Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/EEPYp8fFNjBBRzYvI1ARyTYLVIQ.roa
File: EEPYp8fFNjBBRzYvI1ARyTYLVIQ.roa (raw, json)
Hash identifier: tJs7UQmDWdFknmEr4ma+x6MBp+wATh82Es6uenlG02w=
Subject key identifier: 10:43:D8:A7:C7:C5:36:30:41:47:36:2F:23:50:11:C9:36:0B:54:84
Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Certificate serial: 445EAACD
Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/EEPYp8fFNjBBRzYvI1ARyTYLVIQ.roa
Signing time: Wed 20 Apr 2022 12:24:05 +0000
ROA not before: Wed 20 Apr 2022 12:24:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 89.31.122.0/24 maxlen: 24
2a03:f80:420::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1147054797 (0x445eaacd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Validity
Not Before: Apr 20 12:24:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1043d8a7c7c536304147362f235011c9360b5484
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:7b:04:55:0e:a4:29:c5:42:52:b6:75:8e:14:
3f:8b:77:22:2d:f5:ec:d8:11:0f:11:a9:40:48:bb:
ab:17:09:58:fd:0c:18:1a:9e:64:84:ca:3b:7b:33:
c8:40:8e:87:cc:d2:a5:d1:9e:9d:41:15:6f:7d:80:
33:3c:fe:17:4d:b8:d4:9d:d4:61:b4:81:ae:12:55:
15:c3:c1:94:69:99:cd:83:b0:39:a1:36:35:ff:01:
26:c3:43:57:4a:32:00:20:9f:22:b7:0a:46:ae:b8:
b2:c5:af:be:8c:8c:4f:bd:4d:38:fc:64:9c:b7:01:
41:84:7c:2c:c2:35:88:1c:6b:ff:f7:91:ed:57:2e:
23:96:e2:4c:e6:a9:59:aa:31:9c:25:d6:ab:f8:c4:
ae:10:5a:37:db:0f:ba:80:c7:21:a5:62:f1:f5:09:
c7:55:09:0e:b9:ff:26:69:d6:b3:3d:7f:4c:33:77:
25:98:e0:53:38:0d:9f:dd:2d:19:22:83:ca:ae:85:
1b:3e:16:59:1b:b3:44:db:5e:6d:f2:01:c8:e0:07:
4f:f6:cf:2e:43:f6:e6:41:75:e0:75:76:e9:22:6f:
61:b6:71:5b:9e:c7:2f:04:e2:eb:dc:1a:fe:41:66:
46:98:b4:7e:4f:59:da:fe:54:88:c0:53:c5:ab:70:
14:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:43:D8:A7:C7:C5:36:30:41:47:36:2F:23:50:11:C9:36:0B:54:84
X509v3 Authority Key Identifier:
keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/EEPYp8fFNjBBRzYvI1ARyTYLVIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.31.122.0/24
IPv6:
2a03:f80:420::/48
Signature Algorithm: sha256WithRSAEncryption
49:7c:5e:72:96:4d:b5:0e:6c:10:f4:22:59:76:71:4e:45:b2:
7b:9f:43:a3:87:25:d9:ce:d8:44:d1:49:25:37:1a:cb:2e:27:
89:73:5d:03:c3:38:36:73:bb:8c:5c:04:57:36:ca:23:00:a9:
6d:eb:75:5b:ef:ed:bf:4b:57:07:f1:8b:32:03:58:78:d6:5e:
8b:ad:4f:e6:83:db:02:bb:94:0d:a8:87:13:2b:b4:e4:50:7a:
b0:36:3b:c4:fe:39:2f:2c:b3:21:f6:52:f7:27:13:09:60:c9:
28:db:75:f3:f4:0b:7d:99:56:94:e1:09:3e:a7:c8:03:74:77:
a0:61:e3:69:c0:80:87:c2:6a:9d:fc:f6:a1:f8:25:d5:f7:4e:
3e:1b:10:ea:e5:1f:50:10:49:a2:30:8c:5a:20:79:60:a7:54:
77:d2:0b:27:1b:c0:7f:ea:6d:d7:13:be:a5:d2:c2:94:5e:3e:
06:57:fb:c0:47:e8:f3:d2:bf:a0:77:f3:a4:50:04:40:97:05:
65:c7:8a:bd:65:d6:fa:2d:13:9a:3a:98:3a:5f:ac:6f:3e:ca:
8e:2b:ef:6d:61:08:71:9c:0c:a9:7f:ef:e0:a4:1a:49:9b:ae:
6f:aa:7a:5f:cb:ed:6c:76:97:7f:dd:ed:ba:3a:ef:95:8d:c2:
bc:1b:a9:6c
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIERF6qzTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
MjE3YjQ3MmM4NDFjMWQ2ODU1MGEyNGYxOTM2ZDI5Y2M2YzI4ZjZhMB4XDTIyMDQy
MDEyMjQwNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTA0M2Q4YTdjN2M1
MzYzMDQxNDczNjJmMjM1MDExYzkzNjBiNTQ4NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJl7BFUOpCnFQlK2dY4UP4t3Ii317NgRDxGpQEi7qxcJWP0M
GBqeZITKO3szyECOh8zSpdGenUEVb32AMzz+F0241J3UYbSBrhJVFcPBlGmZzYOw
OaE2Nf8BJsNDV0oyACCfIrcKRq64ssWvvoyMT71NOPxknLcBQYR8LMI1iBxr//eR
7VcuI5biTOapWaoxnCXWq/jErhBaN9sPuoDHIaVi8fUJx1UJDrn/JmnWsz1/TDN3
JZjgUzgNn90tGSKDyq6FGz4WWRuzRNtebfIByOAHT/bPLkP25kF14HV26SJvYbZx
W57HLwTi69wa/kFmRpi0fk9Z2v5UiMBTxatwFEECAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBQQQ9inx8U2MEFHNi8jUBHJNgtUhDAfBgNVHSMEGDAWgBTSF7RyyEHB1oVQ
ok8ZNtKcxsKPajAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzBoZTBjc2hCd2RhRlVLSlBHVGJTbk1iQ2oyby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTAvMjkwZTQ0LWI0NzktNDZjZi1hYjRiLWIzOGUyNjc3YjNkYy8x
L0VFUFlwOGZGTmpCQlJ6WXZJMUFSeVRZTFZJUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTAv
MjkwZTQ0LWI0NzktNDZjZi1hYjRiLWIzOGUyNjc3YjNkYy8xLzBoZTBjc2hCd2Rh
RlVLSlBHVGJTbk1iQ2oyby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAFkfejAPBAIAAjAJAwcAKgMPgAQg
MA0GCSqGSIb3DQEBCwUAA4IBAQBJfF5ylk21DmwQ9CJZdnFORbJ7n0OjhyXZzthE
0UklNxrLLieJc10Dwzg2c7uMXARXNsojAKlt63Vb7+2/S1cH8YsyA1h41l6LrU/m
g9sCu5QNqIcTK7TkUHqwNjvE/jkvLLMh9lL3JxMJYMko23Xz9At9mVaU4Qk+p8gD
dHegYeNpwICHwmqd/Pah+CXV904+GxDq5R9QEEmiMIxaIHlgp1R30gsnG8B/6m3X
E76l0sKUXj4GV/vAR+jz0r+gd/OkUARAlwVlx4q9Zdb6LROaOpg6X6xvPsqOK+9t
YQhxnAypf+/gpBpJm65vqnpfy+1sdpd/3e26Ou+VjcK8G6ls
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:58 2023 by rpki-client on console-ams.rpki-client.org