Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/J4umuSWnDeQ3D8eM-gTAxS8huo8.roa
File: J4umuSWnDeQ3D8eM-gTAxS8huo8.roa (raw, json)
Hash identifier: ygBQqQIF0y162xKRUJI2QjsL+iT2cd/OufLpSnQ5gLg=
Subject key identifier: 27:8B:A6:B9:25:A7:0D:E4:37:0F:C7:8C:FA:04:C0:C5:2F:21:BA:8F
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 0871A272
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/J4umuSWnDeQ3D8eM-gTAxS8huo8.roa
Signing time: Fri 06 May 2022 17:53:43 +0000
ROA not before: Fri 06 May 2022 17:53:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 45.151.0.0/23 maxlen: 24
45.151.2.0/24 maxlen: 24
195.211.188.0/22 maxlen: 24
2.56.108.0/22 maxlen: 24
45.88.136.0/24 maxlen: 24
45.88.138.0/24 maxlen: 24
45.88.137.0/24 maxlen: 24
45.88.139.0/24 maxlen: 24
193.57.41.0/24 maxlen: 24
45.144.213.0/24 maxlen: 24
45.132.182.0/23 maxlen: 24
195.62.24.0/24 maxlen: 24
45.13.188.0/24 maxlen: 24
45.13.189.0/24 maxlen: 24
45.13.191.0/24 maxlen: 24
45.144.215.0/24 maxlen: 24
45.144.214.0/24 maxlen: 24
194.15.52.0/23 maxlen: 24
193.30.241.0/24 maxlen: 24
85.209.120.0/24 maxlen: 24
85.209.122.0/24 maxlen: 24
85.209.121.0/24 maxlen: 24
85.209.123.0/24 maxlen: 24
77.83.39.0/24 maxlen: 24
195.177.94.0/24 maxlen: 24
195.177.93.0/24 maxlen: 24
195.177.95.0/24 maxlen: 24
77.83.38.0/24 maxlen: 24
77.83.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141664882 (0x871a272)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: May 6 17:53:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=278ba6b925a70de4370fc78cfa04c0c52f21ba8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a6:78:89:f5:4f:c2:0f:04:36:de:3d:24:7a:
7b:bf:fb:42:69:06:bb:e1:23:7b:51:90:29:56:94:
fa:d7:1e:0d:3a:be:16:45:f8:69:9d:37:1a:92:fc:
cf:5a:cb:2e:72:17:66:ca:d7:e8:c0:86:9b:cf:1f:
6b:79:b0:d4:ac:14:34:ac:b4:2b:42:59:b7:5f:1b:
78:d1:ba:e6:aa:07:8d:a9:cd:2f:d3:22:1a:53:88:
76:ff:c2:a0:f6:7e:a6:a1:c6:6c:1d:aa:bb:3a:0a:
8b:7b:0c:94:e3:3d:2d:4e:06:cf:da:61:7b:e5:24:
3c:d8:cd:30:e6:0a:d2:d8:e2:e9:16:30:5b:e2:53:
56:3c:fd:70:f0:28:97:04:90:52:e0:12:90:17:91:
d2:9c:66:28:53:f3:18:3c:b5:59:4a:c0:dc:1b:a9:
e3:25:68:a8:e0:26:01:e7:d7:57:bd:6b:f3:2a:41:
79:1c:86:c2:a4:62:a0:01:06:eb:7a:78:dc:fc:78:
6c:21:03:ad:51:c6:69:80:3b:e8:a3:53:48:17:2f:
f4:a7:28:35:ab:65:b1:a0:3d:60:68:20:75:24:b5:
2a:b4:c8:8c:0f:9f:6f:35:dc:33:12:05:97:fd:a2:
54:70:91:cc:1c:d5:36:be:12:d4:08:7b:aa:a5:0d:
f9:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:8B:A6:B9:25:A7:0D:E4:37:0F:C7:8C:FA:04:C0:C5:2F:21:BA:8F
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/J4umuSWnDeQ3D8eM-gTAxS8huo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.108.0/22
45.13.188.0/23
45.13.191.0/24
45.88.136.0/22
45.132.182.0/23
45.144.213.0-45.144.215.255
45.151.0.0-45.151.2.255
77.83.37.0-77.83.39.255
85.209.120.0/22
193.30.241.0/24
193.57.41.0/24
