Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/Veb9fYso6rgg5_YJStilm6sk9ZA.roa
File: Veb9fYso6rgg5_YJStilm6sk9ZA.roa (raw, json)
Hash identifier: Lc1Ww6UOXAAdxB3yiTRBJW3+MXfvKdeCVbw10PDTANg=
Subject key identifier: 55:E6:FD:7D:8B:28:EA:B8:20:E7:F6:09:4A:D8:A5:9B:AB:24:F5:90
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 094EA621
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/Veb9fYso6rgg5_YJStilm6sk9ZA.roa
Signing time: Tue 10 May 2022 17:43:02 +0000
ROA not before: Tue 10 May 2022 17:43:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 94.241.176.0/21 maxlen: 24
91.186.196.0/22 maxlen: 24
91.186.194.0/23 maxlen: 24
94.241.136.0/21 maxlen: 24
91.186.200.0/22 maxlen: 24
91.186.212.0/22 maxlen: 24
91.186.216.0/22 maxlen: 24
91.186.220.0/22 maxlen: 24
94.241.160.0/21 maxlen: 24
94.241.168.0/21 maxlen: 24
178.253.12.0/23 maxlen: 24
83.147.216.0/23 maxlen: 24
83.147.222.0/23 maxlen: 24
178.253.32.0/23 maxlen: 24
178.253.44.0/23 maxlen: 24
178.253.38.0/23 maxlen: 24
83.147.232.0/22 maxlen: 24
178.253.52.0/23 maxlen: 24
178.253.55.0/24 maxlen: 24
83.147.248.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156149281 (0x94ea621)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: May 10 17:43:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55e6fd7d8b28eab820e7f6094ad8a59bab24f590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d7:f0:11:bc:ba:ef:7c:dc:ca:75:e1:66:0e:
9d:a3:a1:1f:68:b1:92:77:fe:10:c8:81:e2:75:49:
ef:ff:df:4d:5a:ae:5e:3b:1d:cf:a7:63:38:be:78:
00:51:45:ec:9b:64:86:4e:c8:9f:0c:d6:c4:64:39:
cd:a7:ef:7f:88:57:79:7a:d0:f5:6f:00:65:23:8e:
0a:af:23:ba:bf:27:03:1b:ba:25:b5:5e:20:7a:b8:
14:2c:e6:7b:38:17:47:4d:27:1b:69:9b:5a:2a:e9:
7f:2f:78:10:86:3d:5d:8b:54:61:cd:3d:e5:74:76:
d7:85:5f:85:74:bd:e0:56:b6:a0:58:b7:be:fd:62:
0c:31:b6:cd:f7:33:ce:9a:b6:4b:c6:a9:8d:95:ea:
64:f0:f7:ee:49:a4:69:24:dc:e5:62:06:96:0d:41:
db:2e:b4:1c:29:06:7e:21:fc:16:1c:8f:1a:ef:36:
8d:4d:da:e1:d8:74:d0:6c:b5:ba:ec:7b:b0:03:f4:
5f:74:1a:c1:6a:6f:62:94:85:a1:77:0d:d7:59:6f:
61:25:cb:c1:cf:39:18:dc:28:51:03:b0:4a:be:7a:
52:2a:bd:f3:d3:48:1a:95:bf:ea:d9:8a:a4:25:d0:
aa:e3:1c:a9:9b:29:b2:88:41:f8:44:71:25:0b:f3:
7b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:E6:FD:7D:8B:28:EA:B8:20:E7:F6:09:4A:D8:A5:9B:AB:24:F5:90
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/Veb9fYso6rgg5_YJStilm6sk9ZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.216.0/23
83.147.222.0/23
83.147.232.0/22
83.147.248.0/22
91.186.194.0-91.186.203.255
91.186.212.0-91.186.223.255
94.241.136.0/21
94.241.160.0-94.241.183.255
178.253.12.0/23
178.253.32.0/23
178.253.38.0/23
178.253.44.0/23
178.253.52.0/23
178.253.55.0/24
Signature Algorithm: sha256WithRSAEncryption
