Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/759874-e7f2-45fd-819d-a5d1148f25bd/1/U7E6E1DORiQbMHTdLhBa-GVvtDI.roa
File: U7E6E1DORiQbMHTdLhBa-GVvtDI.roa (raw, json)
Hash identifier: X5llEsD3G6N7LZLp6/QWiKSWx7mJ/7cbB4Jl069eEdI=
Subject key identifier: 53:B1:3A:13:50:CE:46:24:1B:30:74:DD:2E:10:5A:F8:65:6F:B4:32
Certificate issuer: /CN=caaee579e013218f571386413e2c5b2bc245a836
Certificate serial: 056E8D4B
Authority key identifier: CA:AE:E5:79:E0:13:21:8F:57:13:86:41:3E:2C:5B:2B:C2:45:A8:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yq7leeATIY9XE4ZBPixbK8JFqDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/759874-e7f2-45fd-819d-a5d1148f25bd/1/U7E6E1DORiQbMHTdLhBa-GVvtDI.roa
Signing time: Mon 20 Jun 2022 08:54:47 +0000
ROA not before: Mon 20 Jun 2022 08:54:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208349
IP address blocks: 31.10.7.0/24 maxlen: 24
77.105.157.0/24 maxlen: 24
77.105.156.0/24 maxlen: 24
185.31.133.0/24 maxlen: 24
45.134.125.0/24 maxlen: 24
45.134.124.0/22 maxlen: 22
45.134.124.0/24 maxlen: 24
45.134.127.0/24 maxlen: 24
45.134.126.0/24 maxlen: 24
2a0e:7e40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91131211 (0x56e8d4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caaee579e013218f571386413e2c5b2bc245a836
Validity
Not Before: Jun 20 08:54:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53b13a1350ce46241b3074dd2e105af8656fb432
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:fe:29:9f:34:a2:b6:7f:92:ce:3b:a8:12:94:
33:42:c5:2d:87:b8:a7:c7:be:8f:46:56:cf:75:53:
50:8a:7c:41:2f:11:76:2e:17:0e:de:19:cb:c7:3d:
41:68:ba:57:66:55:b0:d5:59:4e:b4:17:cb:9a:72:
32:1b:79:66:40:f5:25:ab:68:d2:0c:9c:6a:e6:1e:
aa:bc:53:ef:9d:8e:89:18:0c:b7:e9:c0:a4:69:de:
3e:70:1f:13:d6:d0:e8:90:cd:ef:94:30:5a:0e:1a:
03:ee:35:63:21:81:df:28:aa:46:ca:5c:65:b0:db:
45:d1:e3:4a:0e:7a:8a:fe:bb:d4:02:40:62:8c:0f:
91:08:67:27:3d:0f:8b:7c:4f:9c:7c:b5:72:3a:ba:
8d:9c:c1:93:22:ab:64:34:c0:7c:3a:45:a7:84:8a:
c9:5c:c5:3c:8a:a6:03:95:0e:1b:c2:70:20:c4:8f:
54:6f:bf:32:13:44:62:7d:02:bc:7f:30:de:54:1b:
0a:d6:8e:a0:39:38:d4:0b:ab:cf:bf:00:ba:0e:40:
ac:c3:43:5d:5f:d7:38:e6:dc:8b:c3:8f:0b:f4:bd:
09:04:15:fb:da:31:3d:ba:99:2d:f4:8c:20:b3:2b:
12:c3:77:63:09:86:7e:d5:42:0c:2f:17:aa:d7:b0:
f9:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:B1:3A:13:50:CE:46:24:1B:30:74:DD:2E:10:5A:F8:65:6F:B4:32
X509v3 Authority Key Identifier:
keyid:CA:AE:E5:79:E0:13:21:8F:57:13:86:41:3E:2C:5B:2B:C2:45:A8:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yq7leeATIY9XE4ZBPixbK8JFqDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/759874-e7f2-45fd-819d-a5d1148f25bd/1/U7E6E1DORiQbMHTdLhBa-GVvtDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/759874-e7f2-45fd-819d-a5d1148f25bd/1/yq7leeATIY9XE4ZBPixbK8JFqDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.10.7.0/24
