Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/cf9c10-c85c-4bbf-a25d-8060c503d86e/1/8041sW--Y3MEYXdADanLPiEBqpU.roa
File: 8041sW--Y3MEYXdADanLPiEBqpU.roa (raw, json)
Hash identifier: w7IUWhcPtAp1bsNpSbW0BjC1v+FqNaEIxwTWDvhGjQ8=
Subject key identifier: F3:4E:35:B1:6F:BE:63:73:04:61:77:40:0D:A9:CB:3E:21:01:AA:95
Certificate issuer: /CN=fe2e22cc15859ed4a0784bfd08584b3c8fb29f9a
Certificate serial: 0181D897065BEECEBDD6C65C5CAF2CCB63F0
Authority key identifier: FE:2E:22:CC:15:85:9E:D4:A0:78:4B:FD:08:58:4B:3C:8F:B2:9F:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_i4izBWFntSgeEv9CFhLPI-yn5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/cf9c10-c85c-4bbf-a25d-8060c503d86e/1/8041sW--Y3MEYXdADanLPiEBqpU.roa
Signing time: Thu 07 Jul 2022 12:16:25 +0000
ROA not before: Thu 07 Jul 2022 12:16:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1547
IP address blocks: 37.26.128.0/20 maxlen: 20
95.153.64.0/19 maxlen: 19
185.10.20.0/22 maxlen: 22
77.235.96.0/20 maxlen: 20
217.19.211.0/24 maxlen: 24
217.19.212.0/24 maxlen: 24
217.19.209.0/24 maxlen: 24
217.19.210.0/24 maxlen: 24
217.19.208.0/24 maxlen: 24
217.19.213.0/24 maxlen: 24
217.19.219.0/24 maxlen: 24
217.19.218.0/24 maxlen: 24
217.19.216.0/24 maxlen: 24
217.19.217.0/24 maxlen: 24
217.19.214.0/24 maxlen: 24
217.19.215.0/24 maxlen: 24
217.19.223.0/24 maxlen: 24
77.235.112.0/20 maxlen: 20
217.19.221.0/24 maxlen: 24
217.19.222.0/24 maxlen: 24
217.19.220.0/24 maxlen: 24
95.153.96.0/19 maxlen: 19
80.94.246.0/24 maxlen: 24
80.94.244.0/24 maxlen: 24
80.94.245.0/24 maxlen: 24
80.94.243.0/24 maxlen: 24
80.94.241.0/24 maxlen: 24
80.94.242.0/24 maxlen: 24
80.94.247.0/24 maxlen: 24
80.94.253.0/24 maxlen: 24
80.94.251.0/24 maxlen: 24
80.94.252.0/24 maxlen: 24
80.94.249.0/24 maxlen: 24
80.94.250.0/24 maxlen: 24
80.94.248.0/24 maxlen: 24
80.94.255.0/24 maxlen: 24
31.31.0.0/19 maxlen: 19
80.94.254.0/24 maxlen: 24
62.221.96.0/19 maxlen: 19
80.94.240.0/24 maxlen: 24
62.221.64.0/19 maxlen: 19
2a03:f680::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d8:97:06:5b:ee:ce:bd:d6:c6:5c:5c:af:2c:cb:63:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe2e22cc15859ed4a0784bfd08584b3c8fb29f9a
Validity
Not Before: Jul 7 12:16:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f34e35b16fbe6373046177400da9cb3e2101aa95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:1d:f7:87:48:b8:7f:9e:a3:ed:a5:c3:a5:5e:
e2:3a:fb:0a:a3:29:cc:85:3a:35:5c:24:50:76:8e:
7c:7b:d4:fe:6c:5f:b8:43:12:f0:19:49:23:03:c4:
2d:c5:cc:5d:cf:da:91:e9:51:1e:17:c4:e4:3e:a8:
17:f8:d4:40:ff:1b:5b:c7:46:73:89:2f:f2:e9:2a:
21:52:86:3e:a2:8a:e0:2a:a8:f2:d4:8b:55:67:f9:
b7:c0:4d:68:3f:d5:7c:1e:74:95:44:2d:c2:57:91:
f1:c9:56:bd:1a:ed:a2:65:95:e6:aa:a4:3e:30:19:
7a:98:ab:14:65:11:35:5f:82:08:e3:2d:e9:0b:08:
60:58:a8:79:57:e1:f4:bf:a1:82:0f:10:52:3a:63:
bc:07:3c:c9:df:c2:91:89:0c:e3:d5:a7:2d:b6:d0:
15:43:83:8b:63:e8:22:66:57:73:cd:4b:db:0e:45:
b0:c9:bc:a5:71:c3:a5:75:2a:79:1a:5f:fd:56:0e:
59:cc:b1:15:f6:84:c6:89:03:c6:e7:44:b3:76:79:
06:6d:59:c4:47:2b:33:c4:f5:0c:39:94:6c:57:f0:
79:58:17:16:e0:ac:53:4e:95:17:7f:08:96:75:23:
1d:00:56:2f:3a:31:8b:5b:73:7a:d2:f4:64:17:39:
99:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:4E:35:B1:6F:BE:63:73:04:61:77:40:0D:A9:CB:3E:21:01:AA:95
