Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/1b60e9-b6e0-4890-9de1-13b431342ab8/1/AbVRyIp8NeC-7YbwDOgJaytdr1k.roa
File: AbVRyIp8NeC-7YbwDOgJaytdr1k.roa (raw, json)
Hash identifier: qnAeESBEeMS6UZ8ylQbTik6wU4DOPhVFvVbYQjMVy1Q=
Subject key identifier: 01:B5:51:C8:8A:7C:35:E0:BE:ED:86:F0:0C:E8:09:6B:2B:5D:AF:59
Certificate issuer: /CN=96cbcf2e957ca8d942472a7b0044285b26db6b22
Certificate serial: 01851F89123C1D91C815754453EE54CB48A2
Authority key identifier: 96:CB:CF:2E:95:7C:A8:D9:42:47:2A:7B:00:44:28:5B:26:DB:6B:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lsvPLpV8qNlCRyp7AEQoWybbayI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/1b60e9-b6e0-4890-9de1-13b431342ab8/1/AbVRyIp8NeC-7YbwDOgJaytdr1k.roa
Signing time: Sat 17 Dec 2022 10:02:34 +0000
ROA not before: Sat 17 Dec 2022 10:02:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58256
IP address blocks: 185.83.184.0/24 maxlen: 24
185.83.186.0/24 maxlen: 24
185.83.185.0/24 maxlen: 24
185.83.187.0/24 maxlen: 24
37.143.145.0/24 maxlen: 24
37.143.144.0/24 maxlen: 24
185.42.213.0/24 maxlen: 24
185.42.212.0/24 maxlen: 24
185.42.215.0/24 maxlen: 24
185.42.214.0/24 maxlen: 24
37.143.151.0/24 maxlen: 24
37.143.150.0/24 maxlen: 24
37.143.149.0/24 maxlen: 24
37.143.148.0/24 maxlen: 24
37.143.147.0/24 maxlen: 24
37.143.146.0/24 maxlen: 24
185.83.31.0/24 maxlen: 24
185.83.30.0/24 maxlen: 24
185.83.29.0/24 maxlen: 24
91.108.132.0/24 maxlen: 24
91.108.131.0/24 maxlen: 24
91.108.130.0/24 maxlen: 24
91.108.129.0/24 maxlen: 24
91.108.128.0/24 maxlen: 24
91.108.139.0/24 maxlen: 24
91.108.133.0/24 maxlen: 24
91.108.138.0/24 maxlen: 24
91.108.137.0/24 maxlen: 24
91.108.136.0/24 maxlen: 24
91.108.135.0/24 maxlen: 24
91.108.134.0/24 maxlen: 24
91.108.140.0/24 maxlen: 24
91.108.145.0/24 maxlen: 24
91.108.144.0/24 maxlen: 24
91.108.143.0/24 maxlen: 24
91.108.142.0/24 maxlen: 24
91.108.141.0/24 maxlen: 24
91.108.152.0/24 maxlen: 24
91.108.151.0/24 maxlen: 24
91.108.150.0/24 maxlen: 24
91.108.149.0/24 maxlen: 24
91.108.148.0/24 maxlen: 24
91.108.147.0/24 maxlen: 24
91.108.146.0/24 maxlen: 24
91.108.154.0/24 maxlen: 24
91.108.153.0/24 maxlen: 24
91.108.159.0/24 maxlen: 24
91.108.158.0/24 maxlen: 24
91.108.157.0/24 maxlen: 24
91.108.156.0/24 maxlen: 24
91.108.155.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:1f:89:12:3c:1d:91:c8:15:75:44:53:ee:54:cb:48:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96cbcf2e957ca8d942472a7b0044285b26db6b22
Validity
Not Before: Dec 17 10:02:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=01b551c88a7c35e0beed86f00ce8096b2b5daf59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:5e:69:75:db:5b:93:bb:e3:94:d2:7e:5e:53:
a3:7e:42:05:78:9b:f9:aa:e2:4b:92:dd:81:5e:c7:
d2:24:66:e7:f9:3f:f1:04:d5:2d:9a:56:eb:86:4c:
85:b8:6f:24:05:26:92:36:21:80:28:56:93:5f:46:
61:bf:9e:01:0c:c7:77:ac:89:f4:53:70:c5:64:89:
4c:0a:80:1a:cb:52:7a:26:11:47:b4:57:ca:b4:fb:
b9:07:b8:02:26:0e:6a:9a:d0:39:0c:b0:e7:34:b6:
02:34:bf:4c:e6:76:70:73:63:e9:59:dd:df:db:9f:
da:e5:d9:5a:ed:53:ce:72:6c:0d:32:cc:ff:36:81:
19:32:8f:ff:3f:a3:ac:10:fb:82:cc:eb:8c:3e:4b:
72:39:bd:be:04:c9:54:cf:e6:55:21:47:4c:c5:7f:
87:f7:76:3b:b2:46:d7:1d:6b:4b:e0:aa:7f:88:7f:
94:db:f4:9f:8e:94:2a:18:f3:68:0a:99:85:45:20:
f1:48:f7:b0:06:41:85:4e:e1:9b:ca:f9:e8:88:20:
e1:2e:1e:69:99:26:1f:35:47:92:c8:e0:6f:2f:d2:
ca:62:91:82:3a:5c:b5:e3:7c:71:8a:8d:90:65:8d:
