Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/FxiNTtg4BCvRyuRP_FXsN0QoAsQ.roa
File: FxiNTtg4BCvRyuRP_FXsN0QoAsQ.roa (raw, json)
Hash identifier: wFNpckqF0UvX5DF4QsafsWCT/UqluxEMKhscrW27PQI=
Subject key identifier: 17:18:8D:4E:D8:38:04:2B:D1:CA:E4:4F:FC:55:EC:37:44:28:02:C4
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 088A7D3E
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/FxiNTtg4BCvRyuRP_FXsN0QoAsQ.roa
Signing time: Mon 04 Jul 2022 08:59:09 +0000
ROA not before: Mon 04 Jul 2022 08:59:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201942
IP address blocks: 91.235.41.0/24 maxlen: 24
91.235.40.0/24 maxlen: 24
185.201.152.0/22 maxlen: 22
185.204.244.0/22 maxlen: 22
45.137.160.0/22 maxlen: 22
45.147.104.0/22 maxlen: 22
185.224.220.0/22 maxlen: 22
185.245.32.0/23 maxlen: 23
45.147.116.0/22 maxlen: 24
185.107.152.0/22 maxlen: 22
185.124.108.0/22 maxlen: 22
212.80.208.0/22 maxlen: 22
185.228.160.0/23 maxlen: 23
185.228.162.0/24 maxlen: 24
185.232.8.0/22 maxlen: 22
193.26.152.0/22 maxlen: 22
109.230.250.0/24 maxlen: 24
93.92.228.0/22 maxlen: 22
31.170.100.0/22 maxlen: 22
185.163.168.0/22 maxlen: 22
185.220.240.0/22 maxlen: 22
185.227.176.0/22 maxlen: 22
185.220.248.0/22 maxlen: 22
185.106.124.0/22 maxlen: 22
185.210.232.0/22 maxlen: 22
185.150.78.0/23 maxlen: 24
193.8.112.0/22 maxlen: 24
81.21.228.0/22 maxlen: 22
109.230.194.0/24 maxlen: 24
185.210.152.0/22 maxlen: 22
95.214.144.0/22 maxlen: 22
185.224.184.0/22 maxlen: 22
185.218.16.0/22 maxlen: 22
185.197.216.0/22 maxlen: 24
185.227.204.0/24 maxlen: 24
185.221.16.0/22 maxlen: 22
185.221.20.0/22 maxlen: 22
185.200.228.0/22 maxlen: 22
185.163.232.0/22 maxlen: 22
185.166.36.0/22 maxlen: 22
185.247.4.0/24 maxlen: 24
185.230.48.0/22 maxlen: 22
194.38.56.0/22 maxlen: 22
185.230.52.0/22 maxlen: 22
185.230.64.0/22 maxlen: 22
85.115.192.0/22 maxlen: 22
185.239.255.0/24 maxlen: 24
93.189.123.0/24 maxlen: 24
93.189.120.0/24 maxlen: 24
193.17.180.0/22 maxlen: 22
85.31.60.0/22 maxlen: 22
45.159.76.0/22 maxlen: 24
185.223.80.0/22 maxlen: 22
194.41.118.0/24 maxlen: 24
194.41.116.0/22 maxlen: 24
185.105.232.0/22 maxlen: 22
194.35.40.0/24 maxlen: 24
185.217.12.0/22 maxlen: 22
185.223.220.0/22 maxlen: 22
185.176.188.0/22 maxlen: 22
185.166.172.0/22 maxlen: 22
193.35.88.0/22 maxlen: 22
185.119.48.0/22 maxlen: 22
185.179.228.0/22 maxlen: 22
185.179.232.0/22 maxlen: 22
185.129.104.0/22 maxlen: 22
185.250.180.0/22 maxlen: 22
185.128.52.0/22 maxlen: 24
185.118.52.0/23 maxlen: 23
185.118.54.0/23 maxlen: 23
185.226.8.0/22 maxlen: 22
185.212.84.0/22 maxlen: 22
212.115.44.0/22 maxlen: 22
185.105.12.0/22 maxlen: 22
185.202.204.0/22 maxlen: 22
45.81.152.0/22 maxlen: 24
185.196.42.0/24 maxlen: 24
185.196.43.0/24 maxlen: 24
185.196.40.0/22 maxlen: 22
185.239.253.0/24 maxlen: 24
185.239.252.0/24 maxlen: 24
185.175.152.0/22 maxlen: 22
185.222.188.0/22 maxlen: 22
185.226.28.0/22 maxlen: 22
185.199.44.0/22 maxlen: 22
185.209.72.0/22 maxlen: 22
185.199.52.0/22 maxlen: 22
185.91.108.0/22 maxlen: 22
88.135.64.0/22 maxlen: 22
