Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/3645b2-af2e-4c0d-9812-69eec5b4b505/1/Wx_31Idrmkd3QUpMjF3LCpHFg3w.roa
File: Wx_31Idrmkd3QUpMjF3LCpHFg3w.roa (raw, json)
Hash identifier: Yj+vydAdSwMPTlbxEWkWl11OF5fRcVtWBqMj9AubQsw=
Subject key identifier: 5B:1F:F7:D4:87:6B:9A:47:77:41:4A:4C:8C:5D:CB:0A:91:C5:83:7C
Certificate issuer: /CN=3eecd4caa9a3a57715e3d5d66bccd7185afe40da
Certificate serial: 0183A94BFF2DD280984F271E7CFA808355A0
Authority key identifier: 3E:EC:D4:CA:A9:A3:A5:77:15:E3:D5:D6:6B:CC:D7:18:5A:FE:40:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PuzUyqmjpXcV49XWa8zXGFr-QNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/3645b2-af2e-4c0d-9812-69eec5b4b505/1/Wx_31Idrmkd3QUpMjF3LCpHFg3w.roa
Signing time: Wed 05 Oct 2022 17:57:53 +0000
ROA not before: Wed 05 Oct 2022 17:57:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12678
IP address blocks: 159.253.176.0/22 maxlen: 22
159.253.180.0/24 maxlen: 24
185.153.128.0/22 maxlen: 23
159.253.181.0/24 maxlen: 24
31.222.64.0/22 maxlen: 23
31.222.70.0/24 maxlen: 24
31.222.70.0/23 maxlen: 23
31.222.71.0/24 maxlen: 24
31.222.66.0/23 maxlen: 24
31.222.68.0/23 maxlen: 23
31.222.72.0/22 maxlen: 24
31.222.78.0/23 maxlen: 24
31.222.76.0/23 maxlen: 23
2a00:aea0:113::/48 maxlen: 48
2a00:aea0:213::/48 maxlen: 48
2a00:aea0:111::/48 maxlen: 48
2a00:aea0:211::/48 maxlen: 48
2a00:aea0:112::/48 maxlen: 48
2a00:aea0:212::/48 maxlen: 48
2a00:aea0:100::/40 maxlen: 40
2a00:aea0:200::/40 maxlen: 40
2a00:aea0:600::/40 maxlen: 40
2a00:aea0:6500::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a9:4b:ff:2d:d2:80:98:4f:27:1e:7c:fa:80:83:55:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eecd4caa9a3a57715e3d5d66bccd7185afe40da
Validity
Not Before: Oct 5 17:57:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b1ff7d4876b9a4777414a4c8c5dcb0a91c5837c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9f:20:d4:d4:1d:4b:e0:40:94:1c:50:0d:35:
b9:88:bb:b1:2b:c5:1a:69:46:45:60:d0:94:fa:72:
14:71:6d:84:62:18:c4:8a:18:09:a9:35:8f:6a:e0:
d8:9d:92:dc:b9:cc:8e:6c:95:20:ff:86:7e:1f:4d:
80:cf:c7:3f:63:01:c0:6d:b3:67:ce:9e:24:41:8a:
59:d1:50:bd:46:e8:70:7e:93:12:dc:be:38:dc:91:
fd:19:ba:2a:18:19:6e:f3:dd:40:8e:da:97:d9:59:
f8:84:d8:ed:43:37:53:97:f8:5f:ec:3e:fd:1a:c7:
b2:ef:56:37:b9:7b:03:be:eb:bc:bf:9d:a5:f6:88:
6a:d4:9c:ad:3a:d7:9a:34:bd:d9:52:ce:4d:28:a0:
dd:2d:a8:41:ed:6b:98:45:74:86:96:62:51:6a:2d:
b6:29:c5:03:61:90:44:fb:27:1c:d7:5d:52:29:37:
fb:e5:29:20:f5:28:ca:21:62:46:1b:4f:8c:7f:f9:
b1:e6:cb:25:87:de:ee:e9:aa:cf:3f:98:82:16:48:
e6:7c:34:bb:80:fd:a2:01:e1:15:5c:81:84:12:82:
c8:f6:9e:95:e5:5e:5d:67:d7:04:5f:dc:b9:e3:60:
06:8d:03:b8:90:cf:fa:fd:c8:8f:8c:cb:b6:06:94:
1f:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:1F:F7:D4:87:6B:9A:47:77:41:4A:4C:8C:5D:CB:0A:91:C5:83:7C
X509v3 Authority Key Identifier:
keyid:3E:EC:D4:CA:A9:A3:A5:77:15:E3:D5:D6:6B:CC:D7:18:5A:FE:40:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PuzUyqmjpXcV49XWa8zXGFr-QNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/3645b2-af2e-4c0d-9812-69eec5b4b505/1/Wx_31Idrmkd3QUpMjF3LCpHFg3w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/3645b2-af2e-4c0d-9812-69eec5b4b505/1/PuzUyqmjpXcV49XWa8zXGFr-QNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.64.0/20
