Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/75465f-6797-4141-b961-8b7c57c56215/1/bEBvcMEQWAaaicmU_hT_sDZMzDI.roa
File: bEBvcMEQWAaaicmU_hT_sDZMzDI.roa (raw, json)
Hash identifier: B+/BalKKfd5xE9aiHYx7uyyX5PLHcugJLg8RAU4Cwlo=
Subject key identifier: 6C:40:6F:70:C1:10:58:06:9A:89:C9:94:FE:14:FF:B0:36:4C:CC:32
Certificate issuer: /CN=3f273b6861cf7cf4646cc5e04275d6617635f07b
Certificate serial: 0A241490
Authority key identifier: 3F:27:3B:68:61:CF:7C:F4:64:6C:C5:E0:42:75:D6:61:76:35:F0:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pyc7aGHPfPRkbMXgQnXWYXY18Hs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/75465f-6797-4141-b961-8b7c57c56215/1/bEBvcMEQWAaaicmU_hT_sDZMzDI.roa
Signing time: Sat 01 Jan 2022 08:04:11 +0000
ROA not before: Sat 01 Jan 2022 08:04:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47798
IP address blocks: 94.124.216.0/22 maxlen: 22
94.124.216.0/21 maxlen: 21
94.124.220.0/22 maxlen: 22
109.203.224.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170136720 (0xa241490)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f273b6861cf7cf4646cc5e04275d6617635f07b
Validity
Not Before: Jan 1 08:04:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c406f70c11058069a89c994fe14ffb0364ccc32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:c0:af:22:4b:cf:eb:11:e8:df:fe:0c:d4:35:
7f:0e:1d:f3:7b:2b:e4:29:f7:1e:65:e8:27:46:e1:
06:f2:ed:58:20:65:f1:21:71:1a:9f:f6:ad:5c:5e:
d2:01:16:ef:29:58:4a:1b:21:ac:8b:bf:07:02:60:
7a:23:60:d4:25:7c:02:9c:d7:64:3b:45:6a:06:da:
a4:79:07:de:77:6a:5f:53:99:c0:b8:35:02:c4:ae:
29:22:36:ff:e7:d0:09:8a:40:16:81:f0:42:4a:da:
95:8e:6a:d4:72:a2:66:ab:ba:23:5d:fd:84:c3:23:
52:fc:27:ef:4d:5a:5f:ea:57:2c:15:2e:9f:a7:3c:
7d:43:57:78:c3:62:d7:b5:b8:3c:d8:64:c1:40:4b:
10:49:f5:dd:98:b0:c5:1d:b5:b5:a7:f5:05:1d:3f:
c6:e7:57:28:13:f7:0a:83:c2:c3:5d:fa:28:5c:75:
99:9c:f4:39:7f:2d:62:63:a8:0c:6d:a4:ab:a5:dc:
b8:56:44:77:11:e9:64:18:04:cf:39:60:ea:bc:60:
a8:4a:b9:7d:ea:b1:00:57:ec:bf:fd:49:63:a5:41:
9d:20:47:27:fd:2b:79:11:8f:55:aa:96:c1:ac:32:
62:68:62:2a:9e:4d:3d:6e:f9:16:da:cc:38:14:5d:
bc:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:40:6F:70:C1:10:58:06:9A:89:C9:94:FE:14:FF:B0:36:4C:CC:32
X509v3 Authority Key Identifier:
keyid:3F:27:3B:68:61:CF:7C:F4:64:6C:C5:E0:42:75:D6:61:76:35:F0:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pyc7aGHPfPRkbMXgQnXWYXY18Hs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/75465f-6797-4141-b961-8b7c57c56215/1/bEBvcMEQWAaaicmU_hT_sDZMzDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/75465f-6797-4141-b961-8b7c57c56215/1/Pyc7aGHPfPRkbMXgQnXWYXY18Hs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.124.216.0/21
