Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/4b6354-a7a3-4351-a7de-aeac5d9cdc7b/1/4IPYwrDKbtge4f_V2WW-1eTmEMM.roa
File: 4IPYwrDKbtge4f_V2WW-1eTmEMM.roa (raw, json)
Hash identifier: Ykxn88vNNUVo7FgcDgjNRFYq4kCVTbVI09HF1tz7+jA=
Subject key identifier: E0:83:D8:C2:B0:CA:6E:D8:1E:E1:FF:D5:D9:65:BE:D5:E4:E6:10:C3
Certificate issuer: /CN=048eefb5b26483561711c990f20ff552ac4e2c9c
Certificate serial: 0BE2E8D9
Authority key identifier: 04:8E:EF:B5:B2:64:83:56:17:11:C9:90:F2:0F:F5:52:AC:4E:2C:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BI7vtbJkg1YXEcmQ8g_1UqxOLJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/4b6354-a7a3-4351-a7de-aeac5d9cdc7b/1/4IPYwrDKbtge4f_V2WW-1eTmEMM.roa
Signing time: Sat 01 Jan 2022 08:56:30 +0000
ROA not before: Sat 01 Jan 2022 08:56:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35805
IP address blocks: 77.92.224.0/19 maxlen: 24
37.110.160.0/19 maxlen: 24
31.146.0.0/16 maxlen: 24
92.54.192.0/18 maxlen: 24
176.221.128.0/17 maxlen: 24
94.43.0.0/16 maxlen: 24
178.134.0.0/16 maxlen: 24
213.217.16.0/22 maxlen: 24
188.123.150.0/24 maxlen: 24
146.255.224.0/19 maxlen: 24
37.232.0.0/17 maxlen: 24
5.152.0.0/17 maxlen: 24
149.3.0.0/17 maxlen: 24
87.253.32.0/19 maxlen: 24
188.123.128.0/19 maxlen: 24
188.169.0.0/16 maxlen: 24
79.99.248.0/21 maxlen: 21
2a01:9c80::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 199420121 (0xbe2e8d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048eefb5b26483561711c990f20ff552ac4e2c9c
Validity
Not Before: Jan 1 08:56:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e083d8c2b0ca6ed81ee1ffd5d965bed5e4e610c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:ab:83:cd:8d:89:74:00:8c:18:48:50:9f:ba:
b4:3e:6f:9f:59:ca:bf:1c:90:b5:d8:26:8b:9f:81:
b2:34:d2:6d:de:ee:68:62:39:20:40:09:1c:0e:1e:
ae:66:58:40:5c:1a:ca:27:a3:ec:e5:25:cf:71:d0:
56:71:af:b7:40:0b:4a:ee:be:3c:ed:25:13:c3:22:
a1:fc:be:0a:12:1f:25:e1:e1:d7:74:eb:79:e0:68:
1c:97:1d:60:3b:2c:2a:53:32:59:f2:21:9e:4b:20:
6e:5b:86:19:ea:4e:bb:9c:e0:38:98:ce:ac:56:f9:
b5:01:cb:d0:9d:4c:1c:99:60:bf:9f:f3:19:ab:bf:
7a:3b:bc:62:2e:78:f3:d6:3e:81:5d:39:48:c9:24:
8e:0d:bf:82:90:e2:c0:f5:78:c2:ba:4e:e8:2d:43:
bb:43:ab:c4:51:7d:7f:db:82:68:9c:f3:5e:5c:6c:
76:3f:ce:2c:be:d0:42:38:8c:b2:9d:fc:d0:bc:dc:
fc:17:a3:bf:ea:1a:ed:9c:e9:d0:53:16:3a:b2:eb:
6c:9f:80:1e:93:94:03:d3:a9:63:a0:e9:87:12:91:
e5:6d:f2:4d:6c:4b:8f:37:84:32:36:1e:f2:95:f2:
6c:80:22:60:4d:5a:cc:62:7f:ee:36:16:5c:b1:9b:
22:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:83:D8:C2:B0:CA:6E:D8:1E:E1:FF:D5:D9:65:BE:D5:E4:E6:10:C3
X509v3 Authority Key Identifier:
keyid:04:8E:EF:B5:B2:64:83:56:17:11:C9:90:F2:0F:F5:52:AC:4E:2C:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BI7vtbJkg1YXEcmQ8g_1UqxOLJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/4b6354-a7a3-4351-a7de-aeac5d9cdc7b/1/4IPYwrDKbtge4f_V2WW-1eTmEMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/4b6354-a7a3-4351-a7de-aeac5d9cdc7b/1/BI7vtbJkg1YXEcmQ8g_1UqxOLJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.152.0.0/17
