Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/wA24f4rUE9Y-3_Gu13ezqe0_LgE.roa
File: wA24f4rUE9Y-3_Gu13ezqe0_LgE.roa (raw, json)
Hash identifier: +drj3OgfRuassZYxNRN8cU/f+drV/dM5t9Z7xDbnnoc=
Subject key identifier: C0:0D:B8:7F:8A:D4:13:D6:3E:DF:F1:AE:D7:77:B3:A9:ED:3F:2E:01
Certificate issuer: /CN=76a75826e991225a429ff8a1e7ffdc80466420df
Certificate serial: 018553503029065D42B65005B3965CC8368A
Authority key identifier: 76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/wA24f4rUE9Y-3_Gu13ezqe0_LgE.roa
Signing time: Tue 27 Dec 2022 11:20:41 +0000
ROA not before: Tue 27 Dec 2022 11:20:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200943
IP address blocks: 192.44.9.0/24 maxlen: 24
153.96.64.0/22 maxlen: 22
153.96.62.0/23 maxlen: 23
153.96.160.0/21 maxlen: 21
192.102.149.0/24 maxlen: 24
192.102.146.0/23 maxlen: 23
192.102.157.0/24 maxlen: 24
192.102.154.0/23 maxlen: 23
153.96.186.0/23 maxlen: 23
192.102.166.0/24 maxlen: 24
192.88.97.0/24 maxlen: 24
192.102.173.0/24 maxlen: 24
129.233.202.0/24 maxlen: 24
129.233.200.0/23 maxlen: 23
153.96.142.0/24 maxlen: 24
2a03:db80:5470::/48 maxlen: 48
2a03:db80:5460::/48 maxlen: 48
2001:67c:61c::/48 maxlen: 48
2a03:db80:5474::/48 maxlen: 48
2a03:db80:5464::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:53:50:30:29:06:5d:42:b6:50:05:b3:96:5c:c8:36:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76a75826e991225a429ff8a1e7ffdc80466420df
Validity
Not Before: Dec 27 11:20:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c00db87f8ad413d63edff1aed777b3a9ed3f2e01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:e7:6c:45:1e:40:1c:ad:23:21:29:c1:18:c3:
cb:ea:d7:08:a8:bd:96:ea:84:f9:d1:de:39:b8:fd:
33:07:0e:f2:2c:1e:4e:44:d2:f0:a1:00:e6:ef:7a:
5b:c8:45:19:ef:aa:98:66:8b:2c:71:9f:5f:93:ba:
3a:fd:6e:66:73:6e:c8:de:d6:da:8b:66:ae:78:52:
2f:b0:f8:8b:a2:31:cd:06:e7:92:3c:ea:37:41:df:
7b:ec:65:fd:83:f7:4e:c2:c0:2f:71:c9:b2:4d:87:
bf:2c:9b:91:1f:26:58:32:24:f0:17:bd:77:c0:c2:
dc:ac:03:b1:af:02:c5:2b:ff:dd:ba:41:13:19:36:
f3:7d:7c:a4:8c:22:df:45:2e:f3:10:6e:b4:1c:9b:
4d:b8:7e:5a:88:d9:af:55:f2:ed:a9:b1:aa:6e:87:
c4:f0:0e:6e:44:41:8a:0e:4a:32:dd:d4:fb:6f:ad:
e2:42:cb:91:a4:b6:16:85:12:bd:5a:99:84:e1:95:
29:b7:aa:e2:be:f0:97:f3:62:55:49:14:b6:45:61:
6c:22:95:f5:34:cb:4d:3d:0d:d2:66:25:8c:56:55:
cf:03:45:b0:ed:02:18:89:04:60:86:be:00:58:ff:
e4:fb:bb:78:58:13:05:28:a7:87:16:a4:5d:63:17:
80:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:0D:B8:7F:8A:D4:13:D6:3E:DF:F1:AE:D7:77:B3:A9:ED:3F:2E:01
X509v3 Authority Key Identifier:
keyid:76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/wA24f4rUE9Y-3_Gu13ezqe0_LgE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/dqdYJumRIlpCn_ih5__cgEZkIN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
129.233.200.0-129.233.202.255
153.96.62.0-153.96.67.255
153.96.142.0/24
153.96.160.0/21
153.96.186.0/23
192.44.9.0/24
192.88.97.0/24
192.102.146.0/23
192.102.149.0/24
192.102.154.0/23
