Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/_BVAoZoLksynsGkP2RlD63udowU.roa
File: _BVAoZoLksynsGkP2RlD63udowU.roa (raw, json)
Hash identifier: nuftlIJUWQ5iPeg/ekxTXemH8KTdCXSrW3RzxgTMnTU=
Subject key identifier: FC:15:40:A1:9A:0B:92:CC:A7:B0:69:0F:D9:19:43:EB:7B:9D:A3:05
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0183CBCDAC9C01F1E3DFA1BFA87958882752
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/_BVAoZoLksynsGkP2RlD63udowU.roa
Signing time: Wed 12 Oct 2022 10:46:37 +0000
ROA not before: Wed 12 Oct 2022 10:46:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58057
IP address blocks: 45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.111.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a10:cc46:1000::/36 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a10:cc40:1c0::/44 maxlen: 44
2a0f:e404:102::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1786::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:cb:cd:ac:9c:01:f1:e3:df:a1:bf:a8:79:58:88:27:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 12 10:46:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc1540a19a0b92cca7b0690fd91943eb7b9da305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:be:fc:ab:95:b7:2d:f0:9b:4e:8d:49:71:5d:
a2:0a:37:42:55:73:80:4e:75:92:41:e7:f4:10:3a:
ff:0c:d5:85:07:89:01:dd:91:01:46:ad:68:33:2a:
e4:35:01:d8:33:28:fd:82:64:6f:20:34:ae:e1:b6:
e1:6b:54:6e:80:a2:7f:ee:50:c6:60:53:ed:24:f6:
dd:28:67:76:84:6d:a6:87:9e:fe:34:c1:06:6b:8b:
02:21:89:56:26:28:0c:58:b6:95:d0:ee:6b:37:a6:
e2:a0:b3:ee:2e:6b:5e:26:12:7d:59:f4:fd:34:34:
8f:71:d7:da:be:83:f1:40:0c:74:0e:69:e0:0b:45:
0d:38:3d:0e:76:b4:e6:bb:2d:5c:84:0a:85:66:be:
8b:a9:dd:38:55:e2:36:5e:3d:3f:94:31:1c:45:c0:
5f:66:9f:8f:08:0c:89:bb:08:1f:13:11:72:fa:55:
b7:45:56:5b:a5:de:b0:63:01:1c:da:b6:81:13:09:
f6:17:e4:bb:db:28:96:f6:a1:d2:f7:6f:96:99:bb:
09:e5:73:7d:a5:fe:3f:ea:de:41:ae:19:f8:11:7b:
d0:4b:60:d8:2c:f8:69:48:4b:c4:32:24:81:e4:e1:
2a:53:45:a0:55:49:56:00:07:5d:74:df:0c:91:d4:
ac:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:15:40:A1:9A:0B:92:CC:A7:B0:69:0F:D9:19:43:EB:7B:9D:A3:05
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/_BVAoZoLksynsGkP2RlD63udowU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
194.50.92.0/24
194.50.94.0/24
194.50.111.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:cc40:1c0::/44
2a10:cc46:1000::/36
