Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/4nPE8Hlm4uSeSSYh3YCufi8WRls.roa
File: 4nPE8Hlm4uSeSSYh3YCufi8WRls.roa (raw, json)
Hash identifier: i3ziaOPBCchRQpJIgF5jhIRBmnzy/R/nhtdI1giP7nc=
Subject key identifier: E2:73:C4:F0:79:66:E2:E4:9E:49:26:21:DD:80:AE:7E:2F:16:46:5B
Certificate issuer: /CN=68d24addcc3d5b77a099a907122252a47c8f6310
Certificate serial: 05699AB8
Authority key identifier: 68:D2:4A:DD:CC:3D:5B:77:A0:99:A9:07:12:22:52:A4:7C:8F:63:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNJK3cw9W3egmakHEiJSpHyPYxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/4nPE8Hlm4uSeSSYh3YCufi8WRls.roa
Signing time: Mon 04 Jul 2022 23:19:26 +0000
ROA not before: Mon 04 Jul 2022 23:19:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12912
IP address blocks: 46.204.0.0/19 maxlen: 19
46.204.0.0/15 maxlen: 15
178.183.0.0/18 maxlen: 18
46.205.192.0/20 maxlen: 20
178.183.224.0/19 maxlen: 19
46.205.208.0/20 maxlen: 20
188.147.192.0/19 maxlen: 19
188.146.0.0/15 maxlen: 15
178.183.32.0/24 maxlen: 24
37.30.96.0/19 maxlen: 19
62.152.128.0/19 maxlen: 19
178.180.0.0/14 maxlen: 14
188.146.128.0/19 maxlen: 19
213.158.192.0/19 maxlen: 19
188.147.0.0/19 maxlen: 19
46.205.240.0/21 maxlen: 21
37.30.0.0/19 maxlen: 19
46.204.96.0/19 maxlen: 19
83.220.96.0/19 maxlen: 19
37.30.0.0/15 maxlen: 15
83.220.101.0/24 maxlen: 24
2001:1b80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90806968 (0x5699ab8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d24addcc3d5b77a099a907122252a47c8f6310
Validity
Not Before: Jul 4 23:19:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e273c4f07966e2e49e492621dd80ae7e2f16465b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:dc:fb:91:d3:aa:83:a7:4a:93:87:c5:73:57:
47:c2:54:67:c6:2a:ac:35:5e:9f:3d:fc:03:e9:3e:
53:a5:37:a8:ac:8b:5b:11:76:43:78:12:6b:bc:b9:
0f:d7:be:7e:47:82:18:ae:6c:6e:ef:f5:0e:89:18:
47:18:3c:b2:8b:4e:ed:1c:ca:c5:f6:bb:62:f4:d8:
3b:3d:89:cd:c2:fe:07:cc:04:8e:2e:cb:d9:68:0c:
92:92:c3:fd:12:a9:f4:32:41:40:79:ba:0e:09:3a:
b3:79:a9:c3:10:3d:ee:20:a0:95:5e:3c:bb:ee:d6:
f7:15:de:99:91:6c:59:06:85:2d:cb:50:f8:71:d8:
a8:ab:b4:bb:96:8b:38:bf:d1:75:b2:6c:76:2b:69:
87:1a:9e:16:06:85:cb:91:9f:28:36:5d:53:72:ea:
bc:a9:07:da:16:db:70:e3:0f:ff:09:bb:a4:27:77:
b0:74:31:30:6f:e4:40:f3:b8:f3:eb:3f:4f:a7:24:
9f:aa:79:97:da:f3:a7:f4:af:83:11:9b:f4:df:cb:
2c:ac:28:59:ee:0d:23:2e:b3:45:f4:60:73:27:d2:
20:18:33:f3:f3:3f:5c:93:dd:8c:ec:30:e2:3c:2a:
2a:cb:71:af:4a:7d:84:28:2d:bd:25:e9:0e:f7:bd:
72:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:73:C4:F0:79:66:E2:E4:9E:49:26:21:DD:80:AE:7E:2F:16:46:5B
X509v3 Authority Key Identifier:
keyid:68:D2:4A:DD:CC:3D:5B:77:A0:99:A9:07:12:22:52:A4:7C:8F:63:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNJK3cw9W3egmakHEiJSpHyPYxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/4nPE8Hlm4uSeSSYh3YCufi8WRls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/aNJK3cw9W3egmakHEiJSpHyPYxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.30.0.0/15
