Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/7e9867-c534-468c-8d5e-e4f64b0de36a/1/m8RD7YNg-cUSvIttpxtMwDWuN_E.roa
File: m8RD7YNg-cUSvIttpxtMwDWuN_E.roa (raw, json)
Hash identifier: ik5QageXfTLSklVEjMPyBTnqw5I7z9Yc47kGdIS4Fvs=
Subject key identifier: 9B:C4:43:ED:83:60:F9:C5:12:BC:8B:6D:A7:1B:4C:C0:35:AE:37:F1
Certificate issuer: /CN=576567334e035639dd7ccb4976a9b270f726321d
Certificate serial: 17364FC6
Authority key identifier: 57:65:67:33:4E:03:56:39:DD:7C:CB:49:76:A9:B2:70:F7:26:32:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V2VnM04DVjndfMtJdqmycPcmMh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/7e9867-c534-468c-8d5e-e4f64b0de36a/1/m8RD7YNg-cUSvIttpxtMwDWuN_E.roa
Signing time: Tue 24 May 2022 07:54:13 +0000
ROA not before: Tue 24 May 2022 07:54:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35271
IP address blocks: 93.185.192.0/20 maxlen: 20
31.10.64.0/18 maxlen: 18
2a03:700::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 389435334 (0x17364fc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=576567334e035639dd7ccb4976a9b270f726321d
Validity
Not Before: May 24 07:54:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9bc443ed8360f9c512bc8b6da71b4cc035ae37f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b9:6c:92:2e:5c:ba:43:86:8e:a5:1f:0a:9c:
ad:06:2b:63:04:b3:0a:15:97:70:66:14:c2:c8:7b:
96:c6:6c:f5:4a:5e:c1:ac:9e:49:9a:99:d9:5d:6e:
98:45:30:c2:50:24:4a:de:c3:50:e3:e9:12:25:d5:
c5:6c:3a:4b:64:b2:db:1c:d7:d2:8b:32:0d:55:dc:
e3:8c:a4:35:a9:3e:a3:3a:4d:ba:75:27:7f:54:1a:
8c:ec:b9:b3:e2:f7:61:53:c0:90:4a:e4:b8:05:fc:
b6:f6:f2:e2:89:6a:d0:73:cb:e5:2b:48:dc:4a:0d:
f3:c3:4e:4b:75:6c:c1:f9:11:17:09:41:84:2e:b9:
2b:10:3c:41:92:cd:c5:d8:9a:05:cc:3e:73:63:87:
0f:8b:a2:49:fb:74:45:f7:60:fb:60:88:9f:0b:0e:
f9:ab:11:e2:65:45:06:d9:60:81:2f:e1:14:cf:bd:
fb:2e:ce:f6:cf:22:40:6f:a5:9b:a4:77:8c:92:0a:
aa:32:fd:9b:8b:b1:19:32:5d:fc:c9:fa:1a:b9:42:
61:1a:23:50:8f:e5:e7:0e:f0:8b:f3:39:b2:17:b4:
6b:55:f0:ee:c8:e8:52:b4:25:fa:6b:44:1b:b3:bf:
8d:1a:45:39:45:ff:2d:c8:a3:e7:c5:e1:fa:bb:17:
cb:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:C4:43:ED:83:60:F9:C5:12:BC:8B:6D:A7:1B:4C:C0:35:AE:37:F1
X509v3 Authority Key Identifier:
keyid:57:65:67:33:4E:03:56:39:DD:7C:CB:49:76:A9:B2:70:F7:26:32:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V2VnM04DVjndfMtJdqmycPcmMh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/7e9867-c534-468c-8d5e-e4f64b0de36a/1/m8RD7YNg-cUSvIttpxtMwDWuN_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/7e9867-c534-468c-8d5e-e4f64b0de36a/1/V2VnM04DVjndfMtJdqmycPcmMh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.10.64.0/18
