Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/om0Yet08xw0SwgqFuiWwGl2Gzik.roa
File: om0Yet08xw0SwgqFuiWwGl2Gzik.roa (raw, json)
Hash identifier: MSmLCe3cFfrpznncWyEHrT+hDELlNDZU4xCQuoo0j6Y=
Subject key identifier: A2:6D:18:7A:DD:3C:C7:0D:12:C2:0A:85:BA:25:B0:1A:5D:86:CE:29
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 19206D5F
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/om0Yet08xw0SwgqFuiWwGl2Gzik.roa
Signing time: Sun 13 Mar 2022 15:31:32 +0000
ROA not before: Sun 13 Mar 2022 15:31:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 91.189.184.0/24 maxlen: 24
77.83.158.0/24 maxlen: 32
91.189.185.0/24 maxlen: 24
77.83.156.0/24 maxlen: 32
85.209.253.0/24 maxlen: 24
77.243.95.0/24 maxlen: 32
77.243.93.0/24 maxlen: 32
193.16.9.0/24 maxlen: 32
185.117.20.0/23 maxlen: 32
5.253.138.0/24 maxlen: 32
194.36.101.0/24 maxlen: 24
185.238.241.0/24 maxlen: 24
147.78.221.0/24 maxlen: 32
185.238.240.0/24 maxlen: 24
185.133.75.0/24 maxlen: 32
185.141.205.0/24 maxlen: 24
185.214.70.0/24 maxlen: 24
45.153.168.0/24 maxlen: 32
213.232.107.0/24 maxlen: 32
45.151.172.0/23 maxlen: 32
185.166.237.0/24 maxlen: 24
185.211.49.0/24 maxlen: 24
45.14.44.0/24 maxlen: 32
45.14.45.0/24 maxlen: 32
185.207.178.0/24 maxlen: 24
79.174.23.0/24 maxlen: 32
79.174.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 421555551 (0x19206d5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Mar 13 15:31:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a26d187add3cc70d12c20a85ba25b01a5d86ce29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:1c:0a:0a:bf:39:52:09:ae:1b:c1:81:7a:6f:
96:d5:32:41:7d:85:32:93:25:c8:7f:1c:69:a6:bc:
a8:52:8e:f2:37:9e:d4:44:b7:82:03:3e:47:d6:7a:
76:d2:8b:d1:c0:05:e2:72:70:77:a5:43:22:d3:fb:
53:06:49:5d:e4:8e:17:8c:da:f3:4f:e3:f5:ad:61:
19:f9:65:a2:ae:8a:3d:42:c7:78:e2:78:11:89:ac:
51:51:77:a5:40:4e:17:cd:37:22:ed:21:7f:05:93:
c9:14:32:ba:85:8a:da:92:7c:4c:fc:66:54:60:70:
8a:f7:39:34:ac:27:fb:3a:16:a4:82:9a:ad:42:9e:
73:ac:dd:4a:76:15:22:97:21:eb:6f:c9:5d:86:02:
12:34:52:71:1d:ca:87:50:92:18:a0:f8:7d:62:f2:
db:c4:2c:02:1d:34:19:f0:cf:43:5d:89:73:db:c0:
dc:17:0b:ee:4e:c1:ca:1d:de:2a:bd:e6:89:4e:ff:
52:4c:54:ed:09:eb:0f:74:fe:dc:19:39:54:d7:00:
f2:d3:4d:92:c9:95:c5:31:90:73:97:66:a7:27:38:
79:51:8a:cc:7b:7a:65:01:a8:1b:3c:db:a1:fa:1b:
da:a3:7b:27:5b:e4:48:47:96:67:35:04:06:4a:e3:
3d:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:6D:18:7A:DD:3C:C7:0D:12:C2:0A:85:BA:25:B0:1A:5D:86:CE:29
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/om0Yet08xw0SwgqFuiWwGl2Gzik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.138.0/24
45.14.44.0/23
45.151.172.0/23
45.153.168.0/24
77.83.156.0/24
77.83.158.0/24
77.243.93.0/24
77.243.95.0/24
79.174.21.0/24
79.174.23.0/24
85.209.253.0/24
91.189.184.0/23
147.78.221.0/24
185.117.20.0/23
185.133.75.0/24
185.141.205.0/24
185.166.237.0/24
185.207.178.0/24
