Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/c9f33b-2f1b-4a11-a21d-9a6bd011f8f6/1/J0KVJfFL_l-5Mc2-Hl_BKlJZ3LI.roa
File: J0KVJfFL_l-5Mc2-Hl_BKlJZ3LI.roa (raw, json)
Hash identifier: 6IpZvS3oJodYjAA8WGLK9ILUIboML8Av+KVbipiixT0=
Subject key identifier: 27:42:95:25:F1:4B:FE:5F:B9:31:CD:BE:1E:5F:C1:2A:52:59:DC:B2
Certificate issuer: /CN=aef1eefaa757d38eb104fa4cba4d962b72e52b52
Certificate serial: 4557AE25
Authority key identifier: AE:F1:EE:FA:A7:57:D3:8E:B1:04:FA:4C:BA:4D:96:2B:72:E5:2B:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rvHu-qdX046xBPpMuk2WK3LlK1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/c9f33b-2f1b-4a11-a21d-9a6bd011f8f6/1/J0KVJfFL_l-5Mc2-Hl_BKlJZ3LI.roa
Signing time: Wed 06 Apr 2022 14:15:54 +0000
ROA not before: Wed 06 Apr 2022 14:15:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29222
IP address blocks: 193.134.250.0/24 maxlen: 24
84.16.64.0/19 maxlen: 24
185.143.100.0/22 maxlen: 24
45.157.188.0/22 maxlen: 24
37.156.40.0/21 maxlen: 24
185.177.60.0/22 maxlen: 24
185.176.224.0/22 maxlen: 24
193.128.7.0/24 maxlen: 24
128.65.192.0/21 maxlen: 24
185.74.68.0/22 maxlen: 24
193.111.233.0/24 maxlen: 24
185.125.24.0/22 maxlen: 24
193.134.93.0/24 maxlen: 24
93.88.240.0/20 maxlen: 24
185.181.160.0/22 maxlen: 24
185.172.100.0/22 maxlen: 24
195.15.192.0/18 maxlen: 24
83.166.128.0/19 maxlen: 24
2001:1600::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1163374117 (0x4557ae25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aef1eefaa757d38eb104fa4cba4d962b72e52b52
Validity
Not Before: Apr 6 14:15:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27429525f14bfe5fb931cdbe1e5fc12a5259dcb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:14:23:27:8c:60:74:4f:57:de:27:29:e2:8d:
dc:d4:2f:4c:67:f5:7c:6b:52:be:95:21:f6:64:df:
d2:04:aa:bf:0c:ec:be:ba:3c:4b:43:95:44:06:43:
0d:8d:a1:ca:b2:ab:b5:e7:c0:08:76:21:9c:11:13:
7d:2c:9b:13:f3:2b:c5:34:bb:dc:31:1c:10:15:1d:
a8:25:86:bb:47:20:c1:53:ea:e5:98:2c:34:91:5c:
9a:a4:b4:6e:31:12:05:e4:17:9a:04:8e:9b:b2:a3:
9b:4d:03:d0:8d:9d:6b:9a:2c:b3:f2:38:df:c7:24:
cb:1d:f0:fb:0e:02:86:d6:8b:e3:ab:a0:36:d7:8a:
13:49:cc:1f:72:c8:ea:19:13:ef:32:dc:0a:50:2b:
56:49:49:4c:3d:c3:33:15:e8:3b:09:72:42:5f:f1:
24:e2:5a:5d:0d:b2:d7:ff:1f:80:b9:4d:7a:7d:b3:
6a:7e:46:fc:09:98:e7:f2:74:99:88:a7:3a:b7:5b:
ca:91:a6:54:b4:de:a7:1f:96:a8:9c:e3:26:57:88:
f6:50:82:1e:50:6a:c5:99:02:e9:80:a8:b9:5b:5a:
cc:40:40:1c:32:92:cb:cb:b6:76:e6:1d:0c:51:ee:
af:c4:8a:7e:0d:d6:08:3f:a2:5d:0f:34:90:f1:19:
48:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:42:95:25:F1:4B:FE:5F:B9:31:CD:BE:1E:5F:C1:2A:52:59:DC:B2
X509v3 Authority Key Identifier:
keyid:AE:F1:EE:FA:A7:57:D3:8E:B1:04:FA:4C:BA:4D:96:2B:72:E5:2B:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rvHu-qdX046xBPpMuk2WK3LlK1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/c9f33b-2f1b-4a11-a21d-9a6bd011f8f6/1/J0KVJfFL_l-5Mc2-Hl_BKlJZ3LI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/c9f33b-2f1b-4a11-a21d-9a6bd011f8f6/1/rvHu-qdX046xBPpMuk2WK3LlK1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.156.40.0/21
