Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/8C2Al_g5XNdoKfqGDRhf3hzhr_Q.roa
File: 8C2Al_g5XNdoKfqGDRhf3hzhr_Q.roa (raw, json)
Hash identifier: +mR1pnQMhuI8vHIPa2h+UKKCtoW1uENEDhUvdb/pp3Y=
Subject key identifier: F0:2D:80:97:F8:39:5C:D7:68:29:FA:86:0D:18:5F:DE:1C:E1:AF:F4
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0184123A2CCDB8F31DCF0C8CBDD9127C5786
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/8C2Al_g5XNdoKfqGDRhf3hzhr_Q.roa
Signing time: Wed 26 Oct 2022 02:58:33 +0000
ROA not before: Wed 26 Oct 2022 02:58:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58057
IP address blocks: 45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.111.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a0e:97c6:4000::/34 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a10:cc46:1000::/36 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a10:cc40:1c0::/44 maxlen: 44
2a0f:e404:102::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1786::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:12:3a:2c:cd:b8:f3:1d:cf:0c:8c:bd:d9:12:7c:57:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 26 02:58:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f02d8097f8395cd76829fa860d185fde1ce1aff4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:bc:65:55:70:96:95:c9:65:24:ad:77:fd:8e:
1f:2b:b9:db:3d:34:e7:c3:9d:ff:fc:07:aa:3c:1d:
70:1e:e0:f0:7a:c3:ae:c3:00:d1:f9:fe:b8:18:07:
3f:22:b3:f2:36:9a:02:b1:53:a5:b6:57:49:7e:3e:
24:96:2f:fd:26:60:27:87:04:92:d3:e5:b4:ee:d3:
44:02:48:4d:9e:70:45:57:8f:e4:0d:0b:7b:c3:14:
ba:a9:25:98:c4:c5:c9:f7:c6:17:cd:23:1a:f5:da:
b6:15:5a:4d:9c:f4:9c:d3:da:66:a6:7a:1e:14:f3:
ca:64:74:c5:dd:1c:fa:30:c4:ce:4f:7a:61:1d:2a:
0e:1c:c9:c9:f1:7a:40:ac:16:08:ea:41:ac:78:2d:
72:10:fd:ee:4b:ef:56:6c:49:7e:58:f4:db:cd:c2:
d8:14:03:6a:3a:53:27:13:4d:8f:91:c4:4a:86:60:
1d:8e:49:fb:5e:2f:ce:a5:a1:8e:70:0c:b3:0a:51:
17:d0:11:99:13:66:6b:85:6f:4e:20:43:f1:b5:4a:
4b:37:92:05:5b:35:7b:86:5a:03:86:02:85:f9:09:
6f:e8:48:92:67:e5:3f:65:87:cd:9b:9b:8b:52:15:
85:fd:69:86:64:f3:d9:c2:85:c1:1f:b1:9b:7b:2a:
91:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:2D:80:97:F8:39:5C:D7:68:29:FA:86:0D:18:5F:DE:1C:E1:AF:F4
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/8C2Al_g5XNdoKfqGDRhf3hzhr_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
194.50.92.0/24
194.50.94.0/24
194.50.111.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c6:4000::/34
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:cc40:1c0::/44
