Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/JGLgPrBP_924yEFczKig62-AZYs.roa
File: JGLgPrBP_924yEFczKig62-AZYs.roa (raw, json)
Hash identifier: 5rnFs36bE0X5KnUS8RvedJz0JF/43CwlxAad0m+72f4=
Subject key identifier: 24:62:E0:3E:B0:4F:FF:DD:B8:C8:41:5C:CC:A8:A0:EB:6F:80:65:8B
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0183E3330D9A7C78FF82C5C7C5C9C59014D5
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/JGLgPrBP_924yEFczKig62-AZYs.roa
Signing time: Sun 16 Oct 2022 23:48:37 +0000
ROA not before: Sun 16 Oct 2022 23:48:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58057
IP address blocks: 45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.111.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a10:cc46:1000::/36 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a10:cc40:1c0::/44 maxlen: 44
2a0f:e404:102::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1786::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e3:33:0d:9a:7c:78:ff:82:c5:c7:c5:c9:c5:90:14:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 16 23:48:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2462e03eb04fffddb8c8415ccca8a0eb6f80658b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ae:b9:86:86:30:7d:3c:65:b3:c5:0f:28:c0:
4a:74:f2:6f:7d:e8:5f:86:07:c4:57:14:18:db:88:
dc:ad:bc:d3:16:d3:3b:11:32:9b:72:3c:89:34:b6:
65:20:2c:ab:09:5d:66:ca:76:1d:23:be:e0:81:bf:
95:19:d0:bd:11:48:49:b8:e7:b9:f5:c8:ee:ba:a5:
a7:46:5e:d0:40:c9:46:40:80:c6:fd:2c:eb:e3:d5:
b5:ae:ff:56:0b:85:33:9a:91:e9:52:04:cd:0b:dd:
bb:0b:06:c6:96:30:cd:0e:8d:92:53:3e:ac:62:7c:
7e:e1:87:0f:df:3c:45:77:8c:bd:b1:8f:64:58:9e:
1d:86:f8:3e:d4:03:2e:8c:f5:eb:cc:97:01:a2:bd:
11:c7:c8:fa:3e:22:cb:a6:81:a6:ea:05:74:91:db:
92:56:d0:85:97:f3:78:55:52:ea:dc:1f:25:34:47:
a2:ca:17:6f:00:34:1c:58:45:9c:d5:21:83:91:89:
95:80:6f:1d:7c:56:5a:ad:3c:88:a9:de:60:c4:3c:
39:db:f9:22:41:96:f7:8c:2d:f0:97:21:99:b7:8f:
5f:fa:93:24:45:6a:21:15:40:a5:00:9e:ac:25:5b:
f8:ea:80:ca:4b:56:51:fc:57:51:9a:8e:2d:8b:53:
75:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:62:E0:3E:B0:4F:FF:DD:B8:C8:41:5C:CC:A8:A0:EB:6F:80:65:8B
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/JGLgPrBP_924yEFczKig62-AZYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
194.50.92.0/24
194.50.94.0/24
194.50.111.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:cc40:1c0::/44
2a10:cc46:1000::/36
