Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/cc36f9-1669-4929-8e61-edfd3f83345b/1/wrNPvR28CqHxn0LkTGM_S07wM0g.roa
File: wrNPvR28CqHxn0LkTGM_S07wM0g.roa (raw, json)
Hash identifier: fm93pLPGzsWKE0X3SYHudB7tcj5yjpcPzKhZkYHJqsU=
Subject key identifier: C2:B3:4F:BD:1D:BC:0A:A1:F1:9F:42:E4:4C:63:3F:4B:4E:F0:33:48
Certificate issuer: /CN=8baa27f9c2ef7bf4809ad42ae589101b73e98927
Certificate serial: 106F5C42
Authority key identifier: 8B:AA:27:F9:C2:EF:7B:F4:80:9A:D4:2A:E5:89:10:1B:73:E9:89:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6on-cLve_SAmtQq5YkQG3PpiSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/cc36f9-1669-4929-8e61-edfd3f83345b/1/wrNPvR28CqHxn0LkTGM_S07wM0g.roa
Signing time: Sat 01 Jan 2022 12:06:42 +0000
ROA not before: Sat 01 Jan 2022 12:06:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44851
IP address blocks: 31.41.16.0/22 maxlen: 24
185.204.166.0/24 maxlen: 24
185.204.164.0/24 maxlen: 24
185.204.164.0/22 maxlen: 22
185.204.164.0/23 maxlen: 23
185.176.216.0/22 maxlen: 24
185.204.165.0/24 maxlen: 24
185.204.166.0/23 maxlen: 23
185.204.167.0/24 maxlen: 24
2a0a:fd40::/29 maxlen: 29
2a0a:2280::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 275733570 (0x106f5c42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8baa27f9c2ef7bf4809ad42ae589101b73e98927
Validity
Not Before: Jan 1 12:06:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c2b34fbd1dbc0aa1f19f42e44c633f4b4ef03348
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e2:06:bc:13:35:42:a0:b3:8e:0a:87:b8:54:
d7:ed:cc:38:0f:a8:1c:33:97:76:d5:93:22:e4:4c:
c4:3d:61:df:4f:ea:18:a1:6b:d8:eb:83:ed:7a:54:
32:57:a8:5d:9b:4f:79:ee:5a:33:42:95:21:45:04:
a8:6a:44:49:cb:9d:59:0d:f6:1d:02:52:ea:ad:11:
fc:51:db:17:8f:bb:b1:48:02:5c:5c:1d:b4:c0:1d:
a2:7f:a2:9c:55:9f:ba:5d:ef:76:bf:ed:ef:56:9a:
69:7a:bc:b6:9e:a9:c9:4d:c9:4a:c9:b4:da:f4:51:
33:37:71:b3:c7:3c:c7:4c:ad:09:14:3a:30:e2:4c:
b2:61:96:fb:55:f1:fb:fa:2b:78:04:78:fd:81:ff:
e6:3d:24:71:86:3b:7b:a0:ed:da:de:05:e0:10:7a:
d7:3f:eb:2b:5b:b5:6a:a3:08:ef:be:92:7e:5e:a5:
50:ee:9c:d6:63:70:5e:6d:7c:ff:13:3a:82:be:c4:
2c:06:72:13:79:4b:a1:17:11:ab:bd:1c:b3:06:b2:
fc:d5:ef:f4:f2:24:b0:61:69:da:9d:00:c5:95:ee:
86:0c:4a:81:c8:ea:25:32:0b:b4:ba:8c:5e:78:e3:
b2:a0:ca:48:f3:81:95:d8:04:1d:79:37:f1:f1:f3:
11:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:B3:4F:BD:1D:BC:0A:A1:F1:9F:42:E4:4C:63:3F:4B:4E:F0:33:48
X509v3 Authority Key Identifier:
keyid:8B:AA:27:F9:C2:EF:7B:F4:80:9A:D4:2A:E5:89:10:1B:73:E9:89:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6on-cLve_SAmtQq5YkQG3PpiSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/cc36f9-1669-4929-8e61-edfd3f83345b/1/wrNPvR28CqHxn0LkTGM_S07wM0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/cc36f9-1669-4929-8e61-edfd3f83345b/1/i6on-cLve_SAmtQq5YkQG3PpiSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.41.16.0/22
