Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/41UGrujqy_NHnZucVWDFsYrrnLc.roa
File: 41UGrujqy_NHnZucVWDFsYrrnLc.roa (raw, json)
Hash identifier: xkn8uzpyEL7YWAKzt3g5lrihtYiGG7Blb+TGr4NjDLU=
Subject key identifier: E3:55:06:AE:E8:EA:CB:F3:47:9D:9B:9C:55:60:C5:B1:8A:EB:9C:B7
Certificate issuer: /CN=e4a9308742e7eb66506219d829d86185899a1e34
Certificate serial: 018277E17F6DC477BF98BD035CD38358575B
Authority key identifier: E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/41UGrujqy_NHnZucVWDFsYrrnLc.roa
Signing time: Sun 07 Aug 2022 10:37:23 +0000
ROA not before: Sun 07 Aug 2022 10:37:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211559
IP address blocks: 31.11.48.0/21 maxlen: 21
80.76.166.0/24 maxlen: 24
80.76.165.0/24 maxlen: 24
80.76.168.0/23 maxlen: 23
80.76.167.0/24 maxlen: 24
80.76.166.0/23 maxlen: 23
37.186.60.0/22 maxlen: 22
37.186.60.0/24 maxlen: 24
212.70.104.0/24 maxlen: 24
212.70.105.0/24 maxlen: 24
212.70.101.0/24 maxlen: 24
212.70.100.0/24 maxlen: 24
212.70.103.0/24 maxlen: 24
212.70.102.0/24 maxlen: 24
103.14.208.0/22 maxlen: 22
212.70.123.0/24 maxlen: 24
212.70.120.0/24 maxlen: 24
212.70.124.0/24 maxlen: 24
185.247.88.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:77:e1:7f:6d:c4:77:bf:98:bd:03:5c:d3:83:58:57:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9308742e7eb66506219d829d86185899a1e34
Validity
Not Before: Aug 7 10:37:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e35506aee8eacbf3479d9b9c5560c5b18aeb9cb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:38:1a:71:e2:1f:16:f7:6c:33:87:8d:da:db:
49:d6:c8:79:d5:80:bd:2b:b9:2b:35:bf:e3:2e:b0:
ea:2a:f5:e3:24:0d:68:3f:54:1e:ea:f6:6a:2a:f9:
b2:c8:70:fe:f9:33:ed:32:78:d8:36:89:c7:71:dd:
5b:05:66:41:2b:a7:cd:4b:1f:84:46:8e:13:cd:44:
d8:8c:a0:3e:a8:d8:93:cd:21:11:ae:ea:98:74:ec:
53:3a:fe:cf:a3:73:94:b2:ba:ca:54:24:9f:c7:62:
34:46:e8:bf:d7:32:4d:7c:87:52:28:b6:02:53:e2:
7b:c8:87:7f:ab:cc:2f:08:6b:9e:eb:66:44:d2:36:
ca:d8:24:19:bb:5a:b1:d9:24:92:64:64:60:48:29:
50:44:9b:d5:b6:6e:28:3b:a0:df:53:ef:4b:82:8a:
42:49:43:8a:3e:9e:d2:ac:5e:bd:29:07:8f:cf:3d:
fe:4e:d1:c4:a7:17:4c:10:0d:b2:08:ef:cf:bc:b1:
e6:5a:4b:8b:c7:24:ca:48:71:5b:f5:5d:9f:b0:21:
f3:0d:66:c8:56:6e:18:73:6d:72:58:eb:5e:de:e5:
6a:4c:27:e6:83:c5:6c:62:06:32:ff:2f:5c:5b:c3:
4a:c7:33:a4:f6:a2:2d:9e:95:48:0a:f4:7e:97:d9:
df:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:55:06:AE:E8:EA:CB:F3:47:9D:9B:9C:55:60:C5:B1:8A:EB:9C:B7
X509v3 Authority Key Identifier:
keyid:E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/41UGrujqy_NHnZucVWDFsYrrnLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.48.0/21
37.186.60.0/22
80.76.165.0-80.76.169.255
103.14.208.0/22
185.247.88.0/22
212.70.100.0-212.70.105.255
