Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/tQLjO2RSnCnnY9Wi9ujOx95tg0c.roa
File: tQLjO2RSnCnnY9Wi9ujOx95tg0c.roa (raw, json)
Hash identifier: 04HHI6ANBdefbWDTadAISM376n7Ud/8SvbbZgMzz5Vc=
Subject key identifier: B5:02:E3:3B:64:52:9C:29:E7:63:D5:A2:F6:E8:CE:C7:DE:6D:83:47
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 1D676C6B
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/tQLjO2RSnCnnY9Wi9ujOx95tg0c.roa
Signing time: Fri 10 Jun 2022 18:21:02 +0000
ROA not before: Fri 10 Jun 2022 18:21:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1299
IP address blocks: 109.72.124.0/22 maxlen: 22
109.72.120.0/23 maxlen: 23
81.22.128.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 493317227 (0x1d676c6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Jun 10 18:21:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b502e33b64529c29e763d5a2f6e8cec7de6d8347
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:38:25:46:67:7d:87:ab:e4:96:5c:2f:62:c6:
59:38:3a:5f:11:c1:5f:1a:28:f9:d5:8f:d3:4c:ad:
43:97:01:4f:61:ee:af:87:ef:7a:ab:f3:e0:04:6c:
70:4b:cb:3f:ab:57:91:c0:c7:49:e6:80:a7:e0:62:
b9:3e:6b:8a:9b:2b:b3:33:31:78:41:15:30:22:05:
e6:72:9d:9f:ff:de:29:8e:8e:f7:12:d1:f0:c3:61:
bb:b3:2a:87:9b:7c:1a:82:75:f7:95:61:a7:13:47:
23:2c:3e:f1:93:5f:03:33:bb:58:a9:bc:19:25:a3:
aa:cc:d5:4d:64:41:5f:67:43:9b:f9:0a:7e:67:97:
c1:28:fb:c9:87:07:7c:c6:af:43:74:ef:4b:e0:48:
25:9a:ff:66:44:a5:45:ec:5a:d3:98:2f:d5:23:99:
f4:08:b2:a9:0b:84:ee:32:76:bb:30:8d:b3:b3:a3:
77:19:a1:03:1e:22:34:21:f5:40:a2:ee:cd:e5:11:
a3:24:95:a8:c9:f7:a2:b2:f8:a6:af:cd:2f:5f:8f:
cb:25:6e:b1:29:ff:cd:58:55:3c:b3:df:b1:91:9f:
c3:d1:45:eb:a4:d2:9f:e6:73:14:31:14:ad:6c:95:
3c:9b:32:dc:cd:4e:84:3a:bb:6f:80:de:23:3f:45:
95:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:02:E3:3B:64:52:9C:29:E7:63:D5:A2:F6:E8:CE:C7:DE:6D:83:47
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/tQLjO2RSnCnnY9Wi9ujOx95tg0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.128.0/21
109.72.120.0/23
109.72.124.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:79:c8:6b:9f:c3:b5:b4:79:72:22:ab:f1:cd:0b:56:fb:5b:
34:d8:df:c8:99:7b:f7:f3:68:de:75:36:9f:1a:49:ac:ed:75:
7b:91:69:83:41:55:b1:17:5a:2d:e5:c3:6d:82:c3:30:aa:3e:
22:b8:c4:cf:7a:8c:2e:85:15:9a:ed:8c:2c:83:86:20:19:63:
0e:cb:d4:67:ae:d6:69:2b:0b:45:39:06:bc:88:33:1c:ec:c9:
d8:54:2d:65:05:50:56:b4:9c:7d:52:68:90:11:81:4b:43:91:
ea:f2:fc:2a:79:6e:4f:6b:ed:c0:3f:84:8a:70:03:0f:3d:dd:
9f:b7:8e:82:85:0d:fa:13:97:09:84:de:ad:4f:65:ff:79:77:
7b:f4:c3:15:9f:35:27:34:fd:a1:d9:ed:ba:ee:ed:34:1c:f2:
8d:ed:39:10:56:53:1b:82:3a:ac:9f:95:71:96:c0:8c:19:89:
a5:ef:d2:c3:82:c9:9e:7a:f5:b4:74:92:d4:c2:a1:b9:83:27:
4c:00:57:0e:b4:0f:eb:69:d7:2e:f0:21:8f:5d:17:8a:e4:4c:
be:05:c4:35:06:6c:44:20:fa:12:f1:87:9f:ec:f5:6b:ee:0e:
b0:e3:90:78:60:23:2f:10:5e:e6:c3:ee:f7:29:d9:f0:f9:c7:
e6:46:8f:c6
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEHWdsazANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ODJjZjgwOWMwZTNlOGU1NTUyZjlkMGRkMmUyN2UwZGQyZDhkYWJlMB4XDTIyMDYx
MDE4MjEwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjUwMmUzM2I2NDUy
OWMyOWU3NjNkNWEyZjZlOGNlYzdkZTZkODM0NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJA4JUZnfYer5JZcL2LGWTg6XxHBXxoo+dWP00ytQ5cBT2Hu
r4fveqvz4ARscEvLP6tXkcDHSeaAp+BiuT5ripsrszMxeEEVMCIF5nKdn//eKY6O
9xLR8MNhu7Mqh5t8GoJ195VhpxNHIyw+8ZNfAzO7WKm8GSWjqszVTWRBX2dDm/kK
fmeXwSj7yYcHfMavQ3TvS+BIJZr/ZkSlRexa05gv1SOZ9AiyqQuE7jJ2uzCNs7Oj
dxmhAx4iNCH1QKLuzeURoySVqMn3orL4pq/NL1+PyyVusSn/zVhVPLPfsZGfw9FF
66TSn+ZzFDEUrWyVPJsy3M1OhDq7b4DeIz9FlRUCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBS1AuM7ZFKcKedj1aL26M7H3m2DRzAfBgNVHSMEGDAWgBSYLPgJwOPo5VUv
nQ3S4n4N0tjavjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L21DejRDY0RqNk9WVkw1ME4wdUotRGRMWTJyNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2QvNjE2OGQ3LTk0NmMtNDU3NC05MWVhLTgyYWQxNDU1NWVhYS8x
L3RRTGpPMlJTbkNublk5V2k5dWpPeDk1dGcwYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Qv
NjE2OGQ3LTk0NmMtNDU3NC05MWVhLTgyYWQxNDU1NWVhYS8xL21DejRDY0RqNk9W
Vkw1ME4wdUotRGRMWTJyNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEA1EWgAMEAW1IeAMEAm1IfDANBgkq
hkiG9w0BAQsFAAOCAQEAannIa5/DtbR5ciKr8c0LVvtbNNjfyJl79/No3nU2nxpJ
rO11e5Fpg0FVsRdaLeXDbYLDMKo+IrjEz3qMLoUVmu2MLIOGIBljDsvUZ67WaSsL
RTkGvIgzHOzJ2FQtZQVQVrScfVJokBGBS0OR6vL8KnluT2vtwD+EinADDz3dn7eO
goUN+hOXCYTerU9l/3l3e/TDFZ81JzT9odntuu7tNBzyje05EFZTG4I6rJ+VcZbA
jBmJpe/Sw4LJnnr1tHSS1MKhuYMnTABXDrQP62nXLvAhj10XiuRMvgXENQZsRCD6
EvGHn+z1a+4OsOOQeGAjLxBe5sPu9ynZ8PnH5kaPxg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org