Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/QGvcqyBfRKCSXkZwu0RMfWwFT6w.roa
File: QGvcqyBfRKCSXkZwu0RMfWwFT6w.roa (raw, json)
Hash identifier: +E2sGsGYoGDHLL7PYxyI1O6Z6DpRuyqaTObBm1X3pbE=
Subject key identifier: 40:6B:DC:AB:20:5F:44:A0:92:5E:46:70:BB:44:4C:7D:6C:05:4F:AC
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 01852A259CCD127FDD20BAA08E390FAA2079
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/QGvcqyBfRKCSXkZwu0RMfWwFT6w.roa
Signing time: Mon 19 Dec 2022 11:29:46 +0000
ROA not before: Mon 19 Dec 2022 11:29:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.228.120.0/24 maxlen: 24
185.228.123.0/24 maxlen: 24
185.228.122.0/24 maxlen: 24
185.228.121.0/24 maxlen: 24
185.228.120.0/22 maxlen: 24
185.134.40.0/22 maxlen: 24
45.141.4.0/22 maxlen: 24
185.93.120.0/22 maxlen: 24
185.113.186.0/24 maxlen: 24
185.113.185.0/24 maxlen: 24
185.113.184.0/24 maxlen: 24
185.113.187.0/24 maxlen: 24
188.208.20.0/22 maxlen: 24
193.32.236.0/22 maxlen: 24
188.208.21.0/24 maxlen: 24
185.94.48.0/22 maxlen: 24
185.93.232.0/22 maxlen: 24
93.92.224.0/22 maxlen: 24
185.119.236.0/22 maxlen: 24
188.241.96.0/21 maxlen: 24
185.120.44.0/22 maxlen: 24
185.234.186.0/23 maxlen: 23
185.234.184.0/24 maxlen: 24
185.234.185.0/24 maxlen: 24
185.44.233.0/24 maxlen: 24
185.44.234.0/23 maxlen: 24
185.51.108.0/22 maxlen: 24
86.105.234.0/24 maxlen: 24
212.104.160.0/19 maxlen: 24
5.226.16.0/20 maxlen: 24
85.117.245.0/24 maxlen: 24
193.91.0.0/24 maxlen: 24
85.117.244.0/22 maxlen: 24
193.91.10.0/24 maxlen: 24
185.43.252.0/22 maxlen: 24
88.98.98.0/24 maxlen: 24
88.98.96.0/20 maxlen: 24
88.98.96.0/23 maxlen: 23
88.98.99.0/24 maxlen: 24
88.98.104.0/23 maxlen: 24
88.98.100.0/22 maxlen: 24
88.98.111.0/24 maxlen: 24
88.98.110.0/24 maxlen: 24
88.98.108.0/23 maxlen: 24
88.98.108.0/22 maxlen: 24
88.98.106.0/23 maxlen: 24
88.98.112.0/20 maxlen: 24
141.98.52.0/22 maxlen: 24
212.63.116.0/22 maxlen: 24
212.63.118.0/24 maxlen: 24
212.63.117.0/24 maxlen: 24
212.63.116.0/24 maxlen: 24
212.63.121.0/24 maxlen: 24
212.63.119.0/24 maxlen: 24
212.63.123.0/24 maxlen: 24
212.63.122.0/24 maxlen: 24
185.83.104.0/22 maxlen: 24
45.144.12.0/22 maxlen: 24
45.90.52.0/22 maxlen: 24
91.245.200.0/21 maxlen: 24
185.131.13.0/24 maxlen: 24
185.131.12.0/22 maxlen: 24
85.217.132.0/24 maxlen: 24
85.217.129.0/24 maxlen: 24
85.217.139.0/24 maxlen: 24
85.217.138.0/24 maxlen: 24
85.217.137.0/24 maxlen: 24
85.217.136.0/24 maxlen: 24
85.217.135.0/24 maxlen: 24
85.217.134.0/24 maxlen: 24
85.217.133.0/24 maxlen: 24
85.217.141.0/24 maxlen: 24
85.217.143.0/24 maxlen: 24
85.217.142.0/24 maxlen: 24
85.217.152.0/24 maxlen: 24
85.217.151.0/24 maxlen: 24
85.217.150.0/24 maxlen: 24
85.217.147.0/24 maxlen: 24
85.217.146.0/24 maxlen: 24
85.217.155.0/24 maxlen: 24
85.217.154.0/24 maxlen: 24
85.217.153.0/24 maxlen: 24
85.217.159.0/24 maxlen: 24
85.217.158.0/24 maxlen: 24
85.217.157.0/24 maxlen: 24
85.217.156.0/24 maxlen: 24
