Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/J0xIx3GgFgnFVv40-zPs9g7zSoQ.roa
File: J0xIx3GgFgnFVv40-zPs9g7zSoQ.roa (raw, json)
Hash identifier: LuTdCyjR0tyZZJc+dU6CWq7r9GgyMzbEflMYHfxHJ2E=
Subject key identifier: 27:4C:48:C7:71:A0:16:09:C5:56:FE:34:FB:33:EC:F6:0E:F3:4A:84
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 01852BF878591784E0489F4DCBAC10CE0497
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/J0xIx3GgFgnFVv40-zPs9g7zSoQ.roa
Signing time: Mon 19 Dec 2022 19:59:42 +0000
ROA not before: Mon 19 Dec 2022 19:59:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 81.22.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2b:f8:78:59:17:84:e0:48:9f:4d:cb:ac:10:ce:04:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Dec 19 19:59:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=274c48c771a01609c556fe34fb33ecf60ef34a84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:19:d8:56:8b:7a:05:2f:fb:86:08:c6:77:c9:
96:23:05:7b:c4:bd:71:e2:b6:2e:f6:fe:4a:16:22:
fc:f2:4e:ff:b0:0b:b0:01:46:18:0f:da:b4:61:80:
2a:42:64:86:08:4a:b7:00:0e:37:87:a5:82:7b:8c:
c5:5b:d8:a4:e7:50:f5:5d:e3:4a:1c:b2:4c:28:0b:
a7:03:24:08:a0:42:a3:9f:22:05:fb:06:36:03:6a:
f8:13:84:02:08:e0:ec:02:21:fe:b6:97:d2:7f:eb:
2d:dd:05:67:84:b7:43:73:f4:3b:35:75:e5:26:03:
c8:c0:ad:6e:53:6e:32:d2:84:d6:8c:5d:25:fa:b7:
f7:f4:1d:d7:86:ba:b1:3a:aa:3a:09:51:c4:0b:07:
44:b4:a3:31:08:05:2d:88:7b:a9:39:4e:21:a4:16:
4a:11:a7:2c:01:72:e8:09:b7:6f:e7:9e:a4:43:10:
5a:48:9c:bc:0d:8a:30:15:cf:59:f0:ac:cc:24:75:
db:ff:b1:43:e8:25:83:4e:07:e2:36:7f:67:06:64:
eb:03:33:83:af:99:af:9b:88:30:af:64:da:2b:94:
d7:27:ca:f8:7f:ea:c6:50:36:7f:90:19:5a:ea:f4:
4a:93:e6:83:92:25:04:56:5b:71:78:32:4d:c2:55:
92:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:4C:48:C7:71:A0:16:09:C5:56:FE:34:FB:33:EC:F6:0E:F3:4A:84
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/J0xIx3GgFgnFVv40-zPs9g7zSoQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.133.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:45:3d:00:b6:7b:7c:38:f5:69:e9:b8:e1:00:8c:10:59:55:
71:11:d5:64:35:8f:30:6f:23:ea:21:e1:84:cf:f3:1c:1d:26:
6a:fc:a7:8a:b3:cf:3a:7c:c7:06:04:4d:61:2e:6b:07:2a:01:
eb:5c:8f:c7:e5:8c:b2:eb:b3:31:f8:4a:16:23:0c:02:5c:07:
4f:82:ff:30:d3:a2:d7:b9:35:1b:da:58:3e:9a:a6:be:1c:a5:
46:d0:74:ca:93:68:6f:cb:8c:bf:94:b1:49:9c:16:14:b2:b1:
32:ed:f6:8b:ca:c1:96:83:ef:03:ac:0b:69:d4:b3:3e:9c:0d:
f6:82:3a:79:7f:37:59:5c:14:22:db:01:36:dc:44:a0:50:ea:
74:31:26:ee:f1:d9:f2:86:e8:f2:82:90:b5:66:84:6e:6b:86:
96:70:31:20:a0:0f:a7:59:f4:f3:18:d8:c4:21:6e:e0:e2:23:
92:ca:29:de:31:98:dd:95:bd:e1:6e:f2:7c:82:65:28:1b:4d:
fc:e0:74:1d:a9:43:20:33:6f:51:5d:56:5c:c7:da:65:7b:91:
89:6a:79:a6:98:cd:81:ed:73:da:47:2e:f8:9e:19:4c:27:06:
5a:b7:22:71:8c:70:a6:89:5c:30:24:02:5b:c4:8b:41:90:ef:
9f:70:80:ce
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYUr+HhZF4TgSJ9Ny6wQzgSXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk4MmNmODA5YzBlM2U4ZTU1NTJmOWQwZGQyZTI3ZTBkZDJk
OGRhYmUwHhcNMjIxMjE5MTk1OTQyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNzRjNDhjNzcxYTAxNjA5YzU1NmZlMzRmYjMzZWNmNjBlZjM0YTg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAohnYVot6BS/7hgjGd8mWIwV7xL1x
4rYu9v5KFiL88k7/sAuwAUYYD9q0YYAqQmSGCEq3AA43h6WCe4zFW9ik51D1XeNK
HLJMKAunAyQIoEKjnyIF+wY2A2r4E4QCCODsAiH+tpfSf+st3QVnhLdDc/Q7NXXl
JgPIwK1uU24y0oTWjF0l+rf39B3XhrqxOqo6CVHECwdEtKMxCAUtiHupOU4hpBZK
EacsAXLoCbdv556kQxBaSJy8DYowFc9Z8KzMJHXb/7FD6CWDTgfiNn9nBmTrAzOD
r5mvm4gwr2TaK5TXJ8r4f+rGUDZ/kBla6vRKk+aDkiUEVltxeDJNwlWSwQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCdMSMdxoBYJxVb+NPsz7PYO80qEMB8GA1UdIwQY
MBaAFJgs+AnA4+jlVS+dDdLifg3S2Nq+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEt
ODJhZDE0NTU1ZWFhLzEvSjB4SXgzR2dGZ25GVnY0MC16UHM5Zzd6U29RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEtODJhZDE0NTU1ZWFh
LzEvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAURaFMA0G
CSqGSIb3DQEBCwUAA4IBAQBKRT0Atnt8OPVp6bjhAIwQWVVxEdVkNY8wbyPqIeGE
z/McHSZq/KeKs886fMcGBE1hLmsHKgHrXI/H5Yyy67Mx+EoWIwwCXAdPgv8w06LX
uTUb2lg+mqa+HKVG0HTKk2hvy4y/lLFJnBYUsrEy7faLysGWg+8DrAtp1LM+nA32
gjp5fzdZXBQi2wE23ESgUOp0MSbu8dnyhujygpC1ZoRua4aWcDEgoA+nWfTzGNjE
IW7g4iOSyineMZjdlb3hbvJ8gmUoG0384HQdqUMgM29RXVZcx9ple5GJanmmmM2B
7XPaRy74nhlMJwZatyJxjHCmiVwwJAJbxItBkO+fcIDO
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:45 2024 by rpki-client on console-ams.rpki-client.org