Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/Y79z85ORFud3d-ZD5DBGiv8SXaY.roa
File: Y79z85ORFud3d-ZD5DBGiv8SXaY.roa (raw, json)
Hash identifier: SeajR+JbWDF5rkoQusL20rJT5IgHH+4KyG+N1ECIrNc=
Subject key identifier: 63:BF:73:F3:93:91:16:E7:77:77:E6:43:E4:30:46:8A:FF:12:5D:A6
Certificate issuer: /CN=a4f8436003d37602026b65531755ca8fcd31bed2
Certificate serial: 11CD0FDB
Authority key identifier: A4:F8:43:60:03:D3:76:02:02:6B:65:53:17:55:CA:8F:CD:31:BE:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/Y79z85ORFud3d-ZD5DBGiv8SXaY.roa
Signing time: Wed 22 Jun 2022 06:03:44 +0000
ROA not before: Wed 22 Jun 2022 06:03:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31027
IP address blocks: 212.98.96.0/24 maxlen: 24
62.12.32.0/20 maxlen: 20
62.12.48.0/21 maxlen: 21
80.88.128.0/20 maxlen: 20
46.32.156.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 298651611 (0x11cd0fdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4f8436003d37602026b65531755ca8fcd31bed2
Validity
Not Before: Jun 22 06:03:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63bf73f3939116e77777e643e430468aff125da6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:18:93:47:01:4f:bd:fe:86:72:55:94:8c:d8:
29:75:40:b5:51:4a:2b:09:3c:df:70:44:22:65:0a:
96:0f:31:e4:9b:22:c0:59:26:f0:1a:c9:27:3a:56:
76:23:84:7b:66:80:12:79:ed:94:b7:5a:6e:77:3c:
d3:b6:de:dc:6b:a2:b1:77:a3:69:ff:82:8f:18:ad:
26:1d:fd:99:44:d2:97:eb:a9:92:b7:a9:4a:08:32:
82:61:62:8d:14:87:9f:34:32:73:e5:58:3d:0f:19:
a5:1b:97:9d:b9:45:fd:9e:22:20:51:67:4e:04:b7:
06:4e:ae:83:48:07:8d:33:19:1d:c5:8d:13:01:93:
5e:09:2c:e3:51:b4:b1:8c:a2:65:70:0e:2f:24:27:
de:e4:f1:3a:c7:16:25:ca:7a:e7:6a:e6:2d:34:de:
f5:d5:16:a7:58:dc:1f:f2:1d:ff:d3:c2:12:56:24:
c2:52:a7:ff:37:f0:ce:7b:50:ff:46:1f:5f:3c:fc:
16:02:66:8f:42:95:b1:d5:53:7b:0a:e5:34:fd:7e:
ba:95:20:96:5d:58:37:58:9a:8d:df:f1:6e:aa:dd:
b4:ba:53:02:04:02:4b:5c:a6:b8:54:e5:54:91:b9:
69:38:b2:69:60:fa:1f:ba:84:af:c7:be:ae:1d:e8:
20:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:BF:73:F3:93:91:16:E7:77:77:E6:43:E4:30:46:8A:FF:12:5D:A6
X509v3 Authority Key Identifier:
keyid:A4:F8:43:60:03:D3:76:02:02:6B:65:53:17:55:CA:8F:CD:31:BE:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/Y79z85ORFud3d-ZD5DBGiv8SXaY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.32.156.0/22
62.12.32.0-62.12.55.255
80.88.128.0/20
212.98.96.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:a4:84:f8:19:c6:a8:44:c3:03:ce:12:88:65:de:6e:ab:d5:
fb:7e:08:21:f7:2a:3b:aa:6b:2a:bc:1e:6b:bd:7f:3c:6e:40:
