHipvNnUEWuQLa0G7o0VCzXU8s/GJdyUps1jXu0Cwpl+OkHcGZgaiC
X2TpmjUHrd3NkA4sKpESqneuMSNDjuQpnAiQSDCNWrN048DhOxwMvPrBjvxBFn1r
7nCRynsugct6RCKaVirhXrpS/LZZwCR4aFc+PZn1I0dtyNapsYYdwCOsmQIDAQAB
o4IDPDCCAzgwHQYDVR0OBBYEFMGvmyxbKewe4LcC39fWOAVTWKAqMB8GA1UdIwQY
MBaAFNR1+wk0z2pY3M7xEIddvl4+i2t1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYt
Yzc5MTRhYjY0MjczLzEvd2EtYkxGc3A3QjdndHdMZjE5WTRCVk5Zb0NvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYtYzc5MTRhYjY0Mjcz
LzEvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBUAYIKwYBBQUHAQcBAf8EggE/MIIBOzCCASgEAgABMIIB
IAMEBAXiEAMEAi1aNAMEAi2QDAMEAi2dOAMEAk+OuAMEAlV19AMEAFXZgTAMAwQC
VdmEAwQCVdmIMAwDBABV2Y0DBARV2YADBAFV2ZIwDAMEAVXZlgMEBVXZgAMEBVhi
YAMEAlvykAMEA1v1yAMEAl1c4AMEAoscTAMEAo1iNDAMAwQAuSzpAwQCuSzoAwQC
uTNsAwQCuVNoAwQCuV3oAwQCuV4wAwQCuYIYAwQCuYMMAwQCuYYoAwQCuaKsAwQC
ubBUAwQCucTIAwQCucq8AwQCudIQAwQCudjYAwQCueq4AwQCvNAUAwQDvPFgAwQC
wSDsAwQCwjEAMAwDBAPDUmgDBADDUmoDBADDUnwDBALUP3QwDAMEANQ/eQMEAtQ/
eDANBAIAAjAHAwUDKgaIQDANBgkqhkiG9w0BAQsFAAOCAQEAL2XP4rrm7pjLQzUy
1acmgFUUV1syqjpwK/V+ULSbjjHFCcNqsFwfjrO9oZvjrTdNHkncipSpLHdFV/ad
b8GAt24drgav1jrpPUece+abpbGBj8k1aSidMu+DrCe52ye6YziCi7V9A/Reb7Lw
+ugh0BPW9vp47R9dayPQVvA6XeNl82Zi/oFrWXt6GMeikHclBB1yQ2bPJVcKq1NQ
dcD1vIEGnpUHZ50DnsvHAY+IFI02Ibz7TSdaO7HUEAAuXrowVKdwf2FqUZrOeHF5
/N7pEk0y8zyzotsUwgxni3tY/1ERaT1taK96swBeMvfLWmYHJ40iCd/7opYLuiK2
xfEIWw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:37 2024 by rpki-client on console-fra.rpki-client.org