Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/bbzuFiKO_rlFJJ2_YezKv_BPz-w.roa
File: bbzuFiKO_rlFJJ2_YezKv_BPz-w.roa (raw, json)
Hash identifier: zrBcrqrvvvHNEb7DGgaIEEmd0xnBo+5mUi9lnLbojps=
Subject key identifier: 6D:BC:EE:16:22:8E:FE:B9:45:24:9D:BF:61:EC:CA:BF:F0:4F:CF:EC
Certificate issuer: /CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Certificate serial: 0183F4E639D158AC3ECD97639828A1BFBBDE
Authority key identifier: 9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/bbzuFiKO_rlFJJ2_YezKv_BPz-w.roa
Signing time: Thu 20 Oct 2022 10:17:52 +0000
ROA not before: Thu 20 Oct 2022 10:17:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49100
IP address blocks: 185.177.232.0/22 maxlen: 22
85.9.64.0/18 maxlen: 18
194.33.122.0/23 maxlen: 23
5.202.0.0/16 maxlen: 24
109.232.7.0/24 maxlen: 24
109.232.5.0/24 maxlen: 24
109.232.6.0/24 maxlen: 24
185.131.30.0/23 maxlen: 23
185.131.28.0/22 maxlen: 22
193.32.80.0/23 maxlen: 23
185.180.52.0/22 maxlen: 22
77.237.160.0/19 maxlen: 19
185.103.128.0/22 maxlen: 22
185.83.88.0/24 maxlen: 24
185.83.89.0/24 maxlen: 24
185.83.90.0/23 maxlen: 23
109.125.176.0/22 maxlen: 22
109.125.184.0/22 maxlen: 22
109.125.182.0/23 maxlen: 23
109.125.191.0/24 maxlen: 24
109.125.189.0/24 maxlen: 24
109.125.190.0/24 maxlen: 24
91.209.242.0/24 maxlen: 24
109.125.160.0/19 maxlen: 19
185.126.40.0/22 maxlen: 22
185.125.244.0/22 maxlen: 22
185.72.24.0/22 maxlen: 22
185.125.248.0/21 maxlen: 21
185.125.255.0/24 maxlen: 24
185.72.27.0/24 maxlen: 24
185.126.0.0/20 maxlen: 20
185.126.16.0/22 maxlen: 22
185.126.16.0/23 maxlen: 23
5.202.82.0/24 maxlen: 24
5.202.100.0/24 maxlen: 24
5.202.110.0/24 maxlen: 24
95.215.160.0/22 maxlen: 22
185.155.8.0/21 maxlen: 21
185.169.20.0/22 maxlen: 22
185.169.36.0/22 maxlen: 22
185.169.37.0/24 maxlen: 24
188.253.32.0/19 maxlen: 24
5.202.166.0/23 maxlen: 23
188.253.64.0/19 maxlen: 24
2a07:8f40::/29 maxlen: 29
2a0a:4e00::/29 maxlen: 29
2a07:8f00::/29 maxlen: 29
2001:4c88::/32 maxlen: 32
2a02:cd80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f4:e6:39:d1:58:ac:3e:cd:97:63:98:28:a1:bf:bb:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Validity
Not Before: Oct 20 10:17:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6dbcee16228efeb945249dbf61eccabff04fcfec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:e9:93:be:4c:38:38:72:41:c3:a1:ed:11:e5:
4c:cd:1e:42:48:75:8d:3d:03:b0:ed:b7:8b:de:89:
56:91:56:60:17:6c:7e:b3:9f:d7:2f:95:2c:b3:15:
ce:18:1d:74:2b:dd:ea:98:ea:f8:aa:d1:4e:98:c0:
a3:db:4c:be:27:ad:4b:11:31:d5:56:fa:8d:d4:94:
36:eb:cd:d0:b7:82:1e:4b:54:88:36:7b:e7:fc:81:
7b:f4:b6:ba:45:52:f5:33:22:a6:cf:ce:ed:04:7e:
35:2b:b1:64:f0:88:4a:fb:07:67:6e:a4:81:67:69:
71:ab:56:65:ca:fa:d3:25:98:c4:20:53:aa:3d:e6:
13:2c:16:9b:ce:44:9e:dc:3d:d9:3b:25:1b:c3:09:
32:ee:53:12:86:50:ad:a7:11:70:6f:21:0f:cb:35:
f4:a7:82:97:a8:8e:5c:ad:82:62:9e:4f:cd:90:bb:
cd:53:ea:aa:ce:89:6f:66:5a:2a:81:b5:47:5b:80:
4d:9d:92:2c:a7:2d:9f:c5:ad:0c:58:b5:ad:c2:4e:
cc:eb:79:be:df:89:3a:80:c9:eb:37:7f:f6:2a:bd:
bb:83:d2:a0:8a:e7:7d:11:1a:f0:ee:02:2d:5d:cb:
da:e2:1c:de:0e:b4:49:d7:de:f6:7e:0b:58:6d:9d:
a3:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:BC:EE:16:22:8E:FE:B9:45:24:9D:BF:61:EC:CA:BF:F0:4F:CF:EC
X509v3 Authority Key Identifier:
keyid:9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/bbzuFiKO_rlFJJ2_YezKv_BPz-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.202.0.0/16
