Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/j3pLeJ5oRQ63L4MSsw-uRld4ocY.roa
File: j3pLeJ5oRQ63L4MSsw-uRld4ocY.roa (raw, json)
Hash identifier: cQAjJVG4Y7NWIhKtubw0Vr9doRcBpjSdEk9iK2kj85g=
Subject key identifier: 8F:7A:4B:78:9E:68:45:0E:B7:2F:83:12:B3:0F:AE:46:57:78:A1:C6
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01840100088ABE029C0DD1FE7FEFB530B259
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/j3pLeJ5oRQ63L4MSsw-uRld4ocY.roa
Signing time: Sat 22 Oct 2022 18:41:30 +0000
ROA not before: Sat 22 Oct 2022 18:41:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58057
IP address blocks: 45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.111.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a0e:97c6:4000::/34 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a10:cc46:1000::/36 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a10:cc40:1c0::/44 maxlen: 44
2a0f:e404:102::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1786::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:01:00:08:8a:be:02:9c:0d:d1:fe:7f:ef:b5:30:b2:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 22 18:41:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f7a4b789e68450eb72f8312b30fae465778a1c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:13:95:d2:63:5d:ef:b9:f0:28:05:f8:1f:cb:
bd:29:52:97:66:ec:42:c5:b7:41:77:59:4f:09:f1:
3b:8c:3f:70:3a:17:e5:89:d4:76:f9:a9:3f:cd:dc:
d0:49:2e:c4:79:cd:87:c3:bc:e2:42:9e:a3:53:62:
49:b4:55:e0:09:50:22:8e:83:28:92:f4:52:48:62:
59:56:f5:8a:5b:3a:62:ec:af:aa:cd:4a:fa:7c:08:
92:45:22:44:ef:a6:51:73:1a:cf:b7:53:4a:d8:f9:
d6:e2:db:c0:c8:ee:e2:f0:df:52:c2:be:f2:40:33:
b6:97:33:ff:9d:a5:3c:6e:19:0c:79:eb:a2:c4:42:
1c:1b:fa:a6:fd:63:bd:a2:e9:bf:4c:9e:4f:9e:d4:
78:ab:4b:93:ff:c5:0d:e6:e6:89:93:7a:26:bb:a4:
18:f7:0f:90:f8:9a:0d:1a:89:83:f8:01:c9:ec:ba:
6b:11:11:d2:8a:0e:d5:a9:92:fc:29:5b:17:00:00:
1a:ac:79:b9:04:3f:b1:49:09:09:d6:76:f3:c9:39:
43:24:10:d4:97:fd:ab:40:2a:f7:4a:2b:ed:3d:56:
65:26:b1:db:18:f2:d5:d5:a5:0e:fa:50:a7:ab:ef:
7d:f4:76:b5:bc:b2:e6:68:36:74:da:4f:94:14:3f:
eb:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:7A:4B:78:9E:68:45:0E:B7:2F:83:12:B3:0F:AE:46:57:78:A1:C6
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/j3pLeJ5oRQ63L4MSsw-uRld4ocY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
194.50.92.0/24
194.50.94.0/24
194.50.111.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c6:4000::/34
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:cc40:1c0::/44