212.70.120.0/24
212.70.123.0-212.70.124.255
Signature Algorithm: sha256WithRSAEncryption
43:0e:26:0d:b7:86:30:c0:c7:1b:5d:86:24:ed:07:aa:3a:41:
97:36:76:fa:4e:f1:d9:a2:d8:8f:3c:20:b6:97:3e:fe:6f:8f:
dc:a3:c5:30:5c:a2:cb:3e:d0:21:2e:a4:69:76:db:14:9d:fb:
f6:d2:44:42:e2:9d:ce:c9:29:ce:ea:cd:47:41:00:b6:7a:83:
4d:64:ca:e4:a5:67:bc:1b:ac:83:38:36:a6:7b:5b:00:59:08:
e0:23:a6:d3:17:60:7d:2e:46:f6:06:34:ad:90:3e:83:fe:a2:
3f:fa:45:17:94:7d:cf:2c:72:ad:c3:b3:eb:32:74:bd:1f:fa:
a7:dd:7a:9f:f3:8a:0e:f2:f2:40:e6:2a:e4:9f:cb:7f:fb:db:
f5:71:b3:1f:1c:66:1b:3b:52:b0:5e:7a:1a:05:d1:fb:3a:89:
e9:16:a1:d8:6e:26:41:9a:20:ee:55:c9:24:b8:83:f6:02:e8:
92:80:a2:76:54:b6:75:d3:da:93:ad:45:d8:4a:6f:34:71:da:
53:c7:11:40:eb:cb:36:da:9b:2a:51:e2:50:83:af:9e:7c:a3:
1e:a2:e1:83:8b:6a:36:b9:d5:26:78:fd:55:01:0e:0c:a7:49:
a6:6e:34:89:40:17:b6:b0:6f:4c:f8:c5:81:0f:cb:bd:e7:bf:
ce:f9:0f:2e
-----BEGIN CERTIFICATE-----
MIIFPzCCBCegAwIBAgISAYJ34X9txHe/mL0DXNODWFdbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0YTkzMDg3NDJlN2ViNjY1MDYyMTlkODI5ZDg2MTg1ODk5
YTFlMzQwHhcNMjIwODA3MTAzNzIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMzU1MDZhZWU4ZWFjYmYzNDc5ZDliOWM1NTYwYzViMThhZWI5Y2I3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5TgaceIfFvdsM4eN2ttJ1sh51YC9
K7krNb/jLrDqKvXjJA1oP1Qe6vZqKvmyyHD++TPtMnjYNonHcd1bBWZBK6fNSx+E
Ro4TzUTYjKA+qNiTzSERruqYdOxTOv7Po3OUsrrKVCSfx2I0Rui/1zJNfIdSKLYC
U+J7yId/q8wvCGue62ZE0jbK2CQZu1qx2SSSZGRgSClQRJvVtm4oO6DfU+9LgopC
SUOKPp7SrF69KQePzz3+TtHEpxdMEA2yCO/PvLHmWkuLxyTKSHFb9V2fsCHzDWbI
Vm4Yc21yWOte3uVqTCfmg8VsYgYy/y9cW8NKxzOk9qItnpVICvR+l9nfYwIDAQAB
o4ICSzCCAkcwHQYDVR0OBBYEFONVBq7o6svzR52bnFVgxbGK65y3MB8GA1UdIwQY
MBaAFOSpMIdC5+tmUGIZ2CnYYYWJmh40MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUtrd2gwTG42MlpRWWhuWUtkaGhoWW1hSGpRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy8xYzlkYmItMDUyYy00ZWVhLWFkZTYt
ZWM1Yjg4ZDAxMzhhLzEvNDFVR3J1anF5X05Iblp1Y1ZXREZzWXJybkxjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy8xYzlkYmItMDUyYy00ZWVhLWFkZTYtZWM1Yjg4ZDAxMzhh
LzEvNUtrd2gwTG42MlpRWWhuWUtkaGhoWW1hSGpRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGEGCCsGAQUFBwEHAQH/BFIwUDBOBAIAATBIAwQDHwswAwQC
Jbo8MAwDBABQTKUDBAFQTKgDBAJnDtADBAK591gwDAMEAtRGZAMEAdRGaAMEANRG
eDAMAwQA1EZ7AwQA1EZ8MA0GCSqGSIb3DQEBCwUAA4IBAQBDDiYNt4YwwMcbXYYk
7QeqOkGXNnb6TvHZotiPPCC2lz7+b4/co8UwXKLLPtAhLqRpdtsUnfv20kRC4p3O
ySnO6s1HQQC2eoNNZMrkpWe8G6yDODame1sAWQjgI6bTF2B9Lkb2BjStkD6D/qI/
+kUXlH3PLHKtw7PrMnS9H/qn3Xqf84oO8vJA5irkn8t/+9v1cbMfHGYbO1KwXnoa
BdH7OonpFqHYbiZBmiDuVckkuIP2AuiSgKJ2VLZ109qTrUXYSm80cdpTxxFA68s2
2psqUeJQg6+efKMeouGDi2o2udUmeP1VAQ4Mp0mmbjSJQBe2sG9M+MWBD8u957/O
+Q8u
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:35 2023 by rpki-client on console-ams.rpki-client.org