Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/sQe8X4Gy7JA2RSnSo7FyLYBBVes.roa
File: sQe8X4Gy7JA2RSnSo7FyLYBBVes.roa (raw, json)
Hash identifier: OqE04JaS179ar+sltXpitgOGx4HUuDazk6AcRJU8WyA=
Subject key identifier: B1:07:BC:5F:81:B2:EC:90:36:45:29:D2:A3:B1:72:2D:80:41:55:EB
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 01841D8C17E33D59AED655F04E661688C78F
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/sQe8X4Gy7JA2RSnSo7FyLYBBVes.roa
Signing time: Fri 28 Oct 2022 07:43:51 +0000
ROA not before: Fri 28 Oct 2022 07:43:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 81.22.136.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1d:8c:17:e3:3d:59:ae:d6:55:f0:4e:66:16:88:c7:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Oct 28 07:43:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b107bc5f81b2ec90364529d2a3b1722d804155eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:b4:e9:d6:9d:89:ce:1e:97:47:0d:c2:c5:e8:
43:15:e4:d5:e2:56:8c:ea:58:55:73:f8:47:5b:23:
7a:a0:86:8e:ab:4d:34:9a:16:27:0a:61:a2:b0:6f:
be:f0:83:5d:5d:d0:40:76:61:92:3f:5d:16:14:09:
f4:c9:e5:ad:88:32:d3:30:f6:62:06:4a:f2:ee:bd:
8f:4a:a2:5b:52:f5:3e:7a:17:b4:6d:1a:a2:16:3e:
1d:38:9d:fe:3a:fe:92:14:99:ae:ee:0d:cc:cb:7b:
97:41:cb:d0:51:90:9d:fc:9e:58:2f:9a:b1:87:96:
66:0b:f9:82:b8:d4:e8:c5:4d:f9:af:6e:b9:7b:3b:
71:20:d3:a2:70:5f:22:fe:de:ec:c7:76:a2:47:92:
fd:68:76:8f:ee:6c:78:dc:99:36:3c:d9:11:5f:c0:
7e:7c:44:df:b3:16:5d:37:48:00:50:32:ed:a6:b0:
34:23:53:07:00:9f:61:02:2d:d3:c4:d9:ff:cc:81:
b5:1e:c6:5b:5c:2b:af:1e:02:61:73:cb:07:6a:b6:
7c:fb:fa:57:79:63:35:c6:8c:ed:5f:e1:e7:cb:46:
d6:af:18:7e:06:b2:3e:40:03:8a:61:e1:1b:66:29:
04:e3:8f:11:ad:32:d6:5d:36:5c:ab:86:1f:5b:7a:
f2:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:07:BC:5F:81:B2:EC:90:36:45:29:D2:A3:B1:72:2D:80:41:55:EB
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/sQe8X4Gy7JA2RSnSo7FyLYBBVes.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.136.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:99:2e:ff:c3:19:fc:93:e3:d4:f1:a3:c2:1c:12:25:48:09:
bb:af:a3:0d:91:dd:07:a7:1b:38:e6:f9:24:ee:65:46:f9:2f:
76:15:9b:6d:94:46:62:dd:23:6e:a1:72:22:a7:44:f2:20:bc:
e6:b5:79:d1:ea:54:54:5c:db:ab:cb:ac:67:cf:ac:50:2e:55:
49:88:14:2e:6c:e4:ca:c6:fa:dc:50:9b:60:54:4b:c7:9b:26:
5d:7b:83:32:54:44:f4:4c:0c:b9:d9:b7:67:f7:a1:c8:77:7b:
e9:ea:05:85:91:ae:25:9b:d6:84:0f:a7:11:a7:bb:20:d0:4c:
c1:d4:1d:b5:fc:3d:dc:47:95:8e:a0:53:0f:1c:30:03:58:e6:
fb:52:68:17:22:8f:70:79:05:53:58:6c:cb:ba:d9:e7:29:d1:
f2:08:0b:c7:c6:57:68:e8:d1:53:af:6e:5d:fb:ee:6a:16:86:
76:4d:3c:fc:a3:36:18:52:06:18:41:9a:31:14:0d:e5:d2:55:
29:6c:3d:8d:ec:d5:33:55:2a:a5:66:92:23:39:79:c8:b1:d7:
14:1a:04:5c:c2:13:c6:82:ff:e5:b1:05:9d:1a:00:fb:bd:2c:
5e:2f:c3:20:88:f3:73:07:d8:7c:2c:f5:b2:93:88:f1:95:6e:
96:36:27:07
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYQdjBfjPVmu1lXwTmYWiMePMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk4MmNmODA5YzBlM2U4ZTU1NTJmOWQwZGQyZTI3ZTBkZDJk
OGRhYmUwHhcNMjIxMDI4MDc0MzUxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMTA3YmM1ZjgxYjJlYzkwMzY0NTI5ZDJhM2IxNzIyZDgwNDE1NWViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlbTp1p2Jzh6XRw3CxehDFeTV4laM
6lhVc/hHWyN6oIaOq000mhYnCmGisG++8INdXdBAdmGSP10WFAn0yeWtiDLTMPZi
Bkry7r2PSqJbUvU+ehe0bRqiFj4dOJ3+Ov6SFJmu7g3My3uXQcvQUZCd/J5YL5qx
h5ZmC/mCuNToxU35r265eztxINOicF8i/t7sx3aiR5L9aHaP7mx43Jk2PNkRX8B+
fETfsxZdN0gAUDLtprA0I1MHAJ9hAi3TxNn/zIG1HsZbXCuvHgJhc8sHarZ8+/pX
eWM1xoztX+Hny0bWrxh+BrI+QAOKYeEbZikE448RrTLWXTZcq4YfW3ryWQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLEHvF+BsuyQNkUp0qOxci2AQVXrMB8GA1UdIwQY
MBaAFJgs+AnA4+jlVS+dDdLifg3S2Nq+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEt
ODJhZDE0NTU1ZWFhLzEvc1FlOFg0R3k3SkEyUlNuU283RnlMWUJCVmVzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEtODJhZDE0NTU1ZWFh
LzEvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCURaIMA0G
CSqGSIb3DQEBCwUAA4IBAQAemS7/wxn8k+PU8aPCHBIlSAm7r6MNkd0Hpxs45vkk
7mVG+S92FZttlEZi3SNuoXIip0TyILzmtXnR6lRUXNury6xnz6xQLlVJiBQubOTK
xvrcUJtgVEvHmyZde4MyVET0TAy52bdn96HId3vp6gWFka4lm9aED6cRp7sg0EzB
1B21/D3cR5WOoFMPHDADWOb7UmgXIo9weQVTWGzLutnnKdHyCAvHxldo6NFTr25d
++5qFoZ2TTz8ozYYUgYYQZoxFA3l0lUpbD2N7NUzVSqlZpIjOXnIsdcUGgRcwhPG
gv/lsQWdGgD7vSxeL8MgiPNzB9h8LPWyk4jxlW6WNicH
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org