2a10:cc46:1000::/36
Signature Algorithm: sha256WithRSAEncryption
73:ab:3c:83:67:f2:08:be:6a:1b:2b:1e:53:1c:3c:fe:d8:dd:
74:9d:7e:2c:9c:06:40:50:c8:c9:30:a2:c2:d0:27:99:5e:cc:
9e:73:84:4f:e2:41:15:4f:3d:37:f7:70:99:e8:13:b0:cc:e5:
0a:ea:9f:a5:67:23:60:45:b2:fa:9f:43:0f:2e:aa:29:b5:a8:
b7:0b:51:ef:f1:f3:de:a3:5e:25:68:5b:0f:e0:c6:e9:25:5b:
9d:92:14:db:c2:61:2e:8b:dc:de:bf:d0:c8:17:02:5e:1c:80:
b6:6b:21:d3:dd:2b:2b:49:67:44:34:5c:2e:37:67:95:3b:87:
d0:44:74:4d:70:53:03:0e:cc:8b:d3:da:0c:86:7e:af:8f:20:
ee:74:5b:22:75:92:c9:00:25:1c:79:ec:01:13:ca:c8:08:3a:
50:e8:0a:b4:c8:5e:1d:a8:bd:9d:bb:30:51:3e:5d:9f:59:ba:
5e:13:10:da:a5:95:03:68:21:52:e5:d2:df:23:78:50:66:cc:
78:81:8a:7c:3e:7c:1a:50:d6:af:70:a6:ff:bb:c6:a6:c4:d9:
a7:50:e5:ec:9f:b4:5d:fe:f3:15:8b:7a:1d:4e:46:05:c2:95:
eb:e4:32:65:c2:f8:f5:ff:fb:19:0f:bd:35:d9:fb:56:cb:9b:
59:75:3e:17
-----BEGIN CERTIFICATE-----
MIIFoDCCBIigAwIBAgISAYQBAAiKvgKcDdH+f++1MLJZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjIxMDIyMTg0MTMwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZjdhNGI3ODllNjg0NTBlYjcyZjgzMTJiMzBmYWU0NjU3NzhhMWM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhhOV0mNd77nwKAX4H8u9KVKXZuxC
xbdBd1lPCfE7jD9wOhflidR2+ak/zdzQSS7Eec2Hw7ziQp6jU2JJtFXgCVAijoMo
kvRSSGJZVvWKWzpi7K+qzUr6fAiSRSJE76ZRcxrPt1NK2PnW4tvAyO7i8N9Swr7y
QDO2lzP/naU8bhkMeeuixEIcG/qm/WO9oum/TJ5PntR4q0uT/8UN5uaJk3omu6QY
9w+Q+JoNGomD+AHJ7LprERHSig7VqZL8KVsXAAAarHm5BD+xSQkJ1nbzyTlDJBDU
l/2rQCr3SivtPVZlJrHbGPLV1aUO+lCnq+999Ha1vLLmaDZ02k+UFD/rHwIDAQAB
o4ICrDCCAqgwHQYDVR0OBBYEFI96S3ieaEUOty+DErMPrkZXeKHGMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvajNwTGVKNW9SUTYzTDRNU3N3LXVSbGQ0b2NZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHBBggrBgEFBQcBBwEB/wSBsTCBrjA2BAIAATAwAwQAHyq3
AwQCLYiIAwQAVcrLAwQAXrF6AwQCixxgAwQAwjJcAwQAwjJeAwQAwjJvMHQEAgAC
MG4DBwAgAQf4ARkDBQMqCQTAAwUDKgw7gAMHACoOl8ABcAMHBCoOl8ACYAMGACoO
l8ECAwYGKg6XxkADBwAqDrEHCfIDBwAqDrEHEWUDBwAqDrEHF4YDBwAqD+QEAQID
BwQqEMxAAcADBgQqEMxGEDANBgkqhkiG9w0BAQsFAAOCAQEAc6s8g2fyCL5qGyse
Uxw8/tjddJ1+LJwGQFDIyTCiwtAnmV7MnnOET+JBFU89N/dwmegTsMzlCuqfpWcj
YEWy+p9DDy6qKbWotwtR7/Hz3qNeJWhbD+DG6SVbnZIU28JhLovc3r/QyBcCXhyA
tmsh090rK0lnRDRcLjdnlTuH0ER0TXBTAw7Mi9PaDIZ+r48g7nRbInWSyQAlHHns
ARPKyAg6UOgKtMheHai9nbswUT5dn1m6XhMQ2qWVA2ghUuXS3yN4UGbMeIGKfD58
GlDWr3Cm/7vGpsTZp1Dl7J+0Xf7zFYt6HU5GBcKV6+QyZcL49f/7GQ+9Ndn7Vsub
WXU+Fw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:02 2023 by rpki-client on console-ams.rpki-client.org