Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/63wuuUCVFyE4aVliIufmSEeo_nc.roa
File: 63wuuUCVFyE4aVliIufmSEeo_nc.roa (raw, json)
Hash identifier: ynD8cPkVPi0ITB+8IgvbiZezNZcxgXQ/eVW0wU/8yrU=
Subject key identifier: EB:7C:2E:B9:40:95:17:21:38:69:59:62:22:E7:E6:48:47:A8:FE:77
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0C14B91E
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/63wuuUCVFyE4aVliIufmSEeo_nc.roa
Signing time: Thu 03 Mar 2022 17:22:48 +0000
ROA not before: Thu 03 Mar 2022 17:22:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34450
IP address blocks: 89.43.42.0/24 maxlen: 24
89.43.43.0/24 maxlen: 24
89.43.40.0/24 maxlen: 24
89.43.41.0/24 maxlen: 24
89.43.45.0/24 maxlen: 24
89.43.46.0/24 maxlen: 24
89.39.252.0/24 maxlen: 24
188.213.18.0/24 maxlen: 24
93.113.202.0/24 maxlen: 24
93.113.203.0/24 maxlen: 24
89.44.209.0/24 maxlen: 24
93.114.99.0/24 maxlen: 24
89.33.163.0/24 maxlen: 24
89.45.34.0/24 maxlen: 24
93.114.55.0/24 maxlen: 24
188.215.72.0/23 maxlen: 24
86.106.80.0/24 maxlen: 24
93.114.187.0/24 maxlen: 24
86.106.97.0/24 maxlen: 24
86.106.104.0/24 maxlen: 24
89.34.8.0/21 maxlen: 21
93.114.171.0/24 maxlen: 24
85.204.125.0/24 maxlen: 24
85.204.127.0/24 maxlen: 24
93.113.158.0/24 maxlen: 24
89.37.136.0/24 maxlen: 24
2a05:b680:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 202684702 (0xc14b91e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Mar 3 17:22:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eb7c2eb9409517213869596222e7e64847a8fe77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:48:17:2f:9f:c0:9b:4b:56:c9:5d:23:66:1d:
5e:8d:cc:6b:bc:ae:16:f4:0c:a6:eb:e5:88:4e:7c:
8e:21:ac:e1:b7:f9:52:86:0f:f3:9d:71:44:0f:80:
51:fd:a1:28:59:83:7d:45:f4:c7:38:78:00:8f:f0:
53:fa:ee:e9:84:9f:74:ef:75:f3:17:95:1f:a6:69:
0e:32:42:08:ff:cb:8e:2b:b9:9b:1a:3b:47:79:50:
c0:1c:dd:5e:ea:d0:17:58:b6:f6:03:f8:4f:0f:df:
17:57:7c:66:58:38:22:08:5f:9e:52:c9:10:45:01:
34:10:20:92:64:e2:45:39:5d:01:6c:03:30:5b:ca:
9f:dc:a0:22:9c:34:c3:36:ff:76:1e:29:b4:36:21:
a9:7b:f0:2d:93:97:95:a3:2d:9f:ca:54:0d:2c:7b:
fe:69:17:18:e8:2d:c3:91:07:14:27:44:bc:54:6d:
4f:1d:74:1d:1f:6f:d1:53:37:ff:39:67:36:d6:f0:
0a:f3:b7:36:3c:7c:0d:95:8e:a1:bb:92:4c:ab:13:
f6:2c:2b:e4:b6:b9:d1:8f:89:9f:1e:f9:a5:67:b4:
88:ab:67:49:1c:fe:43:4d:ea:e6:9c:ab:2f:96:a7:
54:a7:e4:eb:26:52:52:6c:04:93:68:09:8d:26:2f:
e0:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:7C:2E:B9:40:95:17:21:38:69:59:62:22:E7:E6:48:47:A8:FE:77
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/63wuuUCVFyE4aVliIufmSEeo_nc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.125.0/24
85.204.127.0/24
86.106.80.0/24
86.106.97.0/24
86.106.104.0/24
89.33.163.0/24
89.34.8.0/21
89.37.136.0/24
89.39.252.0/24
89.43.40.0/22
89.43.45.0-89.43.46.255
89.44.209.0/24
89.45.34.0/24
93.113.158.0/24
93.113.202.0/23
93.114.55.0/24
93.114.99.0/24
