Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/AMvEIPXRF3wkSmhVLz6zzx7Wlc8.roa
File: AMvEIPXRF3wkSmhVLz6zzx7Wlc8.roa (raw, json)
Hash identifier: 2BGlH0dcLmfVsVfe3pKQrWnv0rSoVxJ0sD71LWlP10M=
Subject key identifier: 00:CB:C4:20:F5:D1:17:7C:24:4A:68:55:2F:3E:B3:CF:1E:D6:95:CF
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0183C3C8253219148E065B45FFB48FE2DA0B
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/AMvEIPXRF3wkSmhVLz6zzx7Wlc8.roa
Signing time: Mon 10 Oct 2022 21:23:37 +0000
ROA not before: Mon 10 Oct 2022 21:23:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58057
IP address blocks: 45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.111.0/24 maxlen: 24
193.58.239.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a10:cc46:1000::/36 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a10:cc40:1c0::/44 maxlen: 44
2a0f:e404:102::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1786::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c3:c8:25:32:19:14:8e:06:5b:45:ff:b4:8f:e2:da:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 10 21:23:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00cbc420f5d1177c244a68552f3eb3cf1ed695cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:77:5b:cc:3f:8a:16:f7:57:ae:0c:7f:6a:8a:
dd:aa:b0:08:e8:ab:fa:24:d2:05:85:d3:a5:dc:ac:
42:06:29:47:6d:99:fb:fc:0f:4d:e1:e7:08:90:3d:
c0:05:0a:6a:63:16:ba:bc:4e:f3:b2:17:ca:1a:ac:
44:b6:ac:0c:a9:3a:a9:74:e4:4e:76:9f:e7:13:cf:
1f:f0:79:8d:3e:1f:1e:be:ec:c0:82:3d:0a:d5:51:
64:98:d1:1c:e7:2c:ac:78:97:53:93:4d:4c:81:04:
91:9b:ea:52:e9:11:4a:a5:06:a2:06:3f:9a:80:58:
59:c8:45:bb:0d:61:04:9c:48:d0:3d:34:87:b1:99:
d2:b6:8d:36:8a:74:b2:5c:7a:20:c0:48:6e:ad:c0:
6e:4f:81:2d:1c:ee:04:f9:55:79:24:94:07:cd:80:
93:0f:f9:d6:e6:71:71:ea:b6:7a:d3:d4:81:70:34:
c8:1a:01:d0:0c:a9:b5:4b:98:d8:d4:55:0e:40:89:
37:5b:1d:22:e2:d5:6d:8f:ea:0f:1e:2e:5c:95:67:
6d:e5:9c:bc:d5:73:60:4a:c9:75:f9:85:68:d5:dc:
69:20:93:7b:e1:5c:20:00:26:50:60:1b:67:09:78:
65:aa:3c:24:e6:19:09:7f:d3:b1:9f:20:2f:26:98:
f9:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:CB:C4:20:F5:D1:17:7C:24:4A:68:55:2F:3E:B3:CF:1E:D6:95:CF
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/AMvEIPXRF3wkSmhVLz6zzx7Wlc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
193.58.239.0/24
194.50.92.0/24
194.50.94.0/24
194.50.111.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:cc40:1c0::/44
2a10:cc46:1000::/36
