Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/754af9-78df-4bd1-b480-527c81958649/1/1-mkmwV_z5v-CPxYzUeljGlk1d7Y.roa
File: 1-mkmwV_z5v-CPxYzUeljGlk1d7Y.roa (raw, json)
Hash identifier: wEZAazVS9LueOj6WoVUYXOfgwuKjUGvYBo8nAjYGvrQ=
Subject key identifier: FA:69:26:C1:5F:F3:E6:FF:82:3F:16:33:51:E9:63:1A:59:35:77:B6
Certificate issuer: /CN=56bd7f6adfec6d44d16d3e3f798e3f2bd20da3ff
Certificate serial: 19834B0D
Authority key identifier: 56:BD:7F:6A:DF:EC:6D:44:D1:6D:3E:3F:79:8E:3F:2B:D2:0D:A3:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vr1_at_sbUTRbT4_eY4_K9INo_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/754af9-78df-4bd1-b480-527c81958649/1/1-mkmwV_z5v-CPxYzUeljGlk1d7Y.roa
Signing time: Sat 01 Jan 2022 00:56:30 +0000
ROA not before: Sat 01 Jan 2022 00:56:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33182
IP address blocks: 185.38.44.0/22 maxlen: 22
109.73.160.0/24 maxlen: 24
109.73.164.0/24 maxlen: 24
109.73.163.0/24 maxlen: 24
109.73.162.0/24 maxlen: 24
109.73.161.0/24 maxlen: 24
109.73.166.0/24 maxlen: 24
109.73.165.0/24 maxlen: 24
109.73.171.0/24 maxlen: 24
109.73.170.0/24 maxlen: 24
109.73.169.0/24 maxlen: 24
109.73.168.0/24 maxlen: 24
109.73.172.0/24 maxlen: 24
109.73.167.0/24 maxlen: 24
109.73.174.0/24 maxlen: 24
109.73.173.0/24 maxlen: 24
109.73.175.0/24 maxlen: 24
212.18.224.0/20 maxlen: 20
212.18.230.0/24 maxlen: 24
212.18.232.0/24 maxlen: 24
212.18.235.0/24 maxlen: 24
212.18.234.0/23 maxlen: 23
212.18.234.0/24 maxlen: 24
212.18.237.0/24 maxlen: 24
86.111.176.0/22 maxlen: 22
86.111.176.0/20 maxlen: 20
86.111.182.0/23 maxlen: 23
86.111.180.0/23 maxlen: 23
86.111.184.0/21 maxlen: 21
2a04:840:10::/44 maxlen: 44
2a04:840::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 428034829 (0x19834b0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56bd7f6adfec6d44d16d3e3f798e3f2bd20da3ff
Validity
Not Before: Jan 1 00:56:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa6926c15ff3e6ff823f163351e9631a593577b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:dd:9a:5b:6a:84:a2:d4:be:09:38:07:ff:62:
da:7a:9c:35:91:dc:db:b0:70:ae:0d:a2:f2:fb:e4:
4e:69:b6:94:79:6e:1f:32:8c:5c:27:65:78:c3:66:
52:03:b2:64:65:76:ca:2a:9d:9d:5e:51:e3:bb:6a:
e0:31:bb:5d:1c:1b:63:ce:4a:10:18:72:b6:1d:d8:
c1:3d:ce:95:a9:56:34:55:8c:6a:b0:9a:9e:e6:cd:
8b:07:16:51:dd:f6:c5:69:f9:04:e5:3a:b9:b7:8d:
e7:51:ab:de:be:e1:5c:6a:80:95:42:03:60:d9:29:
82:55:63:f2:bd:d5:db:88:61:6d:53:1c:96:3e:00:
b1:c6:f5:79:1f:3b:74:c5:3f:6b:f3:a1:53:8f:73:
1b:d0:3c:fd:99:17:27:34:ca:44:e6:f3:ac:cc:a0:
2c:ee:45:73:86:cb:11:79:86:bb:b1:f9:70:5a:92:
5e:93:6f:f0:ab:44:f4:0b:cd:0f:ae:70:b6:9d:4b:
2a:45:dd:47:e4:87:22:d0:6f:2f:07:e9:7a:cc:d6:
eb:43:cc:9c:6a:12:a5:11:e4:0e:36:cd:5d:f1:d6:
2b:d2:30:26:e6:95:c3:65:ba:51:33:e0:25:3e:2d:
d2:69:42:f9:b3:46:a8:8e:ad:3b:b9:36:e3:8d:08:
01:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:69:26:C1:5F:F3:E6:FF:82:3F:16:33:51:E9:63:1A:59:35:77:B6
X509v3 Authority Key Identifier:
