Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/x2Fyy5eIjgyQlSABzJuck2jYq-M.roa
File: x2Fyy5eIjgyQlSABzJuck2jYq-M.roa (raw, json)
Hash identifier: wpa0FcP4y27dTMyC769RbO6DOBbwip1gssQSWh9A8j0=
Subject key identifier: C7:61:72:CB:97:88:8E:0C:90:95:20:01:CC:9B:9C:93:68:D8:AB:E3
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 01834555375A36E527F66D554943F0F64022
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/x2Fyy5eIjgyQlSABzJuck2jYq-M.roa
Signing time: Fri 16 Sep 2022 08:05:56 +0000
ROA not before: Fri 16 Sep 2022 08:05:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13194
IP address blocks: 85.254.71.0/24 maxlen: 24
85.254.75.0/24 maxlen: 24
85.254.76.0/24 maxlen: 24
85.254.73.0/24 maxlen: 24
85.254.74.0/24 maxlen: 24
85.254.76.0/22 maxlen: 22
85.254.74.0/23 maxlen: 23
85.254.138.0/23 maxlen: 23
85.254.141.0/24 maxlen: 24
85.254.151.0/24 maxlen: 24
85.254.149.0/24 maxlen: 24
85.254.152.0/22 maxlen: 22
85.254.170.0/24 maxlen: 24
85.254.176.0/23 maxlen: 23
80.81.61.0/24 maxlen: 24
85.254.84.0/23 maxlen: 23
85.254.80.0/22 maxlen: 22
85.254.94.0/24 maxlen: 24
85.254.98.0/23 maxlen: 23
85.254.96.0/22 maxlen: 22
85.254.96.0/23 maxlen: 23
85.254.92.0/22 maxlen: 22
85.254.92.0/23 maxlen: 23
85.254.95.0/24 maxlen: 24
85.254.92.0/24 maxlen: 24
85.254.93.0/24 maxlen: 24
85.254.104.0/21 maxlen: 21
85.254.103.0/24 maxlen: 24
85.254.101.0/24 maxlen: 24
85.254.102.0/24 maxlen: 24
85.254.100.0/24 maxlen: 24
85.254.112.0/21 maxlen: 21
85.254.124.0/23 maxlen: 23
85.254.128.0/22 maxlen: 22
85.254.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:45:55:37:5a:36:e5:27:f6:6d:55:49:43:f0:f6:40:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Sep 16 08:05:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c76172cb97888e0c90952001cc9b9c9368d8abe3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:65:7c:58:10:92:1b:96:99:d6:d7:78:1c:83:
c6:71:d9:2d:2a:1e:36:26:d7:19:7c:d7:e7:92:af:
81:ff:9d:c4:2b:b8:e2:8c:05:a8:27:bb:81:a6:3f:
1e:d6:48:5d:83:71:05:49:34:50:34:69:e1:b5:93:
cf:d4:0b:78:5a:1d:a3:01:32:4b:3a:62:27:83:78:
48:01:9c:75:02:01:b5:cb:7a:28:d9:58:bb:fe:1c:
20:1e:d4:3d:e0:c4:8b:62:40:9c:ec:46:57:ea:3c:
66:a9:b5:3f:9f:91:32:0e:c3:10:32:b2:f7:eb:6e:
44:94:1e:eb:69:bd:ca:67:11:b3:80:2f:26:c6:f3:
2e:df:2c:16:c3:f6:23:07:28:fe:d3:71:8b:b1:22:
c8:97:98:06:05:3a:56:39:aa:0f:05:c2:97:bb:89:
18:e1:2a:ba:85:cd:21:a3:eb:35:a8:d5:f0:8f:3c:
21:f1:de:49:fc:86:98:30:dd:83:81:f0:01:51:ed:
06:4c:c9:68:ae:04:f0:f1:64:6a:e7:98:9f:88:05:
48:d2:e7:e5:16:1c:78:eb:23:36:6c:cb:4a:70:be:
60:4f:fe:cb:38:4e:2e:64:a6:15:30:62:38:8d:c4:
32:c7:36:35:14:79:c0:e1:73:c0:cc:e0:9a:6e:0f:
f0:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:61:72:CB:97:88:8E:0C:90:95:20:01:CC:9B:9C:93:68:D8:AB:E3
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/x2Fyy5eIjgyQlSABzJuck2jYq-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.81.61.0/24
