Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/CDhSDjDLC7seKItzvhVOXtc3MN0.roa
File: CDhSDjDLC7seKItzvhVOXtc3MN0.roa (raw, json)
Hash identifier: yk6efOzERcsKD8sbMZFzxDqcBOJGgBTJQsYbz7dyaY8=
Subject key identifier: 08:38:52:0E:30:CB:0B:BB:1E:28:8B:73:BE:15:4E:5E:D7:37:30:DD
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 0470827C
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/CDhSDjDLC7seKItzvhVOXtc3MN0.roa
Signing time: Wed 02 Mar 2022 10:06:06 +0000
ROA not before: Wed 02 Mar 2022 10:06:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8308
IP address blocks: 217.9.165.0/24 maxlen: 24
217.9.160.0/20 maxlen: 20
194.181.0.0/16 maxlen: 16
193.59.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74482300 (0x470827c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Mar 2 10:06:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0838520e30cb0bbb1e288b73be154e5ed73730dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:df:ab:d5:9d:43:8d:46:29:31:cc:4a:ed:07:
f8:b2:b0:be:f1:fa:ae:22:22:97:94:a2:93:ee:04:
ff:51:5d:3b:7c:68:e2:29:4b:9c:c2:b4:1c:c2:99:
44:5c:22:f9:eb:cc:76:7a:7c:7f:aa:7a:41:ed:40:
c2:c0:21:e7:cc:0e:1a:10:6b:b7:9a:57:c0:eb:b1:
2c:cc:07:10:ac:f9:97:fa:ed:ef:a3:94:0b:5e:8d:
ea:cd:96:ee:b1:1b:9c:80:29:0a:8a:09:2e:1a:38:
af:e8:df:74:f5:db:c8:d4:53:51:ae:ab:b4:34:40:
3c:26:21:a3:f7:6f:e1:d2:df:11:9c:ea:3f:9d:ca:
f4:99:37:1c:90:7c:44:a2:25:0c:95:98:e2:fd:da:
67:5d:8e:9b:fe:9f:3d:39:60:8f:fd:5a:1a:c8:24:
81:59:fe:73:e8:73:0c:b1:89:12:09:0c:c6:07:5a:
2d:17:2f:a9:cd:b8:49:9e:70:14:d8:17:a9:4b:e1:
05:ba:ba:e7:1a:4f:08:16:25:df:11:ff:6e:83:35:
e7:3f:ed:eb:0a:f4:41:f3:a1:b0:a8:7d:3d:bc:7b:
23:d0:01:a3:35:07:c3:b2:85:30:4a:20:55:d5:d7:
08:82:ba:0e:10:d7:03:97:ec:6d:11:fe:f7:5d:b1:
25:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:38:52:0E:30:CB:0B:BB:1E:28:8B:73:BE:15:4E:5E:D7:37:30:DD
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/CDhSDjDLC7seKItzvhVOXtc3MN0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.59.0.0/16
194.181.0.0/16
217.9.160.0/20
Signature Algorithm: sha256WithRSAEncryption
40:e3:7b:16:06:c3:f3:0d:09:84:a3:09:4e:61:c8:2e:e2:27:
82:2d:a3:b7:75:06:54:b2:46:3a:2b:90:a0:d7:f1:a3:a5:ca:
19:77:41:df:99:ae:a0:c5:ef:84:af:4c:d8:b3:29:b1:dc:c5:
f8:0e:c0:a1:7b:2d:a8:4b:19:11:1c:c4:ec:35:14:1f:bd:4e:
8c:c7:c8:e5:5d:dd:a3:f0:c5:1b:80:78:86:ed:01:64:aa:ac:
a3:7f:32:e5:44:83:c9:c4:c9:85:6e:77:46:55:3a:f6:5d:7e:
80:a2:77:6f:46:75:ff:0f:6a:5d:b9:ab:a9:4b:4d:96:8f:ee:
56:20:a9:4f:4d:6c:2a:cb:22:e7:81:3c:5b:de:c6:f4:58:47:
c2:1c:d0:27:c3:f2:58:f8:da:8f:5d:cd:7d:21:e5:13:4c:3e:
85:82:b7:03:83:4c:a3:a8:a6:0b:66:17:a8:95:ad:33:fe:8f:
59:cc:1c:b0:93:66:c6:3b:4e:53:f6:57:d7:6b:39:0e:b1:40:
6c:8d:49:1d:c6:21:4f:86:80:df:f2:4a:ad:6e:97:f8:96:2e:
04:64:9c:95:5e:42:ad:69:32:69:c1:cc:0d:10:21:5f:f0:86:
6d:bc:f5:4b:f8:2a:26:59:7d:1d:8c:a8:e0:1d:af:cd:e1:5b:
26:dd:b3:0a
-----BEGIN CERTIFICATE-----
MIIE+TCCA+GgAwIBAgIEBHCCfDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
MGM0MDk2MTNmZWEwYTJiNDQyY2UxMTJlOWNiZGI0ODVlMDExODhmMB4XDTIyMDMw
MjEwMDYwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDgzODUyMGUzMGNi
MGJiYjFlMjg4YjczYmUxNTRlNWVkNzM3MzBkZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKDfq9WdQ41GKTHMSu0H+LKwvvH6riIil5Sik+4E/1FdO3xo
4ilLnMK0HMKZRFwi+evMdnp8f6p6Qe1AwsAh58wOGhBrt5pXwOuxLMwHEKz5l/rt
76OUC16N6s2W7rEbnIApCooJLho4r+jfdPXbyNRTUa6rtDRAPCYho/dv4dLfEZzq
P53K9Jk3HJB8RKIlDJWY4v3aZ12Om/6fPTlgj/1aGsgkgVn+c+hzDLGJEgkMxgda
LRcvqc24SZ5wFNgXqUvhBbq65xpPCBYl3xH/boM15z/t6wr0QfOhsKh9Pbx7I9AB
ozUHw7KFMEogVdXXCIK6DhDXA5fsbRH+912xJbcCAwEAAaOCAhMwggIPMB0GA1Ud
DgQWBBQIOFIOMMsLux4oi3O+FU5e1zcw3TAfBgNVHSMEGDAWgBQwxAlhP+oKK0Qs
4RLpy9tIXgEYjzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L01NUUpZVF9xQ2l0RUxPRVM2Y3ZiU0Y0QkdJOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTEvYjc4ZmI1LWFmY2EtNGRiNy04ODg2LWMwNjcxYmY0Y2YzZS8x
L0NEaFNEakRMQzdzZUtJdHp2aFZPWHRjM01OMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTEv
Yjc4ZmI1LWFmY2EtNGRiNy04ODg2LWMwNjcxYmY0Y2YzZS8xL01NUUpZVF9xQ2l0
RUxPRVM2Y3ZiU0Y0QkdJOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAp
BggrBgEFBQcBBwEB/wQaMBgwFgQCAAEwEAMDAME7AwMAwrUDBATZCaAwDQYJKoZI
hvcNAQELBQADggEBAEDjexYGw/MNCYSjCU5hyC7iJ4Ito7d1BlSyRjorkKDX8aOl
yhl3Qd+ZrqDF74SvTNizKbHcxfgOwKF7LahLGREcxOw1FB+9TozHyOVd3aPwxRuA
eIbtAWSqrKN/MuVEg8nEyYVud0ZVOvZdfoCid29Gdf8Pal25q6lLTZaP7lYgqU9N
bCrLIueBPFvexvRYR8Ic0CfD8lj42o9dzX0h5RNMPoWCtwODTKOopgtmF6iVrTP+
j1nMHLCTZsY7TlP2V9drOQ6xQGyNSR3GIU+GgN/ySq1ul/iWLgRknJVeQq1pMmnB
zA0QIV/whm289Uv4KiZZfR2MqOAdr83hWybdswo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:05 2024 by rpki-client on console-ams.rpki-client.org