77.237.160.0/19
85.9.64.0/18
91.209.242.0/24
95.215.160.0/22
109.125.160.0/19
109.232.5.0-109.232.7.255
185.72.24.0/22
185.83.88.0/22
185.103.128.0/22
185.125.244.0-185.126.19.255
185.126.40.0/22
185.131.28.0/22
185.155.8.0/21
185.169.20.0/22
185.169.36.0/22
185.177.232.0/22
185.180.52.0/22
188.253.32.0-188.253.95.255
193.32.80.0/23
194.33.122.0/23
IPv6:
2001:4c88::/32
2a02:cd80::/29
2a07:8f00::/29
2a07:8f40::/29
2a0a:4e00::/29
Signature Algorithm: sha256WithRSAEncryption
c2:e1:95:65:57:ba:7c:fe:96:8a:16:55:38:63:ed:69:f7:50:
9f:44:7f:a2:1e:da:49:00:e8:13:6e:9d:94:78:13:ee:0f:cd:
5b:b3:d9:ff:c4:b0:a0:86:d2:ec:3e:1f:91:68:27:77:a5:d3:
37:fd:ac:0a:92:57:44:14:07:b5:3e:a8:7c:f2:49:5e:c8:80:
59:90:b3:4a:f5:c3:f6:fa:a5:4c:4c:5f:fa:f0:c5:ef:3b:e3:
7e:f3:fd:6b:e4:c1:72:a9:75:5d:b7:6f:aa:dd:4a:a4:38:2d:
75:32:66:fc:b6:6b:a3:5c:62:69:b3:30:4e:78:44:cf:56:f5:
f3:e0:9c:a0:99:9c:e4:28:d2:d1:9d:8c:97:34:7d:f2:22:8c:
3a:34:15:6c:2a:dc:61:d2:ad:d6:8d:ca:60:90:ff:83:49:31:
89:6c:97:83:af:50:31:bc:dd:37:b3:89:d4:f6:25:46:d9:c5:
aa:44:2b:77:9b:c0:70:88:3d:2d:82:90:a3:21:1d:19:07:1b:
bc:f9:80:3f:9c:4c:9d:62:4d:25:41:c4:d4:8f:8c:7d:b0:93:
33:1f:ae:80:f7:68:66:d2:e1:16:bb:55:c1:69:ca:f9:f8:a2:
03:0d:e4:8a:fa:41:91:69:22:30:c1:75:50:81:8f:7e:09:25:
5a:ec:34:ba
-----BEGIN CERTIFICATE-----
MIIFvDCCBKSgAwIBAgISAYP05jnRWKw+zZdjmCihv7veMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlhMWU2OTM2OGFiZDM0NTM4ZmU3N2RkYWFiY2RjODM1YWY1
OTVlYmEwHhcNMjIxMDIwMTAxNzUyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZGJjZWUxNjIyOGVmZWI5NDUyNDlkYmY2MWVjY2FiZmYwNGZjZmVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh+mTvkw4OHJBw6HtEeVMzR5CSHWN
PQOw7beL3olWkVZgF2x+s5/XL5UssxXOGB10K93qmOr4qtFOmMCj20y+J61LETHV
VvqN1JQ2683Qt4IeS1SINnvn/IF79La6RVL1MyKmz87tBH41K7Fk8IhK+wdnbqSB
Z2lxq1ZlyvrTJZjEIFOqPeYTLBabzkSe3D3ZOyUbwwky7lMShlCtpxFwbyEPyzX0
p4KXqI5crYJink/NkLvNU+qqzolvZloqgbVHW4BNnZIspy2fxa0MWLWtwk7M63m+
34k6gMnrN3/2Kr27g9Kgiud9ERrw7gItXcva4hzeDrRJ1972fgtYbZ2jNwIDAQAB
o4ICyDCCAsQwHQYDVR0OBBYEFG287hYijv65RSSdv2Hsyr/wT8/sMB8GA1UdIwQY
MBaAFJoeaTaKvTRTj+d92qvNyDWvWV66MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbWg1cE5vcTlORk9QNTMzYXE4M0lOYTlaWHJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi83ODg2ZjQtNWZjYy00ZDQ0LWJkNjIt
MTA5ODJlMDQwZDUzLzEvYmJ6dUZpS09fcmxGSkoyX1llekt2X0JQei13LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi83ODg2ZjQtNWZjYy00ZDQ0LWJkNjItMTA5ODJlMDQwZDUz
LzEvbWg1cE5vcTlORk9QNTMzYXE4M0lOYTlaWHJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHdBggrBgEFBQcBBwEB/wSBzTCByjCBnAQCAAEwgZUDAwAF
ygMEBU3toAMEBlUJQAMEAFvR8gMEAl/XoAMEBW19oDAMAwQAbegFAwQDbegAAwQC
uUgYAwQCuVNYAwQCuWeAMAwDBAK5ffQDBAK5fhADBAK5figDBAK5gxwDBAO5mwgD
BAK5qRQDBAK5qSQDBAK5segDBAK5tDQwDAMEBbz9IAMEBbz9QAMEAcEgUAMEAcIh
ejApBAIAAjAjAwUAIAFMiAMFAyoCzYADBQMqB48AAwUDKgePQAMFAyoKTgAwDQYJ
KoZIhvcNAQELBQADggEBAMLhlWVXunz+looWVThj7Wn3UJ9Ef6Ie2kkA6BNunZR4
E+4PzVuz2f/EsKCG0uw+H5FoJ3el0zf9rAqSV0QUB7U+qHzySV7IgFmQs0r1w/b6
pUxMX/rwxe87437z/WvkwXKpdV23b6rdSqQ4LXUyZvy2a6NcYmmzME54RM9W9fPg
nKCZnOQo0tGdjJc0ffIijDo0FWwq3GHSrdaNymCQ/4NJMYlsl4OvUDG83TezidT2
JUbZxapEK3ebwHCIPS2CkKMhHRkHG7z5gD+cTJ1iTSVBxNSPjH2wkzMfroD3aGbS
4Ra7VcFpyvn4ogMN5Ir6QZFpIjDBdVCBj34JJVrsNLo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:10 2024 by rpki-client on console-fra.rpki-client.org