Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/b8e940-2201-406e-8aaf-4060e9eeeb9e/1/2zzHvrTrCR8UTeUV0MVDhy-9jC4.roa
File: 2zzHvrTrCR8UTeUV0MVDhy-9jC4.roa (raw, json)
Hash identifier: djWusSTbtDi4iL7SR6/bndDZtEH8jO63wrEMp36T6P8=
Subject key identifier: DB:3C:C7:BE:B4:EB:09:1F:14:4D:E5:15:D0:C5:43:87:2F:BD:8C:2E
Certificate issuer: /CN=68383ffa9f20bf021c090262994212d71667ed02
Certificate serial: 1057D871
Authority key identifier: 68:38:3F:FA:9F:20:BF:02:1C:09:02:62:99:42:12:D7:16:67:ED:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDg_-p8gvwIcCQJimUIS1xZn7QI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/b8e940-2201-406e-8aaf-4060e9eeeb9e/1/2zzHvrTrCR8UTeUV0MVDhy-9jC4.roa
Signing time: Sat 01 Jan 2022 09:54:28 +0000
ROA not before: Sat 01 Jan 2022 09:54:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48901
IP address blocks: 81.90.131.0/28 maxlen: 28
81.90.134.0/24 maxlen: 24
81.90.136.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 274192497 (0x1057d871)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68383ffa9f20bf021c090262994212d71667ed02
Validity
Not Before: Jan 1 09:54:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db3cc7beb4eb091f144de515d0c543872fbd8c2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:14:13:59:5d:db:b4:07:3d:98:e0:9d:b8:84:
51:88:97:ab:8c:8f:7c:87:4d:ab:c2:33:98:a0:5b:
9b:55:f2:e4:5c:03:cc:0e:6d:f5:e9:15:a9:4e:9c:
0a:6e:ac:4b:9e:be:2f:af:e3:55:77:87:f7:4b:ea:
42:dd:ad:4f:fb:19:2d:fc:b2:11:5e:ea:d1:42:9e:
15:14:be:8b:4e:fc:27:eb:28:20:0b:12:c8:a0:b6:
f9:33:ea:68:35:d0:86:c4:2e:1f:17:4d:ef:82:89:
76:af:77:a7:bc:0e:c3:a0:9c:28:63:1b:76:45:92:
f4:e4:af:cb:59:33:07:6a:76:e2:99:7a:39:a1:7d:
8a:d8:2b:a5:eb:25:df:03:2c:96:a4:fa:e0:a2:fb:
45:54:ea:47:71:48:4f:c7:a2:d1:2a:b4:69:d1:07:
66:31:24:d5:ab:7b:41:48:43:86:03:5e:2e:58:9b:
af:e2:6d:a1:4a:21:7c:d4:93:4f:27:c8:e1:71:c5:
07:78:06:25:5b:ed:57:3d:69:78:1e:1d:10:11:d4:
d0:fc:7b:f7:42:43:e0:71:cb:91:e5:34:75:5e:37:
3d:e3:5c:5b:21:6c:73:c7:8e:1b:ed:1f:30:16:e4:
41:f4:4b:e4:b4:b4:cd:59:56:2a:c6:e4:4b:bc:9c:
ff:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:3C:C7:BE:B4:EB:09:1F:14:4D:E5:15:D0:C5:43:87:2F:BD:8C:2E
X509v3 Authority Key Identifier:
keyid:68:38:3F:FA:9F:20:BF:02:1C:09:02:62:99:42:12:D7:16:67:ED:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDg_-p8gvwIcCQJimUIS1xZn7QI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/b8e940-2201-406e-8aaf-4060e9eeeb9e/1/2zzHvrTrCR8UTeUV0MVDhy-9jC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/b8e940-2201-406e-8aaf-4060e9eeeb9e/1/aDg_-p8gvwIcCQJimUIS1xZn7QI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.90.131.0/28
