Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/wKI9V8wY9QicFrHhjyOUDZiLtFY.roa
File: wKI9V8wY9QicFrHhjyOUDZiLtFY.roa (raw, json)
Hash identifier: +yiA8a+6oI4wMIqHHtkQ4wx66N0r3TEtiWh3XnEkiPA=
Subject key identifier: C0:A2:3D:57:CC:18:F5:08:9C:16:B1:E1:8F:23:94:0D:98:8B:B4:56
Certificate issuer: /CN=b155daddb871b9d6a53cd6b47f776250837f7774
Certificate serial: 0182D44E95CB769A63295D0FE2FF7B426F47
Authority key identifier: B1:55:DA:DD:B8:71:B9:D6:A5:3C:D6:B4:7F:77:62:50:83:7F:77:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVXa3bhxudalPNa0f3diUIN_d3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/wKI9V8wY9QicFrHhjyOUDZiLtFY.roa
Signing time: Thu 25 Aug 2022 09:21:36 +0000
ROA not before: Thu 25 Aug 2022 09:21:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19905
IP address blocks: 212.95.96.0/19 maxlen: 24
92.252.0.0/17 maxlen: 24
212.6.64.0/18 maxlen: 24
85.16.0.0/16 maxlen: 24
95.33.0.0/16 maxlen: 24
85.8.64.0/18 maxlen: 24
37.138.0.0/16 maxlen: 24
82.149.160.0/19 maxlen: 24
90.153.0.0/17 maxlen: 24
89.166.128.0/17 maxlen: 24
213.168.192.0/19 maxlen: 24
80.66.0.0/19 maxlen: 24
213.183.160.0/19 maxlen: 24
91.96.0.0/15 maxlen: 24
31.150.0.0/16 maxlen: 24
80.228.0.0/16 maxlen: 24
87.245.0.0/18 maxlen: 24
89.233.64.0/19 maxlen: 24
31.184.0.0/18 maxlen: 24
91.248.0.0/15 maxlen: 24
213.182.96.0/19 maxlen: 24
31.187.112.0/20 maxlen: 24
213.170.160.0/19 maxlen: 24
178.142.0.0/16 maxlen: 24
188.118.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d4:4e:95:cb:76:9a:63:29:5d:0f:e2:ff:7b:42:6f:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155daddb871b9d6a53cd6b47f776250837f7774
Validity
Not Before: Aug 25 09:21:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0a23d57cc18f5089c16b1e18f23940d988bb456
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ec:d7:df:00:28:10:5c:7f:6c:6e:85:37:ce:
84:03:61:e3:3f:fc:09:80:01:9c:65:f5:6e:5c:05:
89:71:05:0c:9e:42:44:d9:d7:b7:51:94:4a:f9:13:
bb:22:54:84:41:30:ff:0f:2e:03:2b:e8:1e:4b:ee:
22:a3:ee:f1:59:70:91:0d:d3:8e:ff:24:ae:89:5d:
47:18:78:3c:3d:ba:40:0b:c7:0a:96:79:f5:98:4c:
47:a7:37:ab:c6:db:23:8a:0d:a4:1e:8f:c5:33:64:
88:b8:83:a4:98:b5:d5:a7:29:4e:bc:0b:d6:17:2a:
d4:41:1e:53:7b:12:4e:4b:3c:4a:28:f3:e7:44:41:
34:85:7c:53:06:82:95:05:f5:6b:ae:1b:d4:20:95:
25:a8:21:7d:fa:ec:9a:d0:1c:51:56:1c:39:9e:2a:
48:7b:67:2c:97:90:0b:50:d0:b2:8f:15:c4:13:72:
9f:ca:7c:b2:4b:8a:3c:fe:29:65:b7:3a:b0:5a:b2:
cd:6c:27:e4:92:cd:3c:50:6c:28:89:36:1b:d7:a0:
06:92:d5:2a:36:c5:ed:22:d3:93:66:f0:7b:05:38:
a5:b0:3d:00:fc:48:50:de:1b:23:2f:e3:1c:d4:13:
64:28:58:f8:04:ec:a6:e5:3f:58:ae:94:52:f0:82:
0e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:A2:3D:57:CC:18:F5:08:9C:16:B1:E1:8F:23:94:0D:98:8B:B4:56
X509v3 Authority Key Identifier:
keyid:B1:55:DA:DD:B8:71:B9:D6:A5:3C:D6:B4:7F:77:62:50:83:7F:77:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVXa3bhxudalPNa0f3diUIN_d3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/wKI9V8wY9QicFrHhjyOUDZiLtFY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/sVXa3bhxudalPNa0f3diUIN_d3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.150.0.0/16
31.184.0.0/18