Signature Algorithm: sha256WithRSAEncryption
6a:f9:e4:33:99:17:3f:ca:05:75:72:fe:d3:b6:ac:1b:23:fd:
82:3f:64:e5:3c:fc:4a:17:4e:23:79:00:68:97:ff:97:d2:82:
c9:89:9f:17:5f:29:e8:e1:fb:d8:23:86:fc:d4:12:e0:0f:ed:
0d:49:90:05:70:aa:02:70:9d:c9:d7:b6:91:99:8e:cb:49:c4:
e1:17:69:cd:31:3e:6f:2c:81:b8:ae:62:ea:a1:44:3e:71:b5:
65:32:48:9b:cf:a4:46:e8:05:29:33:ea:81:97:50:0e:93:b9:
fa:55:2b:32:7a:33:f7:69:e1:c0:c5:12:2d:f0:79:3c:59:52:
b4:66:2d:a6:89:7a:a4:0e:c8:3d:f1:83:c7:76:74:5a:3f:a8:
bc:21:a1:66:f7:16:63:51:20:2d:d4:9a:25:08:a8:c0:3a:3a:
f8:f6:f3:5f:b2:e6:66:25:b8:ff:6b:4f:d4:dd:b5:a2:ac:fe:
93:dc:59:d2:b2:47:a7:c3:a3:b4:3b:3e:80:af:6e:45:fd:91:
65:ae:f4:e8:27:16:02:20:94:4f:d3:ca:d6:33:e5:ac:6b:3a:
5d:20:b4:4e:fe:50:c8:0c:f8:04:eb:48:9f:83:73:15:78:10:
59:45:e7:6d:33:aa:21:05:b0:7f:7b:4e:85:df:b4:dd:70:8f:
ec:f0:4b:8e
-----BEGIN CERTIFICATE-----
MIIFnjCCBIagAwIBAgISAYPDyCUyGRSOBltF/7SP4toLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjIxMDEwMjEyMzM3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMGNiYzQyMGY1ZDExNzdjMjQ0YTY4NTUyZjNlYjNjZjFlZDY5NWNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiHdbzD+KFvdXrgx/aordqrAI6Kv6
JNIFhdOl3KxCBilHbZn7/A9N4ecIkD3ABQpqYxa6vE7zshfKGqxEtqwMqTqpdORO
dp/nE88f8HmNPh8evuzAgj0K1VFkmNEc5yyseJdTk01MgQSRm+pS6RFKpQaiBj+a
gFhZyEW7DWEEnEjQPTSHsZnSto02inSyXHogwEhurcBuT4EtHO4E+VV5JJQHzYCT
D/nW5nFx6rZ609SBcDTIGgHQDKm1S5jY1FUOQIk3Wx0i4tVtj+oPHi5clWdt5Zy8
1XNgSsl1+YVo1dxpIJN74VwgACZQYBtnCXhlqjwk5hkJf9OxnyAvJpj52wIDAQAB
o4ICqjCCAqYwHQYDVR0OBBYEFADLxCD10Rd8JEpoVS8+s88e1pXPMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvQU12RUlQWFJGM3drU21oVkx6Nnp6eDdXbGM4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG/BggrBgEFBQcBBwEB/wSBrzCBrDA8BAIAATA2AwQAHyq3
AwQCLYiIAwQAVcrLAwQAXrF6AwQCixxgAwQAwTrvAwQAwjJcAwQAwjJeAwQAwjJv
MGwEAgACMGYDBwAgAQf4ARkDBQMqCQTAAwUDKgw7gAMHACoOl8ABcAMHBCoOl8AC
YAMGACoOl8ECAwcAKg6xBwnyAwcAKg6xBxFlAwcAKg6xBxeGAwcAKg/kBAECAwcE
KhDMQAHAAwYEKhDMRhAwDQYJKoZIhvcNAQELBQADggEBAGr55DOZFz/KBXVy/tO2
rBsj/YI/ZOU8/EoXTiN5AGiX/5fSgsmJnxdfKejh+9gjhvzUEuAP7Q1JkAVwqgJw
ncnXtpGZjstJxOEXac0xPm8sgbiuYuqhRD5xtWUySJvPpEboBSkz6oGXUA6TufpV
KzJ6M/dp4cDFEi3weTxZUrRmLaaJeqQOyD3xg8d2dFo/qLwhoWb3FmNRIC3UmiUI
qMA6Ovj281+y5mYluP9rT9TdtaKs/pPcWdKyR6fDo7Q7PoCvbkX9kWWu9OgnFgIg
lE/TytYz5axrOl0gtE7+UMgM+ATrSJ+DcxV4EFlF520zqiEFsH97ToXftN1wj+zw
S44=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:56 2023 by rpki-client on console-ams.rpki-client.org