Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/cyp2aNaGQ7ZcyFzi4vYyHA3ajUs.roa
File: cyp2aNaGQ7ZcyFzi4vYyHA3ajUs.roa (raw, json)
Hash identifier: LydYDN764DlmFUOl7p+61MCvo5O3zRmDzdY1OsW7USk=
Subject key identifier: 73:2A:76:68:D6:86:43:B6:5C:C8:5C:E2:E2:F6:32:1C:0D:DA:8D:4B
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2AF1AD9D
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/cyp2aNaGQ7ZcyFzi4vYyHA3ajUs.roa
Signing time: Sat 01 Jan 2022 13:57:53 +0000
ROA not before: Sat 01 Jan 2022 13:57:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41398
IP address blocks: 93.159.58.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 720481693 (0x2af1ad9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 13:57:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=732a7668d68643b65cc85ce2e2f6321c0dda8d4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b4:ee:17:f4:8d:72:f8:27:a1:4a:9f:47:a6:
c8:d3:b1:7b:db:4e:e4:5f:5f:b0:e1:eb:35:bb:70:
cf:7f:b4:61:5d:69:bc:53:af:00:a1:f6:52:71:19:
05:e2:f6:4e:23:22:50:53:97:29:cc:af:a2:fc:d2:
a8:a5:85:57:4c:f8:87:71:f5:ed:1d:a6:20:0c:31:
1d:1d:0f:4d:0a:6f:db:d6:be:9f:8b:3b:13:44:2d:
ec:d3:c0:1c:1e:93:9a:bf:42:3c:e6:6b:53:37:32:
18:f2:df:48:4e:33:ab:ed:77:ef:37:c1:d6:85:30:
00:4f:85:e6:28:e6:31:58:b8:19:43:e2:dd:a6:24:
e3:84:06:f7:5f:e3:99:ba:cf:fd:6e:90:8e:80:ca:
7b:bc:63:4a:78:42:08:ca:af:cc:a9:29:8a:d7:64:
b1:bb:42:73:f7:50:b8:fb:34:63:5d:b3:05:aa:4d:
80:91:e1:06:ab:98:a6:45:91:82:66:ea:e3:13:c9:
d6:91:6c:7e:fc:2c:79:e1:58:2f:2a:cd:18:7f:50:
72:9c:df:ec:81:0e:67:8d:0a:59:6e:2f:37:df:6a:
44:f2:61:4d:36:ad:9b:29:ef:32:1c:cd:32:8f:bb:
f4:ca:40:3a:47:9b:80:a3:39:07:ba:fc:b2:bf:46:
67:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:2A:76:68:D6:86:43:B6:5C:C8:5C:E2:E2:F6:32:1C:0D:DA:8D:4B
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/cyp2aNaGQ7ZcyFzi4vYyHA3ajUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.159.58.0/23
Signature Algorithm: sha256WithRSAEncryption
3b:a8:a4:4e:65:4c:c9:c5:54:11:ab:ea:3f:9d:a5:16:65:2b:
5e:35:cf:9b:ba:b0:3a:0c:4d:54:54:51:11:3d:51:bb:f0:a9:
f0:42:9e:8c:8f:15:e1:16:4d:98:68:70:30:7d:a0:4a:f1:b8:
77:7c:df:5e:37:0d:b0:ed:f9:7f:fc:da:2d:24:d5:97:80:3b:
d6:ab:67:d6:32:c3:af:8d:65:61:b2:b1:ae:c5:cf:ff:c4:7b:
5b:f1:3b:e6:f8:5c:10:78:c4:5e:8d:5a:a0:99:9e:1e:53:de:
4c:57:4e:03:90:4c:8f:2e:93:7e:2a:71:37:20:cc:6e:d9:ba:
e7:cf:d3:ac:d3:c7:b4:e8:2f:c1:6b:a1:eb:e0:8a:7c:ad:c8:
4a:88:1a:54:08:b8:0c:8f:ed:75:36:76:c3:7d:b1:ad:14:74:
a1:a0:dc:5d:28:36:34:76:ef:15:ec:f8:f0:9b:06:5f:a3:ee:
d1:12:0c:0b:d5:ed:ad:12:76:4d:83:00:10:21:c4:36:06:72:
cd:b6:ac:14:60:3a:ef:02:a1:6b:35:f0:7c:57:32:5c:e9:e6:
a2:19:30:92:b2:42:30:39:05:a2:5b:77:86:24:48:58:cf:75:
ce:1b:74:e2:a1:0d:98:55:4a:e9:8a:65:4f:9d:79:96:a9:30:
58:a2:3f:ce
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEKvGtnTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
OTk1NDQ5OTk3NzI3OGE3NTU3MGIzNDAzZjRkM2FhMDBiMWIzNmU4MB4XDTIyMDEw
MTEzNTc1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzMyYTc2NjhkNjg2
NDNiNjVjYzg1Y2UyZTJmNjMyMWMwZGRhOGQ0YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKS07hf0jXL4J6FKn0emyNOxe9tO5F9fsOHrNbtwz3+0YV1p
vFOvAKH2UnEZBeL2TiMiUFOXKcyvovzSqKWFV0z4h3H17R2mIAwxHR0PTQpv29a+
n4s7E0Qt7NPAHB6Tmr9CPOZrUzcyGPLfSE4zq+137zfB1oUwAE+F5ijmMVi4GUPi
3aYk44QG91/jmbrP/W6QjoDKe7xjSnhCCMqvzKkpitdksbtCc/dQuPs0Y12zBapN
gJHhBquYpkWRgmbq4xPJ1pFsfvwseeFYLyrNGH9Qcpzf7IEOZ40KWW4vN99qRPJh
TTatmynvMhzNMo+79MpAOkebgKM5B7r8sr9GZ3MCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRzKnZo1oZDtlzIXOLi9jIcDdqNSzAfBgNVHSMEGDAWgBS5lUSZl3J4p1Vw
s0A/TTqgCxs26DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3VaVkVtWmR5ZUtkVmNMTkFQMDA2b0FzYk51Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDcvNzg4ODAzLWJlMTItNDMzZi1hOGQwLTAyNGIxNjU1YzI0Ny8x
L2N5cDJhTmFHUTdaY3lGemk0dll5SEEzYWpVcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDcv
Nzg4ODAzLWJlMTItNDMzZi1hOGQwLTAyNGIxNjU1YzI0Ny8xL3VaVkVtWmR5ZUtk
VmNMTkFQMDA2b0FzYk51Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAV2fOjANBgkqhkiG9w0BAQsFAAOC
AQEAO6ikTmVMycVUEavqP52lFmUrXjXPm7qwOgxNVFRRET1Ru/Cp8EKejI8V4RZN
mGhwMH2gSvG4d3zfXjcNsO35f/zaLSTVl4A71qtn1jLDr41lYbKxrsXP/8R7W/E7
5vhcEHjEXo1aoJmeHlPeTFdOA5BMjy6TfipxNyDMbtm658/TrNPHtOgvwWuh6+CK
fK3ISogaVAi4DI/tdTZ2w32xrRR0oaDcXSg2NHbvFez48JsGX6Pu0RIMC9XtrRJ2
TYMAECHENgZyzbasFGA67wKhazXwfFcyXOnmohkwkrJCMDkFolt3hiRIWM91zht0
4qENmFVK6YplT515lqkwWKI/zg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:21 2024 by rpki-client on console-ams.rpki-client.org