Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/C0g7GoajodsgSxDFvzOCY-9RhwY.roa
File: C0g7GoajodsgSxDFvzOCY-9RhwY.roa (raw, json)
Hash identifier: 4DqE/X+3nUaGN7r95L5f4mFIzCFb2h4X2bwqLkos9D4=
Subject key identifier: 0B:48:3B:1A:86:A3:A1:DB:20:4B:10:C5:BF:33:82:63:EF:51:87:06
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0183A3D6CB3E3F74E3EF09F7618752DB29DF
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/C0g7GoajodsgSxDFvzOCY-9RhwY.roa
Signing time: Tue 04 Oct 2022 16:31:46 +0000
ROA not before: Tue 04 Oct 2022 16:31:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201942
IP address blocks: 91.235.41.0/24 maxlen: 24
91.235.40.0/24 maxlen: 24
185.201.152.0/22 maxlen: 24
185.204.244.0/22 maxlen: 24
45.137.160.0/22 maxlen: 24
45.147.104.0/22 maxlen: 24
185.224.220.0/22 maxlen: 24
185.245.32.0/23 maxlen: 23
45.147.116.0/22 maxlen: 24
185.107.152.0/22 maxlen: 24
185.124.108.0/22 maxlen: 24
212.80.208.0/22 maxlen: 24
185.232.8.0/22 maxlen: 24
193.26.152.0/22 maxlen: 24
109.230.250.0/24 maxlen: 24
93.92.228.0/22 maxlen: 24
31.170.100.0/22 maxlen: 24
185.163.168.0/22 maxlen: 24
185.220.240.0/22 maxlen: 24
185.227.176.0/22 maxlen: 24
185.220.248.0/22 maxlen: 24
185.106.124.0/22 maxlen: 24
185.210.232.0/22 maxlen: 24
185.150.78.0/23 maxlen: 24
193.8.112.0/22 maxlen: 24
81.21.228.0/22 maxlen: 24
109.230.194.0/24 maxlen: 24
185.210.152.0/22 maxlen: 24
95.214.144.0/22 maxlen: 24
185.224.184.0/22 maxlen: 24
185.218.16.0/22 maxlen: 24
185.197.216.0/22 maxlen: 24
185.227.204.0/24 maxlen: 24
185.221.16.0/22 maxlen: 24
185.221.20.0/22 maxlen: 24
185.200.228.0/22 maxlen: 24
185.163.232.0/22 maxlen: 24
185.166.36.0/22 maxlen: 24
185.247.4.0/24 maxlen: 24
185.230.48.0/22 maxlen: 24
194.38.56.0/22 maxlen: 24
185.230.52.0/22 maxlen: 24
185.230.64.0/22 maxlen: 24
85.115.192.0/22 maxlen: 24
185.239.255.0/24 maxlen: 24
93.189.123.0/24 maxlen: 24
93.189.120.0/24 maxlen: 24
193.17.180.0/22 maxlen: 24
85.31.60.0/22 maxlen: 24
45.159.76.0/22 maxlen: 24
185.223.80.0/22 maxlen: 24
194.41.118.0/24 maxlen: 24
194.41.116.0/22 maxlen: 24
185.105.232.0/22 maxlen: 24
194.35.40.0/24 maxlen: 24
185.217.12.0/22 maxlen: 24
185.223.220.0/22 maxlen: 24
185.176.188.0/22 maxlen: 24
185.166.172.0/22 maxlen: 24
193.35.88.0/22 maxlen: 24
185.119.48.0/22 maxlen: 24
185.179.228.0/22 maxlen: 24
185.179.232.0/22 maxlen: 24
185.129.104.0/22 maxlen: 24
185.250.180.0/22 maxlen: 24
185.128.52.0/22 maxlen: 24
185.118.52.0/23 maxlen: 23
185.118.54.0/23 maxlen: 23
185.226.8.0/22 maxlen: 24
185.212.84.0/22 maxlen: 24
212.115.44.0/22 maxlen: 24
185.105.12.0/22 maxlen: 24
185.202.204.0/22 maxlen: 24
45.81.152.0/22 maxlen: 24
185.196.42.0/24 maxlen: 24
185.196.43.0/24 maxlen: 24
185.196.40.0/22 maxlen: 24
185.239.252.0/22 maxlen: 24
185.239.253.0/24 maxlen: 24
185.239.252.0/24 maxlen: 24
185.175.152.0/22 maxlen: 24
185.222.188.0/22 maxlen: 24