Signature Algorithm: sha256WithRSAEncryption
a8:7e:d9:c8:6b:66:69:57:d9:20:24:7c:bb:d2:cc:f2:f8:f8:
d2:3c:a6:dd:52:43:2d:6c:be:e8:72:8a:e6:fc:95:c2:30:40:
ac:04:3c:f8:d1:e3:35:84:fb:3e:43:6c:1c:c5:53:39:2f:3b:
63:70:f2:94:0f:14:96:d2:a3:34:b8:70:37:1f:e0:1f:7a:18:
13:06:e4:ec:1d:32:dd:a1:ac:c5:d9:c4:aa:c5:57:d3:0f:a8:
7f:f7:43:bd:85:32:17:c2:35:a7:57:0b:96:74:7d:17:22:21:
3f:79:18:d7:6d:e3:78:22:5e:ec:55:43:27:c0:84:0c:ac:92:
7b:13:6e:89:a3:22:b9:81:81:10:84:b7:69:e6:13:21:fa:9b:
a4:cb:cd:ae:c0:88:9a:cc:16:1b:89:13:5b:7b:40:97:30:79:
a1:0c:01:65:74:ff:8d:f1:6a:cb:55:42:0d:ab:38:61:a4:4c:
e6:a5:b9:7b:b0:08:20:81:ac:90:81:0d:4d:86:ed:8b:ea:7b:
5d:97:df:aa:46:19:d9:79:06:48:3f:2b:11:f0:ab:d6:b0:96:
de:db:b9:e7:8d:0c:e5:42:e1:be:87:5c:3f:55:ae:8e:32:7c:
79:ce:95:39:20:3d:45:7a:1d:37:13:ea:f7:d9:7c:5e:ce:22:
26:29:0d:62
-----BEGIN CERTIFICATE-----
MIIFmDCCBICgAwIBAgISAYPLzaycAfHj36G/qHlYiCdSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjIxMDEyMTA0NjM3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYzE1NDBhMTlhMGI5MmNjYTdiMDY5MGZkOTE5NDNlYjdiOWRhMzA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkL78q5W3LfCbTo1JcV2iCjdCVXOA
TnWSQef0EDr/DNWFB4kB3ZEBRq1oMyrkNQHYMyj9gmRvIDSu4bbha1RugKJ/7lDG
YFPtJPbdKGd2hG2mh57+NMEGa4sCIYlWJigMWLaV0O5rN6bioLPuLmteJhJ9WfT9
NDSPcdfavoPxQAx0DmngC0UNOD0OdrTmuy1chAqFZr6Lqd04VeI2Xj0/lDEcRcBf
Zp+PCAyJuwgfExFy+lW3RVZbpd6wYwEc2raBEwn2F+S72yiW9qHS92+WmbsJ5XN9
pf4/6t5Brhn4EXvQS2DYLPhpSEvEMiSB5OEqU0WgVUlWAAdddN8MkdSssQIDAQAB
o4ICpDCCAqAwHQYDVR0OBBYEFPwVQKGaC5LMp7BpD9kZQ+t7naMFMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvX0JWQW9ab0xrc3luc0drUDJSbEQ2M3Vkb3dVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG5BggrBgEFBQcBBwEB/wSBqTCBpjA2BAIAATAwAwQAHyq3
AwQCLYiIAwQAVcrLAwQAXrF6AwQCixxgAwQAwjJcAwQAwjJeAwQAwjJvMGwEAgAC
MGYDBwAgAQf4ARkDBQMqCQTAAwUDKgw7gAMHACoOl8ABcAMHBCoOl8ACYAMGACoO
l8ECAwcAKg6xBwnyAwcAKg6xBxFlAwcAKg6xBxeGAwcAKg/kBAECAwcEKhDMQAHA
AwYEKhDMRhAwDQYJKoZIhvcNAQELBQADggEBAKh+2chrZmlX2SAkfLvSzPL4+NI8
pt1SQy1svuhyiub8lcIwQKwEPPjR4zWE+z5DbBzFUzkvO2Nw8pQPFJbSozS4cDcf
4B96GBMG5OwdMt2hrMXZxKrFV9MPqH/3Q72FMhfCNadXC5Z0fRciIT95GNdt43gi
XuxVQyfAhAysknsTbomjIrmBgRCEt2nmEyH6m6TLza7AiJrMFhuJE1t7QJcweaEM
AWV0/43xastVQg2rOGGkTOaluXuwCCCBrJCBDU2G7Yvqe12X36pGGdl5Bkg/KxHw
q9awlt7bueeNDOVC4b6HXD9Vro4yfHnOlTkgPUV6HTcT6vfZfF7OIiYpDWI=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:01 2023 by rpki-client on console-ams.rpki-client.org