31.187.112.0/20
37.138.0.0/16
80.66.0.0/19
80.228.0.0/16
82.149.160.0/19
85.8.64.0/18
85.16.0.0/16
87.245.0.0/18
89.166.128.0/17
89.233.64.0/19
90.153.0.0/17
91.96.0.0/15
91.248.0.0/15
92.252.0.0/17
95.33.0.0/16
178.142.0.0/16
188.118.128.0/18
212.6.64.0/18
212.95.96.0/19
213.168.192.0/19
213.170.160.0/19
213.182.96.0/19
213.183.160.0/19
Signature Algorithm: sha256WithRSAEncryption
14:fe:3a:78:ad:44:bc:17:8e:19:c1:d1:ac:b0:9f:54:72:97:
08:a0:c7:02:a5:fb:0f:6c:bf:52:2a:d2:75:81:85:62:f6:ea:
34:9b:b7:61:8d:de:99:2e:46:e4:e6:90:03:d8:c5:8e:93:c1:
d9:7c:a9:27:a1:cb:f7:57:25:a8:86:b0:46:d6:f4:52:e6:61:
04:39:1d:39:d6:20:fb:4c:88:a5:38:53:9e:bf:73:86:10:77:
66:f2:cb:16:22:60:67:18:38:c5:6c:5a:19:1d:a7:c7:cc:0f:
d3:aa:b7:dd:53:53:19:ff:96:25:c6:52:9c:23:c1:22:3a:9b:
e2:bf:d6:46:96:58:c4:d3:a1:23:c4:87:7b:ab:36:3b:79:7b:
0f:3b:18:f6:48:0b:60:56:43:78:6d:68:4f:72:09:c3:76:37:
ec:04:6a:09:3e:c4:74:d4:d6:f4:16:45:5a:1a:2a:d2:8d:3f:
9e:29:5a:a8:a5:44:81:1f:2c:e1:0b:67:c3:78:fd:04:85:fe:
c7:c8:95:e3:56:48:f4:53:7e:a0:52:10:48:72:36:33:e9:56:
d1:af:dd:da:c3:ba:7e:6b:a2:6d:eb:be:57:86:73:db:65:ff:
f6:8f:e9:83:2a:1a:82:6c:e8:33:dc:cf:70:11:22:d0:82:f5:
a8:53:9d:7b
-----BEGIN CERTIFICATE-----
MIIFijCCBHKgAwIBAgISAYLUTpXLdppjKV0P4v97Qm9HMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxNTVkYWRkYjg3MWI5ZDZhNTNjZDZiNDdmNzc2MjUwODM3
Zjc3NzQwHhcNMjIwODI1MDkyMTM2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMGEyM2Q1N2NjMThmNTA4OWMxNmIxZTE4ZjIzOTQwZDk4OGJiNDU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxezX3wAoEFx/bG6FN86EA2HjP/wJ
gAGcZfVuXAWJcQUMnkJE2de3UZRK+RO7IlSEQTD/Dy4DK+geS+4io+7xWXCRDdOO
/ySuiV1HGHg8PbpAC8cKlnn1mExHpzerxtsjig2kHo/FM2SIuIOkmLXVpylOvAvW
FyrUQR5TexJOSzxKKPPnREE0hXxTBoKVBfVrrhvUIJUlqCF9+uya0BxRVhw5nipI
e2csl5ALUNCyjxXEE3KfynyyS4o8/illtzqwWrLNbCfkks08UGwoiTYb16AGktUq
NsXtItOTZvB7BTilsD0A/EhQ3hsjL+Mc1BNkKFj4BOym5T9YrpRS8IIOpQIDAQAB
o4ICljCCApIwHQYDVR0OBBYEFMCiPVfMGPUInBax4Y8jlA2Yi7RWMB8GA1UdIwQY
MBaAFLFV2t24cbnWpTzWtH93YlCDf3d0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1ZYYTNiaHh1ZGFsUE5hMGYzZGlVSU5fZDNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS84ZmQ2ZTctNDk2Zi00N2NmLTgwZmIt
NTQ2OGIyY2YwYTc3LzEvd0tJOVY4d1k5UWljRnJIaGp5T1VEWmlMdEZZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS84ZmQ2ZTctNDk2Zi00N2NmLTgwZmItNTQ2OGIyY2YwYTc3
LzEvc1ZYYTNiaHh1ZGFsUE5hMGYzZGlVSU5fZDNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGrBggrBgEFBQcBBwEB/wSBmzCBmDCBlQQCAAEwgY4DAwAf
lgMEBh+4AAMEBB+7cAMDACWKAwQFUEIAAwMAUOQDBAVSlaADBAZVCEADAwBVEAME
Blf1AAMEB1mmgAMEBVnpQAMEB1qZAAMDAVtgAwMBW/gDBAdc/AADAwBfIQMDALKO
AwQGvHaAAwQG1AZAAwQF1F9gAwQF1ajAAwQF1aqgAwQF1bZgAwQF1begMA0GCSqG
SIb3DQEBCwUAA4IBAQAU/jp4rUS8F44ZwdGssJ9UcpcIoMcCpfsPbL9SKtJ1gYVi
9uo0m7dhjd6ZLkbk5pAD2MWOk8HZfKknocv3VyWohrBG1vRS5mEEOR051iD7TIil
OFOev3OGEHdm8ssWImBnGDjFbFoZHafHzA/TqrfdU1MZ/5YlxlKcI8EiOpviv9ZG
lljE06EjxId7qzY7eXsPOxj2SAtgVkN4bWhPcgnDdjfsBGoJPsR01Nb0FkVaGirS
jT+eKVqopUSBHyzhC2fDeP0Ehf7HyJXjVkj0U36gUhBIcjYz6VbRr93aw7p+a6Jt
675XhnPbZf/2j+mDKhqCbOgz3M9wESLQgvWoU517
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:48 2023 by rpki-client on console-fra.rpki-client.org