185.130.24.0/23 maxlen: 24
194.49.0.0/22 maxlen: 24
185.130.26.0/23 maxlen: 24
45.157.56.0/22 maxlen: 24
185.176.84.0/22 maxlen: 24
185.210.16.0/22 maxlen: 24
79.142.184.0/22 maxlen: 24
185.162.172.0/23 maxlen: 24
185.162.175.0/24 maxlen: 24
185.162.174.0/24 maxlen: 24
195.82.105.0/24 maxlen: 24
195.82.104.0/24 maxlen: 24
195.82.106.0/24 maxlen: 24
195.82.124.0/24 maxlen: 24
185.216.216.0/22 maxlen: 22
185.216.218.0/23 maxlen: 23
185.216.217.0/24 maxlen: 24
139.28.76.0/22 maxlen: 22
185.196.200.0/23 maxlen: 24
185.196.203.0/24 maxlen: 24
185.196.202.0/24 maxlen: 24
91.242.144.0/22 maxlen: 24
185.202.188.0/22 maxlen: 24
2a06:8840::/29 maxlen: 29
2a06:8f40::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2a:25:9c:cd:12:7f:dd:20:ba:a0:8e:39:0f:aa:20:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Dec 19 11:29:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=406bdcab205f44a0925e4670bb444c7d6c054fac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:53:83:60:68:f5:30:62:fc:cd:cc:5a:5f:8f:
a7:a5:25:f7:01:36:51:e5:e5:d1:76:c2:5e:56:62:
87:8e:af:c1:46:d9:f6:47:52:80:3b:b0:fa:52:ca:
38:b8:8b:b3:f4:53:9a:a0:58:43:25:9a:1a:f4:34:
80:eb:db:90:54:06:88:dd:ed:72:42:e8:33:7f:15:
e3:83:31:2e:7e:5b:5c:c8:57:44:a3:f4:df:87:5c:
77:29:7f:5f:6e:7d:fd:0c:62:47:af:b1:12:e1:85:
ff:83:36:fc:7a:ce:f5:58:a2:69:ac:91:f1:ee:52:
62:e7:d0:48:9b:07:ff:55:2d:93:61:10:33:1e:73:
20:6f:c1:57:f2:d4:8e:0e:ca:48:f3:49:04:61:f8:
3a:36:72:a2:c2:83:99:6e:4e:e7:ad:2b:85:fa:05:
aa:46:0d:45:9f:ea:1b:42:a7:76:bb:9f:fd:60:fb:
d2:ec:a8:45:04:8d:7e:76:ca:14:bd:fe:ef:1d:6a:
17:e4:9b:5e:4c:76:db:17:08:0f:07:06:2a:b7:0e:
33:fa:5e:a7:4b:c6:fa:e2:72:22:a1:93:4b:8c:ef:
41:80:cb:89:c6:a6:2c:a7:7a:ca:0d:f6:96:bc:9c:
45:7d:19:8a:29:0e:94:66:ca:d4:e4:12:ba:4e:5e:
f0:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:6B:DC:AB:20:5F:44:A0:92:5E:46:70:BB:44:4C:7D:6C:05:4F:AC
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/QGvcqyBfRKCSXkZwu0RMfWwFT6w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.16.0/20
45.90.52.0/22
45.141.4.0/22
45.144.12.0/22
45.157.56.0/22
79.142.184.0/22
85.117.244.0/22
85.217.129.0/24
85.217.132.0-85.217.139.255
85.217.141.0-85.217.143.255
85.217.146.0/23
85.217.150.0-85.217.159.255
86.105.234.0/24
88.98.96.0/19
91.242.144.0/22
91.245.200.0/21
93.92.224.0/22
139.28.76.0/22
141.98.52.0/22
185.43.252.0/22
185.44.233.0-185.44.235.255
185.51.108.0/22
185.83.104.0/22
185.93.120.0/22
185.93.232.0/22
185.94.48.0/22
185.113.184.0/22
185.119.236.0/22
185.120.44.0/22
185.130.24.0/22
185.131.12.0/22
185.134.40.0/22
185.162.172.0/22
185.176.84.0/22
185.196.200.0/22
185.202.188.0/22
185.210.16.0/22
185.216.216.0/22
185.228.120.0/22
185.234.184.0/22
188.208.20.0/22
188.241.96.0/21
193.32.236.0/22
193.91.0.0/24
193.91.10.0/24
194.49.0.0/22
195.82.104.0-195.82.106.255
195.82.124.0/24
212.63.116.0/22
212.63.121.0-212.63.123.255
212.104.160.0/19
IPv6:
2a06:8840::/29
2a06:8f40::/29
