Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/97b0bc-f4f8-4f90-8554-1e279f7b6023/1/AvR4Gbmw6vwrUA5KYVSKIQEL1tY.roa
File: AvR4Gbmw6vwrUA5KYVSKIQEL1tY.roa (raw, json)
Hash identifier: wv3f7/0Hy0/a8gM8X3yE9UXcKaI7It0EzNBaGccTbuc=
Subject key identifier: 02:F4:78:19:B9:B0:EA:FC:2B:50:0E:4A:61:54:8A:21:01:0B:D6:D6
Certificate issuer: /CN=e5503498ff185d0c607353f43f55e911f62a6802
Certificate serial: 357DAC32
Authority key identifier: E5:50:34:98:FF:18:5D:0C:60:73:53:F4:3F:55:E9:11:F6:2A:68:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5VA0mP8YXQxgc1P0P1XpEfYqaAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/97b0bc-f4f8-4f90-8554-1e279f7b6023/1/AvR4Gbmw6vwrUA5KYVSKIQEL1tY.roa
Signing time: Wed 02 Mar 2022 12:24:58 +0000
ROA not before: Wed 02 Mar 2022 12:24:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15943
IP address blocks: 149.233.128.0/17 maxlen: 24
84.242.16.0/20 maxlen: 24
185.82.16.0/22 maxlen: 24
213.21.32.0/20 maxlen: 24
149.249.16.0/20 maxlen: 24
185.29.240.0/22 maxlen: 24
216.83.208.0/20 maxlen: 24
192.119.48.0/20 maxlen: 24
192.196.192.0/20 maxlen: 24
185.232.32.0/22 maxlen: 24
185.220.216.0/22 maxlen: 24
95.163.160.0/20 maxlen: 24
185.23.224.0/22 maxlen: 24
185.215.236.0/22 maxlen: 24
81.25.160.0/20 maxlen: 24
149.224.0.0/17 maxlen: 24
149.224.0.0/16 maxlen: 24
46.22.0.0/20 maxlen: 24
95.81.0.0/19 maxlen: 24
149.249.248.0/22 maxlen: 24
193.218.16.0/20 maxlen: 24
213.209.64.0/18 maxlen: 24
195.123.96.0/20 maxlen: 24
134.101.128.0/17 maxlen: 24
188.136.224.0/19 maxlen: 24
149.224.128.0/17 maxlen: 24
31.29.32.0/19 maxlen: 24
84.46.0.0/17 maxlen: 24
46.59.128.0/17 maxlen: 24
31.172.104.0/21 maxlen: 24
2a04:4540::/29 maxlen: 29
2a02:2028::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 897428530 (0x357dac32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5503498ff185d0c607353f43f55e911f62a6802
Validity
Not Before: Mar 2 12:24:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02f47819b9b0eafc2b500e4a61548a21010bd6d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:2e:2d:51:da:b8:83:56:f2:a4:b5:44:ad:f6:
f2:c4:8d:95:69:be:e4:10:2a:b0:39:dd:b0:b9:8e:
4d:02:b8:67:84:79:b2:81:34:a6:56:ad:7a:35:20:
eb:20:73:59:d6:ce:1f:49:e9:5f:21:83:c0:f7:d0:
88:7b:ce:1b:66:a1:04:07:a9:23:09:c6:cf:1c:84:
51:4a:f9:9e:fe:cb:06:08:a4:55:36:fc:f2:37:ea:
6b:af:0d:e1:b7:66:44:8d:83:8d:f7:6b:4f:ec:b9:
3c:10:29:5f:4c:16:ac:a0:73:b1:13:40:bb:32:4c:
66:d5:67:37:33:04:da:e2:d8:47:12:3b:7b:fc:a5:
a5:fc:70:f2:cc:36:c1:28:26:09:7b:4c:41:59:35:
66:c2:9d:3c:b0:fb:e9:97:6a:67:d8:87:8f:06:54:
f4:2c:25:77:05:55:f6:be:cd:a9:42:77:8d:2d:ec:
08:cb:90:42:45:ad:43:3f:ea:84:5e:4a:25:74:f9:
2c:9b:34:e7:a4:dd:4e:3a:b1:b0:0e:2c:78:8b:21:
75:88:93:ab:da:f3:06:f8:f3:13:ea:d9:16:11:df:
56:e6:fc:70:06:ed:96:64:23:82:7f:c4:83:1b:8b:
9b:17:6d:fc:20:08:83:df:56:fc:1c:e0:c7:14:9c:
c5:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:F4:78:19:B9:B0:EA:FC:2B:50:0E:4A:61:54:8A:21:01:0B:D6:D6
X509v3 Authority Key Identifier:
keyid:E5:50:34:98:FF:18:5D:0C:60:73:53:F4:3F:55:E9:11:F6:2A:68:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5VA0mP8YXQxgc1P0P1XpEfYqaAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/97b0bc-f4f8-4f90-8554-1e279f7b6023/1/AvR4Gbmw6vwrUA5KYVSKIQEL1tY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/97b0bc-f4f8-4f90-8554-1e279f7b6023/1/5VA0mP8YXQxgc1P0P1XpEfYqaAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.29.32.0/19