93.185.192.0/20
IPv6:
2a03:700::/32
Signature Algorithm: sha256WithRSAEncryption
03:1e:ee:6c:3b:1a:8c:a6:7b:5c:2b:d6:eb:37:d1:fe:bb:b0:
3b:dc:e5:fa:40:4d:ec:91:46:24:39:75:3b:d9:5a:6e:a3:92:
aa:c5:b7:43:f6:cc:04:21:36:8a:83:c0:9e:b5:d3:92:b3:14:
f4:3a:73:b7:03:60:23:a7:b3:11:89:3e:46:58:29:9b:1d:d6:
72:ea:d9:bb:12:05:a5:6c:7f:c0:ad:d5:ce:f0:4f:2e:d0:5a:
7c:da:2f:1c:05:11:af:cd:59:52:bf:4c:96:1b:bb:c5:f8:16:
13:6a:99:fb:48:63:3e:2c:cd:1a:a8:37:75:b8:29:71:53:f4:
bb:cd:72:16:06:ea:aa:d3:b2:3d:6d:f0:a5:ba:b5:26:e7:be:
d7:52:de:1e:0d:28:4a:67:9d:db:c8:4d:a7:89:5f:b9:d9:66:
15:90:01:1d:ad:cb:9b:2b:6f:5a:26:bf:61:8b:85:a6:96:c0:
3d:9c:ff:8e:c5:e4:34:6d:a6:40:f2:46:0d:ac:7a:ed:82:a9:
62:8b:af:21:50:41:c4:33:ad:5a:29:f4:38:8c:12:1d:a5:5d:
b5:3b:bc:64:ed:51:06:3a:76:3f:89:a1:de:01:30:9b:6f:2f:
5a:03:40:f7:8c:11:21:5a:35:da:00:39:1c:d1:f2:70:fe:e6:
0c:4d:34:00
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEFzZPxjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NzY1NjczMzRlMDM1NjM5ZGQ3Y2NiNDk3NmE5YjI3MGY3MjYzMjFkMB4XDTIyMDUy
NDA3NTQxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWJjNDQzZWQ4MzYw
ZjljNTEyYmM4YjZkYTcxYjRjYzAzNWFlMzdmMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL25bJIuXLpDho6lHwqcrQYrYwSzChWXcGYUwsh7lsZs9Upe
wayeSZqZ2V1umEUwwlAkSt7DUOPpEiXVxWw6S2Sy2xzX0osyDVXc44ykNak+ozpN
unUnf1QajOy5s+L3YVPAkErkuAX8tvby4olq0HPL5StI3EoN88NOS3VswfkRFwlB
hC65KxA8QZLNxdiaBcw+c2OHD4uiSft0Rfdg+2CInwsO+asR4mVFBtlggS/hFM+9
+y7O9s8iQG+lm6R3jJIKqjL9m4uxGTJd/Mn6GrlCYRojUI/l5w7wi/M5she0a1Xw
7sjoUrQl+mtEG7O/jRpFOUX/Lcij58Xh+rsXy9MCAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBSbxEPtg2D5xRK8i22nG0zANa438TAfBgNVHSMEGDAWgBRXZWczTgNWOd18
y0l2qbJw9yYyHTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1YyVm5NMDREVmpuZGZNdEpkcW15Y1BjbU1oMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTAvN2U5ODY3LWM1MzQtNDY4Yy04ZDVlLWU0ZjY0YjBkZTM2YS8x
L204UkQ3WU5nLWNVU3ZJdHRweHRNd0RXdU5fRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTAv
N2U5ODY3LWM1MzQtNDY4Yy04ZDVlLWU0ZjY0YjBkZTM2YS8xL1YyVm5NMDREVmpu
ZGZNdEpkcW15Y1BjbU1oMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEBh8KQAMEBF25wDANBAIAAjAHAwUA
KgMHADANBgkqhkiG9w0BAQsFAAOCAQEAAx7ubDsajKZ7XCvW6zfR/ruwO9zl+kBN
7JFGJDl1O9labqOSqsW3Q/bMBCE2ioPAnrXTkrMU9DpztwNgI6ezEYk+Rlgpmx3W
curZuxIFpWx/wK3VzvBPLtBafNovHAURr81ZUr9Mlhu7xfgWE2qZ+0hjPizNGqg3
dbgpcVP0u81yFgbqqtOyPW3wpbq1Jue+11LeHg0oSmed28hNp4lfudlmFZABHa3L
mytvWia/YYuFppbAPZz/jsXkNG2mQPJGDax67YKpYouvIVBBxDOtWin0OIwSHaVd
tTu8ZO1RBjp2P4mh3gEwm28vWgNA94wRIVo12gA5HNHycP7mDE00AA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:52 2024 by rpki-client on console-fra.rpki-client.org