Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/nvULcE8duD0zAjdA_Xr8BtIurIY.roa
File: nvULcE8duD0zAjdA_Xr8BtIurIY.roa (raw, json)
Hash identifier: PNqzZY+j5TJ0xchYzW/D3ORfHixz4fU+M7DkUrUViKE=
Subject key identifier: 9E:F5:0B:70:4F:1D:B8:3D:33:02:37:40:FD:7A:FC:06:D2:2E:AC:86
Certificate issuer: /CN=adf491488a7cd8448a420945871c0b99672dc66e
Certificate serial: 018525302B22569F164E9964B86DF2CBF9BB
Authority key identifier: AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/nvULcE8duD0zAjdA_Xr8BtIurIY.roa
Signing time: Sun 18 Dec 2022 12:23:11 +0000
ROA not before: Sun 18 Dec 2022 12:23:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205647
IP address blocks: 151.240.80.0/21 maxlen: 21
31.56.116.0/24 maxlen: 24
94.182.206.0/24 maxlen: 24
94.182.204.0/24 maxlen: 24
94.182.204.0/22 maxlen: 22
94.182.205.0/24 maxlen: 24
94.182.207.0/24 maxlen: 24
94.182.217.0/24 maxlen: 24
94.182.226.0/24 maxlen: 24
94.182.228.0/22 maxlen: 22
151.240.168.0/22 maxlen: 22
151.240.192.0/21 maxlen: 21
151.247.216.0/21 maxlen: 21
94.182.41.0/24 maxlen: 24
151.247.214.0/23 maxlen: 23
151.247.224.0/22 maxlen: 22
94.182.72.0/21 maxlen: 21
151.247.248.0/22 maxlen: 22
85.15.49.0/24 maxlen: 24
85.15.48.0/24 maxlen: 24
151.240.240.0/21 maxlen: 21
31.59.12.0/22 maxlen: 22
94.182.8.0/23 maxlen: 23
94.182.12.0/23 maxlen: 23
31.56.64.0/19 maxlen: 19
31.56.96.0/20 maxlen: 20
31.56.0.0/18 maxlen: 18
94.182.116.0/22 maxlen: 22
94.182.114.0/23 maxlen: 23
94.182.120.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:25:30:2b:22:56:9f:16:4e:99:64:b8:6d:f2:cb:f9:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf491488a7cd8448a420945871c0b99672dc66e
Validity
Not Before: Dec 18 12:23:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ef50b704f1db83d33023740fd7afc06d22eac86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:df:e0:d6:31:ba:e1:3c:c7:7f:0f:37:7a:59:
1b:58:25:92:b4:a2:d2:1e:58:7c:7d:1a:31:06:cc:
9c:ce:6d:2c:23:8a:60:8a:e0:3c:5a:ec:81:37:a8:
da:62:aa:1c:0b:fd:46:c5:e8:a7:e5:ed:19:ba:77:
73:26:d4:62:91:68:52:09:fe:00:af:d8:74:a0:1b:
2e:f6:6f:f5:e8:04:5a:93:38:ba:72:2b:2e:d3:43:
5b:fa:7c:0f:0a:84:31:f5:a0:5c:a3:1b:d0:98:6f:
17:b2:1b:90:ef:5b:dd:70:25:0b:f2:c4:b8:9e:c4:
4c:97:b4:32:3d:91:1c:4b:ab:b1:09:6d:cc:8d:35:
75:dc:2e:97:77:bb:e1:2b:e7:e1:e9:ff:ba:3f:a4:
47:6a:96:5e:05:c2:0e:e4:02:c9:a9:6a:b0:75:07:
a7:d6:5a:53:99:fe:8b:d2:31:17:e8:c8:7d:63:7b:
e5:f4:c3:4c:53:4b:b7:8c:15:02:d6:df:e6:ed:6d:
ff:9a:2f:49:ca:39:22:71:b4:5b:b7:79:72:87:22:
b1:97:62:cf:94:e7:ae:19:bb:e2:96:56:97:bb:8b:
36:0a:42:be:e3:3a:0d:8f:78:8d:c2:15:80:84:5f:
6c:e6:41:ee:58:3b:45:a9:e2:c7:7d:da:33:c6:0a:
79:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:F5:0B:70:4F:1D:B8:3D:33:02:37:40:FD:7A:FC:06:D2:2E:AC:86
X509v3 Authority Key Identifier:
keyid:AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/nvULcE8duD0zAjdA_Xr8BtIurIY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/rfSRSIp82ESKQglFhxwLmWctxm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.0.0-31.56.111.255
31.56.116.0/24
31.59.12.0/22
85.15.48.0/23
