Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/63564f-aca1-463d-be1e-e5520aa7ba37/1/vtropXwKkQCVRZPq8QtrTtdi2Gs.roa
File: vtropXwKkQCVRZPq8QtrTtdi2Gs.roa (raw, json)
Hash identifier: XDWQfzWtWFusC1YbO1+/vSs8hvpgn9exWyWJMld5P4I=
Subject key identifier: BE:DA:E8:A5:7C:0A:91:00:95:45:93:EA:F1:0B:6B:4E:D7:62:D8:6B
Certificate issuer: /CN=f563da6eb3b7a07fdc4525883004970d640b036b
Certificate serial: 0184ADBB1BAF11EA6562706D6F2145AF8A62
Authority key identifier: F5:63:DA:6E:B3:B7:A0:7F:DC:45:25:88:30:04:97:0D:64:0B:03:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9WPabrO3oH_cRSWIMASXDWQLA2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/63564f-aca1-463d-be1e-e5520aa7ba37/1/vtropXwKkQCVRZPq8QtrTtdi2Gs.roa
Signing time: Fri 25 Nov 2022 07:40:31 +0000
ROA not before: Fri 25 Nov 2022 07:40:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6661
IP address blocks: 213.166.32.0/19 maxlen: 24
107.183.0.0/17 maxlen: 24
213.135.224.0/19 maxlen: 24
88.207.128.0/17 maxlen: 24
146.0.216.0/21 maxlen: 24
78.141.128.0/18 maxlen: 24
185.32.236.0/22 maxlen: 24
37.157.152.0/21 maxlen: 24
194.154.192.0/19 maxlen: 24
87.240.192.0/18 maxlen: 24
178.254.64.0/18 maxlen: 24
146.0.212.0/22 maxlen: 24
188.115.0.0/18 maxlen: 24
83.99.0.0/17 maxlen: 24
146.0.128.0/18 maxlen: 24
195.46.224.0/19 maxlen: 24
2a00:ca60::/32 maxlen: 48
2001:7e8::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ad:bb:1b:af:11:ea:65:62:70:6d:6f:21:45:af:8a:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f563da6eb3b7a07fdc4525883004970d640b036b
Validity
Not Before: Nov 25 07:40:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bedae8a57c0a9100954593eaf10b6b4ed762d86b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a5:ff:50:b3:4b:61:5c:14:5b:1c:52:81:c5:
10:18:33:ae:54:c5:54:cd:1d:5e:41:d4:4f:7e:e0:
b1:e9:0b:6e:c0:b0:bc:5e:99:c0:8c:3d:18:56:ec:
70:83:9e:ba:c1:5e:4a:8a:2f:85:d2:2a:9d:83:a9:
25:d4:f0:7e:c8:f3:41:ff:7b:1b:51:3d:27:10:4d:
f7:c4:d9:08:7a:93:16:cb:e3:73:f1:15:8b:eb:3c:
e7:15:ec:91:3b:f3:b7:b0:8e:12:ed:92:7f:a8:65:
1c:41:7d:07:dd:31:c1:53:cb:20:b8:fa:1d:66:b2:
1a:35:07:d1:32:f8:34:b2:9b:7c:62:cc:33:b2:c5:
26:4a:b9:0b:21:89:d1:95:05:49:de:a4:fb:ce:67:
76:a6:37:bf:13:13:16:8e:a5:75:74:71:df:09:f7:
31:18:0e:ea:a3:d5:1e:a8:83:2a:9d:24:8e:29:01:
d8:4e:2d:ee:b2:d5:50:4c:6c:0c:cd:e5:b8:f7:f7:
2b:5c:f2:c9:e6:24:fd:58:b4:2b:e3:d4:2e:0f:ac:
71:3e:f1:03:49:5d:ba:c0:3d:9c:e5:82:65:4e:8d:
e3:9c:b0:25:e6:eb:88:98:12:67:ba:56:34:24:af:
c5:e9:a0:f4:40:0c:67:41:ee:68:d8:dd:5e:86:65:
57:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:DA:E8:A5:7C:0A:91:00:95:45:93:EA:F1:0B:6B:4E:D7:62:D8:6B
X509v3 Authority Key Identifier:
keyid:F5:63:DA:6E:B3:B7:A0:7F:DC:45:25:88:30:04:97:0D:64:0B:03:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9WPabrO3oH_cRSWIMASXDWQLA2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/63564f-aca1-463d-be1e-e5520aa7ba37/1/vtropXwKkQCVRZPq8QtrTtdi2Gs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/63564f-aca1-463d-be1e-e5520aa7ba37/1/9WPabrO3oH_cRSWIMASXDWQLA2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.157.152.0/21