93.114.171.0/24
93.114.187.0/24
188.213.18.0/24
188.215.72.0/23
IPv6:
2a05:b680:1::/48
Signature Algorithm: sha256WithRSAEncryption
d0:fd:b6:1b:a5:4f:7a:95:df:df:6c:0b:56:c0:2b:1d:d8:10:
dd:72:d6:5f:3b:25:c3:63:ac:31:49:91:b0:5f:e6:cb:b2:34:
bd:25:de:b8:f4:af:97:fb:b3:7c:6e:f7:44:73:0f:3e:5d:0f:
bf:bf:20:3f:28:41:d6:65:7b:c8:1d:4d:e1:11:74:f3:db:69:
e3:0b:5c:a2:5f:b0:ae:dc:70:a9:f9:9a:01:b0:81:da:35:5c:
1c:94:04:b8:35:ff:c7:91:4f:c5:01:84:87:3c:bc:1f:e2:5e:
29:47:c4:16:0f:ec:bd:28:19:d1:b4:bf:30:df:41:d5:44:e7:
36:a0:00:b6:6a:f0:63:b6:f3:92:86:b4:f9:ce:92:67:c8:fb:
aa:2d:28:fc:57:19:78:e6:e2:d0:b7:87:00:77:e4:a8:58:31:
01:58:1c:10:80:8a:fd:3e:3c:df:4b:e3:13:5d:82:0f:16:97:
39:44:14:66:db:e2:e1:78:2b:90:23:ce:dc:56:19:19:cb:f2:
f8:d3:0f:56:62:57:9e:dc:e2:c2:90:1a:14:3f:17:67:5a:7b:
b9:48:1b:27:e8:40:f2:cb:24:9e:81:ee:68:3d:c5:aa:6e:5b:
6c:44:bb:bc:80:90:57:28:dd:37:ed:93:e8:89:b4:92:0f:8a:
c0:16:f9:0a
-----BEGIN CERTIFICATE-----
MIIFhTCCBG2gAwIBAgIEDBS5HjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ZTU4OTUyZDM5MzkzNWYwZDNiY2U4MTRmZDkxNzhkMDQ2OTNhZWI5MB4XDTIyMDMw
MzE3MjI0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWI3YzJlYjk0MDk1
MTcyMTM4Njk1OTYyMjJlN2U2NDg0N2E4ZmU3NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKBIFy+fwJtLVsldI2YdXo3Ma7yuFvQMpuvliE58jiGs4bf5
UoYP851xRA+AUf2hKFmDfUX0xzh4AI/wU/ru6YSfdO918xeVH6ZpDjJCCP/Ljiu5
mxo7R3lQwBzdXurQF1i29gP4Tw/fF1d8Zlg4IghfnlLJEEUBNBAgkmTiRTldAWwD
MFvKn9ygIpw0wzb/dh4ptDYhqXvwLZOXlaMtn8pUDSx7/mkXGOgtw5EHFCdEvFRt
Tx10HR9v0VM3/zlnNtbwCvO3Njx8DZWOobuSTKsT9iwr5La50Y+Jnx75pWe0iKtn
SRz+Q03q5pyrL5anVKfk6yZSUmwEk2gJjSYv4OMCAwEAAaOCAp8wggKbMB0GA1Ud
DgQWBBTrfC65QJUXIThpWWIi5+ZIR6j+dzAfBgNVHSMEGDAWgBT+WJUtOTk18NO8
6BT9kXjQRpOuuTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19saVZMVGs1TmZEVHZPZ1VfWkY0MEVhVHJyay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzAvYjI2YWE4LWFjZTctNGZhNi05ZThlLTVkNDhiNjVjZTU3My8x
LzYzd3V1VUNWRnlFNGFWbGlJdWZtU0Vlb19uYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzAv
YjI2YWE4LWFjZTctNGZhNi05ZThlLTVkNDhiNjVjZTU3My8xL19saVZMVGs1TmZE
VHZPZ1VfWkY0MEVhVHJyay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
tAYIKwYBBQUHAQcBAf8EgaQwgaEwgY0EAgABMIGGAwQAVcx9AwQAVcx/AwQAVmpQ
AwQAVmphAwQAVmpoAwQAWSGjAwQDWSIIAwQAWSWIAwQAWSf8AwQCWSsoMAwDBABZ
Ky0DBABZKy4DBABZLNEDBABZLSIDBABdcZ4DBAFdccoDBABdcjcDBABdcmMDBABd
cqsDBABdcrsDBAC81RIDBAG810gwDwQCAAIwCQMHACoFtoAAATANBgkqhkiG9w0B
AQsFAAOCAQEA0P22G6VPepXf32wLVsArHdgQ3XLWXzslw2OsMUmRsF/my7I0vSXe
uPSvl/uzfG73RHMPPl0Pv78gPyhB1mV7yB1N4RF089tp4wtcol+wrtxwqfmaAbCB
2jVcHJQEuDX/x5FPxQGEhzy8H+JeKUfEFg/svSgZ0bS/MN9B1UTnNqAAtmrwY7bz
koa0+c6SZ8j7qi0o/FcZeObi0LeHAHfkqFgxAVgcEICK/T4830vjE12CDxaXOUQU
Ztvi4XgrkCPO3FYZGcvy+NMPVmJXntziwpAaFD8XZ1p7uUgbJ+hA8ssknoHuaD3F
qm5bbES7vICQVyjdN+2T6Im0kg+KwBb5Cg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:08 2023 by rpki-client on console-fra.rpki-client.org