Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/AkBrw_8HoZBNNsuM5TnHmwdl_Zg.roa
File: AkBrw_8HoZBNNsuM5TnHmwdl_Zg.roa (raw, json)
Hash identifier: N4ys3uy5mVMc4jT7CbBxNHqHaa0K+S0sJKF5QZolHGU=
Subject key identifier: 02:40:6B:C3:FF:07:A1:90:4D:36:CB:8C:E5:39:C7:9B:07:65:FD:98
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 13B0237B
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/AkBrw_8HoZBNNsuM5TnHmwdl_Zg.roa
Signing time: Thu 14 Apr 2022 05:54:48 +0000
ROA not before: Thu 14 Apr 2022 05:54:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58057
IP address blocks: 45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
194.50.111.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
2a10:cc46:100::/44 maxlen: 48
2a0e:97c0:260::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a0f:e404:10a::/48 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2a0f:e404:100::/48 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a0f:e404:101::/48 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0f:e404:107::/48 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1786::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 330310523 (0x13b0237b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Apr 14 05:54:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02406bc3ff07a1904d36cb8ce539c79b0765fd98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:38:ec:e4:18:67:4a:6c:90:5f:ab:5a:d6:47:
ab:40:c3:c1:83:32:63:48:f6:fa:cd:e2:20:c2:09:
49:91:2b:72:3f:d2:47:1c:b4:a8:9f:5a:23:2d:fb:
dd:59:e0:4f:83:b0:53:c7:19:1a:93:d2:e2:37:f9:
f6:6c:a2:21:b1:5a:10:04:c0:ca:c6:2e:75:c1:b6:
06:60:57:67:7a:a9:5a:4c:0b:0c:7c:46:e3:7a:fa:
e2:95:46:35:7b:f1:17:a9:92:f1:05:98:44:27:27:
c1:32:97:96:0d:b5:16:71:58:a9:58:45:95:24:8a:
5b:b7:54:74:27:f1:7c:64:4f:d3:ab:53:1a:c3:4d:
ad:5c:2c:3d:af:a4:7f:4c:b9:7c:b2:38:58:f8:67:
ef:c5:96:71:bf:8d:1a:6e:a4:40:0f:c9:a5:03:77:
30:7f:86:50:f0:7c:45:cd:2b:49:1d:a2:c3:c1:79:
68:c8:a9:5f:76:f4:54:f4:64:c2:62:1b:00:b3:80:
e9:25:fe:84:0e:1e:02:e1:10:4b:89:3c:9a:07:2a:
32:29:82:9c:10:e8:23:d6:d9:1e:86:30:69:c2:ac:
2c:ca:e6:15:2d:ca:6a:76:ac:02:fc:a7:35:31:93:
a8:5c:df:30:13:76:7c:a1:61:73:0d:59:f5:49:4f:
9c:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:40:6B:C3:FF:07:A1:90:4D:36:CB:8C:E5:39:C7:9B:07:65:FD:98
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/AkBrw_8HoZBNNsuM5TnHmwdl_Zg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
194.50.92.0/24
194.50.94.0/24
194.50.111.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:100::-2a0f:e404:102:ffff:ffff:ffff:ffff:ffff
2a0f:e404:107::/48
2a0f:e404:10a::/48
2a10:cc46:100::/44
Signature Algorithm: sha256WithRSAEncryption
00:e8:0c:f0:23:38:6e:bc:a1:c3:eb:0d:8d:db:21:38:e3:eb:
46:2b:c4:81:da:8f:ce:7b:7e:bb:c9:e0:4e:0d:b1:3c:c3:bd:
73:ba:aa:e2:90:69:9f:fe:a3:e9:55:fe:08:28:4a:9e:d0:4c:
ec:26:16:af:b9:f5:3c:e0:60:43:3c:f1:35:8e:56:f3:0d:6c:
af:e7:96:b7:5e:77:dd:0a:d4:31:ab:05:4c:1e:62:f1:9b:41:
d9:a5:9e:e5:13:71:6e:b0:55:93:4e:d8:44:f3:14:5d:8a:ac:
ec:14:41:a5:55:56:58:d1:95:be:63:4e:a8:bb:42:1e:dc:3b:
89:17:c5:0c:f6:e3:b6:68:16:c6:4b:46:68:76:c6:9f:31:73:
42:9b:e7:be:aa:0a:f3:64:0a:8c:9f:2d:c4:15:9f:d3:a1:96:
1d:16:e4:1d:e0:50:81:4f:ff:23:8f:ec:37:86:e6:e5:77:ef:
a0:95:7f:e2:4d:58:65:56:d5:4f:fc:41:dc:d1:db:e2:24:92:
5e:34:06:11:32:c8:79:ee:bb:b3:af:e7:fb:a2:b2:c8:94:05:
be:0e:c3:d6:4c:48:5d:7f:30:f4:d3:27:0d:55:95:07:ba:fe:
3f:57:a3:99:14:72:f8:ca:af:21:13:a8:f9:bc:f4:82:3e:fc:
95:ab:85:f1
-----BEGIN CERTIFICATE-----
MIIFhzCCBG+gAwIBAgIEE7AjezANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
M2U5MTY3MTdhYjExY2NjZjExZWYxZmI1YzEyZWU0MTk1MGZhZDliMB4XDTIyMDQx
NDA1NTQ0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDI0MDZiYzNmZjA3
YTE5MDRkMzZjYjhjZTUzOWM3OWIwNzY1ZmQ5ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALs47OQYZ0pskF+rWtZHq0DDwYMyY0j2+s3iIMIJSZErcj/S
Rxy0qJ9aIy373VngT4OwU8cZGpPS4jf59myiIbFaEATAysYudcG2BmBXZ3qpWkwL
DHxG43r64pVGNXvxF6mS8QWYRCcnwTKXlg21FnFYqVhFlSSKW7dUdCfxfGRP06tT
GsNNrVwsPa+kf0y5fLI4WPhn78WWcb+NGm6kQA/JpQN3MH+GUPB8Rc0rSR2iw8F5
aMipX3b0VPRkwmIbALOA6SX+hA4eAuEQS4k8mgcqMimCnBDoI9bZHoYwacKsLMrm
FS3KanasAvynNTGTqFzfMBN2fKFhcw1Z9UlPnFMCAwEAAaOCAqEwggKdMB0GA1Ud
DgQWBBQCQGvD/wehkE02y4zlOcebB2X9mDAfBgNVHSMEGDAWgBRj6RZxerEczPEe
8ftcEu5BlQ+tmzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1kta1djWHF4SE16eEh2SDdYQkx1UVpVUHJacy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTEvNDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8x
L0FrQnJ3XzhIb1pCTk5zdU01VG5IbXdkbF9aZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEv
NDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8xL1kta1djWHF4SE16
eEh2SDdYQkx1UVpVUHJacy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
tgYIKwYBBQUHAQcBAf8EgaYwgaMwMAQCAAEwKgMEAi2IiAMEAFXKywMEAF6xegME
AoscYAMEAMIyXAMEAMIyXgMEAMIybzBvBAIAAjBpAwcAIAEH+AEZAwUDKgkEwAMF
AyoMO4ADBwAqDpfAAXADBwQqDpfAAmADBwAqDrEHEWUDBwAqDrEHF4YwEQMGACoP
5AQBAwcAKg/kBAECAwcAKg/kBAEHAwcAKg/kBAEKAwcEKhDMRgEAMA0GCSqGSIb3
DQEBCwUAA4IBAQAA6AzwIzhuvKHD6w2N2yE44+tGK8SB2o/Oe367yeBODbE8w71z
uqrikGmf/qPpVf4IKEqe0EzsJhavufU84GBDPPE1jlbzDWyv55a3XnfdCtQxqwVM
HmLxm0HZpZ7lE3FusFWTTthE8xRdiqzsFEGlVVZY0ZW+Y06ou0Ie3DuJF8UM9uO2
aBbGS0ZodsafMXNCm+e+qgrzZAqMny3EFZ/ToZYdFuQd4FCBT/8jj+w3hubld++g
lX/iTVhlVtVP/EHc0dviJJJeNAYRMsh57ruzr+f7orLIlAW+DsPWTEhdfzD00ycN
VZUHuv4/V6OZFHL4yq8hE6j5vPSCPvyVq4Xx
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:14 2023 by rpki-client on console-fra.rpki-client.org