78.141.128.0/18
83.99.0.0/17
87.240.192.0/18
88.207.128.0/17
107.183.0.0/17
146.0.128.0/18
146.0.212.0-146.0.223.255
178.254.64.0/18
185.32.236.0/22
188.115.0.0/18
194.154.192.0/19
195.46.224.0/19
213.135.224.0/19
213.166.32.0/19
IPv6:
2001:7e8::/32
2a00:ca60::/32
Signature Algorithm: sha256WithRSAEncryption
2c:c2:a3:f2:d3:d0:12:1a:be:ac:63:7f:55:53:40:40:e3:29:
53:63:60:3f:1f:24:44:9c:fa:aa:e7:b9:17:08:e7:42:b5:77:
0c:26:2e:bd:86:3d:39:d2:da:d9:6e:b6:6e:6a:3a:bc:1d:ed:
97:5a:c1:bc:06:8e:11:75:d2:b7:b4:4a:c4:01:09:11:36:57:
b3:55:d5:5d:47:fa:69:e3:a3:0a:60:a9:bb:ef:67:0b:d0:66:
59:14:d2:ec:e4:6b:c7:68:da:7c:bf:bd:52:fd:8f:ab:5a:d7:
cb:b6:c5:bc:7a:de:8d:05:f4:e3:2a:79:41:a7:9a:35:7b:55:
c1:94:4b:de:65:19:6e:b5:db:2c:2f:31:c2:8f:4b:25:df:4d:
1a:11:fd:07:b6:d1:67:b1:b9:76:3f:16:80:7d:82:0c:26:6f:
ee:12:8e:df:12:1a:f4:84:88:88:ce:3e:52:d4:d2:29:b7:5a:
9e:2f:4f:bf:8f:6c:e1:64:da:39:1b:95:e8:41:0a:05:44:e3:
ed:68:6a:c7:41:ce:1f:1f:6e:9f:f5:1c:d1:c2:85:c7:ca:2e:
08:eb:b6:b9:0e:ae:81:79:3b:66:c5:5f:fb:7e:0e:7b:40:4a:
0a:e6:fa:f1:35:01:ea:3d:53:bf:3b:c9:cd:0b:b8:a1:da:4a:
cf:17:76:b5
-----BEGIN CERTIFICATE-----
MIIFcjCCBFqgAwIBAgISAYStuxuvEeplYnBtbyFFr4piMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY1NjNkYTZlYjNiN2EwN2ZkYzQ1MjU4ODMwMDQ5NzBkNjQw
YjAzNmIwHhcNMjIxMTI1MDc0MDMxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZWRhZThhNTdjMGE5MTAwOTU0NTkzZWFmMTBiNmI0ZWQ3NjJkODZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmKX/ULNLYVwUWxxSgcUQGDOuVMVU
zR1eQdRPfuCx6QtuwLC8XpnAjD0YVuxwg566wV5Kii+F0iqdg6kl1PB+yPNB/3sb
UT0nEE33xNkIepMWy+Nz8RWL6zznFeyRO/O3sI4S7ZJ/qGUcQX0H3THBU8sguPod
ZrIaNQfRMvg0spt8YswzssUmSrkLIYnRlQVJ3qT7zmd2pje/ExMWjqV1dHHfCfcx
GA7qo9UeqIMqnSSOKQHYTi3ustVQTGwMzeW49/crXPLJ5iT9WLQr49QuD6xxPvED
SV26wD2c5YJlTo3jnLAl5uuImBJnulY0JK/F6aD0QAxnQe5o2N1ehmVX7wIDAQAB
o4ICfjCCAnowHQYDVR0OBBYEFL7a6KV8CpEAlUWT6vELa07XYthrMB8GA1UdIwQY
MBaAFPVj2m6zt6B/3EUliDAElw1kCwNrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOVdQYWJyTzNvSF9jUlNXSU1BU1hEV1FMQTJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy82MzU2NGYtYWNhMS00NjNkLWJlMWUt
ZTU1MjBhYTdiYTM3LzEvdnRyb3BYd0trUUNWUlpQcThRdHJUdGRpMkdzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy82MzU2NGYtYWNhMS00NjNkLWJlMWUtZTU1MjBhYTdiYTM3
LzEvOVdQYWJyTzNvSF9jUlNXSU1BU1hEV1FMQTJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGTBggrBgEFBQcBBwEB/wSBgzCBgDBoBAIAATBiAwQDJZ2Y
AwQGTo2AAwQHU2MAAwQGV/DAAwQHWM+AAwQHa7cAAwQGkgCAMAwDBAKSANQDBAWS
AMADBAay/kADBAK5IOwDBAa8cwADBAXCmsADBAXDLuADBAXVh+ADBAXVpiAwFAQC
AAIwDgMFACABB+gDBQAqAMpgMA0GCSqGSIb3DQEBCwUAA4IBAQAswqPy09ASGr6s
Y39VU0BA4ylTY2A/HyREnPqq57kXCOdCtXcMJi69hj050trZbrZuajq8He2XWsG8
Bo4RddK3tErEAQkRNlezVdVdR/pp46MKYKm772cL0GZZFNLs5GvHaNp8v71S/Y+r
WtfLtsW8et6NBfTjKnlBp5o1e1XBlEveZRlutdssLzHCj0sl300aEf0HttFnsbl2
PxaAfYIMJm/uEo7fEhr0hIiIzj5S1NIpt1qeL0+/j2zhZNo5G5XoQQoFROPtaGrH
Qc4fH26f9RzRwoXHyi4I67a5Dq6BeTtmxV/7fg57QEoK5vrxNQHqPVO/O8nNC7ih
2krPF3a1
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:11 2024 by rpki-client on console-fra.rpki-client.org