2a10:cc46:1000::/36
Signature Algorithm: sha256WithRSAEncryption
c2:78:27:fe:4c:04:e7:f2:3b:f3:c7:77:28:36:7d:a1:07:af:
92:be:12:fb:c9:e1:45:b4:26:8d:8d:8c:de:64:de:bc:c2:af:
bd:1e:b9:3b:87:e1:39:96:48:bf:f0:8a:a5:68:b7:9d:44:96:
10:6b:2d:9e:4b:29:fc:34:9b:47:4f:9a:50:8d:b9:e6:8e:76:
32:d6:7e:22:ca:97:92:32:e8:39:0d:4d:93:b7:00:e3:55:e0:
6d:69:dc:24:1c:8d:af:80:01:ba:2a:07:49:b2:da:26:c6:81:
f6:21:e3:ac:94:ca:b1:6c:08:d0:13:a8:bc:87:8b:fd:12:9e:
17:03:e5:df:83:ae:b8:2b:2b:74:54:46:18:f0:b9:fd:c0:cc:
0a:c5:28:00:94:48:58:9e:f0:56:f9:ee:e6:7b:2d:ed:d6:d1:
42:2a:8d:e6:c6:db:6d:a0:a2:9b:f1:d4:4a:56:cc:14:10:3a:
33:52:04:e9:e9:dd:4f:3c:27:a2:f3:39:16:e0:87:58:35:fd:
31:0a:a7:46:1f:21:4d:62:63:21:3a:6f:f7:2c:c5:f0:7b:54:
91:9d:af:b0:19:9a:f2:a2:ef:c5:fa:5b:27:70:08:48:79:84:
81:62:0b:c4:a5:f1:b2:14:6a:f9:94:db:aa:6c:0f:3d:a2:b0:
f9:49:19:38
-----BEGIN CERTIFICATE-----
MIIFoDCCBIigAwIBAgISAYQSOizNuPMdzwyMvdkSfFeGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjIxMDI2MDI1ODMzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMDJkODA5N2Y4Mzk1Y2Q3NjgyOWZhODYwZDE4NWZkZTFjZTFhZmY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhrxlVXCWlcllJK13/Y4fK7nbPTTn
w53//AeqPB1wHuDwesOuwwDR+f64GAc/IrPyNpoCsVOltldJfj4kli/9JmAnhwSS
0+W07tNEAkhNnnBFV4/kDQt7wxS6qSWYxMXJ98YXzSMa9dq2FVpNnPSc09pmpnoe
FPPKZHTF3Rz6MMTOT3phHSoOHMnJ8XpArBYI6kGseC1yEP3uS+9WbEl+WPTbzcLY
FANqOlMnE02PkcRKhmAdjkn7Xi/OpaGOcAyzClEX0BGZE2ZrhW9OIEPxtUpLN5IF
WzV7hloDhgKF+Qlv6EiSZ+U/ZYfNm5uLUhWF/WmGZPPZwoXBH7GbeyqRPwIDAQAB
o4ICrDCCAqgwHQYDVR0OBBYEFPAtgJf4OVzXaCn6hg0YX94c4a/0MB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvOEMyQWxfZzVYTmRvS2ZxR0RSaGYzaHpocl9RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHBBggrBgEFBQcBBwEB/wSBsTCBrjA2BAIAATAwAwQAHyq3
AwQCLYiIAwQAVcrLAwQAXrF6AwQCixxgAwQAwjJcAwQAwjJeAwQAwjJvMHQEAgAC
MG4DBwAgAQf4ARkDBQMqCQTAAwUDKgw7gAMHACoOl8ABcAMHBCoOl8ACYAMGACoO
l8ECAwYGKg6XxkADBwAqDrEHCfIDBwAqDrEHEWUDBwAqDrEHF4YDBwAqD+QEAQID
BwQqEMxAAcADBgQqEMxGEDANBgkqhkiG9w0BAQsFAAOCAQEAwngn/kwE5/I788d3
KDZ9oQevkr4S+8nhRbQmjY2M3mTevMKvvR65O4fhOZZIv/CKpWi3nUSWEGstnksp
/DSbR0+aUI255o52MtZ+IsqXkjLoOQ1Nk7cA41XgbWncJByNr4ABuioHSbLaJsaB
9iHjrJTKsWwI0BOovIeL/RKeFwPl34OuuCsrdFRGGPC5/cDMCsUoAJRIWJ7wVvnu
5nst7dbRQiqN5sbbbaCim/HUSlbMFBA6M1IE6endTzwnovM5FuCHWDX9MQqnRh8h
TWJjITpv9yzF8HtUkZ2vsBma8qLvxfpbJ3AISHmEgWILxKXxshRq+ZTbqmwPPaKw
+UkZOA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:55 2023 by rpki-client on console-ams.rpki-client.org