Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/1b60e9-b6e0-4890-9de1-13b431342ab8/1/PL79rch024NWXhxmsW_IgB-4gPs.roa
File: PL79rch024NWXhxmsW_IgB-4gPs.roa (raw, json)
Hash identifier: p7Y7AzG6ryxjyy5u6FNYvrk4JdNUTElqv69v3OJKfo0=
Subject key identifier: 3C:BE:FD:AD:C8:74:DB:83:56:5E:1C:66:B1:6F:C8:80:1F:B8:80:FB
Certificate issuer: /CN=96cbcf2e957ca8d942472a7b0044285b26db6b22
Certificate serial: 01851FF7D908D6DFD6DD26DDFCC8F231A080
Authority key identifier: 96:CB:CF:2E:95:7C:A8:D9:42:47:2A:7B:00:44:28:5B:26:DB:6B:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lsvPLpV8qNlCRyp7AEQoWybbayI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/1b60e9-b6e0-4890-9de1-13b431342ab8/1/PL79rch024NWXhxmsW_IgB-4gPs.roa
Signing time: Sat 17 Dec 2022 12:03:34 +0000
ROA not before: Sat 17 Dec 2022 12:03:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58256
IP address blocks: 185.83.184.0/24 maxlen: 24
185.83.186.0/24 maxlen: 24
185.83.185.0/24 maxlen: 24
185.83.187.0/24 maxlen: 24
37.143.145.0/24 maxlen: 24
37.143.144.0/24 maxlen: 24
185.42.213.0/24 maxlen: 24
185.42.212.0/24 maxlen: 24
185.42.215.0/24 maxlen: 24
185.42.214.0/24 maxlen: 24
37.143.151.0/24 maxlen: 24
37.143.150.0/24 maxlen: 24
37.143.149.0/24 maxlen: 24
37.143.148.0/24 maxlen: 24
37.143.147.0/24 maxlen: 24
37.143.146.0/24 maxlen: 24
185.83.31.0/24 maxlen: 24
185.83.30.0/24 maxlen: 24
185.83.29.0/24 maxlen: 24
91.108.132.0/24 maxlen: 24
91.108.131.0/24 maxlen: 24
91.108.130.0/24 maxlen: 24
91.108.129.0/24 maxlen: 24
91.108.128.0/24 maxlen: 24
91.108.139.0/24 maxlen: 24
91.108.133.0/24 maxlen: 24
91.108.138.0/24 maxlen: 24
91.108.137.0/24 maxlen: 24
91.108.136.0/24 maxlen: 24
91.108.135.0/24 maxlen: 24
91.108.134.0/24 maxlen: 24
91.108.140.0/24 maxlen: 24
91.108.145.0/24 maxlen: 24
91.108.144.0/24 maxlen: 24
91.108.143.0/24 maxlen: 24
91.108.142.0/24 maxlen: 24
91.108.141.0/24 maxlen: 24
91.108.152.0/24 maxlen: 24
91.108.151.0/24 maxlen: 24
91.108.149.0/24 maxlen: 24
91.108.148.0/24 maxlen: 24
91.108.147.0/24 maxlen: 24
91.108.146.0/24 maxlen: 24
91.108.154.0/24 maxlen: 24
91.108.153.0/24 maxlen: 24
91.108.159.0/24 maxlen: 24
91.108.158.0/24 maxlen: 24
91.108.157.0/24 maxlen: 24
91.108.156.0/24 maxlen: 24
91.108.155.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:1f:f7:d9:08:d6:df:d6:dd:26:dd:fc:c8:f2:31:a0:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96cbcf2e957ca8d942472a7b0044285b26db6b22
Validity
Not Before: Dec 17 12:03:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3cbefdadc874db83565e1c66b16fc8801fb880fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:42:2e:e2:31:4a:2a:f2:c4:12:80:46:01:5b:
ff:8a:65:96:a5:6d:8a:15:8f:17:b0:7d:8c:02:b2:
06:56:09:23:f3:24:71:19:fe:5e:55:d7:76:0a:8c:
0b:3d:ba:bc:02:55:05:94:5b:b4:2c:56:d7:c4:fc:
2f:79:f9:70:6b:30:06:dd:e7:8d:e1:53:c1:f3:84:
7b:50:e1:56:e8:49:89:3c:6a:fa:22:c7:19:fb:f9:
9c:e3:ac:a0:36:b6:2e:15:ef:3a:c5:25:73:4f:cb:
27:c4:66:f4:49:ef:6c:be:53:9b:3e:a9:7a:7f:d7:
54:fd:e9:58:30:15:69:79:3f:a8:de:5e:f1:a3:31:
09:3f:72:03:73:84:90:ae:67:c8:19:1a:0b:f2:55:
fc:64:5d:6e:1a:14:78:df:03:79:a7:50:39:bd:f1:
d8:c4:16:7f:bf:27:7c:7e:74:13:03:ac:ec:63:1f:
70:ac:bd:ad:4f:11:44:00:d7:2f:ff:e2:e2:a2:d6:
86:64:62:8f:ff:de:d6:82:b9:4b:e1:e1:9f:74:0a:
8f:32:5f:cd:49:0d:d0:6f:db:e1:ed:9f:d0:e8:06:
71:08:70:45:b8:05:b5:64:2f:1b:76:84:5f:40:64:
57:63:af:ef:a0:55:40:96:5c:40:f4:c5:2b:a3:8f:
61:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:BE:FD:AD:C8:74:DB:83:56:5E:1C:66:B1:6F:C8:80:1F:B8:80:FB
X509v3 Authority Key Identifier:
keyid:96:CB:CF:2E:95:7C:A8:D9:42:47:2A:7B:00:44:28:5B:26:DB:6B:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lsvPLpV8qNlCRyp7AEQoWybbayI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/1b60e9-b6e0-4890-9de1-13b431342ab8/1/PL79rch024NWXhxmsW_IgB-4gPs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/1b60e9-b6e0-4890-9de1-13b431342ab8/1/lsvPLpV8qNlCRyp7AEQoWybbayI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.143.144.0/21
91.108.128.0-91.108.149.255
91.108.151.0-91.108.159.255
185.42.212.0/22
185.83.29.0-185.83.31.255
185.83.184.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:d6:59:3c:6c:4d:12:0c:60:3a:67:f1:ee:ab:58:10:49:91:
e4:ef:4a:08:07:51:13:55:e8:34:e9:ab:f0:66:05:75:f2:d0:
94:db:2c:7b:e0:91:49:d4:67:78:f9:9d:e5:6f:81:6b:12:99:
aa:f8:8a:f4:35:4c:af:ac:b3:e9:dd:ec:00:47:04:e3:20:6a:
4f:ea:81:21:2b:4e:36:40:60:9f:2b:7f:8a:fe:a0:25:dd:8e:
04:42:03:17:5a:98:25:7f:86:a8:09:dc:f8:1b:a3:15:f7:80:
46:67:6a:13:23:f5:6a:1c:54:7f:0f:43:d9:df:2c:b3:fe:2f:
5f:e5:20:a5:21:56:b4:8a:80:07:b0:46:3d:5d:06:b4:b3:72:
43:50:e8:0f:1d:9d:7b:de:20:83:e5:d4:8f:af:81:a6:73:58:
08:84:27:53:c5:ea:15:c9:8b:71:94:44:40:44:c4:1d:f4:a4:
59:c9:49:af:64:3f:77:3f:22:2f:7e:63:d5:ca:9a:9c:14:69:
69:b8:18:22:ca:d5:c3:f5:3b:c9:fc:93:b2:27:d1:49:14:c9:
70:9e:77:88:98:4e:39:ad:fd:ee:64:f1:e0:f8:4c:b8:33:d7:
53:d4:d5:25:c9:40:a8:1a:22:42:97:7e:00:86:04:c8:e5:3a:
9f:41:db:b6
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgISAYUf99kI1t/W3Sbd/MjyMaCAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2Y2JjZjJlOTU3Y2E4ZDk0MjQ3MmE3YjAwNDQyODViMjZk
YjZiMjIwHhcNMjIxMjE3MTIwMzM0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzY2JlZmRhZGM4NzRkYjgzNTY1ZTFjNjZiMTZmYzg4MDFmYjg4MGZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq0Iu4jFKKvLEEoBGAVv/imWWpW2K
FY8XsH2MArIGVgkj8yRxGf5eVdd2CowLPbq8AlUFlFu0LFbXxPwveflwazAG3eeN
4VPB84R7UOFW6EmJPGr6IscZ+/mc46ygNrYuFe86xSVzT8snxGb0Se9svlObPql6
f9dU/elYMBVpeT+o3l7xozEJP3IDc4SQrmfIGRoL8lX8ZF1uGhR43wN5p1A5vfHY
xBZ/vyd8fnQTA6zsYx9wrL2tTxFEANcv/+LiotaGZGKP/97WgrlL4eGfdAqPMl/N
SQ3Qb9vh7Z/Q6AZxCHBFuAW1ZC8bdoRfQGRXY6/voFVAllxA9MUro49hpQIDAQAB
o4ICPzCCAjswHQYDVR0OBBYEFDy+/a3IdNuDVl4cZrFvyIAfuID7MB8GA1UdIwQY
MBaAFJbLzy6VfKjZQkcqewBEKFsm22siMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbHN2UExwVjhxTmxDUnlwN0FFUW9XeWJiYXlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8xYjYwZTktYjZlMC00ODkwLTlkZTEt
MTNiNDMxMzQyYWI4LzEvUEw3OXJjaDAyNE5XWGh4bXNXX0lnQi00Z1BzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC8xYjYwZTktYjZlMC00ODkwLTlkZTEtMTNiNDMxMzQyYWI4
LzEvbHN2UExwVjhxTmxDUnlwN0FFUW9XeWJiYXlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFUGCCsGAQUFBwEHAQH/BEYwRDBCBAIAATA8AwQDJY+QMAwD
BAdbbIADBAFbbJQwDAMEAFtslwMEBVtsgAMEArkq1DAMAwQAuVMdAwQFuVMAAwQC
uVO4MA0GCSqGSIb3DQEBCwUAA4IBAQAb1lk8bE0SDGA6Z/Huq1gQSZHk70oIB1ET
Veg06avwZgV18tCU2yx74JFJ1Gd4+Z3lb4FrEpmq+Ir0NUyvrLPp3ewARwTjIGpP
6oEhK042QGCfK3+K/qAl3Y4EQgMXWpglf4aoCdz4G6MV94BGZ2oTI/VqHFR/D0PZ
3yyz/i9f5SClIVa0ioAHsEY9XQa0s3JDUOgPHZ173iCD5dSPr4Gmc1gIhCdTxeoV
yYtxlERARMQd9KRZyUmvZD93PyIvfmPVypqcFGlpuBgiytXD9TvJ/JOyJ9FJFMlw
nneImE45rf3uZPHg+Ey4M9dT1NUlyUCoGiJCl34AhgTI5TqfQdu2
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:54 2023 by rpki-client on console-fra.rpki-client.org