185.226.28.0/22 maxlen: 24
185.199.44.0/22 maxlen: 24
185.209.72.0/22 maxlen: 24
185.199.52.0/22 maxlen: 24
185.91.108.0/22 maxlen: 24
88.135.64.0/22 maxlen: 24
185.162.52.0/22 maxlen: 24
185.216.28.0/22 maxlen: 24
185.189.64.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a3:d6:cb:3e:3f:74:e3:ef:09:f7:61:87:52:db:29:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Oct 4 16:31:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b483b1a86a3a1db204b10c5bf338263ef518706
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:61:c1:71:a6:28:e6:51:4c:36:81:c6:1c:c9:
a8:34:ae:d6:f9:c0:8b:ba:c1:93:75:d0:a0:a1:87:
4c:b3:ec:ec:d6:53:65:58:e8:18:3f:44:c6:94:db:
f2:44:96:4b:98:d2:19:1a:34:6e:4a:c7:3e:55:f3:
11:75:f7:47:27:3a:14:27:b7:b7:be:ab:63:05:ca:
54:fa:76:0d:ea:48:9b:7a:7a:9f:f9:aa:48:1c:70:
1e:a2:9d:f0:ae:ac:58:99:48:36:df:6e:f4:64:e1:
c5:25:0b:b5:ec:98:24:ed:5d:46:49:fc:92:d8:08:
ef:d8:e8:b3:88:66:8b:57:df:69:be:a6:89:7f:65:
33:15:19:65:23:f4:3a:8f:cc:3a:61:ed:e5:b7:87:
47:b9:10:77:90:0d:46:0c:7e:72:cd:f6:56:ba:a0:
b7:47:fb:fe:89:54:6b:cc:5e:0b:0c:b8:27:ad:b5:
97:e3:e9:fa:2f:a5:c0:67:f6:39:18:55:54:e3:56:
4b:2f:c9:4c:c1:d8:7f:dd:74:20:08:c4:17:a4:69:
81:a5:46:84:8e:a5:e9:93:87:af:8a:f3:30:a4:b0:
31:3e:6f:b9:26:9a:cc:27:0a:9f:9c:2f:72:3f:fd:
9b:ec:f8:ec:7d:f4:e4:51:00:63:cc:bb:91:1e:c8:
eb:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:48:3B:1A:86:A3:A1:DB:20:4B:10:C5:BF:33:82:63:EF:51:87:06
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/C0g7GoajodsgSxDFvzOCY-9RhwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.100.0/22
45.81.152.0/22
45.137.160.0/22
45.147.104.0/22
45.147.116.0/22
45.159.76.0/22
81.21.228.0/22
85.31.60.0/22
85.115.192.0/22
88.135.64.0/22
91.235.40.0/23
93.92.228.0/22
93.189.120.0/24
93.189.123.0/24
95.214.144.0/22
109.230.194.0/24
109.230.250.0/24
185.91.108.0/22
185.105.12.0/22
185.105.232.0/22
185.106.124.0/22
185.107.152.0/22
185.118.52.0/22
185.119.48.0/22
185.124.108.0/22
185.128.52.0/22
185.129.104.0/22
185.150.78.0/23
185.162.52.0/22
185.163.168.0/22
185.163.232.0/22
185.166.36.0/22
185.166.172.0/22
185.175.152.0/22
185.176.188.0/22
185.179.228.0-185.179.235.255
185.189.64.0/22
185.196.40.0/22
185.197.216.0/22
185.199.44.0/22
185.199.52.0/22
185.200.228.0/22
185.201.152.0/22
185.202.204.0/22
185.204.244.0/22
185.209.72.0/22
185.210.152.0/22
185.210.232.0/22
185.212.84.0/22
185.216.28.0/22
185.217.12.0/22
185.218.16.0/22
185.220.240.0/22
185.220.248.0/22
185.221.16.0/21
185.222.188.0/22
185.223.80.0/22
185.223.220.0/22
185.224.184.0/22
185.224.220.0/22
185.226.8.0/22
185.226.28.0/22
185.227.176.0/22
185.227.204.0/24
185.230.48.0/21
185.230.64.0/22
185.232.8.0/22
185.239.252.0/22
185.245.32.0/23
185.247.4.0/24
185.250.180.0/22
193.8.112.0/22
193.17.180.0/22
193.26.152.0/22
193.35.88.0/22
194.35.40.0/24
194.38.56.0/22
194.41.116.0/22
212.80.208.0/22
212.115.44.0/22