38:94:80:3c:2d:3f:c8:09:3a:99:ab:d1:22:4d:27:
3b:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:B5:51:C8:8A:7C:35:E0:BE:ED:86:F0:0C:E8:09:6B:2B:5D:AF:59
X509v3 Authority Key Identifier:
keyid:96:CB:CF:2E:95:7C:A8:D9:42:47:2A:7B:00:44:28:5B:26:DB:6B:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lsvPLpV8qNlCRyp7AEQoWybbayI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/1b60e9-b6e0-4890-9de1-13b431342ab8/1/AbVRyIp8NeC-7YbwDOgJaytdr1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/1b60e9-b6e0-4890-9de1-13b431342ab8/1/lsvPLpV8qNlCRyp7AEQoWybbayI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.143.144.0/21
91.108.128.0/19
185.42.212.0/22
185.83.29.0-185.83.31.255
185.83.184.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:86:a3:0f:f9:2c:60:bf:4d:1f:26:53:fe:9b:d1:9b:85:6a:
8b:45:c6:50:c4:63:41:a6:8d:54:45:ba:88:b3:8f:3e:58:bc:
98:6f:ac:ee:25:36:45:23:eb:4f:46:5c:3b:f9:56:45:cd:d4:
6e:ef:e4:4f:7f:2f:ba:37:76:58:55:78:7d:ae:0d:26:62:4f:
df:22:86:c5:86:45:42:42:5a:68:51:4e:12:81:9c:e9:a7:a8:
5b:a4:05:d6:9c:ae:12:0d:51:97:6a:a4:5b:4a:8d:5b:a3:6d:
48:28:7b:2b:02:ec:20:71:6c:e4:24:2e:59:ae:5f:7a:c2:18:
de:72:04:cb:3b:b5:33:cf:51:3f:18:93:45:3d:fc:6a:f7:6a:
e4:21:83:82:bf:e9:e3:c7:fb:43:5c:79:2b:48:71:62:e8:98:
03:74:c3:06:74:54:84:a5:09:88:c7:4f:f5:95:af:ab:d7:b5:
9c:88:cb:60:63:c7:09:ee:84:7b:dd:6c:79:4e:72:8a:9b:ba:
24:7b:38:17:0e:b7:97:2b:c6:4d:48:4e:45:da:4f:56:ee:04:
83:e1:2b:92:bd:39:6a:2e:7b:78:8f:d3:a0:06:f7:d5:6e:c5:
cd:c1:65:78:a0:e7:c9:ea:71:3d:98:24:73:3d:03:48:00:6a:
0c:87:b1:32
-----BEGIN CERTIFICATE-----
MIIFHTCCBAWgAwIBAgISAYUfiRI8HZHIFXVEU+5Uy0iiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2Y2JjZjJlOTU3Y2E4ZDk0MjQ3MmE3YjAwNDQyODViMjZk
YjZiMjIwHhcNMjIxMjE3MTAwMjM0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMWI1NTFjODhhN2MzNWUwYmVlZDg2ZjAwY2U4MDk2YjJiNWRhZjU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh15pddtbk7vjlNJ+XlOjfkIFeJv5
quJLkt2BXsfSJGbn+T/xBNUtmlbrhkyFuG8kBSaSNiGAKFaTX0Zhv54BDMd3rIn0
U3DFZIlMCoAay1J6JhFHtFfKtPu5B7gCJg5qmtA5DLDnNLYCNL9M5nZwc2PpWd3f
25/a5dla7VPOcmwNMsz/NoEZMo//P6OsEPuCzOuMPktyOb2+BMlUz+ZVIUdMxX+H
93Y7skbXHWtL4Kp/iH+U2/SfjpQqGPNoCpmFRSDxSPewBkGFTuGbyvnoiCDhLh5p
mSYfNUeSyOBvL9LKYpGCOly143xxio2QZY04lIA8LT/ICTqZq9EiTSc7fwIDAQAB
o4ICKTCCAiUwHQYDVR0OBBYEFAG1UciKfDXgvu2G8AzoCWsrXa9ZMB8GA1UdIwQY
MBaAFJbLzy6VfKjZQkcqewBEKFsm22siMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbHN2UExwVjhxTmxDUnlwN0FFUW9XeWJiYXlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8xYjYwZTktYjZlMC00ODkwLTlkZTEt
MTNiNDMxMzQyYWI4LzEvQWJWUnlJcDhOZUMtN1lid0RPZ0pheXRkcjFrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC8xYjYwZTktYjZlMC00ODkwLTlkZTEtMTNiNDMxMzQyYWI4
LzEvbHN2UExwVjhxTmxDUnlwN0FFUW9XeWJiYXlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD8GCCsGAQUFBwEHAQH/BDAwLjAsBAIAATAmAwQDJY+QAwQF
W2yAAwQCuSrUMAwDBAC5Ux0DBAW5UwADBAK5U7gwDQYJKoZIhvcNAQELBQADggEB
AH+Gow/5LGC/TR8mU/6b0ZuFaotFxlDEY0GmjVRFuoizjz5YvJhvrO4lNkUj609G
XDv5VkXN1G7v5E9/L7o3dlhVeH2uDSZiT98ihsWGRUJCWmhRThKBnOmnqFukBdac
rhINUZdqpFtKjVujbUgoeysC7CBxbOQkLlmuX3rCGN5yBMs7tTPPUT8Yk0U9/Gr3
auQhg4K/6ePH+0NceStIcWLomAN0wwZ0VISlCYjHT/WVr6vXtZyIy2BjxwnuhHvd
bHlOcoqbuiR7OBcOt5crxk1ITkXaT1buBIPhK5K9OWoue3iP06AG99Vuxc3BZXig
58nqcT2YJHM9A0gAagyHsTI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:22 2024 by rpki-client on console-fra.rpki-client.org