94.182.8.0/23
94.182.12.0/23
94.182.41.0/24
94.182.72.0/21
94.182.114.0-94.182.127.255
94.182.204.0/22
94.182.217.0/24
94.182.226.0/24
94.182.228.0/22
151.240.80.0/21
151.240.168.0/22
151.240.192.0/21
151.240.240.0/21
151.247.214.0-151.247.227.255
151.247.248.0/22
Signature Algorithm: sha256WithRSAEncryption
23:f1:c7:f9:db:c4:b1:bd:17:2e:da:d7:08:81:5f:c4:c2:95:
67:c0:73:91:d9:8c:b9:3e:95:aa:08:77:ee:42:db:ec:ce:95:
5c:99:ff:89:df:5e:8d:10:f2:95:e9:15:b3:70:a7:57:b4:1d:
c6:f9:87:c5:97:33:f4:5b:ef:da:08:e4:73:bb:d0:93:cf:77:
59:32:1c:fb:57:6e:26:38:3b:6c:9a:3d:25:c4:69:0e:f9:c7:
e3:a8:6f:dc:14:23:18:da:14:70:49:82:da:ee:d6:20:fc:f9:
67:82:90:96:84:88:b6:56:6b:54:8b:48:3e:42:6b:14:29:49:
aa:a6:77:d3:b2:95:d3:f0:cc:88:91:c0:65:97:5e:e1:0a:4c:
24:8c:0d:c4:1f:fd:9c:3a:e6:a9:39:9d:cd:8f:4f:2e:b0:26:
0d:b1:b9:f4:5c:d0:60:4e:f4:16:63:6b:a7:27:bc:db:2d:0a:
88:88:18:19:84:ef:0d:40:42:db:a1:2c:fe:4e:0a:56:27:a2:
74:94:7c:5f:09:fc:0e:26:d7:86:23:f9:e1:60:5f:ab:4c:78:
a1:60:aa:3e:10:e3:f0:7a:39:27:cd:2a:6e:d3:a9:5f:3e:65:
c1:58:7b:c1:f4:cd:73:4b:5d:c0:64:17:93:f8:18:6f:2a:ea:
3d:6a:be:d7
-----BEGIN CERTIFICATE-----
MIIFhTCCBG2gAwIBAgISAYUlMCsiVp8WTplkuG3yy/m7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkZjQ5MTQ4OGE3Y2Q4NDQ4YTQyMDk0NTg3MWMwYjk5Njcy
ZGM2NmUwHhcNMjIxMjE4MTIyMzExWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZWY1MGI3MDRmMWRiODNkMzMwMjM3NDBmZDdhZmMwNmQyMmVhYzg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtN/g1jG64TzHfw83elkbWCWStKLS
Hlh8fRoxBsyczm0sI4pgiuA8WuyBN6jaYqocC/1Gxein5e0ZundzJtRikWhSCf4A
r9h0oBsu9m/16ARakzi6cisu00Nb+nwPCoQx9aBcoxvQmG8XshuQ71vdcCUL8sS4
nsRMl7QyPZEcS6uxCW3MjTV13C6Xd7vhK+fh6f+6P6RHapZeBcIO5ALJqWqwdQen
1lpTmf6L0jEX6Mh9Y3vl9MNMU0u3jBUC1t/m7W3/mi9JyjkicbRbt3lyhyKxl2LP
lOeuGbvillaXu4s2CkK+4zoNj3iNwhWAhF9s5kHuWDtFqeLHfdozxgp5tQIDAQAB
o4ICkTCCAo0wHQYDVR0OBBYEFJ71C3BPHbg9MwI3QP16/AbSLqyGMB8GA1UdIwQY
MBaAFK30kUiKfNhEikIJRYccC5lnLcZuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmZTUlNJcDgyRVNLUWdsRmh4d0xtV2N0eG00LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi83MTVkMTUtMjgxMC00ODI3LThkYmQt
MGJlZTA2MTI2YjFhLzEvbnZVTGNFOGR1RDB6QWpkQV9YcjhCdEl1cklZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi83MTVkMTUtMjgxMC00ODI3LThkYmQtMGJlZTA2MTI2YjFh
LzEvcmZTUlNJcDgyRVNLUWdsRmh4d0xtV2N0eG00LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGmBggrBgEFBQcBBwEB/wSBljCBkzCBkAQCAAEwgYkwCwMD
Ax84AwQEHzhgAwQAHzh0AwQCHzsMAwQBVQ8wAwQBXrYIAwQBXrYMAwQAXrYpAwQD
XrZIMAwDBAFetnIDBAdetgADBAJetswDBABettkDBABetuIDBAJetuQDBAOX8FAD
BAKX8KgDBAOX8MADBAOX8PAwDAMEAZf31gMEApf34AMEApf3+DANBgkqhkiG9w0B
AQsFAAOCAQEAI/HH+dvEsb0XLtrXCIFfxMKVZ8BzkdmMuT6Vqgh37kLb7M6VXJn/
id9ejRDylekVs3CnV7QdxvmHxZcz9Fvv2gjkc7vQk893WTIc+1duJjg7bJo9JcRp
DvnH46hv3BQjGNoUcEmC2u7WIPz5Z4KQloSItlZrVItIPkJrFClJqqZ307KV0/DM
iJHAZZde4QpMJIwNxB/9nDrmqTmdzY9PLrAmDbG59FzQYE70FmNrpye82y0KiIgY
GYTvDUBC26Es/k4KVieidJR8Xwn8DibXhiP54WBfq0x4oWCqPhDj8Ho5J80qbtOp
Xz5lwVh7wfTNc0tdwGQXk/gYbyrqPWq+1w==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:36 2023 by rpki-client on console.sobornost.net