192.102.157.0/24
192.102.166.0/24
192.102.173.0/24
IPv6:
2001:67c:61c::/48
2a03:db80:5460::/48
2a03:db80:5464::/48
2a03:db80:5470::/48
2a03:db80:5474::/48
Signature Algorithm: sha256WithRSAEncryption
01:af:0a:50:58:b2:15:3a:e1:a0:ce:24:cd:99:8e:b1:d2:6c:
ae:56:bf:81:a4:b5:9c:2e:78:80:62:23:3c:a0:14:92:fb:a7:
2e:85:3e:f8:36:4e:fa:74:9f:08:b4:26:46:45:7f:66:31:57:
9a:39:a6:fb:33:b5:92:8e:44:2c:8b:64:52:77:dd:58:21:df:
8b:cc:05:ac:15:d6:8a:36:61:cf:cf:4f:2f:ab:d3:b2:ff:5c:
c0:16:45:ff:6c:55:db:11:1b:d7:43:e5:42:65:f7:f6:b4:54:
db:20:69:7d:b6:cb:74:4d:cd:8a:f4:08:d6:bd:6e:a2:05:e5:
7b:a5:8a:23:81:cb:c2:0d:84:59:c7:21:73:38:f0:a9:1e:b4:
9d:9d:4e:74:61:58:1f:03:cb:91:7d:63:26:08:05:8c:81:5c:
af:c1:bf:83:d3:79:71:df:83:4d:e4:d0:5f:ef:ad:ec:d8:88:
fa:6a:14:63:a7:f2:fc:97:44:63:46:a7:9f:1c:bd:82:1b:ed:
c7:57:ba:68:4c:96:35:70:b9:0e:33:a8:3a:ff:90:fe:70:46:
c7:34:75:f6:ab:1a:14:a9:a0:92:e0:80:68:6c:e7:cc:e1:5c:
f4:7c:d3:e9:c1:22:af:74:ad:96:ae:0a:4b:9a:67:4d:2b:3d:
b1:33:d0:4a
-----BEGIN CERTIFICATE-----
MIIFjTCCBHWgAwIBAgISAYVTUDApBl1CtlAFs5ZcyDaKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2YTc1ODI2ZTk5MTIyNWE0MjlmZjhhMWU3ZmZkYzgwNDY2
NDIwZGYwHhcNMjIxMjI3MTEyMDQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMDBkYjg3ZjhhZDQxM2Q2M2VkZmYxYWVkNzc3YjNhOWVkM2YyZTAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiOdsRR5AHK0jISnBGMPL6tcIqL2W
6oT50d45uP0zBw7yLB5ORNLwoQDm73pbyEUZ76qYZosscZ9fk7o6/W5mc27I3tba
i2aueFIvsPiLojHNBueSPOo3Qd977GX9g/dOwsAvccmyTYe/LJuRHyZYMiTwF713
wMLcrAOxrwLFK//dukETGTbzfXykjCLfRS7zEG60HJtNuH5aiNmvVfLtqbGqbofE
8A5uREGKDkoy3dT7b63iQsuRpLYWhRK9WpmE4ZUpt6rivvCX82JVSRS2RWFsIpX1
NMtNPQ3SZiWMVlXPA0Ww7QIYiQRghr4AWP/k+7t4WBMFKKeHFqRdYxeASwIDAQAB
o4ICmTCCApUwHQYDVR0OBBYEFMANuH+K1BPWPt/xrtd3s6ntPy4BMB8GA1UdIwQY
MBaAFHanWCbpkSJaQp/4oef/3IBGZCDfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHFkWUp1bVJJbHBDbl9paDVfX2NnRVprSU44LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS8xZDMzY2EtOGQxYy00OWMwLWJlOTct
YWQ4ZmJlYWE4ZGQ5LzEvd0EyNGY0clVFOVktM19HdTEzZXpxZTBfTGdFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OS8xZDMzY2EtOGQxYy00OWMwLWJlOTctYWQ4ZmJlYWE4ZGQ5
LzEvZHFkWUp1bVJJbHBDbl9paDVfX2NnRVprSU44LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGuBggrBgEFBQcBBwEB/wSBnjCBmzBkBAIAATBeMAwDBAOB
6cgDBACB6cowDAMEAZlgPgMEAplgQAMEAJlgjgMEA5lgoAMEAZlgugMEAMAsCQME
AMBYYQMEAcBmkgMEAMBmlQMEAcBmmgMEAMBmnQMEAMBmpgMEAMBmrTAzBAIAAjAt
AwcAIAEGfAYcAwcAKgPbgFRgAwcAKgPbgFRkAwcAKgPbgFRwAwcAKgPbgFR0MA0G
CSqGSIb3DQEBCwUAA4IBAQABrwpQWLIVOuGgziTNmY6x0myuVr+BpLWcLniAYiM8
oBSS+6cuhT74Nk76dJ8ItCZGRX9mMVeaOab7M7WSjkQsi2RSd91YId+LzAWsFdaK
NmHPz08vq9Oy/1zAFkX/bFXbERvXQ+VCZff2tFTbIGl9tst0Tc2K9AjWvW6iBeV7
pYojgcvCDYRZxyFzOPCpHrSdnU50YVgfA8uRfWMmCAWMgVyvwb+D03lx34NN5NBf
763s2Ij6ahRjp/L8l0RjRqefHL2CG+3HV7poTJY1cLkOM6g6/5D+cEbHNHX2qxoU
qaCS4IBobOfM4Vz0fNPpwSKvdK2WrgpLmmdNKz2xM9BK
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:59 2024 by rpki-client on console-fra.rpki-client.org