81.90.134.0/24
81.90.136.0/23
Signature Algorithm: sha256WithRSAEncryption
77:a6:5b:b2:43:e8:c5:57:e4:a5:c3:c0:b2:d3:f6:17:a3:b5:
9a:2a:f0:1a:78:a6:7d:d6:da:63:60:d6:b9:61:ff:4c:79:7b:
21:e4:f7:4e:87:1a:1a:31:4b:7c:33:f4:54:eb:f3:b3:09:d1:
56:bb:c4:5a:ac:15:6a:27:77:f7:7e:f5:b4:88:82:9e:6d:5a:
97:c6:a4:74:95:6e:d3:4e:37:8b:b2:3a:29:27:73:7d:d6:d4:
f8:4e:a2:8e:da:4c:c8:07:ea:0d:9b:0b:e1:29:ef:93:ef:e8:
28:9c:c7:8e:65:96:2e:24:2e:dc:87:95:c0:b7:f9:5b:cf:07:
c4:46:1b:be:93:fd:1a:a0:92:c7:bc:2c:6d:86:fe:bc:04:dc:
11:08:21:c5:d6:ad:ca:9c:00:91:2e:3b:96:e9:c2:83:d9:ef:
af:81:ab:0b:89:d8:86:88:09:1c:f2:83:ac:12:95:0d:7a:17:
e5:92:e5:6c:e4:3f:e6:56:87:f9:8a:cf:54:1b:e3:2f:57:6e:
0f:2f:58:7e:9b:1d:e7:06:08:12:c6:dd:29:5c:74:cd:a5:e8:
e5:52:c8:5f:3c:49:a8:c4:06:04:1a:7c:7f:91:2a:de:0c:cb:
c4:e9:e1:9c:03:bb:9f:e0:38:23:98:fd:84:f0:92:b3:0e:0b:
15:ca:00:3b
-----BEGIN CERTIFICATE-----
MIIE/DCCA+SgAwIBAgIEEFfYcTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
ODM4M2ZmYTlmMjBiZjAyMWMwOTAyNjI5OTQyMTJkNzE2NjdlZDAyMB4XDTIyMDEw
MTA5NTQyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGIzY2M3YmViNGVi
MDkxZjE0NGRlNTE1ZDBjNTQzODcyZmJkOGMyZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM0UE1ld27QHPZjgnbiEUYiXq4yPfIdNq8IzmKBbm1Xy5FwD
zA5t9ekVqU6cCm6sS56+L6/jVXeH90vqQt2tT/sZLfyyEV7q0UKeFRS+i078J+so
IAsSyKC2+TPqaDXQhsQuHxdN74KJdq93p7wOw6CcKGMbdkWS9OSvy1kzB2p24pl6
OaF9itgrpesl3wMslqT64KL7RVTqR3FIT8ei0Sq0adEHZjEk1at7QUhDhgNeLlib
r+JtoUohfNSTTyfI4XHFB3gGJVvtVz1peB4dEBHU0Px790JD4HHLkeU0dV43PeNc
WyFsc8eOG+0fMBbkQfRL5LS0zVlWKsbkS7yc/+0CAwEAAaOCAhYwggISMB0GA1Ud
DgQWBBTbPMe+tOsJHxRN5RXQxUOHL72MLjAfBgNVHSMEGDAWgBRoOD/6nyC/AhwJ
AmKZQhLXFmftAjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2FEZ18tcDhndndJY0NRSmltVUlTMXhabjdRSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGYvYjhlOTQwLTIyMDEtNDA2ZS04YWFmLTQwNjBlOWVlZWI5ZS8x
LzJ6ekh2clRyQ1I4VVRlVVYwTVZEaHktOWpDNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGYv
YjhlOTQwLTIyMDEtNDA2ZS04YWFmLTQwNjBlOWVlZWI5ZS8xL2FEZ18tcDhndndJ
Y0NRSmltVUlTMXhabjdRSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAs
BggrBgEFBQcBBwEB/wQdMBswGQQCAAEwEwMFBFFagwADBABRWoYDBAFRWogwDQYJ
KoZIhvcNAQELBQADggEBAHemW7JD6MVX5KXDwLLT9hejtZoq8Bp4pn3W2mNg1rlh
/0x5eyHk906HGhoxS3wz9FTr87MJ0Va7xFqsFWond/d+9bSIgp5tWpfGpHSVbtNO
N4uyOiknc33W1PhOoo7aTMgH6g2bC+Ep75Pv6Cicx45lli4kLtyHlcC3+VvPB8RG
G76T/Rqgkse8LG2G/rwE3BEIIcXWrcqcAJEuO5bpwoPZ76+BqwuJ2IaICRzyg6wS
lQ16F+WS5WzkP+ZWh/mKz1Qb4y9Xbg8vWH6bHecGCBLG3SlcdM2l6OVSyF88SajE
BgQafH+RKt4My8Tp4ZwDu5/gOCOY/YTwkrMOCxXKADs=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:04 2024 by rpki-client on console-fra.rpki-client.org