Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/f03ca1-726b-4de9-b419-f9a1bbc36845/1/lPMmcC3YnghoNpPi0b89Oq590f4.roa
File: lPMmcC3YnghoNpPi0b89Oq590f4.roa (raw, json)
Hash identifier: wqB4od6/2l+QweG1ANH4BiUggE1jEy+G0c+4TPW4zHU=
Subject key identifier: 94:F3:26:70:2D:D8:9E:08:68:36:93:E2:D1:BF:3D:3A:AE:7D:D1:FE
Certificate issuer: /CN=c7a4d2f68913eace6c9f5092bdc7dd20f574f438
Certificate serial: 0183C08A70D9E79B811CC7F49705D1B7065C
Authority key identifier: C7:A4:D2:F6:89:13:EA:CE:6C:9F:50:92:BD:C7:DD:20:F5:74:F4:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x6TS9okT6s5sn1CSvcfdIPV09Dg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/f03ca1-726b-4de9-b419-f9a1bbc36845/1/lPMmcC3YnghoNpPi0b89Oq590f4.roa
Signing time: Mon 10 Oct 2022 06:17:21 +0000
ROA not before: Mon 10 Oct 2022 06:17:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202632
IP address blocks: 185.12.168.0/22 maxlen: 22
31.47.0.0/19 maxlen: 19
31.47.4.0/23 maxlen: 23
31.47.0.0/24 maxlen: 24
31.47.9.0/24 maxlen: 24
31.47.8.0/24 maxlen: 24
31.47.10.0/24 maxlen: 24
31.47.16.0/20 maxlen: 20
31.47.14.0/23 maxlen: 23
185.173.28.0/22 maxlen: 22
213.91.64.0/21 maxlen: 21
213.91.64.0/22 maxlen: 22
213.91.68.0/22 maxlen: 22
185.210.182.0/24 maxlen: 24
185.210.180.0/22 maxlen: 22
185.210.181.0/24 maxlen: 24
217.71.48.0/24 maxlen: 24
217.71.56.0/21 maxlen: 21
213.91.112.0/20 maxlen: 20
213.91.112.0/21 maxlen: 21
213.91.124.0/24 maxlen: 24
213.91.125.0/24 maxlen: 24
213.91.127.0/24 maxlen: 24
213.91.126.0/24 maxlen: 24
2a03:9240::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c0:8a:70:d9:e7:9b:81:1c:c7:f4:97:05:d1:b7:06:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7a4d2f68913eace6c9f5092bdc7dd20f574f438
Validity
Not Before: Oct 10 06:17:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=94f326702dd89e08683693e2d1bf3d3aae7dd1fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:4e:0d:de:61:3b:0e:2f:bd:28:25:3b:5c:ba:
0b:f8:a0:85:7b:fe:9f:aa:6b:02:6e:24:91:ff:a8:
25:2b:a3:bb:28:91:79:e0:8d:fb:cf:49:76:58:63:
f2:c8:7e:70:e7:20:01:a6:b2:e7:59:fd:16:2c:18:
fa:17:d9:53:47:56:87:41:e4:59:29:05:42:c6:e8:
dc:4b:16:56:0e:dc:a1:30:c8:8f:9e:e1:98:bd:0a:
e6:a5:91:40:81:0e:7e:d9:57:87:21:3f:a8:4d:06:
c5:d9:86:05:3f:28:53:44:a5:39:87:00:13:42:13:
c7:06:42:d5:68:1b:a9:47:87:db:84:9e:29:45:0c:
e9:5b:f2:29:b8:70:74:8d:28:ef:95:1c:f3:1a:1a:
c6:7c:94:47:31:0d:7c:d0:c6:46:ab:71:b3:dc:2d:
08:5d:fa:fd:51:3c:43:bb:7e:3c:b4:3f:4f:b3:24:
3a:17:3d:0e:0f:7a:ab:dc:88:8d:59:ca:85:80:f0:
d9:3c:3b:9b:b1:20:f8:bc:64:3a:58:8f:52:46:9d:
94:d4:db:f5:5f:df:cc:af:18:ab:3e:cd:b4:b7:39:
6f:47:b5:5a:04:cb:8e:d4:0b:f9:bd:88:88:3d:35:
19:5b:26:47:fa:cb:0c:d7:ec:26:0a:ae:cb:ff:cd:
54:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:F3:26:70:2D:D8:9E:08:68:36:93:E2:D1:BF:3D:3A:AE:7D:D1:FE
X509v3 Authority Key Identifier:
keyid:C7:A4:D2:F6:89:13:EA:CE:6C:9F:50:92:BD:C7:DD:20:F5:74:F4:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x6TS9okT6s5sn1CSvcfdIPV09Dg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/f03ca1-726b-4de9-b419-f9a1bbc36845/1/lPMmcC3YnghoNpPi0b89Oq590f4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/f03ca1-726b-4de9-b419-f9a1bbc36845/1/x6TS9okT6s5sn1CSvcfdIPV09Dg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.47.0.0/19
185.12.168.0/22
185.173.28.0/22
185.210.180.0/22
213.91.64.0/21
213.91.112.0/20
217.71.48.0/24
217.71.56.0/21
IPv6:
2a03:9240::/32
Signature Algorithm: sha256WithRSAEncryption
76:8c:62:1a:04:7e:a7:95:bf:7f:15:39:bf:52:e7:85:3b:3b:
f6:3b:1d:ee:9a:36:42:0e:84:c7:01:d1:ab:16:40:22:6e:66:
68:82:d4:c4:ee:c8:a2:3f:9c:b2:a6:d3:a6:ee:2e:2f:db:e9:
22:99:8b:ab:3a:84:4a:7d:07:a0:4c:1b:48:88:25:16:6f:be:
83:7e:5a:aa:9d:38:69:cd:3a:58:15:c3:63:c0:94:34:ff:22:
b0:86:c7:79:be:24:fb:10:a0:aa:5f:b5:b4:1c:bc:dc:8f:31:
22:20:46:54:21:fa:46:0c:20:25:14:4a:5d:03:dc:6f:24:f3:
90:a0:3e:b8:96:1b:d5:4f:36:38:c8:ee:71:eb:4e:64:fd:18:
92:7d:97:95:ce:26:a0:53:72:4f:a5:47:17:f4:99:c2:29:cf:
cb:34:f0:bf:58:04:09:cb:17:2e:48:24:48:51:60:23:ec:1a:
0c:62:dc:17:b9:18:c4:0e:38:47:c8:57:6a:ba:54:54:5d:f5:
20:da:36:fb:df:d9:b7:8b:3a:4e:25:dc:22:13:c2:80:bb:e0:
98:61:69:fc:bf:2f:79:48:8b:45:17:10:f6:e7:69:0d:00:fb:
17:ca:30:84:1c:dd:da:4d:c2:10:0f:19:18:72:45:9e:43:19:
f8:00:16:34
-----BEGIN CERTIFICATE-----
MIIFNjCCBB6gAwIBAgISAYPAinDZ55uBHMf0lwXRtwZcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM3YTRkMmY2ODkxM2VhY2U2YzlmNTA5MmJkYzdkZDIwZjU3
NGY0MzgwHhcNMjIxMDEwMDYxNzIxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NGYzMjY3MDJkZDg5ZTA4NjgzNjkzZTJkMWJmM2QzYWFlN2RkMWZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArk4N3mE7Di+9KCU7XLoL+KCFe/6f
qmsCbiSR/6glK6O7KJF54I37z0l2WGPyyH5w5yABprLnWf0WLBj6F9lTR1aHQeRZ
KQVCxujcSxZWDtyhMMiPnuGYvQrmpZFAgQ5+2VeHIT+oTQbF2YYFPyhTRKU5hwAT
QhPHBkLVaBupR4fbhJ4pRQzpW/IpuHB0jSjvlRzzGhrGfJRHMQ180MZGq3Gz3C0I
Xfr9UTxDu348tD9PsyQ6Fz0OD3qr3IiNWcqFgPDZPDubsSD4vGQ6WI9SRp2U1Nv1
X9/MrxirPs20tzlvR7VaBMuO1Av5vYiIPTUZWyZH+ssM1+wmCq7L/81UPwIDAQAB
o4ICQjCCAj4wHQYDVR0OBBYEFJTzJnAt2J4IaDaT4tG/PTqufdH+MB8GA1UdIwQY
MBaAFMek0vaJE+rObJ9Qkr3H3SD1dPQ4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveDZUUzlva1Q2czVzbjFDU3ZjZmRJUFYwOURnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC9mMDNjYTEtNzI2Yi00ZGU5LWI0MTkt
ZjlhMWJiYzM2ODQ1LzEvbFBNbWNDM1luZ2hvTnBQaTBiODlPcTU5MGY0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC9mMDNjYTEtNzI2Yi00ZGU5LWI0MTktZjlhMWJiYzM2ODQ1
LzEveDZUUzlva1Q2czVzbjFDU3ZjZmRJUFYwOURnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFgGCCsGAQUFBwEHAQH/BEkwRzA2BAIAATAwAwQFHy8AAwQC
uQyoAwQCua0cAwQCudK0AwQD1VtAAwQE1VtwAwQA2UcwAwQD2Uc4MA0EAgACMAcD
BQAqA5JAMA0GCSqGSIb3DQEBCwUAA4IBAQB2jGIaBH6nlb9/FTm/UueFOzv2Ox3u
mjZCDoTHAdGrFkAibmZogtTE7siiP5yyptOm7i4v2+kimYurOoRKfQegTBtIiCUW
b76DflqqnThpzTpYFcNjwJQ0/yKwhsd5viT7EKCqX7W0HLzcjzEiIEZUIfpGDCAl
FEpdA9xvJPOQoD64lhvVTzY4yO5x605k/RiSfZeVziagU3JPpUcX9JnCKc/LNPC/
WAQJyxcuSCRIUWAj7BoMYtwXuRjEDjhHyFdqulRUXfUg2jb739m3izpOJdwiE8KA
u+CYYWn8vy95SItFFxD252kNAPsXyjCEHN3aTcIQDxkYckWeQxn4ABY0
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:17 2024 by rpki-client on console-ams.rpki-client.org