31.172.104.0/21
46.22.0.0/20
46.59.128.0/17
81.25.160.0/20
84.46.0.0/17
84.242.16.0/20
95.81.0.0/19
95.163.160.0/20
134.101.128.0/17
149.224.0.0/16
149.233.128.0/17
149.249.16.0/20
149.249.248.0/22
185.23.224.0/22
185.29.240.0/22
185.82.16.0/22
185.215.236.0/22
185.220.216.0/22
185.232.32.0/22
188.136.224.0/19
192.119.48.0/20
192.196.192.0/20
193.218.16.0/20
195.123.96.0/20
213.21.32.0/20
213.209.64.0/18
216.83.208.0/20
IPv6:
2a02:2028::/32
2a04:4540::/29
Signature Algorithm: sha256WithRSAEncryption
77:04:ff:7a:38:75:a6:a6:09:4e:86:73:14:79:34:fb:c2:e7:
e9:e6:9d:07:a1:79:bd:d2:75:f2:d5:75:11:a9:75:be:1d:66:
1d:74:0d:a3:54:8f:67:94:c8:38:d0:26:1f:10:13:2a:71:d8:
ff:ee:dd:c8:97:49:17:e1:3b:05:a8:49:f2:12:62:85:fe:30:
f9:df:d2:99:b0:7f:58:b2:2f:79:ab:8d:cb:de:d9:8b:16:51:
3c:67:a8:3a:b7:ea:90:4a:ff:a7:77:c7:1a:e3:9d:f8:2f:db:
5c:3c:3e:3c:8a:97:56:d9:c5:c4:13:59:2b:dd:ad:66:63:f3:
82:3d:b4:66:f6:6a:b7:cb:d5:2b:ae:d4:0a:66:80:5a:e7:2b:
0e:2b:a5:13:32:d0:a0:fb:2e:d5:76:2e:0b:73:0d:e8:e0:ea:
c9:d2:47:ba:04:6d:39:a1:c8:69:f4:66:c8:00:65:dc:30:ec:
1a:0c:4e:95:35:8c:91:d8:b2:2f:12:e8:b0:aa:7b:37:2f:0b:
e8:1e:ae:f7:23:27:6d:78:36:af:9a:cf:95:2f:70:9e:91:a8:
dc:a5:95:ce:7f:1e:94:91:66:45:cb:03:ac:66:36:73:cb:76:
ce:aa:97:d5:67:38:ba:fa:56:59:8f:3c:25:88:44:d6:d9:9c:
63:39:db:9a
-----BEGIN CERTIFICATE-----
MIIFqzCCBJOgAwIBAgIENX2sMjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
NTUwMzQ5OGZmMTg1ZDBjNjA3MzUzZjQzZjU1ZTkxMWY2MmE2ODAyMB4XDTIyMDMw
MjEyMjQ1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDJmNDc4MTliOWIw
ZWFmYzJiNTAwZTRhNjE1NDhhMjEwMTBiZDZkNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALAuLVHauINW8qS1RK328sSNlWm+5BAqsDndsLmOTQK4Z4R5
soE0platejUg6yBzWdbOH0npXyGDwPfQiHvOG2ahBAepIwnGzxyEUUr5nv7LBgik
VTb88jfqa68N4bdmRI2DjfdrT+y5PBApX0wWrKBzsRNAuzJMZtVnNzME2uLYRxI7
e/ylpfxw8sw2wSgmCXtMQVk1ZsKdPLD76ZdqZ9iHjwZU9CwldwVV9r7NqUJ3jS3s
CMuQQkWtQz/qhF5KJXT5LJs056TdTjqxsA4seIshdYiTq9rzBvjzE+rZFhHfVub8
cAbtlmQjgn/EgxuLmxdt/CAIg99W/BzgxxScxbUCAwEAAaOCAsUwggLBMB0GA1Ud
DgQWBBQC9HgZubDq/CtQDkphVIohAQvW1jAfBgNVHSMEGDAWgBTlUDSY/xhdDGBz
U/Q/VekR9ipoAjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzVWQTBtUDhZWFF4Z2MxUDBQMVhwRWZZcWFBSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzQvOTdiMGJjLWY0ZjgtNGY5MC04NTU0LTFlMjc5ZjdiNjAyMy8x
L0F2UjRHYm13NnZ3clVBNUtZVlNLSVFFTDF0WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzQv
OTdiMGJjLWY0ZjgtNGY5MC04NTU0LTFlMjc5ZjdiNjAyMy8xLzVWQTBtUDhZWFF4
Z2MxUDBQMVhwRWZZcWFBSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
2gYIKwYBBQUHAQcBAf8Egcowgccwga4EAgABMIGnAwQFHx0gAwQDH6xoAwQELhYA
AwQHLjuAAwQEURmgAwQHVC4AAwQEVPIQAwQFX1EAAwQEX6OgAwQHhmWAAwMAleAD
BAeV6YADBASV+RADBAKV+fgDBAK5F+ADBAK5HfADBAK5UhADBAK51+wDBAK53NgD
BAK56CADBAW8iOADBATAdzADBATAxMADBATB2hADBATDe2ADBATVFSADBAbV0UAD
BATYU9AwFAQCAAIwDgMFACoCICgDBQMqBEVAMA0GCSqGSIb3DQEBCwUAA4IBAQB3
BP96OHWmpglOhnMUeTT7wufp5p0HoXm90nXy1XURqXW+HWYddA2jVI9nlMg40CYf
EBMqcdj/7t3Il0kX4TsFqEnyEmKF/jD539KZsH9Ysi95q43L3tmLFlE8Z6g6t+qQ
Sv+nd8ca4534L9tcPD48ipdW2cXEE1kr3a1mY/OCPbRm9mq3y9UrrtQKZoBa5ysO
K6UTMtCg+y7Vdi4Lcw3o4OrJ0ke6BG05ochp9GbIAGXcMOwaDE6VNYyR2LIvEuiw
qns3LwvoHq73IydteDavms+VL3CekajcpZXOfx6UkWZFywOsZjZzy3bOqpfVZzi6
+lZZjzwliETW2ZxjOdua
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:37 2023 by rpki-client on console-ams.rpki-client.org