45.157.188.0/22
83.166.128.0/19
84.16.64.0/19
93.88.240.0/20
128.65.192.0/21
185.74.68.0/22
185.125.24.0/22
185.143.100.0/22
185.172.100.0/22
185.176.224.0/22
185.177.60.0/22
185.181.160.0/22
193.111.233.0/24
193.128.7.0/24
193.134.93.0/24
193.134.250.0/24
195.15.192.0/18
IPv6:
2001:1600::/29
Signature Algorithm: sha256WithRSAEncryption
9f:dc:30:21:b6:9c:9d:f7:21:9a:80:b9:cb:21:90:9c:cb:31:
b7:dc:0c:9d:cb:2e:1b:ec:df:87:16:a7:d6:8e:83:c9:79:bf:
4e:df:f9:b4:fc:17:70:64:ca:53:d8:ee:d3:f7:47:cd:cc:33:
4b:21:6b:8d:ed:09:17:f9:e0:e5:4b:1c:2b:7b:3e:20:21:2f:
f0:3d:dd:b5:b5:7d:b8:18:6f:85:5c:a5:4a:ab:65:10:62:79:
31:f5:6a:0a:cd:7a:a5:ae:cd:b4:4b:ac:78:e5:97:62:57:04:
08:b8:ab:39:5d:fd:dc:9e:d0:0d:6c:5d:97:2a:eb:c4:19:1b:
b7:6a:91:7e:aa:bf:0b:b1:66:85:e8:c9:cc:3f:fb:5c:a7:6e:
30:bc:cd:bd:2b:80:54:5b:c6:a3:6e:61:96:3a:d0:f5:ba:14:
3f:25:1f:05:2a:06:ea:d1:20:06:f1:27:c1:d4:eb:c1:51:cc:
2b:f0:7d:a1:b5:94:71:33:7e:21:dd:06:47:d4:1f:94:40:a8:
a0:52:70:b8:76:dd:59:ca:40:27:f8:b3:c5:a4:38:6e:39:de:
86:db:38:f0:c9:b7:00:3b:5c:5a:64:15:45:53:9b:a0:16:dc:
21:30:fb:61:1f:41:b9:c3:56:67:35:9c:69:02:7d:bf:7c:44:
dc:d2:ba:b9
-----BEGIN CERTIFICATE-----
MIIFZzCCBE+gAwIBAgIERVeuJTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
ZWYxZWVmYWE3NTdkMzhlYjEwNGZhNGNiYTRkOTYyYjcyZTUyYjUyMB4XDTIyMDQw
NjE0MTU1NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjc0Mjk1MjVmMTRi
ZmU1ZmI5MzFjZGJlMWU1ZmMxMmE1MjU5ZGNiMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIUUIyeMYHRPV94nKeKN3NQvTGf1fGtSvpUh9mTf0gSqvwzs
vro8S0OVRAZDDY2hyrKrtefACHYhnBETfSybE/MrxTS73DEcEBUdqCWGu0cgwVPq
5ZgsNJFcmqS0bjESBeQXmgSOm7Kjm00D0I2da5oss/I438ckyx3w+w4ChtaL46ug
NteKE0nMH3LI6hkT7zLcClArVklJTD3DMxXoOwlyQl/xJOJaXQ2y1/8fgLlNen2z
an5G/AmY5/J0mYinOrdbypGmVLTepx+WqJzjJleI9lCCHlBqxZkC6YCouVtazEBA
HDKSy8u2duYdDFHur8SKfg3WCD+iXQ80kPEZSOECAwEAAaOCAoEwggJ9MB0GA1Ud
DgQWBBQnQpUl8Uv+X7kxzb4eX8EqUlncsjAfBgNVHSMEGDAWgBSu8e76p1fTjrEE
+ky6TZYrcuUrUjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3J2SHUtcWRYMDQ2eEJQcE11azJXSzNMbEsxSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzcvYzlmMzNiLTJmMWItNGExMS1hMjFkLTlhNmJkMDExZjhmNi8x
L0owS1ZKZkZMX2wtNU1jMi1IbF9CS2xKWjNMSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzcv
YzlmMzNiLTJmMWItNGExMS1hMjFkLTlhNmJkMDExZjhmNi8xL3J2SHUtcWRYMDQ2
eEJQcE11azJXSzNMbEsxSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
lgYIKwYBBQUHAQcBAf8EgYYwgYMwcgQCAAEwbAMEAyWcKAMEAi2dvAMEBVOmgAME
BVQQQAMEBF1Y8AMEA4BBwAMEArlKRAMEArl9GAMEArmPZAMEArmsZAMEArmw4AME
ArmxPAMEArm1oAMEAMFv6QMEAMGABwMEAMGGXQMEAMGG+gMEBsMPwDANBAIAAjAH
AwUDIAEWADANBgkqhkiG9w0BAQsFAAOCAQEAn9wwIbacnfchmoC5yyGQnMsxt9wM
ncsuG+zfhxan1o6DyXm/Tt/5tPwXcGTKU9ju0/dHzcwzSyFrje0JF/ng5UscK3s+
ICEv8D3dtbV9uBhvhVylSqtlEGJ5MfVqCs16pa7NtEuseOWXYlcECLirOV393J7Q
DWxdlyrrxBkbt2qRfqq/C7FmhejJzD/7XKduMLzNvSuAVFvGo25hljrQ9boUPyUf
BSoG6tEgBvEnwdTrwVHMK/B9obWUcTN+Id0GR9QflECooFJwuHbdWcpAJ/izxaQ4
bjnehts48Mm3ADtcWmQVRVOboBbcITD7YR9BucNWZzWcaQJ9v3xE3NK6uQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:30 2024 by rpki-client on console-fra.rpki-client.org