Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Lk3fdMQ6pY14Ywtyh3OJROrXr0Q.roa
File: Lk3fdMQ6pY14Ywtyh3OJROrXr0Q.roa (raw, json)
Hash identifier: sqEYBtjE8iRIzVbiMCjKSdM8NKV1YAa17riEdoCAliA=
Subject key identifier: 2E:4D:DF:74:C4:3A:A5:8D:78:63:0B:72:87:73:89:44:EA:D7:AF:44
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018506CC5966EE332474C9AE057928108760
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Lk3fdMQ6pY14Ywtyh3OJROrXr0Q.roa
Signing time: Mon 12 Dec 2022 14:45:33 +0000
ROA not before: Mon 12 Dec 2022 14:45:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 82.115.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:06:cc:59:66:ee:33:24:74:c9:ae:05:79:28:10:87:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Dec 12 14:45:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e4ddf74c43aa58d78630b7287738944ead7af44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f8:0b:20:91:c9:20:81:be:bd:39:eb:ea:91:
dd:3f:e3:90:e6:64:d9:e3:ed:b7:76:14:b7:b5:1a:
f9:a0:0b:ba:74:87:8f:b1:7c:0c:f7:1e:c8:08:fe:
3f:08:95:8d:e9:93:8d:10:ac:9a:dd:f5:cc:65:c7:
c6:00:ff:e0:db:05:d9:c3:a8:4b:3e:ab:89:27:26:
5d:37:38:bb:27:03:ff:f9:06:de:ac:46:b9:6f:cf:
a6:4d:57:bf:0f:1a:c0:ac:38:0e:1d:ee:a0:6d:06:
19:7d:a8:05:75:5e:bc:32:2a:c5:db:99:b1:63:e1:
45:24:e0:47:d2:55:99:75:73:50:97:7a:1c:db:ee:
5e:61:6b:2d:81:96:2f:80:70:f7:bd:5a:ef:2c:e2:
25:75:0c:fe:0d:30:e3:c1:22:f5:74:ea:40:39:26:
31:7e:40:63:53:c7:48:42:a6:58:0e:fd:98:99:c4:
92:13:0f:fa:0b:1f:6f:ab:e2:fa:02:97:91:ff:29:
b0:e5:bc:a6:f4:9a:66:40:5b:39:97:30:75:34:90:
3a:ba:9d:05:c5:a6:72:14:18:83:ba:bf:41:c6:c2:
2c:b1:fa:99:64:b7:aa:ac:8f:88:7b:91:17:c9:45:
0a:a4:fe:24:fd:14:6c:e0:20:0c:e4:d7:e0:ce:64:
1a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:4D:DF:74:C4:3A:A5:8D:78:63:0B:72:87:73:89:44:EA:D7:AF:44
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Lk3fdMQ6pY14Ywtyh3OJROrXr0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.209.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:b0:cb:05:da:bf:3a:e3:99:1f:ae:88:ce:93:0f:7e:00:e1:
3d:51:fb:ce:58:af:dd:94:96:ff:a6:e8:98:bf:3c:c7:16:af:
d4:3e:94:b5:4b:fe:f5:09:8b:78:e7:9b:cc:7c:11:bc:48:e8:
11:2c:3f:8b:74:72:cd:df:b5:9d:96:c7:7d:ba:8e:c1:9b:0f:
cd:7e:95:aa:49:12:58:55:c0:16:ca:f6:66:01:9a:7c:a4:16:
15:7b:ed:b1:ef:d9:94:44:9b:d6:b4:30:73:9c:47:77:03:f1:
b0:cf:0c:5b:7e:2a:01:64:38:2c:12:ea:65:63:87:3d:f9:f0:
f8:c4:8f:67:0a:9e:a3:c7:90:e8:61:45:8f:d7:ae:17:7e:8d:
27:2b:7a:80:21:45:e1:d8:1d:8b:f2:29:76:cb:ea:42:2d:4d:
71:4d:4b:b9:d4:23:8a:ee:d3:ff:a6:9a:e2:f8:8c:1c:f1:9b:
43:c5:4a:44:9d:aa:a7:7f:f8:dc:f7:7d:1e:63:3c:dc:f4:a0:
c8:d8:d4:0a:1d:2d:b8:8e:8a:c1:01:97:d3:79:6b:6d:28:be:
5b:e3:93:d9:bc:50:4c:4b:5a:7a:15:a6:67:30:c8:79:0a:24:
44:82:ac:ba:10:58:c2:00:13:b0:cf:9a:e5:80:b4:62:08:d1:
0f:64:93:ea
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYUGzFlm7jMkdMmuBXkoEIdgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjIxMjEyMTQ0NTMzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZTRkZGY3NGM0M2FhNThkNzg2MzBiNzI4NzczODk0NGVhZDdhZjQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoPgLIJHJIIG+vTnr6pHdP+OQ5mTZ
4+23dhS3tRr5oAu6dIePsXwM9x7ICP4/CJWN6ZONEKya3fXMZcfGAP/g2wXZw6hL
PquJJyZdNzi7JwP/+QberEa5b8+mTVe/DxrArDgOHe6gbQYZfagFdV68MirF25mx
Y+FFJOBH0lWZdXNQl3oc2+5eYWstgZYvgHD3vVrvLOIldQz+DTDjwSL1dOpAOSYx
fkBjU8dIQqZYDv2YmcSSEw/6Cx9vq+L6ApeR/ymw5bym9JpmQFs5lzB1NJA6up0F
xaZyFBiDur9BxsIssfqZZLeqrI+Ie5EXyUUKpP4k/RRs4CAM5NfgzmQaoQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC5N33TEOqWNeGMLcodziUTq169EMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvTGszZmRNUTZwWTE0WXd0eWgzT0pST3JYcjBRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUnPRMA0G
CSqGSIb3DQEBCwUAA4IBAQCssMsF2r8645kfrojOkw9+AOE9UfvOWK/dlJb/puiY
vzzHFq/UPpS1S/71CYt455vMfBG8SOgRLD+LdHLN37Wdlsd9uo7Bmw/NfpWqSRJY
VcAWyvZmAZp8pBYVe+2x79mURJvWtDBznEd3A/GwzwxbfioBZDgsEuplY4c9+fD4
xI9nCp6jx5DoYUWP164Xfo0nK3qAIUXh2B2L8il2y+pCLU1xTUu51COK7tP/ppri
+Iwc8ZtDxUpEnaqnf/jc930eYzzc9KDI2NQKHS24jorBAZfTeWttKL5b45PZvFBM
S1p6FaZnMMh5CiREgqy6EFjCABOwz5rlgLRiCNEPZJPq
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:05 2024 by rpki-client on console-fra.rpki-client.org