Signature Algorithm: sha256WithRSAEncryption
c0:95:2d:e6:8c:95:bb:fa:d0:f4:e9:87:1c:9d:1e:a1:76:0b:
c0:b3:7c:54:20:37:a5:b2:d3:91:1d:c7:f8:fa:d7:67:a8:74:
61:7c:4e:8d:71:31:90:4e:86:50:16:d9:79:1d:20:c5:31:97:
bd:f4:14:a2:7d:bd:13:88:a5:41:71:97:5e:6d:0d:72:0a:39:
67:93:4c:18:26:2d:d4:3b:0b:5f:21:57:4f:a9:6a:f8:04:06:
69:c7:0d:76:24:fd:5e:8c:a9:4d:7b:66:8d:86:8a:02:98:8f:
71:9b:a7:bc:8e:75:f6:f7:74:7d:ca:2a:fc:f9:c8:3c:01:99:
06:e5:d3:7d:13:e2:9f:0a:48:23:e0:25:e9:cb:97:2a:3e:3e:
35:b6:a4:ae:5a:5b:23:e7:78:7f:c1:a7:2b:0f:ed:1f:e1:e8:
c2:d3:f5:90:4f:c8:65:3e:50:33:88:20:41:ea:8e:2f:86:70:
a4:a4:e3:38:25:98:ad:57:1e:0d:d9:c2:8b:b7:ac:74:6b:2b:
2b:4e:c0:fb:a4:9a:4f:64:23:dd:7c:2d:94:3a:84:e3:ae:8f:
a6:80:d2:87:bc:e1:bb:31:46:d5:d1:06:d9:9e:c4:bb:43:d5:
11:d1:43:8c:d3:87:29:78:1e:6e:a0:35:74:c7:57:a8:72:6c:
d9:21:75:0a
-----BEGIN CERTIFICATE-----
MIIG6TCCBdGgAwIBAgISAYOj1ss+P3Tj7wn3YYdS2ynfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjIxMDA0MTYzMTQ2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYjQ4M2IxYTg2YTNhMWRiMjA0YjEwYzViZjMzODI2M2VmNTE4NzA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjGHBcaYo5lFMNoHGHMmoNK7W+cCL
usGTddCgoYdMs+zs1lNlWOgYP0TGlNvyRJZLmNIZGjRuSsc+VfMRdfdHJzoUJ7e3
vqtjBcpU+nYN6kibenqf+apIHHAeop3wrqxYmUg23270ZOHFJQu17Jgk7V1GSfyS
2Ajv2OiziGaLV99pvqaJf2UzFRllI/Q6j8w6Ye3lt4dHuRB3kA1GDH5yzfZWuqC3
R/v+iVRrzF4LDLgnrbWX4+n6L6XAZ/Y5GFVU41ZLL8lMwdh/3XQgCMQXpGmBpUaE
jqXpk4evivMwpLAxPm+5JprMJwqfnC9yP/2b7PjsffTkUQBjzLuRHsjrswIDAQAB
o4ID9TCCA/EwHQYDVR0OBBYEFAtIOxqGo6HbIEsQxb8zgmPvUYcGMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvQzBnN0dvYWpvZHNnU3hERnZ6T0NZLTlSaHdZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIICCQYIKwYBBQUHAQcBAf8EggH4MIIB9DCCAfAEAgABMIIB
6AMEAh+qZAMEAi1RmAMEAi2JoAMEAi2TaAMEAi2TdAMEAi2fTAMEAlEV5AMEAlUf
PAMEAlVzwAMEAliHQAMEAVvrKAMEAl1c5AMEAF29eAMEAF29ewMEAl/WkAMEAG3m
wgMEAG3m+gMEArlbbAMEArlpDAMEArlp6AMEArlqfAMEArlrmAMEArl2NAMEArl3
MAMEArl8bAMEArmANAMEArmBaAMEAbmWTgMEArmiNAMEArmjqAMEArmj6AMEArmm
JAMEArmmrAMEArmvmAMEArmwvDAMAwQCubPkAwQCubPoAwQCub1AAwQCucQoAwQC
ucXYAwQCuccsAwQCucc0AwQCucjkAwQCucmYAwQCucrMAwQCucz0AwQCudFIAwQC
udKYAwQCudLoAwQCudRUAwQCudgcAwQCudkMAwQCudoQAwQCudzwAwQCudz4AwQD
ud0QAwQCud68AwQCud9QAwQCud/cAwQCueC4AwQCueDcAwQCueIIAwQCueIcAwQC
ueOwAwQAuePMAwQDueYwAwQCueZAAwQCuegIAwQCue/8AwQBufUgAwQAufcEAwQC
ufq0AwQCwQhwAwQCwRG0AwQCwRqYAwQCwSNYAwQAwiMoAwQCwiY4AwQCwil0AwQC
1FDQAwQC1HMsMA0GCSqGSIb3DQEBCwUAA4IBAQDAlS3mjJW7+tD06YccnR6hdgvA
s3xUIDelstORHcf4+tdnqHRhfE6NcTGQToZQFtl5HSDFMZe99BSifb0TiKVBcZde
bQ1yCjlnk0wYJi3UOwtfIVdPqWr4BAZpxw12JP1ejKlNe2aNhooCmI9xm6e8jnX2
93R9yir8+cg8AZkG5dN9E+KfCkgj4CXpy5cqPj41tqSuWlsj53h/wacrD+0f4ejC
0/WQT8hlPlAziCBB6o4vhnCkpOM4JZitVx4N2cKLt6x0aysrTsD7pJpPZCPdfC2U
OoTjro+mgNKHvOG7MUbV0QbZnsS7Q9UR0UOM04cpeB5uoDV0x1eocmzZIXUK
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:21 2024 by rpki-client on console-ams.rpki-client.org