Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/LB_Nf7VUSvO1MOWl_cpk54Gguuk.roa
File: LB_Nf7VUSvO1MOWl_cpk54Gguuk.roa (raw, json)
Hash identifier: EFl+DjrdpBuA5okrA1XWvtPD1iFXKb7+dOqn8eaq8hc=
Subject key identifier: 2C:1F:CD:7F:B5:54:4A:F3:B5:30:E5:A5:FD:CA:64:E7:81:A0:BA:E9
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 050A4595
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/LB_Nf7VUSvO1MOWl_cpk54Gguuk.roa
Signing time: Wed 29 Jun 2022 13:56:02 +0000
ROA not before: Wed 29 Jun 2022 13:56:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49334
IP address blocks: 188.132.129.0/24 maxlen: 24
188.132.131.0/24 maxlen: 24
188.132.141.0/24 maxlen: 24
188.132.146.0/24 maxlen: 24
188.132.149.0/24 maxlen: 24
212.68.58.0/24 maxlen: 24
212.68.54.0/24 maxlen: 24
212.68.53.0/24 maxlen: 24
212.68.62.0/24 maxlen: 24
212.68.63.0/24 maxlen: 24
185.17.138.0/24 maxlen: 24
185.17.139.0/24 maxlen: 24
77.92.152.0/24 maxlen: 24
77.92.153.0/24 maxlen: 24
31.210.34.0/24 maxlen: 24
188.132.173.0/24 maxlen: 24
188.132.181.0/24 maxlen: 24
188.132.182.0/24 maxlen: 24
188.132.187.0/24 maxlen: 24
78.135.65.0/24 maxlen: 24
31.210.53.0/24 maxlen: 24
31.210.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84559253 (0x50a4595)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jun 29 13:56:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c1fcd7fb5544af3b530e5a5fdca64e781a0bae9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:73:70:65:bc:3f:3c:5c:4c:4c:d4:9d:0a:c5:
2a:b9:c2:d2:81:28:da:f6:f0:b6:50:a2:2d:cb:14:
cc:d8:5f:7b:2f:76:d3:12:86:ef:37:8f:35:5b:d2:
b3:0a:ae:f7:00:24:0f:79:58:6e:86:a9:b1:06:d5:
3f:ed:40:15:84:bd:70:e8:47:ef:b8:b3:29:8a:06:
98:85:e0:a7:d1:f1:77:ba:f3:57:65:77:96:6a:20:
87:ed:d0:0b:1a:02:db:79:01:10:e9:00:c5:41:d8:
73:34:b9:2b:66:a6:ae:d6:81:81:18:c7:f9:77:ce:
2a:9e:3f:65:51:77:62:a1:5c:61:49:97:d1:71:d7:
50:64:fa:f3:d2:ec:1e:0f:85:7d:28:5a:b8:d8:13:
37:55:d9:26:c6:c0:b9:d4:ef:03:bf:ee:a3:c3:e2:
60:1a:58:16:a5:bf:20:67:96:a0:e6:28:d2:1c:2d:
33:9c:cc:d0:f0:8c:d9:41:c3:b4:0d:e0:72:3a:2f:
1b:b0:fd:ec:d0:13:73:b1:93:85:e1:5a:bc:6f:4a:
4b:39:d7:a9:55:75:55:78:3b:e6:f1:64:3d:c8:05:
d6:d6:be:22:d3:6c:50:c9:48:bc:aa:85:87:69:03:
59:74:43:9a:b4:1c:35:74:ab:ac:a8:0f:77:1e:ec:
6c:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:1F:CD:7F:B5:54:4A:F3:B5:30:E5:A5:FD:CA:64:E7:81:A0:BA:E9
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/LB_Nf7VUSvO1MOWl_cpk54Gguuk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.34.0/24
31.210.52.0/23
77.92.152.0/23
78.135.65.0/24
185.17.138.0/23
188.132.129.0/24
188.132.131.0/24
188.132.141.0/24
188.132.146.0/24
188.132.149.0/24
188.132.173.0/24
188.132.181.0-188.132.182.255
188.132.187.0/24
212.68.53.0-212.68.54.255
