Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/3645b2-af2e-4c0d-9812-69eec5b4b505/1/UpDnEzoW_KcNCIDTi3jPHUSnC2k.roa
File: UpDnEzoW_KcNCIDTi3jPHUSnC2k.roa (raw, json)
Hash identifier: AMLIge7VDh79VhYYmNyDNJOeYai9N3ZU3na5Z8ZumE8=
Subject key identifier: 52:90:E7:13:3A:16:FC:A7:0D:08:80:D3:8B:78:CF:1D:44:A7:0B:69
Certificate issuer: /CN=3eecd4caa9a3a57715e3d5d66bccd7185afe40da
Certificate serial: 09E70B2A
Authority key identifier: 3E:EC:D4:CA:A9:A3:A5:77:15:E3:D5:D6:6B:CC:D7:18:5A:FE:40:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PuzUyqmjpXcV49XWa8zXGFr-QNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/3645b2-af2e-4c0d-9812-69eec5b4b505/1/UpDnEzoW_KcNCIDTi3jPHUSnC2k.roa
Signing time: Sat 01 Jan 2022 06:53:26 +0000
ROA not before: Sat 01 Jan 2022 06:53:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12678
IP address blocks: 159.253.176.0/22 maxlen: 22
159.253.180.0/24 maxlen: 24
185.153.128.0/22 maxlen: 23
159.253.181.0/24 maxlen: 24
31.222.64.0/22 maxlen: 23
31.222.70.0/24 maxlen: 24
31.222.70.0/23 maxlen: 23
31.222.71.0/24 maxlen: 24
31.222.66.0/23 maxlen: 24
31.222.68.0/23 maxlen: 23
31.222.72.0/22 maxlen: 23
31.222.78.0/23 maxlen: 24
31.222.76.0/23 maxlen: 23
2a00:aea0:213::/48 maxlen: 48
2a00:aea0:113::/48 maxlen: 48
2a00:aea0:211::/48 maxlen: 48
2a00:aea0:111::/48 maxlen: 48
2a00:aea0:212::/48 maxlen: 48
2a00:aea0:112::/48 maxlen: 48
2a00:aea0:6500::/40 maxlen: 40
2a00:aea0:600::/40 maxlen: 40
2a00:aea0:200::/40 maxlen: 40
2a00:aea0:100::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166136618 (0x9e70b2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eecd4caa9a3a57715e3d5d66bccd7185afe40da
Validity
Not Before: Jan 1 06:53:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5290e7133a16fca70d0880d38b78cf1d44a70b69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:8b:95:81:fa:0b:f7:bf:8a:d3:89:68:b7:a6:
40:20:c6:ca:cf:8d:23:89:ff:7a:2d:2b:02:58:3d:
98:ed:57:70:ab:b8:b2:34:1b:00:83:86:7d:f9:9f:
e3:f5:60:9a:06:58:e7:1e:fa:53:8e:b2:14:88:d0:
96:fb:7b:c8:68:bf:e7:c0:0a:4c:61:66:b2:32:5b:
06:1c:d6:2c:ad:4f:d0:9c:19:01:27:ae:b8:69:27:
6d:1a:f3:9f:29:13:0a:93:bc:74:f5:33:60:44:13:
ea:53:f5:6b:e4:8f:b3:a3:46:40:43:a4:9b:40:06:
12:3f:a4:ec:9a:db:6f:40:17:3e:83:05:0c:37:34:
fe:50:8c:e1:3c:fa:cf:a1:df:82:d1:40:ed:e6:37:
ee:8a:3e:20:85:ca:92:69:dd:5b:5b:94:e8:76:d8:
0e:64:06:f8:ee:5d:29:1e:c9:4e:72:1c:ef:70:20:
b5:a1:0a:97:32:b9:84:81:91:7f:a6:63:db:7d:40:
be:b5:2e:63:61:cb:00:a6:b7:c0:00:28:24:0b:ff:
f8:35:4c:cb:94:05:f5:ff:c6:ca:19:0a:72:43:ff:
f4:2e:39:d9:5f:f1:e3:99:72:bb:eb:19:30:3a:20:
fc:bf:02:b4:16:25:33:cf:39:f3:13:e8:34:2a:55:
5f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:90:E7:13:3A:16:FC:A7:0D:08:80:D3:8B:78:CF:1D:44:A7:0B:69
X509v3 Authority Key Identifier:
keyid:3E:EC:D4:CA:A9:A3:A5:77:15:E3:D5:D6:6B:CC:D7:18:5A:FE:40:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PuzUyqmjpXcV49XWa8zXGFr-QNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/3645b2-af2e-4c0d-9812-69eec5b4b505/1/UpDnEzoW_KcNCIDTi3jPHUSnC2k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/3645b2-af2e-4c0d-9812-69eec5b4b505/1/PuzUyqmjpXcV49XWa8zXGFr-QNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.64.0/20
