Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/HXzQg3b2uTsqCoI25BnzeEhCm6I.roa
File: HXzQg3b2uTsqCoI25BnzeEhCm6I.roa (raw, json)
Hash identifier: 1D4Fom2Uo3TOfeAY9LRVvk+IKpbNPMy+6WRsm7zB1pY=
Subject key identifier: 1D:7C:D0:83:76:F6:B9:3B:2A:0A:82:36:E4:19:F3:78:48:42:9B:A2
Certificate issuer: /CN=adf0df77114741e13a17d7213e6956bf9627b558
Certificate serial: 0183557713CE8CA990C72FAF9CD9356A7173
Authority key identifier: AD:F0:DF:77:11:47:41:E1:3A:17:D7:21:3E:69:56:BF:96:27:B5:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/HXzQg3b2uTsqCoI25BnzeEhCm6I.roa
Signing time: Mon 19 Sep 2022 11:16:50 +0000
ROA not before: Mon 19 Sep 2022 11:16:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62319
IP address blocks: 91.142.136.0/24 maxlen: 24
178.209.175.0/24 maxlen: 24
178.209.174.0/24 maxlen: 24
178.209.173.0/24 maxlen: 24
178.209.178.0/23 maxlen: 23
178.209.176.0/23 maxlen: 23
91.216.118.0/24 maxlen: 24
178.209.184.0/22 maxlen: 22
193.169.74.0/23 maxlen: 23
178.209.180.0/22 maxlen: 22
178.209.188.0/23 maxlen: 23
185.203.0.0/22 maxlen: 22
178.209.191.0/24 maxlen: 24
178.209.190.0/24 maxlen: 24
185.66.184.0/22 maxlen: 22
185.4.219.0/24 maxlen: 24
185.4.218.0/24 maxlen: 24
185.4.216.0/23 maxlen: 23
185.40.44.0/22 maxlen: 22
193.106.120.0/22 maxlen: 22
185.150.72.0/22 maxlen: 22
178.209.160.0/22 maxlen: 22
178.209.166.0/24 maxlen: 24
178.209.165.0/24 maxlen: 24
178.209.172.0/24 maxlen: 24
178.209.171.0/24 maxlen: 24
178.209.170.0/24 maxlen: 24
178.209.169.0/24 maxlen: 24
178.209.168.0/24 maxlen: 24
178.209.167.0/24 maxlen: 24
194.126.192.0/24 maxlen: 24
91.194.36.0/23 maxlen: 23
194.116.178.0/23 maxlen: 23
2a02:c900::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:55:77:13:ce:8c:a9:90:c7:2f:af:9c:d9:35:6a:71:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf0df77114741e13a17d7213e6956bf9627b558
Validity
Not Before: Sep 19 11:16:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d7cd08376f6b93b2a0a8236e419f37848429ba2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:37:7c:40:45:52:11:96:ff:b0:0a:53:f9:46:
dd:bc:9d:6e:94:1e:07:49:52:e2:df:5f:32:b7:1b:
8f:0e:8b:fe:45:c4:c3:59:6f:3e:73:7c:5f:4c:fb:
3a:d4:4a:d3:3d:2c:5a:e7:6c:d0:98:4c:c5:76:db:
63:05:fa:7b:90:69:32:bb:75:0f:95:ad:ae:88:0c:
de:e4:e7:ef:15:dc:db:4a:03:b8:13:56:0d:78:f8:
0c:48:b5:a6:c7:63:eb:ef:bc:da:09:a2:43:5f:f2:
58:8d:0e:13:fe:8d:77:17:22:7d:c0:9c:da:c9:d7:
e5:28:cf:a8:a4:f0:11:8d:04:0e:08:19:8d:60:9a:
c5:e9:64:56:03:9f:3c:e1:34:67:04:0a:98:7b:3d:
37:97:85:1f:00:d6:19:9e:89:08:7b:e1:9c:32:4c:
68:eb:d0:38:53:8f:cf:84:d8:69:a5:46:ae:ca:a2:
39:5e:8b:f0:90:f2:f6:4a:df:5b:6e:0f:71:64:97:
31:6f:18:8e:99:90:09:55:70:de:3a:ba:9c:3c:1b:
a8:f9:4f:6e:22:2b:3b:b7:3f:32:79:a2:b5:55:e8:
43:07:15:2a:7d:04:84:58:aa:f1:68:2e:83:75:83:
4c:db:b8:81:b4:7f:41:4d:84:48:0f:1b:25:7c:44:
85:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:7C:D0:83:76:F6:B9:3B:2A:0A:82:36:E4:19:F3:78:48:42:9B:A2
X509v3 Authority Key Identifier:
keyid:AD:F0:DF:77:11:47:41:E1:3A:17:D7:21:3E:69:56:BF:96:27:B5:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/HXzQg3b2uTsqCoI25BnzeEhCm6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.142.136.0/24
