Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/D44O5HmO8dur4_Rodcflvr60UnI.roa
File: D44O5HmO8dur4_Rodcflvr60UnI.roa (raw, json)
Hash identifier: MCNEDm2g+UZJziEU70CN70ois651TiuztkSgymF9m2s=
Subject key identifier: 0F:8E:0E:E4:79:8E:F1:DB:AB:E3:F4:68:75:C7:E5:BE:BE:B4:52:72
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 1887C49E
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/D44O5HmO8dur4_Rodcflvr60UnI.roa
Signing time: Mon 31 Jan 2022 23:05:57 +0000
ROA not before: Mon 31 Jan 2022 23:05:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 91.189.184.0/24 maxlen: 24
77.83.158.0/24 maxlen: 32
91.189.185.0/24 maxlen: 24
77.83.156.0/24 maxlen: 32
85.209.253.0/24 maxlen: 24
77.243.95.0/24 maxlen: 32
77.243.93.0/24 maxlen: 32
193.16.9.0/24 maxlen: 32
185.117.20.0/23 maxlen: 32
5.253.138.0/24 maxlen: 32
194.36.101.0/24 maxlen: 24
185.238.241.0/24 maxlen: 24
147.78.221.0/24 maxlen: 32
185.238.240.0/24 maxlen: 24
185.133.75.0/24 maxlen: 32
185.141.205.0/24 maxlen: 24
185.214.70.0/24 maxlen: 24
45.153.168.0/24 maxlen: 32
213.232.107.0/24 maxlen: 32
45.151.172.0/23 maxlen: 32
185.166.237.0/24 maxlen: 24
185.211.49.0/24 maxlen: 24
45.14.44.0/24 maxlen: 32
45.14.45.0/24 maxlen: 32
185.207.178.0/24 maxlen: 24
185.227.240.0/24 maxlen: 24
79.174.23.0/24 maxlen: 32
79.174.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 411550878 (0x1887c49e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 31 23:05:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f8e0ee4798ef1dbabe3f46875c7e5bebeb45272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:87:07:c8:90:4d:76:5a:90:7d:85:58:26:3c:
bf:5c:ab:41:92:6a:66:c4:8c:bf:86:b5:d8:9c:9b:
fc:64:c4:ed:2f:db:e2:a7:5d:20:83:e6:b5:50:89:
cc:f3:60:3e:59:96:42:8a:85:17:3b:1f:57:d9:a2:
48:b1:cd:9d:ed:b2:db:f0:e3:be:c8:f9:07:c0:62:
a3:71:19:90:30:04:69:92:79:c5:32:85:f8:11:51:
81:3e:1f:01:94:cb:47:66:0b:90:b6:97:63:c5:85:
08:d3:b0:6d:5b:5b:b5:1b:b4:5e:99:b8:14:40:65:
9c:ca:72:b6:8d:04:79:d0:5d:40:81:56:f2:63:4e:
ed:d8:bc:b2:df:0d:2b:86:d6:a3:72:57:2c:f3:f5:
fb:c9:2e:72:a4:c0:d1:83:67:69:1b:cc:14:c7:79:
6f:91:a9:75:6c:48:3e:d0:97:52:88:d7:fe:96:02:
4f:b2:88:d7:96:e6:be:01:b3:57:a8:0f:56:06:f0:
96:d2:08:22:7e:e0:8c:a6:3c:f6:e4:00:79:40:b8:
4f:b4:5d:0a:1f:0f:53:3c:00:fe:05:7d:e6:ae:91:
93:da:36:21:8b:35:6c:87:9b:bf:a2:10:85:cd:28:
86:44:85:b7:0d:01:ed:b4:94:38:34:4d:14:40:30:
0c:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:8E:0E:E4:79:8E:F1:DB:AB:E3:F4:68:75:C7:E5:BE:BE:B4:52:72
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/D44O5HmO8dur4_Rodcflvr60UnI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.138.0/24
45.14.44.0/23
45.151.172.0/23
45.153.168.0/24
77.83.156.0/24
77.83.158.0/24
77.243.93.0/24
77.243.95.0/24
79.174.21.0/24
79.174.23.0/24
85.209.253.0/24
91.189.184.0/23
147.78.221.0/24
185.117.20.0/23
185.133.75.0/24
185.141.205.0/24
185.166.237.0/24