109.203.224.0/19
Signature Algorithm: sha256WithRSAEncryption
92:7f:d8:7a:3d:0c:23:06:fa:ee:af:4f:57:fc:16:ce:ba:24:
6a:34:4c:f4:61:db:18:40:6e:c5:49:04:95:b8:8e:33:b8:2b:
d0:cb:ed:67:b2:24:5b:f8:a0:17:aa:c2:dc:4d:6c:99:bf:1e:
ab:74:33:ef:32:1f:a2:d1:c1:d7:f2:88:31:8a:34:20:35:94:
cc:a9:5f:ad:29:8b:48:b3:9c:b7:0d:0d:45:4c:0b:e1:d1:ec:
e0:e9:23:eb:2d:ef:3a:90:75:a9:0a:b3:35:fa:eb:df:5b:73:
23:bc:e3:84:0c:43:e4:80:f3:98:b5:29:56:41:9d:23:92:da:
5a:19:0a:53:ec:2b:80:fd:20:47:67:f7:e3:11:bb:53:10:3c:
3b:55:3c:d8:24:dd:a9:9b:a0:53:d5:df:48:a4:4e:33:91:09:
88:ad:cd:8f:01:50:e1:2f:fe:32:e7:92:79:04:39:a3:7d:af:
70:86:91:7c:29:54:e2:0f:c7:52:d8:cc:e4:4f:a7:b0:6c:73:
90:fb:41:57:88:ae:0f:bb:04:e3:f9:9d:09:2b:b9:0c:23:1e:
47:1e:f4:31:ee:50:b3:5c:ba:66:66:9d:cd:99:13:a5:38:6d:
36:9f:47:41:a9:bc:87:9e:b2:da:81:b7:a9:99:31:36:2a:1b:
60:4b:83:be
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIECiQUkDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
ZjI3M2I2ODYxY2Y3Y2Y0NjQ2Y2M1ZTA0Mjc1ZDY2MTc2MzVmMDdiMB4XDTIyMDEw
MTA4MDQxMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmM0MDZmNzBjMTEw
NTgwNjlhODljOTk0ZmUxNGZmYjAzNjRjY2MzMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAITAryJLz+sR6N/+DNQ1fw4d83sr5Cn3HmXoJ0bhBvLtWCBl
8SFxGp/2rVxe0gEW7ylYShshrIu/BwJgeiNg1CV8ApzXZDtFagbapHkH3ndqX1OZ
wLg1AsSuKSI2/+fQCYpAFoHwQkralY5q1HKiZqu6I139hMMjUvwn701aX+pXLBUu
n6c8fUNXeMNi17W4PNhkwUBLEEn13ZiwxR21taf1BR0/xudXKBP3CoPCw136KFx1
mZz0OX8tYmOoDG2kq6XcuFZEdxHpZBgEzzlg6rxgqEq5feqxAFfsv/1JY6VBnSBH
J/0reRGPVaqWwawyYmhiKp5NPW75FtrMOBRdvLECAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRsQG9wwRBYBpqJyZT+FP+wNkzMMjAfBgNVHSMEGDAWgBQ/JztoYc989GRs
xeBCddZhdjXwezAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1B5YzdhR0hQZlBSa2JNWGdRblhXWVhZMThIcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGQvNzU0NjVmLTY3OTctNDE0MS1iOTYxLThiN2M1N2M1NjIxNS8x
L2JFQnZjTUVRV0FhYWljbVVfaFRfc0RaTXpESS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGQv
NzU0NjVmLTY3OTctNDE0MS1iOTYxLThiN2M1N2M1NjIxNS8xL1B5YzdhR0hQZlBS
a2JNWGdRblhXWVhZMThIcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEA1582AMEBW3L4DANBgkqhkiG9w0B
AQsFAAOCAQEAkn/Yej0MIwb67q9PV/wWzrokajRM9GHbGEBuxUkElbiOM7gr0Mvt
Z7IkW/igF6rC3E1smb8eq3Qz7zIfotHB1/KIMYo0IDWUzKlfrSmLSLOctw0NRUwL
4dHs4Okj6y3vOpB1qQqzNfrr31tzI7zjhAxD5IDzmLUpVkGdI5LaWhkKU+wrgP0g
R2f34xG7UxA8O1U82CTdqZugU9XfSKROM5EJiK3NjwFQ4S/+MueSeQQ5o32vcIaR
fClU4g/HUtjM5E+nsGxzkPtBV4iuD7sE4/mdCSu5DCMeRx70Me5Qs1y6ZmadzZkT
pThtNp9HQam8h56y2oG3qZkxNiobYEuDvg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:46 2024 by rpki-client on console-fra.rpki-client.org