X509v3 Authority Key Identifier:
keyid:FE:2E:22:CC:15:85:9E:D4:A0:78:4B:FD:08:58:4B:3C:8F:B2:9F:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_i4izBWFntSgeEv9CFhLPI-yn5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/cf9c10-c85c-4bbf-a25d-8060c503d86e/1/8041sW--Y3MEYXdADanLPiEBqpU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/cf9c10-c85c-4bbf-a25d-8060c503d86e/1/_i4izBWFntSgeEv9CFhLPI-yn5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.31.0.0/19
37.26.128.0/20
62.221.64.0/18
77.235.96.0/19
80.94.240.0/20
95.153.64.0/18
185.10.20.0/22
217.19.208.0/20
IPv6:
2a03:f680::/32
Signature Algorithm: sha256WithRSAEncryption
1c:22:44:8f:7a:53:a8:2a:ff:10:68:6b:45:84:d6:90:4f:e4:
5d:ad:90:99:16:31:b9:0a:fe:2d:27:01:32:b6:1e:c7:ad:55:
f3:a7:79:35:46:6f:29:b2:80:8e:3f:47:42:1c:3c:db:91:eb:
a9:fe:32:65:cb:06:e1:40:60:f5:a6:d2:f4:f4:8d:b6:e7:5c:
bf:95:07:fa:06:68:2d:74:77:33:65:13:24:3f:1b:7b:4b:5e:
4a:eb:59:79:e6:61:22:d1:05:2e:ca:f1:1e:57:03:dc:c3:39:
bb:e1:0e:7a:c3:83:47:80:99:b1:97:bd:74:d8:ca:f9:6e:4d:
fb:c2:bd:ae:d7:5d:e6:17:d9:ee:fe:a2:5d:fd:0f:ea:b9:02:
0e:ad:5f:19:1f:bf:70:cd:78:6c:e3:66:6e:c7:6f:e7:53:36:
e2:3c:cd:b5:c8:c8:f9:4a:58:b4:2b:17:0c:e0:5b:48:48:32:
66:97:e0:45:f5:92:66:11:fc:83:4c:68:c8:f8:03:26:8d:86:
32:03:4c:aa:ff:d2:51:d7:47:35:dd:d1:74:8b:50:a6:10:23:
62:b5:73:63:f3:1f:d9:2f:75:86:d6:5b:43:c9:54:69:13:b5:
a0:8d:03:32:d4:06:d4:2e:f7:42:f1:12:6e:14:6e:4c:e7:ff:
c2:db:96:58
-----BEGIN CERTIFICATE-----
MIIFNjCCBB6gAwIBAgISAYHYlwZb7s691sZcXK8sy2PwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZlMmUyMmNjMTU4NTllZDRhMDc4NGJmZDA4NTg0YjNjOGZi
MjlmOWEwHhcNMjIwNzA3MTIxNjI1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMzRlMzViMTZmYmU2MzczMDQ2MTc3NDAwZGE5Y2IzZTIxMDFhYTk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjR33h0i4f56j7aXDpV7iOvsKoynM
hTo1XCRQdo58e9T+bF+4QxLwGUkjA8Qtxcxdz9qR6VEeF8TkPqgX+NRA/xtbx0Zz
iS/y6SohUoY+oorgKqjy1ItVZ/m3wE1oP9V8HnSVRC3CV5HxyVa9Gu2iZZXmqqQ+
MBl6mKsUZRE1X4II4y3pCwhgWKh5V+H0v6GCDxBSOmO8BzzJ38KRiQzj1actttAV
Q4OLY+giZldzzUvbDkWwybylccOldSp5Gl/9Vg5ZzLEV9oTGiQPG50SzdnkGbVnE
RyszxPUMOZRsV/B5WBcW4KxTTpUXfwiWdSMdAFYvOjGLW3N60vRkFzmZHwIDAQAB
o4ICQjCCAj4wHQYDVR0OBBYEFPNONbFvvmNzBGF3QA2pyz4hAaqVMB8GA1UdIwQY
MBaAFP4uIswVhZ7UoHhL/QhYSzyPsp+aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX2k0aXpCV0ZudFNnZUV2OUNGaExQSS15bjVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC9jZjljMTAtYzg1Yy00YmJmLWEyNWQt
ODA2MGM1MDNkODZlLzEvODA0MXNXLS1ZM01FWVhkQURhbkxQaUVCcXBVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC9jZjljMTAtYzg1Yy00YmJmLWEyNWQtODA2MGM1MDNkODZl
LzEvX2k0aXpCV0ZudFNnZUV2OUNGaExQSS15bjVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFgGCCsGAQUFBwEHAQH/BEkwRzA2BAIAATAwAwQFHx8AAwQE
JRqAAwQGPt1AAwQFTetgAwQEUF7wAwQGX5lAAwQCuQoUAwQE2RPQMA0EAgACMAcD
BQAqA/aAMA0GCSqGSIb3DQEBCwUAA4IBAQAcIkSPelOoKv8QaGtFhNaQT+RdrZCZ
FjG5Cv4tJwEyth7HrVXzp3k1Rm8psoCOP0dCHDzbkeup/jJlywbhQGD1ptL09I22
51y/lQf6BmgtdHczZRMkPxt7S15K61l55mEi0QUuyvEeVwPcwzm74Q56w4NHgJmx
l7102Mr5bk37wr2u113mF9nu/qJd/Q/quQIOrV8ZH79wzXhs42Zux2/nUzbiPM21
yMj5Sli0KxcM4FtISDJml+BF9ZJmEfyDTGjI+AMmjYYyA0yq/9JR10c13dF0i1Cm
ECNitXNj8x/ZL3WG1ltDyVRpE7WgjQMy1AbULvdC8RJuFG5M5//C25ZY
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:48 2023 by rpki-client on console-ams.rpki-client.org