Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/rapukYaNv0rIQx0_a-JtCXurLt8.roa
File: rapukYaNv0rIQx0_a-JtCXurLt8.roa (raw, json)
Hash identifier: iW7tKweHMyWHkWDoO7CWzz23LhDMrD0CBgQv9BPX2IE=
Subject key identifier: AD:AA:6E:91:86:8D:BF:4A:C8:43:1D:3F:6B:E2:6D:09:7B:AB:2E:DF
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 0777CCF8
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/rapukYaNv0rIQx0_a-JtCXurLt8.roa
Signing time: Sat 01 Jan 2022 05:04:19 +0000
ROA not before: Sat 01 Jan 2022 05:04:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 88.214.52.0/22 maxlen: 24
178.239.28.0/22 maxlen: 24
2.58.232.0/22 maxlen: 24
45.67.200.0/22 maxlen: 24
45.87.44.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125291768 (0x777ccf8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Jan 1 05:04:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=adaa6e91868dbf4ac8431d3f6be26d097bab2edf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:36:a8:2d:a1:02:c7:cf:83:30:c0:36:d0:65:
a9:95:96:3d:30:69:27:10:07:4c:ae:63:11:5e:27:
bd:50:0c:38:80:47:d4:90:3a:9f:30:e1:a8:ac:7b:
8c:34:22:ea:4b:73:92:1c:7f:aa:6f:a7:60:00:f0:
ad:ee:b2:78:26:d5:43:fa:e9:44:b8:ce:52:28:38:
b6:d2:5e:e9:be:6a:92:5c:d9:ce:9f:3f:c7:09:08:
e4:b0:d8:b2:5a:c4:45:f4:80:85:eb:fe:3d:64:be:
af:b3:8c:64:49:46:c0:6e:9b:d0:f4:28:db:8f:52:
3d:ec:7e:35:42:28:f7:d9:17:7f:ea:15:66:bf:86:
e8:7a:72:29:fa:07:50:c3:c2:db:52:ef:71:1a:20:
0a:35:67:d1:f1:35:44:bf:47:8d:2b:92:9d:b2:f7:
76:60:07:68:1b:eb:f9:17:4f:dd:53:90:e3:fa:fd:
8d:cf:f6:18:16:03:fb:07:df:30:39:8d:11:16:7d:
35:1a:5e:7a:14:21:8e:0c:4a:3a:b6:23:a1:7f:06:
08:55:f3:3e:f2:38:16:e2:70:be:f6:d1:f9:d0:08:
9b:17:40:95:d5:7e:fd:24:97:10:a8:bf:a3:9a:75:
02:62:e4:a9:34:5d:82:31:90:8a:b4:ac:4e:bd:e3:
79:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:AA:6E:91:86:8D:BF:4A:C8:43:1D:3F:6B:E2:6D:09:7B:AB:2E:DF
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/rapukYaNv0rIQx0_a-JtCXurLt8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.232.0/22
45.67.200.0/22
45.87.44.0/22
88.214.52.0/22
178.239.28.0/22
Signature Algorithm: sha256WithRSAEncryption
56:58:af:87:fe:3d:b3:69:06:a7:36:28:08:8e:58:66:7a:9d:
96:92:23:57:42:7f:09:5d:c3:71:72:6d:51:4a:f8:c1:83:0e:
ea:cb:41:58:b2:2c:1d:21:4d:71:f5:cf:77:1e:3a:68:0c:6c:
d7:18:c0:3c:c3:6b:da:5c:ef:58:15:79:c3:e1:c0:1b:10:19:
9b:e1:0a:eb:ba:22:d2:bc:46:77:83:dc:ef:42:9c:07:63:ed:
2f:ca:2e:c8:d3:6c:4d:7e:31:cb:a1:cf:c2:d0:1f:8a:89:63:
60:2c:27:db:f9:45:23:36:22:e4:d1:de:85:a5:99:20:80:4e:
77:b7:e2:f1:6b:a4:eb:ef:90:47:a0:4e:1c:f8:24:06:02:27:
e0:51:fd:8a:c4:96:37:4b:74:7c:a3:a9:4b:6a:2f:36:f4:f0:
4a:0d:d6:8a:df:58:c7:50:98:86:6a:cf:28:cb:5b:a1:6b:94:
9d:65:7b:fe:c5:c8:95:aa:32:03:8e:29:1b:24:35:45:1e:c8:
d6:bb:21:be:ec:f2:e2:70:f7:37:b1:da:32:60:42:fd:bb:d0:
b2:8e:38:26:1c:2f:54:42:84:4b:9f:41:79:14:77:86:9a:bc:
67:d8:87:9e:d3:b2:53:76:42:39:ad:91:eb:56:b8:0f:6d:ed:
f6:fb:b4:f8
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIEB3fM+DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MzY3N2Q3Y2I5MjcxY2UzNjEyNTZlOTgzM2NjN2IxNGZkMDIzZWJlMB4XDTIyMDEw
MTA1MDQxOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWRhYTZlOTE4Njhk
YmY0YWM4NDMxZDNmNmJlMjZkMDk3YmFiMmVkZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ42qC2hAsfPgzDANtBlqZWWPTBpJxAHTK5jEV4nvVAMOIBH
1JA6nzDhqKx7jDQi6ktzkhx/qm+nYADwre6yeCbVQ/rpRLjOUig4ttJe6b5qklzZ
zp8/xwkI5LDYslrERfSAhev+PWS+r7OMZElGwG6b0PQo249SPex+NUIo99kXf+oV
Zr+G6HpyKfoHUMPC21LvcRogCjVn0fE1RL9HjSuSnbL3dmAHaBvr+RdP3VOQ4/r9
jc/2GBYD+wffMDmNERZ9NRpeehQhjgxKOrYjoX8GCFXzPvI4FuJwvvbR+dAImxdA
ldV+/SSXEKi/o5p1AmLkqTRdgjGQirSsTr3jeRkCAwEAAaOCAiEwggIdMB0GA1Ud
DgQWBBStqm6Rho2/SshDHT9r4m0Je6su3zAfBgNVHSMEGDAWgBSTZ318uScc42El
bpgzzHsU/QI+vjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2syZDlmTGtuSE9OaEpXNllNOHg3RlAwQ1ByNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzgvYTljNmRhLThlYTAtNDZiNy1hMWE2LTk5YWNiOTljZTc1NC8x
L3JhcHVrWWFOdjBySVF4MF9hLUp0Q1h1ckx0OC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzgv
YTljNmRhLThlYTAtNDZiNy1hMWE2LTk5YWNiOTljZTc1NC8xL2syZDlmTGtuSE9O
aEpXNllNOHg3RlAwQ1ByNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA3
BggrBgEFBQcBBwEB/wQoMCYwJAQCAAEwHgMEAgI66AMEAi1DyAMEAi1XLAMEAljW
NAMEArLvHDANBgkqhkiG9w0BAQsFAAOCAQEAVlivh/49s2kGpzYoCI5YZnqdlpIj
V0J/CV3DcXJtUUr4wYMO6stBWLIsHSFNcfXPdx46aAxs1xjAPMNr2lzvWBV5w+HA
GxAZm+EK67oi0rxGd4Pc70KcB2PtL8ouyNNsTX4xy6HPwtAfioljYCwn2/lFIzYi
5NHehaWZIIBOd7fi8Wuk6++QR6BOHPgkBgIn4FH9isSWN0t0fKOpS2ovNvTwSg3W
it9Yx1CYhmrPKMtboWuUnWV7/sXIlaoyA44pGyQ1RR7I1rshvuzy4nD3N7HaMmBC
/bvQso44JhwvVEKES59BeRR3hpq8Z9iHntOyU3ZCOa2R61a4D23t9vu0+A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org