159.253.176.0-159.253.181.255
185.153.128.0/22
IPv6:
2a00:aea0:100::-2a00:aea0:2ff:ffff:ffff:ffff:ffff:ffff
2a00:aea0:600::/40
2a00:aea0:6500::/40
Signature Algorithm: sha256WithRSAEncryption
73:ef:6f:60:50:73:3e:4a:e7:bc:e7:4c:37:17:6c:a6:a3:d7:
8e:28:17:b4:ba:c3:cb:ce:25:e5:71:ca:69:c6:e7:33:69:17:
6b:6a:0e:c9:a6:7a:80:ef:87:1b:7e:77:04:9d:85:f6:cc:9a:
d9:67:23:c6:4e:fd:e4:a5:92:d6:a3:f2:6c:39:ae:a3:95:70:
c2:72:a5:c1:1d:ec:84:aa:7f:55:19:dc:98:c2:95:1d:f4:bf:
df:1d:05:28:64:23:2b:98:1b:de:23:22:b9:d0:52:a7:c1:19:
59:1b:06:3e:21:77:f4:fb:a4:cf:f1:14:a7:ea:83:b5:df:17:
8d:2f:95:1c:c5:c8:40:cf:a4:95:a8:35:d8:8d:4e:f6:1a:17:
c4:fd:6e:7f:6a:17:e3:a4:c4:23:16:b5:db:86:3e:76:d2:96:
87:54:e1:3d:3c:52:32:ad:30:7d:61:de:7d:30:20:53:76:d1:
c3:a9:00:43:bd:76:97:63:13:45:a7:66:1f:71:05:d1:1d:28:
3f:fd:13:44:4b:bc:ea:15:1a:9c:e8:5e:16:6f:49:7c:f5:e3:
9c:31:b7:27:a0:26:f9:36:8f:b8:73:18:af:cb:e8:c1:e2:78:
86:9d:9a:7b:4d:7b:d6:80:ff:1f:10:b9:c4:67:ec:51:4c:15:
2d:12:aa:49
-----BEGIN CERTIFICATE-----
MIIFLTCCBBWgAwIBAgIECecLKjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
ZWVjZDRjYWE5YTNhNTc3MTVlM2Q1ZDY2YmNjZDcxODVhZmU0MGRhMB4XDTIyMDEw
MTA2NTMyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTI5MGU3MTMzYTE2
ZmNhNzBkMDg4MGQzOGI3OGNmMWQ0NGE3MGI2OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPSLlYH6C/e/itOJaLemQCDGys+NI4n/ei0rAlg9mO1XcKu4
sjQbAIOGffmf4/VgmgZY5x76U46yFIjQlvt7yGi/58AKTGFmsjJbBhzWLK1P0JwZ
ASeuuGknbRrznykTCpO8dPUzYEQT6lP1a+SPs6NGQEOkm0AGEj+k7Jrbb0AXPoMF
DDc0/lCM4Tz6z6HfgtFA7eY37oo+IIXKkmndW1uU6HbYDmQG+O5dKR7JTnIc73Ag
taEKlzK5hIGRf6Zj231AvrUuY2HLAKa3wAAoJAv/+DVMy5QF9f/GyhkKckP/9C45
2V/x45lyu+sZMDog/L8CtBYlM8858xPoNCpVX/UCAwEAAaOCAkcwggJDMB0GA1Ud
DgQWBBRSkOcTOhb8pw0IgNOLeM8dRKcLaTAfBgNVHSMEGDAWgBQ+7NTKqaOldxXj
1dZrzNcYWv5A2jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1B1elV5cW1qcFhjVjQ5WFdhOHpYR0ZyLVFOby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzMvMzY0NWIyLWFmMmUtNGMwZC05ODEyLTY5ZWVjNWI0YjUwNS8x
L1VwRG5Fem9XX0tjTkNJRFRpM2pQSFVTbkMyay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzMv
MzY0NWIyLWFmMmUtNGMwZC05ODEyLTY5ZWVjNWI0YjUwNS8xL1B1elV5cW1qcFhj
VjQ5WFdhOHpYR0ZyLVFOby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBd
BggrBgEFBQcBBwEB/wROMEwwIAQCAAEwGgMEBB/eQDAMAwQEn/2wAwQBn/20AwQC
uZmAMCgEAgACMCIwEAMGACoArqABAwYAKgCuoAIDBgAqAK6gBgMGACoArqBlMA0G
CSqGSIb3DQEBCwUAA4IBAQBz729gUHM+Sue850w3F2ymo9eOKBe0usPLziXlccpp
xuczaRdrag7JpnqA74cbfncEnYX2zJrZZyPGTv3kpZLWo/JsOa6jlXDCcqXBHeyE
qn9VGdyYwpUd9L/fHQUoZCMrmBveIyK50FKnwRlZGwY+IXf0+6TP8RSn6oO13xeN
L5UcxchAz6SVqDXYjU72GhfE/W5/ahfjpMQjFrXbhj520paHVOE9PFIyrTB9Yd59
MCBTdtHDqQBDvXaXYxNFp2YfcQXRHSg//RNES7zqFRqc6F4Wb0l89eOcMbcnoCb5
No+4cxivy+jB4niGnZp7TXvWgP8fELnEZ+xRTBUtEqpJ
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:55 2023 by rpki-client on console-fra.rpki-client.org