Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/KYUNOrGJ4CrPt59WIYp7R44P8aA.roa
File: KYUNOrGJ4CrPt59WIYp7R44P8aA.roa (raw, json)
Hash identifier: X1QTPlVXp6jX0EWrB16LEQhrtLIdLdPnSc+qdjsWDNA=
Subject key identifier: 29:85:0D:3A:B1:89:E0:2A:CF:B7:9F:56:21:8A:7B:47:8E:0F:F1:A0
Certificate issuer: /CN=fc44297e9271c6edf064915f6180ae12690dda8b
Certificate serial: 0981E1A2
Authority key identifier: FC:44:29:7E:92:71:C6:ED:F0:64:91:5F:61:80:AE:12:69:0D:DA:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/KYUNOrGJ4CrPt59WIYp7R44P8aA.roa
Signing time: Sat 01 Jan 2022 13:05:08 +0000
ROA not before: Sat 01 Jan 2022 13:05:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199270
IP address blocks: 213.169.140.0/22 maxlen: 24
82.114.44.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159506850 (0x981e1a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc44297e9271c6edf064915f6180ae12690dda8b
Validity
Not Before: Jan 1 13:05:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29850d3ab189e02acfb79f56218a7b478e0ff1a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:65:17:30:4e:1a:a5:86:85:6f:eb:4a:0b:f0:
d6:70:d3:02:a2:bd:c9:61:a2:d7:cb:8c:f5:19:ef:
8a:63:dc:46:54:a1:e3:91:dc:ef:45:02:28:ef:c5:
eb:77:02:4f:cc:b5:0f:94:1b:8a:85:bc:60:76:7f:
0a:82:e6:4e:37:4d:b6:dc:5f:94:f1:79:2d:a7:d6:
66:ee:6b:05:c2:7f:b8:c7:35:b1:79:9e:b7:64:f7:
5d:45:54:b1:6d:dc:6b:52:9d:cd:c7:62:f5:07:45:
77:4e:cf:d2:29:1b:47:59:37:3c:ae:78:1a:86:3d:
1d:08:03:3b:46:d9:ed:05:2c:21:3d:4f:c8:55:07:
38:57:f9:9a:1b:42:fc:0a:38:cc:ce:9b:0c:75:2d:
c8:b7:1a:5d:57:2b:fa:45:9d:1d:11:43:68:6f:05:
29:e0:12:fd:18:8c:5b:52:1f:0a:49:6b:fb:dd:95:
5e:2e:d1:f2:ff:e9:6a:02:20:33:6e:1f:b7:a7:71:
1b:01:d5:24:d1:05:1c:9c:d8:42:9b:22:aa:68:cb:
d7:4f:8a:43:91:39:5f:48:4d:63:ee:8e:0e:b1:08:
2b:e8:ad:6b:2c:24:b5:07:7b:7b:50:46:2d:c8:8d:
d5:5d:9b:68:25:a9:a3:a4:3e:e9:6a:fc:61:8f:9c:
90:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:85:0D:3A:B1:89:E0:2A:CF:B7:9F:56:21:8A:7B:47:8E:0F:F1:A0
X509v3 Authority Key Identifier:
keyid:FC:44:29:7E:92:71:C6:ED:F0:64:91:5F:61:80:AE:12:69:0D:DA:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/KYUNOrGJ4CrPt59WIYp7R44P8aA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/_EQpfpJxxu3wZJFfYYCuEmkN2os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.114.44.0/22
213.169.140.0/22
Signature Algorithm: sha256WithRSAEncryption
c2:75:06:ed:9b:bf:fc:7b:80:b8:89:e3:35:7d:4b:61:d8:ae:
74:b3:0e:2d:1f:f2:ec:19:4d:b3:8b:5f:a5:d6:ba:db:56:e7:
b7:9d:b1:25:31:49:31:fa:4c:f3:fa:2f:95:67:cc:d0:5c:42:
d9:5b:d2:e7:88:d0:8b:f5:44:f6:a5:3f:ff:b0:96:7a:0e:47:
6c:5f:81:19:22:09:5c:c7:fa:70:21:9f:0f:45:fc:f9:cb:14:
fe:a4:a9:98:b8:61:cf:03:27:37:bf:c6:2b:93:1f:9c:e3:2a:
aa:0c:12:8c:2e:3a:4c:26:4d:0c:e8:ca:bd:6e:f2:c3:e7:ac:
c8:a8:1e:d8:ed:fc:9a:f7:07:4a:9e:11:72:c9:fb:2f:6b:90:
16:8b:02:92:44:e3:93:0e:14:be:d2:16:ba:a6:19:08:bb:4f:
74:49:fb:2b:40:46:31:b5:6b:2f:4a:d6:cb:91:70:fa:79:f3:
c0:2d:b4:21:6b:a3:ba:d4:92:d7:d2:a2:b5:43:01:80:24:c7:
5d:f0:4c:ec:22:cc:28:62:ab:97:eb:5d:bd:93:cc:3a:f4:2c:
8c:84:4a:de:f7:78:a0:bb:2c:16:9c:8f:b3:b5:89:a0:b0:32:
0f:11:91:78:1f:de:e3:2d:88:c0:c2:0f:51:fe:97:c9:59:3e:
92:57:81:7f
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIECYHhojANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
YzQ0Mjk3ZTkyNzFjNmVkZjA2NDkxNWY2MTgwYWUxMjY5MGRkYThiMB4XDTIyMDEw
MTEzMDUwOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjk4NTBkM2FiMTg5
ZTAyYWNmYjc5ZjU2MjE4YTdiNDc4ZTBmZjFhMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMdlFzBOGqWGhW/rSgvw1nDTAqK9yWGi18uM9RnvimPcRlSh
45Hc70UCKO/F63cCT8y1D5QbioW8YHZ/CoLmTjdNttxflPF5LafWZu5rBcJ/uMc1
sXmet2T3XUVUsW3ca1Kdzcdi9QdFd07P0ikbR1k3PK54GoY9HQgDO0bZ7QUsIT1P
yFUHOFf5mhtC/Ao4zM6bDHUtyLcaXVcr+kWdHRFDaG8FKeAS/RiMW1IfCklr+92V
Xi7R8v/pagIgM24ft6dxGwHVJNEFHJzYQpsiqmjL10+KQ5E5X0hNY+6ODrEIK+it
aywktQd7e1BGLciN1V2baCWpo6Q+6Wr8YY+ckIkCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQphQ06sYngKs+3n1YhintHjg/xoDAfBgNVHSMEGDAWgBT8RCl+knHG7fBk
kV9hgK4SaQ3aizAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19FUXBmcEp4eHUzd1pKRmZZWUN1RW1rTjJvcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODIvN2NiMTc5LWFkMmMtNDgyNC1hMWU1LWFlMDdmMzJlNDEwMi8x
L0tZVU5PckdKNENyUHQ1OVdJWXA3UjQ0UDhhQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODIv
N2NiMTc5LWFkMmMtNDgyNC1hMWU1LWFlMDdmMzJlNDEwMi8xL19FUXBmcEp4eHUz
d1pKRmZZWUN1RW1rTjJvcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAlJyLAMEAtWpjDANBgkqhkiG9w0B
AQsFAAOCAQEAwnUG7Zu//HuAuInjNX1LYdiudLMOLR/y7BlNs4tfpda621bnt52x
JTFJMfpM8/ovlWfM0FxC2VvS54jQi/VE9qU//7CWeg5HbF+BGSIJXMf6cCGfD0X8
+csU/qSpmLhhzwMnN7/GK5MfnOMqqgwSjC46TCZNDOjKvW7yw+esyKge2O38mvcH
Sp4Rcsn7L2uQFosCkkTjkw4UvtIWuqYZCLtPdEn7K0BGMbVrL0rWy5Fw+nnzwC20
IWujutSS19KitUMBgCTHXfBM7CLMKGKrl+tdvZPMOvQsjIRK3vd4oLssFpyPs7WJ
oLAyDxGReB/e4y2IwMIPUf6XyVk+kleBfw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:54 2024 by rpki-client on console-ams.rpki-client.org