Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/bd3a46-727b-476c-a789-c8c991cd89d5/1/S_XyMJYxhSrdWWuTdy6AZT0-3Ds.roa
File: S_XyMJYxhSrdWWuTdy6AZT0-3Ds.roa (raw, json)
Hash identifier: 3YLx6UfvJzQblvlZhosmN5D0NE61725sm9C2aDkr0U8=
Subject key identifier: 4B:F5:F2:30:96:31:85:2A:DD:59:6B:93:77:2E:80:65:3D:3E:DC:3B
Certificate issuer: /CN=074ad23a4cfa31b6d55ebca16c5d14c404ba6cad
Certificate serial: 01C7509E
Authority key identifier: 07:4A:D2:3A:4C:FA:31:B6:D5:5E:BC:A1:6C:5D:14:C4:04:BA:6C:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B0rSOkz6MbbVXryhbF0UxAS6bK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/bd3a46-727b-476c-a789-c8c991cd89d5/1/S_XyMJYxhSrdWWuTdy6AZT0-3Ds.roa
Signing time: Sat 01 Jan 2022 16:02:44 +0000
ROA not before: Sat 01 Jan 2022 16:02:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211678
IP address blocks: 193.239.202.0/24 maxlen: 24
5.145.178.0/23 maxlen: 23
2a10:a8c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29839518 (0x1c7509e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=074ad23a4cfa31b6d55ebca16c5d14c404ba6cad
Validity
Not Before: Jan 1 16:02:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4bf5f2309631852add596b93772e80653d3edc3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3c:5a:23:82:fc:e7:e4:63:ae:3c:80:ed:ff:
36:18:49:b8:98:90:2a:ad:72:e9:74:09:c9:76:8f:
e9:b1:ac:49:50:d7:94:cb:05:f2:81:69:5c:0b:45:
11:01:22:8f:d6:c2:d3:58:09:70:7b:21:0b:7d:43:
e9:98:6e:8b:ae:c0:73:6c:e6:3c:ac:2e:6e:20:42:
cf:3c:7f:b8:e2:d2:c3:0a:05:5c:46:34:0c:37:eb:
f8:29:d0:57:4a:31:b5:19:4a:66:bc:0e:33:bb:5f:
c4:48:87:b7:4b:e7:34:44:b9:86:07:d8:09:b3:c2:
47:48:97:f6:7f:bd:74:3c:cf:fd:59:65:0c:aa:99:
de:93:9b:a8:8c:42:7f:f7:ef:be:1c:0d:de:ed:0e:
ef:ad:6a:ce:6c:6d:f5:09:d9:8a:cc:fe:02:1a:c2:
f2:44:c1:ab:cf:48:a5:51:cb:4a:73:f2:88:c8:d9:
51:b4:0f:10:78:dc:d5:3e:76:9b:19:c6:c6:d6:ed:
c3:b3:00:67:1a:8b:5d:33:67:76:32:67:b1:63:ec:
31:07:13:80:4b:0e:c6:3e:63:59:72:ad:98:0e:8f:
84:2b:c1:98:95:bf:61:2e:db:89:b2:92:0e:67:e8:
7a:1e:ed:53:30:af:d0:18:66:78:9a:58:f9:9f:76:
66:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:F5:F2:30:96:31:85:2A:DD:59:6B:93:77:2E:80:65:3D:3E:DC:3B
X509v3 Authority Key Identifier:
keyid:07:4A:D2:3A:4C:FA:31:B6:D5:5E:BC:A1:6C:5D:14:C4:04:BA:6C:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B0rSOkz6MbbVXryhbF0UxAS6bK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/bd3a46-727b-476c-a789-c8c991cd89d5/1/S_XyMJYxhSrdWWuTdy6AZT0-3Ds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/bd3a46-727b-476c-a789-c8c991cd89d5/1/B0rSOkz6MbbVXryhbF0UxAS6bK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.145.178.0/23
