Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/092fdc-c300-41a5-9015-662ec818d23d/1/DvshRuJOh2fyhtMsRheymvgckVU.roa
File: DvshRuJOh2fyhtMsRheymvgckVU.roa (raw, json)
Hash identifier: d7+SRygdYGLuwa0WeuNzNwO0I+IOQ/ABAg2Bpno+a28=
Subject key identifier: 0E:FB:21:46:E2:4E:87:67:F2:86:D3:2C:46:17:B2:9A:F8:1C:91:55
Certificate issuer: /CN=773ae663ad0a1a3072dbd867992b7d8df25a449a
Certificate serial: 059585ED
Authority key identifier: 77:3A:E6:63:AD:0A:1A:30:72:DB:D8:67:99:2B:7D:8D:F2:5A:44:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dzrmY60KGjBy29hnmSt9jfJaRJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/092fdc-c300-41a5-9015-662ec818d23d/1/DvshRuJOh2fyhtMsRheymvgckVU.roa
Signing time: Sat 01 Jan 2022 08:04:19 +0000
ROA not before: Sat 01 Jan 2022 08:04:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49711
IP address blocks: 176.118.152.0/21 maxlen: 21
91.220.250.0/24 maxlen: 24
91.215.176.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93685229 (0x59585ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=773ae663ad0a1a3072dbd867992b7d8df25a449a
Validity
Not Before: Jan 1 08:04:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0efb2146e24e8767f286d32c4617b29af81c9155
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:08:6b:69:a9:c3:2b:f4:48:b0:4b:b1:d4:d4:
16:ee:c3:cb:5a:44:3f:b0:65:1e:d5:9b:dd:72:2f:
a6:a7:72:e9:31:20:29:fb:03:d5:a5:91:28:a2:00:
f4:a3:0c:51:12:4e:8e:bd:bc:4f:5f:7c:7e:31:ab:
99:8f:30:f9:e2:e7:bd:cc:a4:8b:06:13:56:91:cb:
1c:47:32:55:5a:af:a6:86:7c:45:e2:40:3a:dd:46:
36:a4:6c:7c:82:05:6d:06:30:24:cf:c7:8a:18:a9:
6a:dd:b0:3a:5c:2c:d5:a4:ea:f0:1a:4a:57:b5:9a:
56:bc:64:81:e2:6c:fa:4e:0b:e0:ed:d8:82:53:28:
c5:b1:21:16:45:5f:f0:0d:66:66:fa:2c:47:cf:eb:
8b:44:70:1e:af:1e:3f:ce:24:78:1c:e5:67:86:f1:
3a:41:18:f9:26:45:57:a6:1c:64:ea:dd:0f:f9:2b:
09:c6:e5:a7:7c:35:45:55:c8:d5:1d:0f:f5:d2:5a:
25:35:20:4f:2e:86:cf:b2:eb:74:9d:cb:9c:54:dd:
05:4b:cb:cf:7d:66:ce:57:4d:b1:84:ce:fd:44:14:
1d:e1:04:16:b7:f6:41:c8:4a:f4:0f:db:e5:b2:63:
b7:59:b1:23:a0:3b:bf:c8:40:e0:e7:8e:34:3c:c9:
0f:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:FB:21:46:E2:4E:87:67:F2:86:D3:2C:46:17:B2:9A:F8:1C:91:55
X509v3 Authority Key Identifier:
keyid:77:3A:E6:63:AD:0A:1A:30:72:DB:D8:67:99:2B:7D:8D:F2:5A:44:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dzrmY60KGjBy29hnmSt9jfJaRJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/092fdc-c300-41a5-9015-662ec818d23d/1/DvshRuJOh2fyhtMsRheymvgckVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/092fdc-c300-41a5-9015-662ec818d23d/1/dzrmY60KGjBy29hnmSt9jfJaRJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.215.176.0/22