85.254.71.0/24
85.254.73.0-85.254.85.255
85.254.92.0-85.254.119.255
85.254.124.0-85.254.126.255
85.254.128.0/22
85.254.138.0/23
85.254.141.0/24
85.254.149.0/24
85.254.151.0-85.254.155.255
85.254.170.0/24
85.254.176.0/23
Signature Algorithm: sha256WithRSAEncryption
ae:e3:15:b4:f1:74:65:37:35:72:be:1b:14:92:9e:1c:d9:a4:
d9:82:a9:6d:a5:e1:23:47:f1:bc:f0:b9:b7:7b:5d:7f:dc:e8:
96:ff:c7:d9:06:70:4c:33:ec:bb:60:18:18:2b:9d:b1:3c:2e:
9d:e6:25:05:36:f4:88:20:90:72:f7:cf:78:c2:f0:9d:14:14:
ce:33:a8:0e:3d:77:44:46:56:b9:57:24:56:2e:24:ff:aa:34:
c2:e1:21:4a:be:5f:30:a2:fa:d0:71:43:51:3d:1e:55:89:46:
52:36:38:7d:f3:a1:db:4a:62:6a:97:2f:fc:6d:ff:a8:72:ca:
f2:8e:98:a2:68:5c:06:f3:c2:b1:c4:2a:a0:97:60:ca:fd:30:
c2:35:98:c2:62:60:68:56:ba:41:a3:26:ac:9d:53:da:1a:31:
a1:04:ae:f7:09:34:8f:e1:c3:ea:2e:0d:ce:6d:21:19:5e:15:
ba:b1:e0:e2:8e:90:9b:ed:c9:da:87:96:c0:42:a8:f1:15:fc:
3e:69:06:0c:42:73:59:ab:90:84:f7:74:a4:cf:f1:98:a7:cc:
bf:29:e4:7e:72:49:43:6e:b4:a9:4f:cf:4a:4a:c9:df:02:5c:
e3:f9:d1:8b:3a:73:40:24:36:90:c2:9e:cf:e3:61:f3:51:7c:
87:1e:3f:ac
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgISAYNFVTdaNuUn9m1VSUPw9kAiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiMDk1MmM4YmE4ZGFkYjFkMzRkZTZjNmE5Mzg2NGE2MDlm
YzQxZWMwHhcNMjIwOTE2MDgwNTU2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNzYxNzJjYjk3ODg4ZTBjOTA5NTIwMDFjYzliOWM5MzY4ZDhhYmUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAumV8WBCSG5aZ1td4HIPGcdktKh42
JtcZfNfnkq+B/53EK7jijAWoJ7uBpj8e1khdg3EFSTRQNGnhtZPP1At4Wh2jATJL
OmIng3hIAZx1AgG1y3oo2Vi7/hwgHtQ94MSLYkCc7EZX6jxmqbU/n5EyDsMQMrL3
625ElB7rab3KZxGzgC8mxvMu3ywWw/YjByj+03GLsSLIl5gGBTpWOaoPBcKXu4kY
4Sq6hc0ho+s1qNXwjzwh8d5J/IaYMN2DgfABUe0GTMlorgTw8WRq55ifiAVI0ufl
Fhx46yM2bMtKcL5gT/7LOE4uZKYVMGI4jcQyxzY1FHnA4XPAzOCabg/woQIDAQAB
o4ICbDCCAmgwHQYDVR0OBBYEFMdhcsuXiI4MkJUgAcybnJNo2KvjMB8GA1UdIwQY
MBaAFKsJUsi6ja2x003mxqk4ZKYJ/EHsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAt
NTU1NGQ2ZTE2ODZmLzEveDJGeXk1ZUlqZ3lRbFNBQnpKdWNrMmpZcS1NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAtNTU1NGQ2ZTE2ODZm
LzEvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGBBggrBgEFBQcBBwEB/wRyMHAwbgQCAAEwaAMEAFBRPQME
AFX+RzAMAwQAVf5JAwQBVf5UMAwDBAJV/lwDBANV/nAwDAMEAlX+fAMEAFX+fgME
AlX+gAMEAVX+igMEAFX+jQMEAFX+lTAMAwQAVf6XAwQCVf6YAwQAVf6qAwQBVf6w
MA0GCSqGSIb3DQEBCwUAA4IBAQCu4xW08XRlNzVyvhsUkp4c2aTZgqltpeEjR/G8
8Lm3e11/3OiW/8fZBnBMM+y7YBgYK52xPC6d5iUFNvSIIJBy9894wvCdFBTOM6gO
PXdERla5VyRWLiT/qjTC4SFKvl8wovrQcUNRPR5ViUZSNjh986HbSmJqly/8bf+o
csryjpiiaFwG88KxxCqgl2DK/TDCNZjCYmBoVrpBoyasnVPaGjGhBK73CTSP4cPq
Lg3ObSEZXhW6seDijpCb7cnah5bAQqjxFfw+aQYMQnNZq5CE93Skz/GYp8y/KeR+
cklDbrSpT89KSsnfAlzj+dGLOnNAJDaQwp7P42HzUXyHHj+s
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:38 2023 by rpki-client on console-ams.rpki-client.org