212.68.58.0/24
212.68.62.0/23
Signature Algorithm: sha256WithRSAEncryption
64:2a:bd:fc:6f:64:6b:67:f8:09:93:c1:24:23:6e:15:e8:44:
96:04:80:96:a8:25:55:97:b6:69:0b:d7:59:e5:60:ea:97:80:
db:1d:e9:8e:18:55:55:6e:9c:58:f6:e2:a8:bd:3c:2d:f3:5c:
df:c4:6c:1c:a5:5e:1d:82:18:f5:86:b8:d5:ea:04:e8:7b:a2:
0c:15:b7:b1:36:9d:0c:81:35:ac:72:20:22:e5:73:33:10:11:
06:12:24:55:12:82:85:33:50:13:9b:d7:c8:f8:0c:75:66:e1:
1d:a8:ed:25:02:46:28:eb:47:ac:42:c9:da:36:4c:90:d2:5b:
ea:1f:56:78:2f:61:f6:76:57:b7:57:3b:6e:83:19:89:ed:79:
6f:c7:77:da:62:23:fd:e4:ae:12:ad:bd:9d:5b:ba:eb:76:0a:
f7:78:a0:3b:73:50:75:c1:bc:3c:a8:97:21:1b:0a:71:a6:6a:
20:fb:89:58:5a:ca:ce:fb:9f:d2:0b:e0:4f:a3:f3:15:5b:8d:
01:13:fa:25:75:de:d7:c8:06:6f:7f:da:53:da:7d:41:a9:09:
a4:2d:d0:ab:f0:39:f4:a8:e7:4c:06:24:c9:a8:58:da:f2:92:
37:b1:53:05:74:fd:37:a9:cc:b2:3e:7c:2b:d6:91:9a:b0:e5:
aa:9a:ae:99
-----BEGIN CERTIFICATE-----
MIIFWjCCBEKgAwIBAgIEBQpFlTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
OWQ1NzQ0N2UzNDIwYjg1Mzg3NWI2ZmE0MDM3MmFhZGUzMTkyY2EyMB4XDTIyMDYy
OTEzNTYwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmMxZmNkN2ZiNTU0
NGFmM2I1MzBlNWE1ZmRjYTY0ZTc4MWEwYmFlOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ5zcGW8PzxcTEzUnQrFKrnC0oEo2vbwtlCiLcsUzNhfey92
0xKG7zePNVvSswqu9wAkD3lYboapsQbVP+1AFYS9cOhH77izKYoGmIXgp9Hxd7rz
V2V3lmogh+3QCxoC23kBEOkAxUHYczS5K2amrtaBgRjH+XfOKp4/ZVF3YqFcYUmX
0XHXUGT689LsHg+FfShauNgTN1XZJsbAudTvA7/uo8PiYBpYFqW/IGeWoOYo0hwt
M5zM0PCM2UHDtA3gcjovG7D97NATc7GTheFavG9KSznXqVV1VXg75vFkPcgF1ta+
ItNsUMlIvKqFh2kDWXRDmrQcNXSrrKgPdx7sbMsCAwEAAaOCAnQwggJwMB0GA1Ud
DgQWBBQsH81/tVRK87Uw5aX9ymTngaC66TAfBgNVHSMEGDAWgBTJ1XRH40ILhTh1
tvpANyqt4xksojAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3lkVjBSLU5DQzRVNGRiYjZRRGNxcmVNWkxLSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGQvMTU4NmZkLWZkMmMtNDFmOC04ZmU5LTRlMTk4ZjBhNjAxMy8x
L0xCX05mN1ZVU3ZPMU1PV2xfY3BrNTRHZ3V1ay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGQv
MTU4NmZkLWZkMmMtNDFmOC04ZmU5LTRlMTk4ZjBhNjAxMy8xL3lkVjBSLU5DQzRV
NGRiYjZRRGNxcmVNWkxLSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
iQYIKwYBBQUHAQcBAf8EejB4MHYEAgABMHADBAAf0iIDBAEf0jQDBAFNXJgDBABO
h0EDBAG5EYoDBAC8hIEDBAC8hIMDBAC8hI0DBAC8hJIDBAC8hJUDBAC8hK0wDAME
ALyEtQMEALyEtgMEALyEuzAMAwQA1EQ1AwQA1EQ2AwQA1EQ6AwQB1EQ+MA0GCSqG
SIb3DQEBCwUAA4IBAQBkKr38b2RrZ/gJk8EkI24V6ESWBICWqCVVl7ZpC9dZ5WDq
l4DbHemOGFVVbpxY9uKovTwt81zfxGwcpV4dghj1hrjV6gToe6IMFbexNp0MgTWs
ciAi5XMzEBEGEiRVEoKFM1ATm9fI+Ax1ZuEdqO0lAkYo60esQsnaNkyQ0lvqH1Z4
L2H2dle3VztugxmJ7Xlvx3faYiP95K4Srb2dW7rrdgr3eKA7c1B1wbw8qJchGwpx
pmog+4lYWsrO+5/SC+BPo/MVW40BE/oldd7XyAZvf9pT2n1BqQmkLdCr8Dn0qOdM
BiTJqFja8pI3sVMFdP03qcyyPnwr1pGasOWqmq6Z
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org