e1:d9:37:83:8d:02:60:7d:ab:3f:d9:e8:1d:1c:ad:1b:67:62:
45:73:a8:24:3a:04:17:11:0d:df:fe:17:cc:8f:78:09:38:a9:
a5:c6:cb:98:80:fd:bd:09:77:6e:30:05:5f:76:a6:f4:46:8e:
67:b5:1c:42:6c:a1:eb:41:a3:94:6d:6c:83:d1:ea:50:d4:01:
89:99:a4:d1:3a:f0:ae:04:63:cf:9a:49:a3:5d:d0:48:45:25:
96:1d:95:b5:09:9b:59:3f:84:4b:ba:09:57:ac:69:0b:c7:dd:
09:b4:cd:d1:93:bd:de:00:ad:d8:d1:fa:e8:7e:dc:f7:27:b7:
63:2e:08:1d:fc:8e:b4:17:ac:ac:8d:7d:1e:95:e2:e8:00:dd:
9f:a6:bc:d8:aa:f8:76:76:d6:7f:8c:2f:08:c2:7b:52:19:0c:
73:45:44:2c:b2:b3:a8:c6:5a:82:33:84:39:0e:2f:af:70:04:
36:13:12:29:32:38:74:17:c2:7c:6c:1b:20:7b:dc:05:2c:17:
02:cf:b7:67:52:5d:98:9a:83:b8:d2:b3:75:e0:32:9f:f0:57:
12:b4:21:67
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgIEEc0P2zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NGY4NDM2MDAzZDM3NjAyMDI2YjY1NTMxNzU1Y2E4ZmNkMzFiZWQyMB4XDTIyMDYy
MjA2MDM0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjNiZjczZjM5Mzkx
MTZlNzc3NzdlNjQzZTQzMDQ2OGFmZjEyNWRhNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALwYk0cBT73+hnJVlIzYKXVAtVFKKwk833BEImUKlg8x5Jsi
wFkm8BrJJzpWdiOEe2aAEnntlLdabnc807be3GuisXejaf+CjxitJh39mUTSl+up
krepSggygmFijRSHnzQyc+VYPQ8ZpRuXnblF/Z4iIFFnTgS3Bk6ug0gHjTMZHcWN
EwGTXgks41G0sYyiZXAOLyQn3uTxOscWJcp652rmLTTe9dUWp1jcH/Id/9PCElYk
wlKn/zfwzntQ/0YfXzz8FgJmj0KVsdVTewrlNP1+upUgll1YN1iajd/xbqrdtLpT
AgQCS1ymuFTlVJG5aTiyaWD6H7qEr8e+rh3oIIECAwEAAaOCAiMwggIfMB0GA1Ud
DgQWBBRjv3Pzk5EW53d35kPkMEaK/xJdpjAfBgNVHSMEGDAWgBSk+ENgA9N2AgJr
ZVMXVcqPzTG+0jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3BQaERZQVBUZGdJQ2EyVlRGMVhLajgweHZ0SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWUvNTE1NjA4LTUwMTItNGE0MC1iMzI0LTI3YmY4M2NkZWQ2Yi8x
L1k3OXo4NU9SRnVkM2QtWkQ1REJHaXY4U1hhWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWUv
NTE1NjA4LTUwMTItNGE0MC1iMzI0LTI3YmY4M2NkZWQ2Yi8xL3BQaERZQVBUZGdJ
Q2EyVlRGMVhLajgweHZ0SS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA5
BggrBgEFBQcBBwEB/wQqMCgwJgQCAAEwIAMEAi4gnDAMAwQFPgwgAwQDPgwwAwQE
UFiAAwQA1GJgMA0GCSqGSIb3DQEBCwUAA4IBAQB8pIT4GcaoRMMDzhKIZd5uq9X7
fggh9yo7qmsqvB5rvX88bkDh2TeDjQJgfas/2egdHK0bZ2JFc6gkOgQXEQ3f/hfM
j3gJOKmlxsuYgP29CXduMAVfdqb0Ro5ntRxCbKHrQaOUbWyD0epQ1AGJmaTROvCu
BGPPmkmjXdBIRSWWHZW1CZtZP4RLuglXrGkLx90JtM3Rk73eAK3Y0froftz3J7dj
Lggd/I60F6ysjX0eleLoAN2fprzYqvh2dtZ/jC8IwntSGQxzRUQssrOoxlqCM4Q5
Di+vcAQ2ExIpMjh0F8J8bBsge9wFLBcCz7dnUl2YmoO40rN14DKf8FcStCFn
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:51 2024 by rpki-client on console-fra.rpki-client.org