91.220.250.0/24
176.118.152.0/21
Signature Algorithm: sha256WithRSAEncryption
7b:38:d6:4b:5f:23:9f:30:b6:3f:1e:96:7f:71:02:c5:cf:b0:
c8:e1:e2:40:23:45:e0:14:3e:80:99:2f:ff:e7:10:06:78:01:
10:cc:9d:a3:82:30:6b:eb:00:97:c9:cc:42:0f:2f:10:6c:1d:
7b:e8:a8:6f:41:58:65:7c:6d:b9:10:09:66:3e:f3:7d:73:12:
19:1e:5d:10:59:4f:b4:6d:c5:7f:68:fe:86:e6:d5:60:c7:aa:
66:34:93:c0:11:18:ac:6b:a5:24:cc:30:a8:21:bf:75:f1:a8:
a1:45:a5:07:3f:8d:01:44:54:35:b5:5b:49:b9:34:b4:bb:c8:
2b:8f:4d:f6:85:95:f6:7b:6e:42:18:ea:b5:03:34:0b:45:9c:
5c:3b:2c:23:6a:cc:a9:0a:26:63:03:ea:db:fa:1d:25:ed:73:
51:c4:37:3f:d7:d3:41:c4:b6:4f:4e:bf:40:0f:da:6f:a3:88:
44:60:33:d7:35:67:6c:dd:69:06:08:89:3b:9a:b2:2c:e5:88:
b9:cc:fb:50:74:c5:5e:88:c7:8d:2c:6c:c7:25:7e:52:09:63:
0b:78:0b:dd:3a:af:5b:97:35:ee:f1:37:f2:ef:51:24:9e:99:
d9:8b:fe:81:15:57:b6:c3:f7:56:d8:02:3c:8d:9d:fa:97:60:
46:89:16:ab
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEBZWF7TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NzNhZTY2M2FkMGExYTMwNzJkYmQ4Njc5OTJiN2Q4ZGYyNWE0NDlhMB4XDTIyMDEw
MTA4MDQxOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGVmYjIxNDZlMjRl
ODc2N2YyODZkMzJjNDYxN2IyOWFmODFjOTE1NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKUIa2mpwyv0SLBLsdTUFu7Dy1pEP7BlHtWb3XIvpqdy6TEg
KfsD1aWRKKIA9KMMURJOjr28T198fjGrmY8w+eLnvcykiwYTVpHLHEcyVVqvpoZ8
ReJAOt1GNqRsfIIFbQYwJM/Hihipat2wOlws1aTq8BpKV7WaVrxkgeJs+k4L4O3Y
glMoxbEhFkVf8A1mZvosR8/ri0RwHq8eP84keBzlZ4bxOkEY+SZFV6YcZOrdD/kr
Ccblp3w1RVXI1R0P9dJaJTUgTy6Gz7LrdJ3LnFTdBUvLz31mzldNsYTO/UQUHeEE
Frf2QchK9A/b5bJjt1mxI6A7v8hA4OeONDzJDw0CAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBQO+yFG4k6HZ/KG0yxGF7Ka+ByRVTAfBgNVHSMEGDAWgBR3OuZjrQoaMHLb
2GeZK32N8lpEmjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2R6cm1ZNjBLR2pCeTI5aG5tU3Q5amZKYVJKby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODcvMDkyZmRjLWMzMDAtNDFhNS05MDE1LTY2MmVjODE4ZDIzZC8x
L0R2c2hSdUpPaDJmeWh0TXNSaGV5bXZnY2tWVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODcv
MDkyZmRjLWMzMDAtNDFhNS05MDE1LTY2MmVjODE4ZDIzZC8xL2R6cm1ZNjBLR2pC
eTI5aG5tU3Q5amZKYVJKby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAlvXsAMEAFvc+gMEA7B2mDANBgkq
hkiG9w0BAQsFAAOCAQEAezjWS18jnzC2Px6Wf3ECxc+wyOHiQCNF4BQ+gJkv/+cQ
BngBEMydo4Iwa+sAl8nMQg8vEGwde+iob0FYZXxtuRAJZj7zfXMSGR5dEFlPtG3F
f2j+hubVYMeqZjSTwBEYrGulJMwwqCG/dfGooUWlBz+NAURUNbVbSbk0tLvIK49N
9oWV9ntuQhjqtQM0C0WcXDssI2rMqQomYwPq2/odJe1zUcQ3P9fTQcS2T06/QA/a
b6OIRGAz1zVnbN1pBgiJO5qyLOWIucz7UHTFXojHjSxsxyV+UgljC3gL3TqvW5c1
7vE38u9RJJ6Z2Yv+gRVXtsP3VtgCPI2d+pdgRokWqw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:43 2024 by rpki-client on console-fra.rpki-client.org