185.162.52.0/22 maxlen: 22
185.216.28.0/22 maxlen: 22
185.189.64.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143293758 (0x88a7d3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 4 08:59:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=17188d4ed838042bd1cae44ffc55ec37442802c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:fe:e4:1f:af:5e:e7:83:ad:4e:8c:a1:d4:84:
d0:7b:f0:3a:3f:63:e9:4f:fa:bd:78:fa:a7:5f:e1:
6b:36:5c:21:b2:b8:70:fd:00:81:63:1f:83:22:36:
9d:e9:ed:b4:ff:85:33:4b:d4:de:2c:90:7c:12:fd:
e0:ce:22:f9:4c:06:ce:a4:e5:ab:7f:63:09:8a:fd:
96:3f:06:59:d3:31:47:ca:ad:d8:b7:90:a5:bc:14:
e4:6a:ea:f1:40:8d:fd:5c:5a:25:06:8b:9a:c7:e9:
ed:ff:ce:73:bd:79:d8:d3:c5:01:31:8d:c8:b3:90:
2d:cf:77:e1:7c:c8:4c:ac:24:df:7d:be:33:c6:a1:
bd:53:a3:ad:47:6a:dc:54:5f:78:32:f7:a5:66:0b:
e9:fc:d7:c4:df:ea:9b:ff:d9:ab:ac:55:7f:c7:85:
ed:6a:d2:b9:9c:6b:fd:b5:24:11:cb:03:e6:4a:98:
52:b2:52:1a:da:ae:ec:6a:29:8b:c4:a0:b0:8c:1b:
bc:98:8c:ca:2f:7e:36:89:b1:b8:04:8b:4b:d3:c0:
29:a2:e3:c6:f9:20:f1:db:ee:31:fb:f0:12:b5:21:
f7:2d:da:dd:40:30:f8:61:3a:63:bb:38:bc:86:a5:
31:48:8e:2e:ba:ad:e7:3e:3d:05:09:bf:d8:87:52:
bd:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:18:8D:4E:D8:38:04:2B:D1:CA:E4:4F:FC:55:EC:37:44:28:02:C4
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/FxiNTtg4BCvRyuRP_FXsN0QoAsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.100.0/22
45.81.152.0/22
45.137.160.0/22
45.147.104.0/22
45.147.116.0/22
45.159.76.0/22
81.21.228.0/22
85.31.60.0/22
85.115.192.0/22
88.135.64.0/22
91.235.40.0/23
93.92.228.0/22
93.189.120.0/24
93.189.123.0/24
95.214.144.0/22
109.230.194.0/24
109.230.250.0/24
185.91.108.0/22
185.105.12.0/22
185.105.232.0/22
185.106.124.0/22
185.107.152.0/22
185.118.52.0/22
185.119.48.0/22
185.124.108.0/22
185.128.52.0/22
185.129.104.0/22
185.150.78.0/23
185.162.52.0/22
185.163.168.0/22
185.163.232.0/22
185.166.36.0/22
185.166.172.0/22
185.175.152.0/22
185.176.188.0/22
185.179.228.0-185.179.235.255
185.189.64.0/22
185.196.40.0/22
185.197.216.0/22
185.199.44.0/22
185.199.52.0/22
185.200.228.0/22
185.201.152.0/22
185.202.204.0/22
185.204.244.0/22
185.209.72.0/22
185.210.152.0/22
185.210.232.0/22
185.212.84.0/22
185.216.28.0/22
185.217.12.0/22
185.218.16.0/22
185.220.240.0/22
185.220.248.0/22
185.221.16.0/21
185.222.188.0/22
185.223.80.0/22
185.223.220.0/22
185.224.184.0/22
185.224.220.0/22
185.226.8.0/22
185.226.28.0/22
185.227.176.0/22
185.227.204.0/24
185.228.160.0-185.228.162.255
185.230.48.0/21
185.230.64.0/22
185.232.8.0/22
185.239.252.0/23
185.239.255.0/24
185.245.32.0/23
185.247.4.0/24
185.250.180.0/22
193.8.112.0/22
193.17.180.0/22
193.26.152.0/22
193.35.88.0/22
194.35.40.0/24
194.38.56.0/22
194.41.116.0/22
212.80.208.0/22
212.115.44.0/22
Signature Algorithm: sha256WithRSAEncryption
35:39:aa:aa:2b:2a:c5:73:65:fa:46:e5:35:a6:3c:ca:b9:e9:
23:0d:ae:ad:f3:63:9c:22:e2:3c:a9:28:55:aa:f0:b4:b9:69:
76:12:76:e3:a9:d1:d8:18:4c:ae:6d:2b:e0:9d:ce:68:b6:df:
f5:33:d0:eb:13:43:c8:1e:07:66:56:03:15:ae:36:65:c7:97:
a4:6f:12:12:7e:c4:44:50:97:5d:1f:54:6f:37:20:35:ae:82:
aa:f4:14:b1:06:10:b5:b5:90:99:24:be:86:02:9e:ad:e2:6f:
ff:41:22:ce:d1:f6:b8:1d:aa:31:19:69:4f:e8:fb:69:19:46:
4a:20:e6:1d:aa:fc:3b:0c:ac:56:cb:c4:d5:23:59:1c:e3:3c:
eb:cf:7b:e6:f7:dd:47:80:75:89:cd:5b:82:90:51:8b:5a:85:
19:f6:03:ce:37:cd:c8:db:dd:06:5d:a8:66:5b:a8:77:e3:80:
70:d9:25:e7:ad:35:64:70:2b:7c:54:0d:0d:34:96:fb:f6:a3:
5a:3f:19:9d:5d:a6:d6:79:51:3f:0b:74:3e:8e:7a:04:0f:07:
55:7c:b3:c7:2a:7b:e2:66:17:51:c6:cf:3f:4d:78:ef:c9:a3:
5c:ba:6a:76:fe:df:83:89:40:c1:39:2d:d3:17:3b:36:92:f3:
de:81:ab:63
-----BEGIN CERTIFICATE-----
MIIG7zCCBdegAwIBAgIECIp9PjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MDY3ODRjMTA1MDg1YjlkNmFkNWY3M2EwM2IyMGQ5YTVjMTE0Y2FmMB4XDTIyMDcw
NDA4NTkwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTcxODhkNGVkODM4
MDQyYmQxY2FlNDRmZmM1NWVjMzc0NDI4MDJjNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALX+5B+vXueDrU6ModSE0HvwOj9j6U/6vXj6p1/hazZcIbK4
cP0AgWMfgyI2nenttP+FM0vU3iyQfBL94M4i+UwGzqTlq39jCYr9lj8GWdMxR8qt
2LeQpbwU5Grq8UCN/VxaJQaLmsfp7f/Oc7152NPFATGNyLOQLc934XzITKwk332+
M8ahvVOjrUdq3FRfeDL3pWYL6fzXxN/qm//Zq6xVf8eF7WrSuZxr/bUkEcsD5kqY
UrJSGtqu7Gopi8SgsIwbvJiMyi9+NomxuASLS9PAKaLjxvkg8dvuMfvwErUh9y3a
3UAw+GE6Y7s4vIalMUiOLrqt5z49BQm/2IdSvb8CAwEAAaOCBAkwggQFMB0GA1Ud
DgQWBBQXGI1O2DgEK9HK5E/8Vew3RCgCxDAfBgNVHSMEGDAWgBRgZ4TBBQhbnWrV
9zoDsg2aXBFMrzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1lHZUV3UVVJVzUxcTFmYzZBN0lObWx3UlRLOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvMmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFiYy8x
L0Z4aU5UdGc0QkN2Unl1UlBfRlhzTjBRb0FzUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
MmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFiYy8xL1lHZUV3UVVJVzUx
cTFmYzZBN0lObWx3UlRLOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCC
Ah0GCCsGAQUFBwEHAQH/BIICDDCCAggwggIEBAIAATCCAfwDBAIfqmQDBAItUZgD
BAItiaADBAItk2gDBAItk3QDBAItn0wDBAJRFeQDBAJVHzwDBAJVc8ADBAJYh0AD
BAFb6ygDBAJdXOQDBABdvXgDBABdvXsDBAJf1pADBABt5sIDBABt5voDBAK5W2wD
BAK5aQwDBAK5aegDBAK5anwDBAK5a5gDBAK5djQDBAK5dzADBAK5fGwDBAK5gDQD
BAK5gWgDBAG5lk4DBAK5ojQDBAK5o6gDBAK5o+gDBAK5piQDBAK5pqwDBAK5r5gD
BAK5sLwwDAMEArmz5AMEArmz6AMEArm9QAMEArnEKAMEArnF2AMEArnHLAMEArnH
NAMEArnI5AMEArnJmAMEArnKzAMEArnM9AMEArnRSAMEArnSmAMEArnS6AMEArnU
VAMEArnYHAMEArnZDAMEArnaEAMEArnc8AMEArnc+AMEA7ndEAMEArnevAMEArnf
UAMEArnf3AMEArnguAMEArng3AMEArniCAMEArniHAMEArnjsAMEALnjzDAMAwQF
ueSgAwQAueSiAwQDueYwAwQCueZAAwQCuegIAwQBue/8AwQAue//AwQBufUgAwQA
ufcEAwQCufq0AwQCwQhwAwQCwRG0AwQCwRqYAwQCwSNYAwQAwiMoAwQCwiY4AwQC
wil0AwQC1FDQAwQC1HMsMA0GCSqGSIb3DQEBCwUAA4IBAQA1OaqqKyrFc2X6RuU1
pjzKuekjDa6t82OcIuI8qShVqvC0uWl2EnbjqdHYGEyubSvgnc5ott/1M9DrE0PI
HgdmVgMVrjZlx5ekbxISfsREUJddH1RvNyA1roKq9BSxBhC1tZCZJL6GAp6t4m//
QSLO0fa4HaoxGWlP6PtpGUZKIOYdqvw7DKxWy8TVI1kc4zzrz3vm991HgHWJzVuC
kFGLWoUZ9gPON83I290GXahmW6h344Bw2SXnrTVkcCt8VA0NNJb79qNaPxmdXabW
eVE/C3Q+jnoEDwdVfLPHKnviZhdRxs8/TXjvyaNcump2/t+DiUDBOS3TFzs2kvPe
gatj
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:21 2024 by rpki-client on console-ams.rpki-client.org