Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/1vPvk1CBrITLJ4220gJg1H0K6bY.roa
File: 1vPvk1CBrITLJ4220gJg1H0K6bY.roa (raw, json)
Hash identifier: 5F24nW8bPxt5XTSuFzX05fVopVQrgY3ybp0B0pbM3/k=
Subject key identifier: D6:F3:EF:93:50:81:AC:84:CB:27:8D:B6:D2:02:60:D4:7D:0A:E9:B6
Certificate issuer: /CN=68d24addcc3d5b77a099a907122252a47c8f6310
Certificate serial: 0181D82677C8458118F872AF75DE38FD0D78
Authority key identifier: 68:D2:4A:DD:CC:3D:5B:77:A0:99:A9:07:12:22:52:A4:7C:8F:63:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNJK3cw9W3egmakHEiJSpHyPYxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/1vPvk1CBrITLJ4220gJg1H0K6bY.roa
Signing time: Thu 07 Jul 2022 10:13:28 +0000
ROA not before: Thu 07 Jul 2022 10:13:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12912
IP address blocks: 178.183.0.0/18 maxlen: 18
188.146.0.0/19 maxlen: 19
188.146.0.0/18 maxlen: 18
188.147.192.0/19 maxlen: 19
188.146.0.0/15 maxlen: 15
178.183.32.0/24 maxlen: 24
188.147.96.0/19 maxlen: 19
62.152.128.0/19 maxlen: 19
37.30.32.0/19 maxlen: 19
178.180.0.0/14 maxlen: 14
188.146.128.0/19 maxlen: 19
188.146.32.0/19 maxlen: 19
37.30.0.0/19 maxlen: 19
188.146.64.0/19 maxlen: 19
37.30.0.0/15 maxlen: 15
83.220.96.0/19 maxlen: 19
83.220.101.0/24 maxlen: 24
188.146.192.0/19 maxlen: 19
46.204.0.0/19 maxlen: 19
46.204.0.0/15 maxlen: 15
46.205.192.0/20 maxlen: 20
178.183.224.0/19 maxlen: 19
46.205.208.0/20 maxlen: 20
46.204.32.0/19 maxlen: 19
46.205.128.0/19 maxlen: 19
37.30.96.0/19 maxlen: 19
188.147.64.0/19 maxlen: 19
188.147.64.0/18 maxlen: 18
213.158.192.0/19 maxlen: 19
46.204.64.0/19 maxlen: 19
188.147.0.0/19 maxlen: 19
46.205.240.0/21 maxlen: 21
46.204.96.0/19 maxlen: 19
2001:1b80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d8:26:77:c8:45:81:18:f8:72:af:75:de:38:fd:0d:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d24addcc3d5b77a099a907122252a47c8f6310
Validity
Not Before: Jul 7 10:13:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d6f3ef935081ac84cb278db6d20260d47d0ae9b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:f4:1a:ed:fe:36:f7:5b:b9:85:50:bf:32:53:
bc:b6:b5:51:2c:28:7f:53:d5:33:dd:51:b8:09:62:
63:5f:d8:3d:b9:59:31:1b:8c:55:60:09:05:ee:a4:
27:01:dd:91:6c:12:01:9c:90:d0:1b:4e:9c:8a:5b:
fb:91:11:4b:f1:21:9b:e3:ec:85:5a:1b:ca:1b:b5:
59:97:37:e9:d9:69:46:23:53:8b:cd:31:c1:89:c5:
37:be:ea:40:99:02:53:dd:d7:c1:33:12:5b:52:94:
18:86:77:67:d9:cb:c8:a2:58:28:8a:6c:4f:e1:f8:
bd:36:cb:11:04:ed:4e:f3:60:04:e2:bc:eb:26:4e:
90:8e:44:c8:c4:62:59:cb:19:fc:ae:bc:f6:85:59:
ba:89:f2:11:e2:8d:6b:39:57:5c:3c:d2:9d:8d:98:
45:f5:bb:5f:e8:eb:cb:c3:26:14:58:f3:23:9a:ef:
df:e8:4f:1b:1a:aa:31:93:bd:98:25:69:52:3d:78:
f7:a1:2c:b2:db:df:ef:9e:ff:db:49:fa:91:65:13:
e1:a2:4f:a9:40:cb:ad:54:eb:89:d1:f1:30:01:2e:
1f:c1:da:79:90:8a:6b:e2:4c:98:13:89:b8:6c:ea:
80:4f:fb:ed:4c:62:14:43:fa:bb:bd:7e:5b:f6:42:
f0:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:F3:EF:93:50:81:AC:84:CB:27:8D:B6:D2:02:60:D4:7D:0A:E9:B6
X509v3 Authority Key Identifier:
keyid:68:D2:4A:DD:CC:3D:5B:77:A0:99:A9:07:12:22:52:A4:7C:8F:63:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNJK3cw9W3egmakHEiJSpHyPYxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/1vPvk1CBrITLJ4220gJg1H0K6bY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/aNJK3cw9W3egmakHEiJSpHyPYxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.30.0.0/15
46.204.0.0/15
62.152.128.0/19
83.220.96.0/19
178.180.0.0/14
188.146.0.0/15
213.158.192.0/19
IPv6:
2001:1b80::/29
Signature Algorithm: sha256WithRSAEncryption
46:0f:8e:fa:cc:b6:a3:49:58:75:77:14:f6:80:31:98:94:3e:
a9:c4:af:cd:78:ce:ff:72:67:e1:c1:97:33:71:9c:df:d7:08:
21:33:2e:e8:38:30:47:3e:02:4e:5c:52:ff:b6:41:b6:95:cf:
ef:41:03:70:06:77:eb:92:f2:98:bb:1d:ca:79:da:8a:86:f8:
ea:1c:45:8d:85:5c:83:e1:de:e0:88:83:46:4e:d5:16:46:fb:
c8:5e:c9:79:bb:75:5d:aa:b5:52:81:b3:e0:ce:be:1b:7b:73:
e0:42:2e:5f:a5:20:97:eb:21:ea:bf:0b:ba:70:26:a1:25:23:
93:44:57:94:2d:1b:b5:01:54:d8:8b:42:58:8c:e2:e8:26:2e:
45:83:62:f2:29:d6:ff:d1:51:cf:dd:94:2f:cd:e2:ba:5a:89:
4a:4b:20:07:64:5d:e4:f8:55:4e:5f:48:4e:d9:d9:42:e3:70:
4e:df:f4:15:98:b9:00:87:9b:9f:48:09:08:d3:8a:f2:dc:9b:
d6:ed:ca:76:43:a1:8e:34:30:47:29:18:27:8d:ab:95:4b:4c:
4c:cc:24:5c:e3:fc:96:91:e0:20:0f:6c:a4:b9:00:14:e4:b4:
c5:e3:ff:33:45:8c:d8:ff:c4:e6:ac:c2:5d:b0:52:c3:0a:56:
af:b5:c2:37
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgISAYHYJnfIRYEY+HKvdd44/Q14MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4ZDI0YWRkY2MzZDViNzdhMDk5YTkwNzEyMjI1MmE0N2M4
ZjYzMTAwHhcNMjIwNzA3MTAxMzI4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNmYzZWY5MzUwODFhYzg0Y2IyNzhkYjZkMjAyNjBkNDdkMGFlOWI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlvQa7f4291u5hVC/MlO8trVRLCh/
U9Uz3VG4CWJjX9g9uVkxG4xVYAkF7qQnAd2RbBIBnJDQG06cilv7kRFL8SGb4+yF
WhvKG7VZlzfp2WlGI1OLzTHBicU3vupAmQJT3dfBMxJbUpQYhndn2cvIolgoimxP
4fi9NssRBO1O82AE4rzrJk6QjkTIxGJZyxn8rrz2hVm6ifIR4o1rOVdcPNKdjZhF
9btf6OvLwyYUWPMjmu/f6E8bGqoxk72YJWlSPXj3oSyy29/vnv/bSfqRZRPhok+p
QMutVOuJ0fEwAS4fwdp5kIpr4kyYE4m4bOqAT/vtTGIUQ/q7vX5b9kLwAQIDAQAB
o4ICODCCAjQwHQYDVR0OBBYEFNbz75NQgayEyyeNttICYNR9Cum2MB8GA1UdIwQY
MBaAFGjSSt3MPVt3oJmpBxIiUqR8j2MQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYU5KSzNjdzlXM2VnbWFrSEVpSlNwSHlQWXhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi81MWE2NTUtMjczNS00OWVmLTgwZGYt
YjMxNmRiNTkzOGZmLzEvMXZQdmsxQ0JySVRMSjQyMjBnSmcxSDBLNmJZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi81MWE2NTUtMjczNS00OWVmLTgwZGYtYjMxNmRiNTkzOGZm
LzEvYU5KSzNjdzlXM2VnbWFrSEVpSlNwSHlQWXhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CME4GCCsGAQUFBwEHAQH/BD8wPTAsBAIAATAmAwMBJR4DAwEu
zAMEBT6YgAMEBVPcYAMDArK0AwMBvJIDBAXVnsAwDQQCAAIwBwMFAyABG4AwDQYJ
KoZIhvcNAQELBQADggEBAEYPjvrMtqNJWHV3FPaAMZiUPqnEr814zv9yZ+HBlzNx
nN/XCCEzLug4MEc+Ak5cUv+2QbaVz+9BA3AGd+uS8pi7Hcp52oqG+OocRY2FXIPh
3uCIg0ZO1RZG+8heyXm7dV2qtVKBs+DOvht7c+BCLl+lIJfrIeq/C7pwJqElI5NE
V5QtG7UBVNiLQliM4ugmLkWDYvIp1v/RUc/dlC/N4rpaiUpLIAdkXeT4VU5fSE7Z
2ULjcE7f9BWYuQCHm59ICQjTivLcm9btynZDoY40MEcpGCeNq5VLTEzMJFzj/JaR
4CAPbKS5ABTktMXj/zNFjNj/xOaswl2wUsMKVq+1wjc=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:43 2023 by rpki-client on console-ams.rpki-client.org