185.176.216.0/22
185.204.164.0/22
IPv6:
2a0a:2280::/29
2a0a:fd40::/29
Signature Algorithm: sha256WithRSAEncryption
78:d9:63:a8:5e:04:eb:40:48:42:83:ba:e6:12:ab:64:cc:a0:
4a:02:ed:81:16:92:6e:a7:92:e8:6e:e7:ee:8d:8a:5d:cb:58:
8a:ec:24:58:a9:bd:e9:df:e6:70:f0:03:93:5e:8d:e0:54:46:
ac:b9:a4:79:80:1c:da:a9:13:fb:2f:01:be:c6:aa:ce:f3:20:
22:54:88:43:5e:31:a6:df:4a:1d:aa:84:3d:50:b2:c1:ef:3f:
33:08:f5:30:22:dd:73:5e:a8:cb:71:12:bc:67:29:b2:d6:54:
82:62:85:f2:64:6c:43:3f:a7:1d:a8:b2:28:8e:08:52:2e:96:
f3:f1:bd:64:4f:5c:b0:5f:70:77:f7:6e:ec:8b:b0:85:f9:35:
8d:30:d7:45:5e:47:a6:5e:e5:15:8c:3b:a7:0d:ce:95:5d:28:
54:b3:e8:0f:21:99:01:17:74:fa:0b:e7:27:60:1e:cd:68:1e:
3e:fe:93:5d:43:6e:9e:64:3f:f0:72:35:c4:70:a7:03:8d:0f:
16:0e:f0:a5:75:f6:00:ee:a1:ae:17:92:07:cd:c3:ad:0c:f5:
7b:3c:50:7e:98:c2:c7:1a:95:35:f4:38:8b:43:63:a9:7c:05:
e7:be:3c:68:5c:c4:59:a3:f2:04:21:46:65:5b:eb:ae:c2:3d:
46:36:28:60
-----BEGIN CERTIFICATE-----
MIIFETCCA/mgAwIBAgIEEG9cQjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
YmFhMjdmOWMyZWY3YmY0ODA5YWQ0MmFlNTg5MTAxYjczZTk4OTI3MB4XDTIyMDEw
MTEyMDY0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzJiMzRmYmQxZGJj
MGFhMWYxOWY0MmU0NGM2MzNmNGI0ZWYwMzM0ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMfiBrwTNUKgs44Kh7hU1+3MOA+oHDOXdtWTIuRMxD1h30/q
GKFr2OuD7XpUMleoXZtPee5aM0KVIUUEqGpEScudWQ32HQJS6q0R/FHbF4+7sUgC
XFwdtMAdon+inFWful3vdr/t71aaaXq8tp6pyU3JSsm02vRRMzdxs8c8x0ytCRQ6
MOJMsmGW+1Xx+/oreAR4/YH/5j0kcYY7e6Dt2t4F4BB61z/rK1u1aqMI776Sfl6l
UO6c1mNwXm18/xM6gr7ELAZyE3lLoRcRq70csway/NXv9PIksGFp2p0AxZXuhgxK
gcjqJTILtLqMXnjjsqDKSPOBldgEHXk38fHzEU0CAwEAAaOCAiswggInMB0GA1Ud
DgQWBBTCs0+9HbwKofGfQuRMYz9LTvAzSDAfBgNVHSMEGDAWgBSLqif5wu979ICa
1CrliRAbc+mJJzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2k2b24tY0x2ZV9TQW10UXE1WWtRRzNQcGlTYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDAvY2MzNmY5LTE2NjktNDkyOS04ZTYxLWVkZmQzZjgzMzQ1Yi8x
L3dyTlB2UjI4Q3FIeG4wTGtUR01fUzA3d00wZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDAv
Y2MzNmY5LTE2NjktNDkyOS04ZTYxLWVkZmQzZjgzMzQ1Yi8xL2k2b24tY0x2ZV9T
QW10UXE1WWtRRzNQcGlTYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBB
BggrBgEFBQcBBwEB/wQyMDAwGAQCAAEwEgMEAh8pEAMEArmw2AMEArnMpDAUBAIA
AjAOAwUDKgoigAMFAyoK/UAwDQYJKoZIhvcNAQELBQADggEBAHjZY6heBOtASEKD
uuYSq2TMoEoC7YEWkm6nkuhu5+6Nil3LWIrsJFipvenf5nDwA5NejeBURqy5pHmA
HNqpE/svAb7Gqs7zICJUiENeMabfSh2qhD1QssHvPzMI9TAi3XNeqMtxErxnKbLW
VIJihfJkbEM/px2osiiOCFIulvPxvWRPXLBfcHf3buyLsIX5NY0w10VeR6Ze5RWM
O6cNzpVdKFSz6A8hmQEXdPoL5ydgHs1oHj7+k11Dbp5kP/ByNcRwpwONDxYO8KV1
9gDuoa4XkgfNw60M9Xs8UH6YwscalTX0OItDY6l8Bee+PGhcxFmj8gQhRmVb667C
PUY2KGA=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:47 2023 by rpki-client on console-ams.rpki-client.org