keyid:56:BD:7F:6A:DF:EC:6D:44:D1:6D:3E:3F:79:8E:3F:2B:D2:0D:A3:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vr1_at_sbUTRbT4_eY4_K9INo_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/754af9-78df-4bd1-b480-527c81958649/1/1-mkmwV_z5v-CPxYzUeljGlk1d7Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/754af9-78df-4bd1-b480-527c81958649/1/Vr1_at_sbUTRbT4_eY4_K9INo_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.111.176.0/20
109.73.160.0/20
185.38.44.0/22
212.18.224.0/20
IPv6:
2a04:840::/43
Signature Algorithm: sha256WithRSAEncryption
52:85:55:ae:dc:95:bd:e4:0b:d5:e5:09:49:89:7e:4c:26:a6:
b3:f1:bd:ab:ad:f9:68:4f:d2:a6:6d:2e:07:75:ad:87:d0:3e:
5f:7b:50:ec:0b:0b:81:4b:a1:83:48:77:e3:a5:6e:00:cc:3f:
33:a2:2e:9c:b5:d4:ff:4e:55:0c:9f:4c:60:8e:99:83:f0:a6:
d6:dd:92:31:00:c5:07:95:ad:ae:3b:d5:1c:97:e2:71:d3:b5:
dc:e5:3e:0d:68:63:b3:cd:9f:81:e4:f4:d1:41:c1:45:4b:70:
d7:9e:67:31:90:63:aa:8d:a1:3a:a3:2b:ab:ef:67:1f:a0:b0:
c6:5a:f7:4f:1f:1f:45:d1:28:bc:10:c7:3d:d8:46:d4:f8:e3:
26:80:2d:a7:14:58:19:08:7b:93:d8:1a:83:cc:e9:7c:4c:12:
b6:50:17:89:83:6c:58:63:c7:19:60:95:a2:17:b2:ae:49:42:
8d:17:05:38:84:a4:e2:3f:a0:7b:fa:a5:d9:df:a8:91:77:6a:
a9:43:e5:44:15:df:62:96:7b:b5:5d:bf:68:58:d8:c9:b8:7c:
4d:cf:3e:36:69:36:29:11:bb:49:21:b1:e5:14:85:6c:fe:c7:
d4:50:24:b3:61:55:4e:85:d4:0c:32:63:ed:3c:53:99:b1:11:
be:c2:55:2d
-----BEGIN CERTIFICATE-----
MIIFEzCCA/ugAwIBAgIEGYNLDTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NmJkN2Y2YWRmZWM2ZDQ0ZDE2ZDNlM2Y3OThlM2YyYmQyMGRhM2ZmMB4XDTIyMDEw
MTAwNTYzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmE2OTI2YzE1ZmYz
ZTZmZjgyM2YxNjMzNTFlOTYzMWE1OTM1NzdiNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALbdmltqhKLUvgk4B/9i2nqcNZHc27Bwrg2i8vvkTmm2lHlu
HzKMXCdleMNmUgOyZGV2yiqdnV5R47tq4DG7XRwbY85KEBhyth3YwT3OlalWNFWM
arCanubNiwcWUd32xWn5BOU6ubeN51Gr3r7hXGqAlUIDYNkpglVj8r3V24hhbVMc
lj4Ascb1eR87dMU/a/OhU49zG9A8/ZkXJzTKRObzrMygLO5Fc4bLEXmGu7H5cFqS
XpNv8KtE9AvND65wtp1LKkXdR+SHItBvLwfpeszW60PMnGoSpRHkDjbNXfHWK9Iw
JuaVw2W6UTPgJT4t0mlC+bNGqI6tO7k2440IARECAwEAAaOCAi0wggIpMB0GA1Ud
DgQWBBT6aSbBX/Pm/4I/FjNR6WMaWTV3tjAfBgNVHSMEGDAWgBRWvX9q3+xtRNFt
Pj95jj8r0g2j/zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ZyMV9hdF9zYlVUUmJUNF9lWTRfSzlJTm9fOC5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzAvNzU0YWY5LTc4ZGYtNGJkMS1iNDgwLTUyN2M4MTk1ODY0OS8x
LzEtbWttd1ZfejV2LUNQeFl6VWVsakdsazFkN1kucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzMw
Lzc1NGFmOS03OGRmLTRiZDEtYjQ4MC01MjdjODE5NTg2NDkvMS9WcjFfYXRfc2JV
VFJiVDRfZVk0X0s5SU5vXzguY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
QgYIKwYBBQUHAQcBAf8EMzAxMB4EAgABMBgDBARWb7ADBARtSaADBAK5JiwDBATU
EuAwDwQCAAIwCQMHBSoECEAAADANBgkqhkiG9w0BAQsFAAOCAQEAUoVVrtyVveQL
1eUJSYl+TCams/G9q635aE/Spm0uB3Wth9A+X3tQ7AsLgUuhg0h346VuAMw/M6Iu
nLXU/05VDJ9MYI6Zg/Cm1t2SMQDFB5WtrjvVHJficdO13OU+DWhjs82fgeT00UHB
RUtw155nMZBjqo2hOqMrq+9nH6Cwxlr3Tx8fRdEovBDHPdhG1PjjJoAtpxRYGQh7
k9gag8zpfEwStlAXiYNsWGPHGWCVoheyrklCjRcFOISk4j+ge/ql2d+okXdqqUPl
RBXfYpZ7tV2/aFjYybh8Tc8+Nmk2KRG7SSGx5RSFbP7H1FAks2FVToXUDDJj7TxT
mbERvsJVLQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:53 2023 by rpki-client on console-ams.rpki-client.org