46.204.0.0/15
62.152.128.0/19
83.220.96.0/19
178.180.0.0/14
188.146.0.0/15
213.158.192.0/19
IPv6:
2001:1b80::/29
Signature Algorithm: sha256WithRSAEncryption
7a:30:0b:41:00:46:d2:48:e0:f9:c3:8b:8e:6f:34:c8:d3:18:
88:b2:01:e3:a7:dc:71:23:ed:fd:34:78:a2:3e:fe:d2:ad:1b:
b0:95:07:e9:a4:0f:7c:7f:1a:9b:c5:e4:1d:32:c9:18:7f:f6:
03:5b:3d:b3:ef:ad:9e:88:b7:96:a0:49:2d:c8:46:90:4d:40:
6b:6c:70:84:7f:51:c0:56:ad:77:85:16:4c:a4:60:5d:fe:67:
3f:05:82:cf:4a:36:1f:69:51:d4:a2:57:d2:e7:74:4b:87:2e:
ac:67:1b:bb:d4:b0:44:c6:c8:3f:53:56:22:be:54:b7:bc:58:
bb:19:ae:9d:89:d3:ae:73:1d:db:d3:f5:12:dd:e1:b2:9c:67:
7c:35:bf:25:5a:b5:6f:9e:78:14:40:44:7b:0f:2b:de:fa:6d:
54:90:0e:2c:7d:0b:37:33:25:9f:86:af:ce:2f:81:00:1b:7c:
e8:be:e1:1f:46:73:7e:6c:a5:c1:0d:39:92:c4:4f:59:86:52:
b6:d9:a7:e5:fa:8b:87:1f:e9:1c:d2:4b:0c:22:f8:e4:a5:c4:
77:88:60:dc:a8:38:0f:8b:b9:00:c1:53:2e:14:34:9a:87:e3:
fd:cc:16:97:5f:90:ad:5e:0a:10:cd:81:4d:43:69:e6:cd:70:
59:c0:5b:39
-----BEGIN CERTIFICATE-----
MIIFHjCCBAagAwIBAgIEBWmauDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
OGQyNGFkZGNjM2Q1Yjc3YTA5OWE5MDcxMjIyNTJhNDdjOGY2MzEwMB4XDTIyMDcw
NDIzMTkyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTI3M2M0ZjA3OTY2
ZTJlNDllNDkyNjIxZGQ4MGFlN2UyZjE2NDY1YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKHc+5HTqoOnSpOHxXNXR8JUZ8YqrDVenz38A+k+U6U3qKyL
WxF2Q3gSa7y5D9e+fkeCGK5sbu/1DokYRxg8sotO7RzKxfa7YvTYOz2JzcL+B8wE
ji7L2WgMkpLD/RKp9DJBQHm6Dgk6s3mpwxA97iCglV48u+7W9xXemZFsWQaFLctQ
+HHYqKu0u5aLOL/RdbJsditphxqeFgaFy5GfKDZdU3LqvKkH2hbbcOMP/wm7pCd3
sHQxMG/kQPO48+s/T6ckn6p5l9rzp/SvgxGb9N/LLKwoWe4NIy6zRfRgcyfSIBgz
8/M/XJPdjOww4jwqKstxr0p9hCgtvSXpDve9ckECAwEAAaOCAjgwggI0MB0GA1Ud
DgQWBBTic8TweWbi5J5JJiHdgK5+LxZGWzAfBgNVHSMEGDAWgBRo0krdzD1bd6CZ
qQcSIlKkfI9jEDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2FOSkszY3c5VzNlZ21ha0hFaUpTcEh5UFl4QS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjIvNTFhNjU1LTI3MzUtNDllZi04MGRmLWIzMTZkYjU5MzhmZi8x
LzRuUEU4SGxtNHVTZVNTWWgzWUN1Zmk4V1Jscy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjIv
NTFhNjU1LTI3MzUtNDllZi04MGRmLWIzMTZkYjU5MzhmZi8xL2FOSkszY3c5VzNl
Z21ha0hFaUpTcEh5UFl4QS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBO
BggrBgEFBQcBBwEB/wQ/MD0wLAQCAAEwJgMDASUeAwMBLswDBAU+mIADBAVT3GAD
AwKytAMDAbySAwQF1Z7AMA0EAgACMAcDBQMgARuAMA0GCSqGSIb3DQEBCwUAA4IB
AQB6MAtBAEbSSOD5w4uObzTI0xiIsgHjp9xxI+39NHiiPv7SrRuwlQfppA98fxqb
xeQdMskYf/YDWz2z762eiLeWoEktyEaQTUBrbHCEf1HAVq13hRZMpGBd/mc/BYLP
SjYfaVHUolfS53RLhy6sZxu71LBExsg/U1YivlS3vFi7Ga6didOucx3b0/US3eGy
nGd8Nb8lWrVvnngUQER7Dyve+m1UkA4sfQs3MyWfhq/OL4EAG3zovuEfRnN+bKXB
DTmSxE9ZhlK22afl+ouHH+kc0ksMIvjkpcR3iGDcqDgPi7kAwVMuFDSah+P9zBaX
X5CtXgoQzYFNQ2nmzXBZwFs5
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:01 2023 by rpki-client on console-fra.rpki-client.org