185.211.49.0/24
185.214.70.0/24
185.238.240.0/23
193.16.9.0/24
194.36.101.0/24
213.232.107.0/24
Signature Algorithm: sha256WithRSAEncryption
16:76:9d:80:29:c8:0e:55:da:31:44:39:93:e2:e3:a7:0d:aa:
0d:23:df:07:69:87:7a:a1:51:31:b7:3b:ae:73:46:9a:bd:2b:
fd:78:28:ee:5d:b9:ed:e6:b6:05:df:24:bf:b2:32:ac:d2:87:
9e:5c:25:c3:b4:43:8c:f8:ff:ca:97:fe:0b:25:eb:37:e6:ef:
45:fd:97:b9:5f:0d:f8:ee:f3:16:68:e8:cf:11:23:6a:4a:ec:
85:27:b0:40:fe:73:eb:ed:8d:8d:97:e1:0f:1d:60:1b:0b:c7:
19:1b:98:96:a2:69:66:88:33:07:ed:e7:93:6b:15:f2:03:da:
42:d6:1b:f9:2b:b2:f1:37:15:13:18:e5:b9:53:ce:8f:9e:b2:
60:7c:b7:56:e0:f6:70:3d:63:44:15:c8:6e:22:c6:d9:a6:77:
0e:89:a0:1e:c1:0a:c4:ec:05:5a:d1:f8:ea:79:dd:6f:f9:62:
7a:4d:ce:05:24:ef:35:31:51:5a:ab:97:d3:a3:ee:2a:bc:8b:
1a:14:3e:50:c3:24:3b:3c:a7:cb:d8:c0:dc:bd:09:73:ee:b2:
c4:06:ff:85:85:ac:37:5a:ee:05:cf:78:a6:65:8e:2f:7e:26:
5b:fb:10:51:48:6d:17:d4:e1:fc:e2:c0:70:5e:19:db:ce:54:
1d:2b:f6:4a
-----BEGIN CERTIFICATE-----
MIIFfjCCBGagAwIBAgIEGSBtXzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YzhmZDFhOGFlNTk5NmMxZTU2OTJjMWE4YzQyYmZlOWMzYmE1NzQ1MB4XDTIyMDMx
MzE1MzEzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTI2ZDE4N2FkZDNj
YzcwZDEyYzIwYTg1YmEyNWIwMWE1ZDg2Y2UyOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIwcCgq/OVIJrhvBgXpvltUyQX2FMpMlyH8caaa8qFKO8jee
1ES3ggM+R9Z6dtKL0cAF4nJwd6VDItP7UwZJXeSOF4za80/j9a1hGflloq6KPULH
eOJ4EYmsUVF3pUBOF803Iu0hfwWTyRQyuoWK2pJ8TPxmVGBwivc5NKwn+zoWpIKa
rUKec6zdSnYVIpch62/JXYYCEjRScR3Kh1CSGKD4fWLy28QsAh00GfDPQ12Jc9vA
3BcL7k7Byh3eKr3miU7/UkxU7QnrD3T+3Bk5VNcA8tNNksmVxTGQc5dmpyc4eVGK
zHt6ZQGoGzzbofob2qN7J1vkSEeWZzUEBkrjPR0CAwEAAaOCApgwggKUMB0GA1Ud
DgQWBBSibRh63TzHDRLCCoW6JbAaXYbOKTAfBgNVHSMEGDAWgBRsj9GorlmWweVp
LBqMQr/pw7pXRTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JJX1JxSzVabHNIbGFTd2FqRUtfNmNPNlYwVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvNDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8x
L29tMFlldDA4eHcwU3dncUZ1aVd3R2wyR3ppay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
NDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8xL2JJX1JxSzVabHNI
bGFTd2FqRUtfNmNPNlYwVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
rQYIKwYBBQUHAQcBAf8EgZ0wgZowgZcEAgABMIGQAwQABf2KAwQBLQ4sAwQBLZes
AwQALZmoAwQATVOcAwQATVOeAwQATfNdAwQATfNfAwQAT64VAwQAT64XAwQAVdH9
AwQBW724AwQAk07dAwQBuXUUAwQAuYVLAwQAuY3NAwQAuabtAwQAuc+yAwQAudMx
AwQAudZGAwQBue7wAwQAwRAJAwQAwiRlAwQA1ehrMA0GCSqGSIb3DQEBCwUAA4IB
AQAWdp2AKcgOVdoxRDmT4uOnDaoNI98HaYd6oVExtzuuc0aavSv9eCjuXbnt5rYF
3yS/sjKs0oeeXCXDtEOM+P/Kl/4LJes35u9F/Ze5Xw347vMWaOjPESNqSuyFJ7BA
/nPr7Y2Nl+EPHWAbC8cZG5iWomlmiDMH7eeTaxXyA9pC1hv5K7LxNxUTGOW5U86P
nrJgfLdW4PZwPWNEFchuIsbZpncOiaAewQrE7AVa0fjqed1v+WJ6Tc4FJO81MVFa
q5fTo+4qvIsaFD5QwyQ7PKfL2MDcvQlz7rLEBv+Fhaw3Wu4Fz3imZY4vfiZb+xBR
SG0X1OH84sBwXhnbzlQdK/ZK
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:18 2023 by rpki-client on console-fra.rpki-client.org