31.146.0.0/16
37.110.160.0/19
37.232.0.0/17
77.92.224.0/19
79.99.248.0/21
87.253.32.0/19
92.54.192.0/18
94.43.0.0/16
146.255.224.0/19
149.3.0.0/17
176.221.128.0/17
178.134.0.0/16
188.123.128.0/19
188.169.0.0/16
213.217.16.0/22
IPv6:
2a01:9c80::/29
Signature Algorithm: sha256WithRSAEncryption
13:c9:82:a6:a2:68:36:f7:b0:cf:53:6a:32:4e:3f:8e:5a:a6:
ae:50:f6:2e:ab:73:dc:c2:08:5d:24:50:92:1f:26:6d:18:6f:
c3:a5:f3:e6:f7:fa:39:ae:02:fe:10:5b:3c:08:8d:85:c3:17:
c5:b5:31:22:34:94:c8:b2:af:64:11:53:c2:7e:cc:36:af:f8:
5f:38:20:60:76:7e:88:c1:69:7f:47:48:ba:af:74:47:12:62:
64:38:c8:7b:77:24:43:b0:87:aa:a5:aa:6a:35:2a:2e:ce:90:
2e:c9:56:f6:2c:71:9b:33:e5:09:b2:2d:04:ed:69:6c:c4:49:
60:c7:b2:d3:b4:b5:c5:15:2d:8c:c8:4b:f4:0f:fe:23:9e:ff:
54:09:7a:15:97:d7:0f:d9:cb:10:de:e4:a2:24:6b:e6:46:14:
58:9d:95:ad:4b:16:27:70:2f:3f:12:ff:7b:16:76:0f:7d:51:
d7:9a:12:67:ba:ba:46:19:77:f8:d2:ed:97:97:fa:cc:99:ff:
0e:10:9c:4b:d4:49:d2:1f:ee:86:7b:aa:2c:5b:a0:c0:24:30:
d6:e7:08:39:17:1a:b9:a5:3f:55:f3:fe:82:90:17:22:99:44:
06:9c:cf:5c:02:00:79:5b:ad:c2:4e:a2:47:aa:fa:95:71:06:
f0:01:47:28
-----BEGIN CERTIFICATE-----
MIIFVTCCBD2gAwIBAgIEC+Lo2TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NDhlZWZiNWIyNjQ4MzU2MTcxMWM5OTBmMjBmZjU1MmFjNGUyYzljMB4XDTIyMDEw
MTA4NTYzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTA4M2Q4YzJiMGNh
NmVkODFlZTFmZmQ1ZDk2NWJlZDVlNGU2MTBjMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOGrg82NiXQAjBhIUJ+6tD5vn1nKvxyQtdgmi5+BsjTSbd7u
aGI5IEAJHA4ermZYQFwayiej7OUlz3HQVnGvt0ALSu6+PO0lE8Miofy+ChIfJeHh
13TreeBoHJcdYDssKlMyWfIhnksgbluGGepOu5zgOJjOrFb5tQHL0J1MHJlgv5/z
Gau/eju8Yi5489Y+gV05SMkkjg2/gpDiwPV4wrpO6C1Du0OrxFF9f9uCaJzzXlxs
dj/OLL7QQjiMsp380Lzc/Bejv+oa7Zzp0FMWOrLrbJ+AHpOUA9OpY6DphxKR5W3y
TWxLjzeEMjYe8pXybIAiYE1azGJ/7jYWXLGbIisCAwEAAaOCAm8wggJrMB0GA1Ud
DgQWBBTgg9jCsMpu2B7h/9XZZb7V5OYQwzAfBgNVHSMEGDAWgBQEju+1smSDVhcR
yZDyD/VSrE4snDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JJN3Z0YkprZzFZWEVjbVE4Z18xVXF4T0xKdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjEvNGI2MzU0LWE3YTMtNDM1MS1hN2RlLWFlYWM1ZDljZGM3Yi8x
LzRJUFl3ckRLYnRnZTRmX1YyV1ctMWVUbUVNTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjEv
NGI2MzU0LWE3YTMtNDM1MS1hN2RlLWFlYWM1ZDljZGM3Yi8xL0JJN3Z0YkprZzFZ
WEVjbVE4Z18xVXF4T0xKdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
hAYIKwYBBQUHAQcBAf8EdTBzMGIEAgABMFwDBAcFmAADAwAfkgMEBSVuoAMEByXo
AAMEBU1c4AMEA09j+AMEBVf9IAMEBlw2wAMDAF4rAwQFkv/gAwQHlQMAAwQHsN2A
AwMAsoYDBAW8e4ADAwC8qQMEAtXZEDANBAIAAjAHAwUDKgGcgDANBgkqhkiG9w0B
AQsFAAOCAQEAE8mCpqJoNvewz1NqMk4/jlqmrlD2Lqtz3MIIXSRQkh8mbRhvw6Xz
5vf6Oa4C/hBbPAiNhcMXxbUxIjSUyLKvZBFTwn7MNq/4XzggYHZ+iMFpf0dIuq90
RxJiZDjIe3ckQ7CHqqWqajUqLs6QLslW9ixxmzPlCbItBO1pbMRJYMey07S1xRUt
jMhL9A/+I57/VAl6FZfXD9nLEN7koiRr5kYUWJ2VrUsWJ3AvPxL/exZ2D31R15oS
Z7q6Rhl3+NLtl5f6zJn/DhCcS9RJ0h/uhnuqLFugwCQw1ucIORcauaU/VfP+gpAX
IplEBpzPXAIAeVutwk6iR6r6lXEG8AFHKA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:40 2023 by rpki-client on console-ams.rpki-client.org