45.134.124.0/22
77.105.156.0/23
185.31.133.0/24
IPv6:
2a0e:7e40::/29
Signature Algorithm: sha256WithRSAEncryption
7d:d3:c6:0c:11:7a:a3:67:26:c4:7d:80:8b:a6:c7:93:90:3f:
a0:e5:87:f0:22:eb:1a:4d:2b:5f:76:5c:d5:e2:54:22:10:bc:
6a:5c:93:2c:ae:80:f6:ad:40:2c:94:53:1c:45:0a:4d:65:ef:
5b:32:26:e2:47:0e:a1:41:dd:ac:e0:d3:e7:a1:93:52:41:9c:
9d:1f:ff:9e:76:02:41:a5:ec:2e:92:99:e2:f3:52:26:8e:1e:
54:52:d6:09:58:a9:00:fe:de:5f:50:1e:8a:85:81:47:3f:d2:
7a:f0:d6:b5:ff:3b:9c:3f:06:4a:6e:e4:64:ba:10:bb:96:e0:
ff:a7:a1:95:95:01:b7:62:47:1c:b0:4e:f0:81:4c:b1:24:ed:
b7:70:ff:02:d1:83:bf:ce:12:8f:4b:6c:52:df:93:88:95:bf:
51:d4:f1:54:35:9b:a3:92:7b:74:46:84:b8:6e:85:e0:a3:fb:
76:d5:4d:d7:66:9c:e3:bf:33:61:83:8b:e2:70:05:b6:6e:54:
3e:68:ae:9c:f7:b7:99:f3:04:3d:1b:a7:c0:e4:2d:3e:10:d4:
1d:fb:50:aa:72:e1:10:f6:69:e0:0c:f6:b1:f3:aa:cf:21:c0:
ed:a6:b2:d2:ce:28:95:64:26:ea:5f:49:75:6b:e0:64:7e:42:
ea:07:29:c5
-----BEGIN CERTIFICATE-----
MIIFEDCCA/igAwIBAgIEBW6NSzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
YWFlZTU3OWUwMTMyMThmNTcxMzg2NDEzZTJjNWIyYmMyNDVhODM2MB4XDTIyMDYy
MDA4NTQ0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTNiMTNhMTM1MGNl
NDYyNDFiMzA3NGRkMmUxMDVhZjg2NTZmYjQzMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ3+KZ80orZ/ks47qBKUM0LFLYe4p8e+j0ZWz3VTUIp8QS8R
di4XDt4Zy8c9QWi6V2ZVsNVZTrQXy5pyMht5ZkD1Jato0gycauYeqrxT752OiRgM
t+nApGnePnAfE9bQ6JDN75QwWg4aA+41YyGB3yiqRspcZbDbRdHjSg56iv671AJA
YowPkQhnJz0Pi3xPnHy1cjq6jZzBkyKrZDTAfDpFp4SKyVzFPIqmA5UOG8JwIMSP
VG+/MhNEYn0CvH8w3lQbCtaOoDk41Aurz78Aug5ArMNDXV/XOObci8OPC/S9CQQV
+9oxPbqZLfSMILMrEsN3YwmGftVCDC8Xqtew+aECAwEAAaOCAiowggImMB0GA1Ud
DgQWBBRTsToTUM5GJBswdN0uEFr4ZW+0MjAfBgNVHSMEGDAWgBTKruV54BMhj1cT
hkE+LFsrwkWoNjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3lxN2xlZUFUSVk5WEU0WkJQaXhiSzhKRnFEWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTgvNzU5ODc0LWU3ZjItNDVmZC04MTlkLWE1ZDExNDhmMjViZC8x
L1U3RTZFMURPUmlRYk1IVGRMaEJhLUdWdnRESS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTgv
NzU5ODc0LWU3ZjItNDVmZC04MTlkLWE1ZDExNDhmMjViZC8xL3lxN2xlZUFUSVk5
WEU0WkJQaXhiSzhKRnFEWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBA
BggrBgEFBQcBBwEB/wQxMC8wHgQCAAEwGAMEAB8KBwMEAi2GfAMEAU1pnAMEALkf
hTANBAIAAjAHAwUDKg5+QDANBgkqhkiG9w0BAQsFAAOCAQEAfdPGDBF6o2cmxH2A
i6bHk5A/oOWH8CLrGk0rX3Zc1eJUIhC8alyTLK6A9q1ALJRTHEUKTWXvWzIm4kcO
oUHdrODT56GTUkGcnR//nnYCQaXsLpKZ4vNSJo4eVFLWCVipAP7eX1AeioWBRz/S
evDWtf87nD8GSm7kZLoQu5bg/6ehlZUBt2JHHLBO8IFMsSTtt3D/AtGDv84Sj0ts
Ut+TiJW/UdTxVDWbo5J7dEaEuG6F4KP7dtVN12ac478zYYOL4nAFtm5UPmiunPe3
mfMEPRunwOQtPhDUHftQqnLhEPZp4Az2sfOqzyHA7aay0s4olWQm6l9JdWvgZH5C
6gcpxQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:36 2023 by rpki-client on console-ams.rpki-client.org