159.253.176.0-159.253.181.255
185.153.128.0/22
IPv6:
2a00:aea0:100::-2a00:aea0:2ff:ffff:ffff:ffff:ffff:ffff
2a00:aea0:600::/40
2a00:aea0:6500::/40
Signature Algorithm: sha256WithRSAEncryption
9c:f0:5e:b3:4d:28:0a:64:46:0e:d8:ef:92:75:59:bd:3e:22:
5a:bc:63:64:62:79:be:cc:1d:ac:98:e0:30:4e:b6:e5:39:81:
95:db:44:ff:90:6f:51:53:a1:50:df:c3:cb:c9:58:59:88:fd:
3b:ad:f7:e5:ed:05:de:6b:0c:1b:6f:3d:7f:8f:b0:24:6e:36:
dd:e8:c9:82:31:af:4a:53:6d:51:ac:3b:3d:94:33:d3:28:9c:
0d:7d:61:70:7c:ba:25:55:c9:89:7e:de:12:b0:7c:80:b8:58:
0e:e6:86:d0:bf:36:91:d3:85:eb:8f:7c:23:b3:7e:74:0d:44:
1e:08:8d:c6:eb:be:ec:82:cf:04:4b:38:a5:fa:d1:23:c6:00:
9d:97:a8:c3:e5:e4:46:0e:6d:f7:09:b1:75:57:74:36:48:38:
a9:44:26:2a:a5:93:67:70:40:f0:f2:c4:d6:bc:65:f9:90:96:
53:bc:40:f2:f6:f4:db:cd:94:a7:b7:dc:57:a5:aa:b7:87:1c:
72:25:3a:1d:e8:38:d4:22:60:50:34:45:e4:e0:64:7d:93:4f:
68:19:c5:88:40:a9:21:c8:ef:52:73:ec:10:a3:37:6a:0b:84:
af:06:cb:46:74:93:19:cb:51:c1:ef:f9:0a:5c:9c:8d:04:d5:
ee:e0:0c:ee
-----BEGIN CERTIFICATE-----
MIIFOzCCBCOgAwIBAgISAYOpS/8t0oCYTycefPqAg1WgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlZWNkNGNhYTlhM2E1NzcxNWUzZDVkNjZiY2NkNzE4NWFm
ZTQwZGEwHhcNMjIxMDA1MTc1NzUzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YjFmZjdkNDg3NmI5YTQ3Nzc0MTRhNGM4YzVkY2IwYTkxYzU4MzdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApp8g1NQdS+BAlBxQDTW5iLuxK8Ua
aUZFYNCU+nIUcW2EYhjEihgJqTWPauDYnZLcucyObJUg/4Z+H02Az8c/YwHAbbNn
zp4kQYpZ0VC9RuhwfpMS3L443JH9GboqGBlu891AjtqX2Vn4hNjtQzdTl/hf7D79
Gsey71Y3uXsDvuu8v52l9ohq1JytOteaNL3ZUs5NKKDdLahB7WuYRXSGlmJRai22
KcUDYZBE+ycc111SKTf75Skg9SjKIWJGG0+Mf/mx5sslh97u6arPP5iCFkjmfDS7
gP2iAeEVXIGEEoLI9p6V5V5dZ9cEX9y542AGjQO4kM/6/ciPjMu2BpQfgQIDAQAB
o4ICRzCCAkMwHQYDVR0OBBYEFFsf99SHa5pHd0FKTIxdywqRxYN8MB8GA1UdIwQY
MBaAFD7s1Mqpo6V3FePV1mvM1xha/kDaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUHV6VXlxbWpwWGNWNDlYV2E4elhHRnItUU5vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My8zNjQ1YjItYWYyZS00YzBkLTk4MTIt
NjllZWM1YjRiNTA1LzEvV3hfMzFJZHJta2QzUVVwTWpGM0xDcEhGZzN3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83My8zNjQ1YjItYWYyZS00YzBkLTk4MTItNjllZWM1YjRiNTA1
LzEvUHV6VXlxbWpwWGNWNDlYV2E4elhHRnItUU5vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMF0GCCsGAQUFBwEHAQH/BE4wTDAgBAIAATAaAwQEH95AMAwD
BASf/bADBAGf/bQDBAK5mYAwKAQCAAIwIjAQAwYAKgCuoAEDBgAqAK6gAgMGACoA
rqAGAwYAKgCuoGUwDQYJKoZIhvcNAQELBQADggEBAJzwXrNNKApkRg7Y75J1Wb0+
Ilq8Y2Rieb7MHayY4DBOtuU5gZXbRP+Qb1FToVDfw8vJWFmI/Tut9+XtBd5rDBtv
PX+PsCRuNt3oyYIxr0pTbVGsOz2UM9MonA19YXB8uiVVyYl+3hKwfIC4WA7mhtC/
NpHTheuPfCOzfnQNRB4IjcbrvuyCzwRLOKX60SPGAJ2XqMPl5EYObfcJsXVXdDZI
OKlEJiqlk2dwQPDyxNa8ZfmQllO8QPL29NvNlKe33FelqreHHHIlOh3oONQiYFA0
ReTgZH2TT2gZxYhAqSHI71Jz7BCjN2oLhK8Gy0Z0kxnLUcHv+QpcnI0E1e7gDO4=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:55 2023 by rpki-client on console-fra.rpki-client.org