Signature Algorithm: sha256WithRSAEncryption
05:f0:10:66:12:64:44:d1:dd:96:b6:2f:8b:c1:41:07:70:a9:
13:75:75:c4:49:93:c1:1b:f6:45:04:7a:35:56:4e:39:9d:20:
30:c1:9b:a7:8b:35:68:2f:b7:df:05:05:12:56:9f:16:9f:7e:
dc:5b:a0:21:a3:94:a9:94:ae:a7:30:50:84:aa:3b:66:ee:37:
89:a1:0c:88:c8:00:65:6c:78:a6:7a:eb:54:33:23:f9:3d:29:
ea:da:00:c0:bb:80:75:cc:21:8d:1f:fb:fd:27:0c:d6:e6:76:
c2:7f:49:c2:60:c1:af:8f:b0:cc:b5:fc:13:8d:ce:c2:4b:b1:
f4:3c:55:08:64:02:72:8f:d0:d4:a6:97:45:c8:37:0c:19:f3:
4e:b2:11:48:3e:d1:2e:38:ae:28:35:63:05:ca:1d:88:61:32:
eb:b8:55:6f:67:b3:03:c0:bf:a9:73:f1:bf:78:3f:b9:11:35:
3e:02:74:91:07:fd:32:b9:6c:26:4c:56:ff:65:14:35:7f:5c:
29:ef:14:89:77:04:95:00:56:0c:41:d2:c7:cc:5b:08:9d:11:
d4:4b:e2:47:58:0f:e4:c5:29:91:25:7c:8b:ae:e3:44:e5:aa:
ac:dc:9c:49:a4:50:d1:b2:bd:e5:f5:ed:78:70:94:b7:3a:a1:
23:59:21:a8
-----BEGIN CERTIFICATE-----
MIIGeTCCBWGgAwIBAgISAYUqJZzNEn/dILqgjjkPqiB5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0NzVmYjA5MzRjZjZhNThkY2NlZjExMDg3NWRiZTVlM2U4
YjZiNzUwHhcNMjIxMjE5MTEyOTQ2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MDZiZGNhYjIwNWY0NGEwOTI1ZTQ2NzBiYjQ0NGM3ZDZjMDU0ZmFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAilODYGj1MGL8zcxaX4+npSX3ATZR
5eXRdsJeVmKHjq/BRtn2R1KAO7D6Uso4uIuz9FOaoFhDJZoa9DSA69uQVAaI3e1y
QugzfxXjgzEufltcyFdEo/Tfh1x3KX9fbn39DGJHr7ES4YX/gzb8es71WKJprJHx
7lJi59BImwf/VS2TYRAzHnMgb8FX8tSODspI80kEYfg6NnKiwoOZbk7nrSuF+gWq
Rg1Fn+obQqd2u5/9YPvS7KhFBI1+dsoUvf7vHWoX5JteTHbbFwgPBwYqtw4z+l6n
S8b64nIioZNLjO9BgMuJxqYsp3rKDfaWvJxFfRmKKQ6UZsrU5BK6Tl7wvwIDAQAB
o4IDhTCCA4EwHQYDVR0OBBYEFEBr3KsgX0Sgkl5GcLtETH1sBU+sMB8GA1UdIwQY
MBaAFNR1+wk0z2pY3M7xEIddvl4+i2t1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYt
Yzc5MTRhYjY0MjczLzEvUUd2Y3F5QmZSS0NTWGtad3UwUk1mV3dGVDZ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYtYzc5MTRhYjY0Mjcz
LzEvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBmQYIKwYBBQUHAQcBAf8EggGIMIIBhDCCAWoEAgABMIIB
YgMEBAXiEAMEAi1aNAMEAi2NBAMEAi2QDAMEAi2dOAMEAk+OuAMEAlV19AMEAFXZ
gTAMAwQCVdmEAwQCVdmIMAwDBABV2Y0DBARV2YADBAFV2ZIwDAMEAVXZlgMEBVXZ
gAMEAFZp6gMEBVhiYAMEAlvykAMEA1v1yAMEAl1c4AMEAoscTAMEAo1iNAMEArkr
/DAMAwQAuSzpAwQCuSzoAwQCuTNsAwQCuVNoAwQCuV14AwQCuV3oAwQCuV4wAwQC
uXG4AwQCuXfsAwQCuXgsAwQCuYIYAwQCuYMMAwQCuYYoAwQCuaKsAwQCubBUAwQC
ucTIAwQCucq8AwQCudIQAwQCudjYAwQCueR4AwQCueq4AwQCvNAUAwQDvPFgAwQC
wSDsAwQAwVsAAwQAwVsKAwQCwjEAMAwDBAPDUmgDBADDUmoDBADDUnwDBALUP3Qw
DAMEANQ/eQMEAtQ/eAMEBdRooDAUBAIAAjAOAwUDKgaIQAMFAyoGj0AwDQYJKoZI
hvcNAQELBQADggEBAAXwEGYSZETR3Za2L4vBQQdwqRN1dcRJk8Eb9kUEejVWTjmd
IDDBm6eLNWgvt98FBRJWnxafftxboCGjlKmUrqcwUISqO2buN4mhDIjIAGVseKZ6
61QzI/k9KeraAMC7gHXMIY0f+/0nDNbmdsJ/ScJgwa+PsMy1/BONzsJLsfQ8VQhk
AnKP0NSml0XINwwZ806yEUg+0S44rig1YwXKHYhhMuu4VW9nswPAv6lz8b94P7kR
NT4CdJEH/TK5bCZMVv9lFDV/XCnvFIl3BJUAVgxB0sfMWwidEdRL4kdYD+TFKZEl
fIuu40TlqqzcnEmkUNGyveX17XhwlLc6oSNZIag=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:11 2023 by rpki-client on console.sobornost.net