194.15.52.0/23
195.62.24.0/24
195.177.93.0-195.177.95.255
195.211.188.0/22
Signature Algorithm: sha256WithRSAEncryption
03:01:8c:1b:a7:25:a4:76:22:85:f8:08:fb:35:ca:63:1c:fb:
a5:27:cc:be:f9:5e:c2:4f:a1:4a:ac:cb:23:08:22:c7:a5:09:
02:f9:4a:de:e4:fe:15:fb:dd:b9:3e:8a:48:79:18:dd:f8:4e:
c0:84:ec:79:9c:bf:cb:ce:d0:ef:69:ac:b6:a3:81:50:71:6c:
62:22:9c:54:7d:20:3c:4a:a9:1d:70:9e:cc:a3:d0:48:6a:e1:
a6:12:fd:25:b7:5f:9b:cc:f4:c1:0f:93:c9:cd:0b:b2:06:56:
d5:79:97:ee:26:33:d3:3c:fe:17:80:1e:7a:52:a2:d4:5f:c9:
52:a6:ef:02:0f:70:04:cc:40:e4:bb:71:79:0b:ce:45:bd:89:
f5:c2:e0:34:6f:9a:c0:9c:99:9d:23:19:eb:e7:b0:86:6b:f0:
32:31:f5:d1:b9:cd:cf:87:f0:a8:27:24:d9:87:de:33:30:c8:
e4:2f:61:ff:db:18:fb:d0:ce:33:49:8e:ae:0b:31:b4:13:b1:
24:46:98:a8:fb:9f:fd:b1:13:1d:ad:8a:4f:fe:95:8e:7b:e8:
13:29:d1:6f:11:b0:a7:79:69:fb:bb:f5:37:c3:e2:e6:d3:a7:
06:f4:ec:9d:fa:d5:10:59:dc:5f:d9:b4:f9:ec:3f:a1:5d:45:
1e:17:83:21
-----BEGIN CERTIFICATE-----
MIIFZTCCBE2gAwIBAgIECHGicjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ZDJhNDc4YmIwYjA4ZTY2MWIwYjJmOWZiZTg5MzViYzljMmEyOGExMB4XDTIyMDUw
NjE3NTM0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjc4YmE2YjkyNWE3
MGRlNDM3MGZjNzhjZmEwNGMwYzUyZjIxYmE4ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMSmeIn1T8IPBDbePSR6e7/7QmkGu+Eje1GQKVaU+tceDTq+
FkX4aZ03GpL8z1rLLnIXZsrX6MCGm88fa3mw1KwUNKy0K0JZt18beNG65qoHjanN
L9MiGlOIdv/CoPZ+pqHGbB2quzoKi3sMlOM9LU4Gz9phe+UkPNjNMOYK0tji6RYw
W+JTVjz9cPAolwSQUuASkBeR0pxmKFPzGDy1WUrA3Bup4yVoqOAmAefXV71r8ypB
eRyGwqRioAEG63p43Px4bCEDrVHGaYA76KNTSBcv9KcoNatlsaA9YGggdSS1KrTI
jA+fbzXcMxIFl/2iVHCRzBzVNr4S1Ah7qqUN+XsCAwEAAaOCAn8wggJ7MB0GA1Ud
DgQWBBQni6a5JacN5DcPx4z6BMDFLyG6jzAfBgNVHSMEGDAWgBSdKkeLsLCOZhsL
L5++iTW8nCoooTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L25TcEhpN0N3am1ZYkN5LWZ2b2sxdkp3cUtLRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTYvNjYzZGY1LTU4MGMtNGYyYy1hNjZjLWVlZjM1MTFmNmM2MC8x
L0o0dW11U1duRGVRM0Q4ZU0tZ1RBeFM4aHVvOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTYv
NjYzZGY1LTU4MGMtNGYyYy1hNjZjLWVlZjM1MTFmNmM2MC8xL25TcEhpN0N3am1Z
YkN5LWZ2b2sxdkp3cUtLRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
lAYIKwYBBQUHAQcBAf8EgYQwgYEwfwQCAAEweQMEAgI4bAMEAS0NvAMEAC0NvwME
Ai1YiAMEAS2EtjAMAwQALZDVAwQDLZDQMAsDAwAtlwMEAC2XAjAMAwQATVMlAwQD
TVMgAwQCVdF4AwQAwR7xAwQAwTkpAwQBwg80AwQAwz4YMAwDBADDsV0DBAXDsUAD
BALD07wwDQYJKoZIhvcNAQELBQADggEBAAMBjBunJaR2IoX4CPs1ymMc+6UnzL75
XsJPoUqsyyMIIselCQL5St7k/hX73bk+ikh5GN34TsCE7Hmcv8vO0O9prLajgVBx
bGIinFR9IDxKqR1wnsyj0Ehq4aYS/SW3X5vM9MEPk8nNC7IGVtV5l+4mM9M8/heA
HnpSotRfyVKm7wIPcATMQOS7cXkLzkW9ifXC4DRvmsCcmZ0jGevnsIZr8DIx9dG5
zc+H8KgnJNmH3jMwyOQvYf/bGPvQzjNJjq4LMbQTsSRGmKj7n/2xEx2tik/+lY57
6BMp0W8RsKd5afu79TfD4ubTpwb07J361RBZ3F/ZtPnsP6FdRR4XgyE=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:20 2023 by rpki-client on console-ams.rpki-client.org