193.239.202.0/24
IPv6:
2a10:a8c0::/29
Signature Algorithm: sha256WithRSAEncryption
bc:97:5d:49:37:77:95:f6:27:02:2e:ba:70:38:05:7c:58:7b:
d8:48:ce:1f:9c:ba:7e:2a:f1:2e:4f:ba:f0:9e:be:9e:48:98:
53:66:bd:da:8f:7f:98:2b:3d:e3:d6:71:62:81:40:72:63:0e:
14:27:a5:4f:3a:2e:f6:5f:c6:29:d9:57:2b:14:57:b9:8c:5d:
49:5a:a6:1b:7b:9c:22:34:ef:ba:d5:9b:ef:cd:d6:09:7f:02:
c8:63:22:8e:72:3d:8b:67:1b:ea:7f:c5:14:ca:a5:e9:79:04:
dc:1a:5f:11:70:00:59:2e:90:dd:38:02:78:f3:3a:9a:0b:2c:
8e:de:00:40:99:1c:44:50:58:4d:40:23:83:1e:a4:0d:04:ec:
6f:c6:f2:c0:66:1a:45:be:2d:85:2d:a7:70:08:d7:bc:1e:4f:
33:5f:85:89:d5:b7:d4:50:06:16:c4:e9:41:94:e0:df:af:d0:
46:f3:5c:52:51:29:e0:dd:62:43:69:63:a8:a4:1f:f4:d6:6e:
d0:68:06:d5:92:7b:0c:d0:29:d4:f4:75:4e:13:70:45:a1:e0:
cf:bd:41:78:d7:6e:90:3c:10:98:c1:e5:42:69:df:bc:7e:cc:
60:d3:1e:de:42:50:95:4d:9e:a6:2e:02:c8:89:37:05:08:fe:
09:84:ff:c3
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEAcdQnjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NzRhZDIzYTRjZmEzMWI2ZDU1ZWJjYTE2YzVkMTRjNDA0YmE2Y2FkMB4XDTIyMDEw
MTE2MDI0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGJmNWYyMzA5NjMx
ODUyYWRkNTk2YjkzNzcyZTgwNjUzZDNlZGMzYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKY8WiOC/OfkY648gO3/NhhJuJiQKq1y6XQJyXaP6bGsSVDX
lMsF8oFpXAtFEQEij9bC01gJcHshC31D6Zhui67Ac2zmPKwubiBCzzx/uOLSwwoF
XEY0DDfr+CnQV0oxtRlKZrwOM7tfxEiHt0vnNES5hgfYCbPCR0iX9n+9dDzP/Vll
DKqZ3pObqIxCf/fvvhwN3u0O761qzmxt9QnZisz+AhrC8kTBq89IpVHLSnPyiMjZ
UbQPEHjc1T52mxnGxtbtw7MAZxqLXTNndjJnsWPsMQcTgEsOxj5jWXKtmA6PhCvB
mJW/YS7bibKSDmfoeh7tUzCv0BhmeJpY+Z92ZmMCAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBRL9fIwljGFKt1Za5N3LoBlPT7cOzAfBgNVHSMEGDAWgBQHStI6TPoxttVe
vKFsXRTEBLpsrTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0IwclNPa3o2TWJiVlhyeWhiRjBVeEFTNmJLMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDEvYmQzYTQ2LTcyN2ItNDc2Yy1hNzg5LWM4Yzk5MWNkODlkNS8x
L1NfWHlNSll4aFNyZFdXdVRkeTZBWlQwLTNEcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDEv
YmQzYTQ2LTcyN2ItNDc2Yy1hNzg5LWM4Yzk5MWNkODlkNS8xL0IwclNPa3o2TWJi
VlhyeWhiRjBVeEFTNmJLMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEAQWRsgMEAMHvyjANBAIAAjAHAwUD
KhCowDANBgkqhkiG9w0BAQsFAAOCAQEAvJddSTd3lfYnAi66cDgFfFh72EjOH5y6
firxLk+68J6+nkiYU2a92o9/mCs949ZxYoFAcmMOFCelTzou9l/GKdlXKxRXuYxd
SVqmG3ucIjTvutWb783WCX8CyGMijnI9i2cb6n/FFMql6XkE3BpfEXAAWS6Q3TgC
ePM6mgssjt4AQJkcRFBYTUAjgx6kDQTsb8bywGYaRb4thS2ncAjXvB5PM1+FidW3
1FAGFsTpQZTg36/QRvNcUlEp4N1iQ2ljqKQf9NZu0GgG1ZJ7DNAp1PR1ThNwRaHg
z71BeNdukDwQmMHlQmnfvH7MYNMe3kJQlU2epi4CyIk3BQj+CYT/ww==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:38 2024 by rpki-client on console-fra.rpki-client.org