Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/iST7k12yH6fgOiV5U2Ct4-GYIMo.roa
File: iST7k12yH6fgOiV5U2Ct4-GYIMo.roa (raw, json)
Hash identifier: sD8zXwMNFouLdCz0lBncX9hm9VajC4xze5SGg6zINWQ=
Subject key identifier: 89:24:FB:93:5D:B2:1F:A7:E0:3A:25:79:53:60:AD:E3:E1:98:20:CA
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 01830CC862B6EC8AFF2E5F13143798B8A7BB
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/iST7k12yH6fgOiV5U2Ct4-GYIMo.roa
Signing time: Mon 05 Sep 2022 08:33:22 +0000
ROA not before: Mon 05 Sep 2022 08:33:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 193.37.196.0/22 maxlen: 24
178.239.28.0/22 maxlen: 24
178.239.28.0/23 maxlen: 24
178.239.30.0/23 maxlen: 24
2.58.232.0/23 maxlen: 24
2.58.232.0/22 maxlen: 24
2.58.234.0/23 maxlen: 24
45.67.200.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:0c:c8:62:b6:ec:8a:ff:2e:5f:13:14:37:98:b8:a7:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Sep 5 08:33:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8924fb935db21fa7e03a25795360ade3e19820ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:29:29:cf:2a:4f:12:77:4f:5e:67:c6:27:05:
f4:3e:a5:03:7a:12:dd:5b:3a:d6:ad:be:87:88:3b:
92:23:c3:55:66:cd:52:08:eb:30:22:55:c1:32:f3:
28:33:17:61:52:54:68:27:11:19:d6:8c:b2:bb:2c:
be:81:f2:b5:6a:10:21:1c:27:e2:db:16:e1:02:7f:
b7:05:c7:77:c4:64:62:25:66:0f:86:14:31:7c:b7:
f4:b1:1e:3a:f6:4f:c7:ac:72:06:04:fc:81:7e:21:
cc:e1:1e:1f:d4:60:84:d9:e9:14:67:84:bf:6f:de:
a5:15:70:e0:d5:fb:4a:75:3c:83:10:9b:36:4a:b5:
20:91:18:38:d5:94:b9:d1:9e:97:9e:99:8c:26:2f:
00:92:47:42:d0:62:a4:1a:ef:f1:73:de:b8:42:9d:
16:85:35:f2:0b:7d:67:c3:8e:b5:1c:04:f1:1f:a9:
4e:9e:ca:f7:48:8f:38:30:36:a6:57:30:f8:3a:38:
d0:53:6c:61:b3:c0:14:02:0d:f6:d6:71:2a:04:79:
a1:c7:a1:10:06:01:83:df:f8:db:48:0a:8b:72:a8:
e8:32:0a:49:40:ee:cd:f4:a4:b2:17:ee:4d:9c:16:
26:99:42:9f:80:8c:66:17:2a:64:76:4d:cf:48:92:
b3:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:24:FB:93:5D:B2:1F:A7:E0:3A:25:79:53:60:AD:E3:E1:98:20:CA
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/iST7k12yH6fgOiV5U2Ct4-GYIMo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.232.0/22
45.67.200.0/22
178.239.28.0/22
193.37.196.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:a9:4a:e1:ac:76:a5:59:23:08:ba:db:76:76:68:8a:d6:99:
f2:69:a6:9c:b4:fc:6e:f9:2d:88:48:e6:ae:d6:a0:3d:da:42:
35:ed:8a:06:1e:0f:89:10:a3:b1:be:b4:cb:ce:99:41:34:1e:
5a:b7:ca:e9:79:e6:35:51:fb:1a:17:cd:dc:05:a6:39:cd:7a:
96:81:0f:a6:6c:73:55:a4:80:5f:76:5b:1a:2c:5b:59:10:55:
5e:e8:86:9a:39:08:a5:69:cf:50:cb:3b:ec:38:93:48:8d:20:
98:44:eb:3e:a1:ae:e0:93:dd:ba:2b:e4:80:4f:0a:2a:84:81:
2e:1f:5d:d5:e5:ea:0d:13:e3:03:e8:26:6c:93:06:a2:30:e2:
7b:91:3b:fc:c3:5e:2c:d2:26:ed:aa:05:2e:1b:fd:41:bc:a4:
08:1e:bb:a9:9a:a4:e7:ac:00:54:5a:72:4a:98:6f:5e:94:03:
21:65:3b:a1:68:9a:e5:59:37:1d:8d:62:b8:23:81:ef:a5:28:
83:23:f7:06:be:0b:3e:43:e5:c2:d9:75:f4:dc:f7:76:31:a0:
c9:de:de:a0:dc:25:20:9d:b7:ac:6c:c7:35:75:88:f3:ae:8c:
87:20:cf:03:01:c1:60:b2:9a:50:e0:85:3e:97:5a:7b:25:2a:
cf:0e:49:93
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAYMMyGK27Ir/Ll8TFDeYuKe7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzNjc3ZDdjYjkyNzFjZTM2MTI1NmU5ODMzY2M3YjE0ZmQw
MjNlYmUwHhcNMjIwOTA1MDgzMzIyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OTI0ZmI5MzVkYjIxZmE3ZTAzYTI1Nzk1MzYwYWRlM2UxOTgyMGNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArSkpzypPEndPXmfGJwX0PqUDehLd
WzrWrb6HiDuSI8NVZs1SCOswIlXBMvMoMxdhUlRoJxEZ1oyyuyy+gfK1ahAhHCfi
2xbhAn+3Bcd3xGRiJWYPhhQxfLf0sR469k/HrHIGBPyBfiHM4R4f1GCE2ekUZ4S/
b96lFXDg1ftKdTyDEJs2SrUgkRg41ZS50Z6XnpmMJi8AkkdC0GKkGu/xc964Qp0W
hTXyC31nw461HATxH6lOnsr3SI84MDamVzD4OjjQU2xhs8AUAg321nEqBHmhx6EQ
BgGD3/jbSAqLcqjoMgpJQO7N9KSyF+5NnBYmmUKfgIxmFypkdk3PSJKz8QIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFIkk+5Ndsh+n4DoleVNgrePhmCDKMB8GA1UdIwQY
MBaAFJNnfXy5JxzjYSVumDPMexT9Aj6+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYt
OTlhY2I5OWNlNzU0LzEvaVNUN2sxMnlINmZnT2lWNVUyQ3Q0LUdZSU1vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYtOTlhY2I5OWNlNzU0
LzEvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQCAjroAwQC
LUPIAwQCsu8cAwQCwSXEMA0GCSqGSIb3DQEBCwUAA4IBAQBvqUrhrHalWSMIutt2
dmiK1pnyaaactPxu+S2ISOau1qA92kI17YoGHg+JEKOxvrTLzplBNB5at8rpeeY1
UfsaF83cBaY5zXqWgQ+mbHNVpIBfdlsaLFtZEFVe6IaaOQilac9QyzvsOJNIjSCY
ROs+oa7gk926K+SATwoqhIEuH13V5eoNE+MD6CZskwaiMOJ7kTv8w14s0ibtqgUu
G/1BvKQIHrupmqTnrABUWnJKmG9elAMhZTuhaJrlWTcdjWK4I4HvpSiDI/cGvgs+
Q+XC2XX03Pd2MaDJ3t6g3CUgnbesbMc1dYjzroyHIM8DAcFgsppQ4IU+l1p7JSrP
DkmT
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org