185.207.178.0/24
185.211.49.0/24
185.214.70.0/24
185.227.240.0/24
185.238.240.0/23
193.16.9.0/24
194.36.101.0/24
213.232.107.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:df:d7:2a:19:35:d1:9f:41:31:38:5c:28:52:3b:eb:18:b4:
cd:30:c0:fa:99:a8:de:ac:2f:f0:7e:c6:b2:2a:0e:87:82:a6:
be:9b:65:b6:ee:8a:f8:f0:b3:39:6e:51:c4:05:ba:69:eb:1a:
67:12:97:78:08:3a:e9:a2:6e:d8:ff:ba:12:71:c5:b7:6a:92:
7a:ae:69:d9:d8:45:d9:0f:d5:1c:34:2d:a9:be:7d:9b:c1:2e:
57:fb:15:67:4e:36:98:99:22:97:d0:97:09:c4:d1:ec:91:8e:
f3:7c:7d:f5:2c:5a:02:25:07:e3:93:a7:ef:33:56:14:a4:0c:
5b:a2:07:a8:34:70:c8:ff:be:c0:b2:12:39:40:0b:d5:88:5d:
63:1c:e9:e0:e5:99:43:c3:27:bd:af:e1:a2:87:4d:a2:8e:5e:
80:bf:1b:95:d6:03:b6:0e:f1:f9:f6:e8:66:72:6d:ff:13:26:
a9:fc:21:b5:da:fd:eb:15:d2:f9:a1:b9:2c:07:e9:10:f1:78:
a1:25:75:78:a6:6f:75:e6:14:ae:0f:75:48:f6:ce:c8:d2:31:
ef:8f:e5:5a:d9:0f:a3:d4:03:c7:9f:28:f1:9c:dc:7f:05:c0:
10:91:34:4b:22:61:a5:df:c2:3e:91:8f:9d:92:73:61:db:2e:
9b:f0:82:82
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIEGIfEnjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YzhmZDFhOGFlNTk5NmMxZTU2OTJjMWE4YzQyYmZlOWMzYmE1NzQ1MB4XDTIyMDEz
MTIzMDU1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGY4ZTBlZTQ3OThl
ZjFkYmFiZTNmNDY4NzVjN2U1YmViZWI0NTI3MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMqHB8iQTXZakH2FWCY8v1yrQZJqZsSMv4a12Jyb/GTE7S/b
4qddIIPmtVCJzPNgPlmWQoqFFzsfV9miSLHNne2y2/Djvsj5B8Bio3EZkDAEaZJ5
xTKF+BFRgT4fAZTLR2YLkLaXY8WFCNOwbVtbtRu0Xpm4FEBlnMpyto0EedBdQIFW
8mNO7di8st8NK4bWo3JXLPP1+8kucqTA0YNnaRvMFMd5b5GpdWxIPtCXUojX/pYC
T7KI15bmvgGzV6gPVgbwltIIIn7gjKY89uQAeUC4T7RdCh8PUzwA/gV95q6Rk9o2
IYs1bIebv6IQhc0ohkSFtw0B7bSUODRNFEAwDFkCAwEAAaOCAp4wggKaMB0GA1Ud
DgQWBBQPjg7keY7x26vj9Gh1x+W+vrRScjAfBgNVHSMEGDAWgBRsj9GorlmWweVp
LBqMQr/pw7pXRTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JJX1JxSzVabHNIbGFTd2FqRUtfNmNPNlYwVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvNDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8x
L0Q0NE81SG1POGR1cjRfUm9kY2ZsdnI2MFVuSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
NDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8xL2JJX1JxSzVabHNI
bGFTd2FqRUtfNmNPNlYwVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
swYIKwYBBQUHAQcBAf8EgaMwgaAwgZ0EAgABMIGWAwQABf2KAwQBLQ4sAwQBLZes
AwQALZmoAwQATVOcAwQATVOeAwQATfNdAwQATfNfAwQAT64VAwQAT64XAwQAVdH9
AwQBW724AwQAk07dAwQBuXUUAwQAuYVLAwQAuY3NAwQAuabtAwQAuc+yAwQAudMx
AwQAudZGAwQAuePwAwQBue7wAwQAwRAJAwQAwiRlAwQA1ehrMA0GCSqGSIb3DQEB
CwUAA4IBAQBa39cqGTXRn0ExOFwoUjvrGLTNMMD6majerC/wfsayKg6Hgqa+m2W2
7or48LM5blHEBbpp6xpnEpd4CDrpom7Y/7oSccW3apJ6rmnZ2EXZD9UcNC2pvn2b
wS5X+xVnTjaYmSKX0JcJxNHskY7zfH31LFoCJQfjk6fvM1YUpAxbogeoNHDI/77A
shI5QAvViF1jHOng5ZlDwye9r+Gih02ijl6AvxuV1gO2DvH59uhmcm3/Eyap/CG1
2v3rFdL5obksB+kQ8XihJXV4pm915hSuD3VI9s7I0jHvj+Va2Q+j1APHnyjxnNx/
BcAQkTRLImGl38I+kY+dknNh2y6b8IKC
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org