91.194.36.0/23
91.216.118.0/24
178.209.160.0/22
178.209.165.0-178.209.191.255
185.4.216.0/22
185.40.44.0/22
185.66.184.0/22
185.150.72.0/22
185.203.0.0/22
193.106.120.0/22
193.169.74.0/23
194.116.178.0/23
194.126.192.0/24
IPv6:
2a02:c900::/29
Signature Algorithm: sha256WithRSAEncryption
82:e8:0a:e5:6c:25:64:65:cd:5f:e9:db:f5:9d:00:b3:d7:59:
ce:2d:28:12:5d:b8:83:d5:1c:4c:76:5a:bf:8c:b2:d6:5d:6d:
26:dd:d1:8e:1e:c9:d5:ef:02:81:34:ee:a9:60:87:a9:00:1f:
2f:bb:ec:37:ea:65:94:59:3e:16:db:6c:6e:be:d8:b1:bb:8c:
f4:3a:59:79:a4:60:c2:f7:48:ef:37:4f:30:11:84:d9:c8:c8:
19:9b:2d:c5:ac:ea:06:66:5a:6b:b2:fb:2c:0d:fe:fa:87:2e:
29:37:5d:aa:e1:04:be:f2:de:6f:9b:c0:3a:64:3e:01:db:94:
ad:5a:f3:65:ee:0b:f1:ba:68:fe:4f:66:ea:b6:eb:62:9f:a9:
8a:fc:b6:68:f5:7a:f9:c4:7e:ff:bc:74:13:6f:b0:a0:a0:f2:
31:c7:3e:35:5f:8d:71:ae:af:e5:81:58:f8:47:00:c6:f7:63:
5e:6f:8a:bf:84:92:09:86:da:bf:82:1e:8e:0c:bd:58:f3:2c:
d9:ae:3e:42:4f:e6:63:d0:c9:29:60:24:bf:87:28:b6:03:5e:
64:7b:08:68:2a:14:1f:95:91:1f:db:cc:d3:7e:a5:11:13:2b:
87:69:0f:e0:cb:eb:a6:5d:fa:71:67:2b:ec:d4:81:ab:da:69:
a2:77:5c:98
-----BEGIN CERTIFICATE-----
MIIFYzCCBEugAwIBAgISAYNVdxPOjKmQxy+vnNk1anFzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkZjBkZjc3MTE0NzQxZTEzYTE3ZDcyMTNlNjk1NmJmOTYy
N2I1NTgwHhcNMjIwOTE5MTExNjUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZDdjZDA4Mzc2ZjZiOTNiMmEwYTgyMzZlNDE5ZjM3ODQ4NDI5YmEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjDd8QEVSEZb/sApT+UbdvJ1ulB4H
SVLi318ytxuPDov+RcTDWW8+c3xfTPs61ErTPSxa52zQmEzFdttjBfp7kGkyu3UP
la2uiAze5OfvFdzbSgO4E1YNePgMSLWmx2Pr77zaCaJDX/JYjQ4T/o13FyJ9wJza
ydflKM+opPARjQQOCBmNYJrF6WRWA5884TRnBAqYez03l4UfANYZnokIe+GcMkxo
69A4U4/PhNhppUauyqI5XovwkPL2St9bbg9xZJcxbxiOmZAJVXDeOrqcPBuo+U9u
Iis7tz8yeaK1VehDBxUqfQSEWKrxaC6DdYNM27iBtH9BTYRIDxslfESFPwIDAQAB
o4ICbzCCAmswHQYDVR0OBBYEFB180IN29rk7KgqCNuQZ83hIQpuiMB8GA1UdIwQY
MBaAFK3w33cRR0HhOhfXIT5pVr+WJ7VYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmZEZmR4RkhRZUU2RjljaFBtbFd2NVludFZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9hMzBiZWEtOWU5My00MDkxLWI2ZTEt
ZTFlZjI3NzcyZWFmLzEvSFh6UWczYjJ1VHNxQ29JMjVCbnplRWhDbTZJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi9hMzBiZWEtOWU5My00MDkxLWI2ZTEtZTFlZjI3NzcyZWFm
LzEvcmZEZmR4RkhRZUU2RjljaFBtbFd2NVludFZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGEBggrBgEFBQcBBwEB/wR1MHMwYgQCAAEwXAMEAFuOiAME
AVvCJAMEAFvYdgMEArLRoDAMAwQAstGlAwQGstGAAwQCuQTYAwQCuSgsAwQCuUK4
AwQCuZZIAwQCucsAAwQCwWp4AwQBwalKAwQBwnSyAwQAwn7AMA0EAgACMAcDBQMq
AskAMA0GCSqGSIb3DQEBCwUAA4IBAQCC6ArlbCVkZc1f6dv1nQCz11nOLSgSXbiD
1RxMdlq/jLLWXW0m3dGOHsnV7wKBNO6pYIepAB8vu+w36mWUWT4W22xuvtixu4z0
Oll5pGDC90jvN08wEYTZyMgZmy3FrOoGZlprsvssDf76hy4pN12q4QS+8t5vm8A6
ZD4B25StWvNl7gvxumj+T2bqtutin6mK/LZo9Xr5xH7/vHQTb7CgoPIxxz41X41x
rq/lgVj4RwDG92Neb4q/hJIJhtq/gh6ODL1Y8yzZrj5CT+Zj0MkpYCS/hyi2A15k
ewhoKhQflZEf28zTfqUREyuHaQ/gy+umXfpxZyvs1IGr2mmid1yY
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:45 2023 by rpki-client on console-ams.rpki-client.org