Signature Algorithm: sha256WithRSAEncryption
a5:69:6e:71:8a:9b:46:2b:d4:cc:2a:1b:b7:e1:71:b9:4f:98:
58:9a:7f:ab:4d:e5:84:22:d1:6c:cc:f5:55:e1:3f:a4:08:b0:
de:ff:54:13:88:c2:ed:88:ec:a3:ac:f7:b9:fa:d4:17:e5:40:
b3:e9:52:fc:de:63:5b:e2:47:5b:6d:e0:36:94:90:31:7f:be:
63:42:f5:bb:50:7f:75:0e:19:69:eb:4e:d0:a6:69:9c:d9:33:
0a:5b:3b:50:08:0c:fc:68:4e:14:e3:3b:be:46:88:e2:d8:cb:
cd:b1:f6:13:b3:52:4d:e1:64:0a:e6:73:4a:f9:ee:fd:e9:00:
8e:99:66:66:4c:5f:9b:c7:c7:07:61:89:c3:da:6a:1b:62:a3:
2c:22:e5:8e:52:d1:89:91:04:29:d8:f8:bc:22:0f:c3:92:3f:
0b:9d:06:e3:32:da:99:c4:5c:6b:06:ef:a2:8c:c0:59:c2:0f:
88:1f:d7:36:77:85:cf:15:98:fc:8b:4b:54:f3:2d:2b:06:e6:
c7:29:b9:bb:4e:a8:b6:f0:14:b9:41:1d:2e:87:23:67:0d:af:
98:e2:c1:0e:73:9a:71:52:23:90:94:5e:ed:28:36:76:95:ef:
36:6a:9e:a9:03:6b:cc:b6:06:ac:24:3e:72:2c:68:3b:af:93:
be:9f:d9:8f
-----BEGIN CERTIFICATE-----
MIIFmDCCBICgAwIBAgISAYPjMw2afHj/gsXHxcnFkBTVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjIxMDE2MjM0ODM3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNDYyZTAzZWIwNGZmZmRkYjhjODQxNWNjY2E4YTBlYjZmODA2NThiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo665hoYwfTxls8UPKMBKdPJvfehf
hgfEVxQY24jcrbzTFtM7ETKbcjyJNLZlICyrCV1mynYdI77ggb+VGdC9EUhJuOe5
9cjuuqWnRl7QQMlGQIDG/Szr49W1rv9WC4UzmpHpUgTNC927CwbGljDNDo2SUz6s
Ynx+4YcP3zxFd4y9sY9kWJ4dhvg+1AMujPXrzJcBor0Rx8j6PiLLpoGm6gV0kduS
VtCFl/N4VVLq3B8lNEeiyhdvADQcWEWc1SGDkYmVgG8dfFZarTyIqd5gxDw52/ki
QZb3jC3wlyGZt49f+pMkRWohFUClAJ6sJVv46oDKS1ZR/FdRmo4ti1N1+wIDAQAB
o4ICpDCCAqAwHQYDVR0OBBYEFCRi4D6wT//duMhBXMyooOtvgGWLMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvSkdMZ1ByQlBfOTI0eUVGY3pLaWc2Mi1BWllzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG5BggrBgEFBQcBBwEB/wSBqTCBpjA2BAIAATAwAwQAHyq3
AwQCLYiIAwQAVcrLAwQAXrF6AwQCixxgAwQAwjJcAwQAwjJeAwQAwjJvMGwEAgAC
MGYDBwAgAQf4ARkDBQMqCQTAAwUDKgw7gAMHACoOl8ABcAMHBCoOl8ACYAMGACoO
l8ECAwcAKg6xBwnyAwcAKg6xBxFlAwcAKg6xBxeGAwcAKg/kBAECAwcEKhDMQAHA
AwYEKhDMRhAwDQYJKoZIhvcNAQELBQADggEBAKVpbnGKm0Yr1MwqG7fhcblPmFia
f6tN5YQi0WzM9VXhP6QIsN7/VBOIwu2I7KOs97n61BflQLPpUvzeY1viR1tt4DaU
kDF/vmNC9btQf3UOGWnrTtCmaZzZMwpbO1AIDPxoThTjO75GiOLYy82x9hOzUk3h
ZArmc0r57v3pAI6ZZmZMX5vHxwdhicPaahtioywi5Y5S0YmRBCnY+LwiD8OSPwud
BuMy2pnEXGsG76KMwFnCD4gf1zZ3hc8VmPyLS1TzLSsG5scpubtOqLbwFLlBHS6H
I2cNr5jiwQ5zmnFSI5CUXu0oNnaV7zZqnqkDa8y2BqwkPnIsaDuvk76f2Y8=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:15 2023 by rpki-client on console-fra.rpki-client.org