30:e0:54:3e:37:26:67:b3:5c:3d:19:f0:7e:02:ca:0c:ff:35:
eb:46:40:fa:a6:46:b5:c3:cc:fa:f0:fc:85:92:86:f2:36:e3:
8b:15:28:f6:ad:f1:59:cb:6d:8b:0b:16:3d:a6:cb:c9:bd:8b:
9a:e2:72:34:a4:f2:e7:54:4e:d1:e4:a1:94:5a:bd:8c:06:98:
32:5b:c4:b8:9f:83:ec:89:9e:1a:23:de:6d:d9:37:91:2f:ef:
ac:30:d7:16:a2:8d:de:d3:9b:99:79:5e:61:d2:5b:b0:1c:e1:
67:3d:50:05:bb:0c:ba:5d:53:d7:b0:6f:f4:c8:19:36:c6:c3:
28:b2:44:b3:d7:c7:6a:17:0a:1c:47:d9:e0:f8:3f:ec:55:dc:
e3:6c:b1:93:ff:30:11:ff:29:bd:ed:cd:78:0e:91:87:fc:78:
69:7c:1a:54:25:59:4b:a5:b0:33:f8:95:52:85:f9:88:a1:96:
d3:02:02:58:37:ca:d1:45:6c:09:96:6a:84:b5:92:41:0a:29:
cf:55:6c:86:b9:bd:c3:c5:b0:66:dd:67:39:17:fd:61:a3:74:
71:e9:bc:b1:4f:ed:13:c3:59:86:c4:d9:fe:c8:c7:ca:e5:1d:
37:ee:5a:d4:79:d6:39:41:33:89:10:03:9d:56:94:e0:a4:71:
02:b3:28:39
-----BEGIN CERTIFICATE-----
MIIFVjCCBD6gAwIBAgIECU6mITANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
Mjc3OGRlMmE5YmU5ODAyMTIwMzgyZTc1MGQxNTllOTU4NzJjMmFlMB4XDTIyMDUx
MDE3NDMwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTVlNmZkN2Q4YjI4
ZWFiODIwZTdmNjA5NGFkOGE1OWJhYjI0ZjU5MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALHX8BG8uu983Mp14WYOnaOhH2ixknf+EMiB4nVJ7//fTVqu
Xjsdz6djOL54AFFF7Jtkhk7InwzWxGQ5zafvf4hXeXrQ9W8AZSOOCq8jur8nAxu6
JbVeIHq4FCzmezgXR00nG2mbWirpfy94EIY9XYtUYc095XR214VfhXS94Fa2oFi3
vv1iDDG2zfczzpq2S8apjZXqZPD37kmkaSTc5WIGlg1B2y60HCkGfiH8FhyPGu82
jU3a4dh00Gy1uux7sAP0X3QawWpvYpSFoXcN11lvYSXLwc85GNwoUQOwSr56Uiq9
89NIGpW/6tmKpCXQquMcqZspsohB+ERxJQvze3sCAwEAAaOCAnAwggJsMB0GA1Ud
DgQWBBRV5v19iyjquCDn9glK2KWbqyT1kDAfBgNVHSMEGDAWgBTCd43iqb6YAhID
gudQ0VnpWHLCrjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3duZU40cW0tbUFJU0E0TG5VTkZaNlZoeXdxNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjgvNDEwOTMwLTlkNjUtNGJlOC05ZWJhLWY5OGRhNTRhZjQzNC8x
L1ZlYjlmWXNvNnJnZzVfWUpTdGlsbTZzazlaQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjgv
NDEwOTMwLTlkNjUtNGJlOC05ZWJhLWY5OGRhNTRhZjQzNC8xL3duZU40cW0tbUFJ
U0E0TG5VTkZaNlZoeXdxNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
hQYIKwYBBQUHAQcBAf8EdjB0MHIEAgABMGwDBAFTk9gDBAFTk94DBAJTk+gDBAJT
k/gwDAMEAVu6wgMEAlu6yDAMAwQCW7rUAwQFW7rAAwQDXvGIMAwDBAVe8aADBANe
8bADBAGy/QwDBAGy/SADBAGy/SYDBAGy/SwDBAGy/TQDBACy/TcwDQYJKoZIhvcN
AQELBQADggEBADDgVD43JmezXD0Z8H4Cygz/NetGQPqmRrXDzPrw/IWShvI244sV
KPat8VnLbYsLFj2my8m9i5ricjSk8udUTtHkoZRavYwGmDJbxLifg+yJnhoj3m3Z
N5Ev76ww1xaijd7Tm5l5XmHSW7Ac4Wc9UAW7DLpdU9ewb/TIGTbGwyiyRLPXx2oX
ChxH2eD4P+xV3ONssZP/MBH/Kb3tzXgOkYf8eGl8GlQlWUulsDP4lVKF+YihltMC
Alg3ytFFbAmWaoS1kkEKKc9VbIa5vcPFsGbdZzkX/WGjdHHpvLFP7RPDWYbE2f7I
x8rlHTfuWtR51jlBM4kQA51WlOCkcQKzKDk=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:38 2023 by rpki-client on console-ams.rpki-client.org