Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/zHnfaqOBPlmq5bcupzF19aw9GJg.roa
File: zHnfaqOBPlmq5bcupzF19aw9GJg.roa (raw, json)
Hash identifier: +yhuQxfDUj4Y+G2NUfGQLU4124PWuu+O5XAEpoU+WCM=
Subject key identifier: CC:79:DF:6A:A3:81:3E:59:AA:E5:B7:2E:A7:31:75:F5:AC:3D:18:98
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 046581D9
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/zHnfaqOBPlmq5bcupzF19aw9GJg.roa
Signing time: Tue 01 Mar 2022 08:29:58 +0000
ROA not before: Tue 01 Mar 2022 08:29:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8308
IP address blocks: 217.9.165.0/24 maxlen: 24
217.9.160.0/20 maxlen: 20
193.59.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73761241 (0x46581d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Mar 1 08:29:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc79df6aa3813e59aae5b72ea73175f5ac3d1898
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:fd:2a:70:a0:65:64:03:92:b1:48:b7:f4:aa:
02:f7:4e:d4:d8:fa:19:32:92:14:c2:ae:66:d2:6d:
bc:78:fb:72:57:68:d3:a7:0a:07:db:9a:31:ef:fb:
76:a4:39:17:8a:35:63:75:48:ee:89:c9:fd:2f:2a:
8d:a1:10:89:1c:e8:5c:88:2c:ca:75:d1:ab:ec:72:
03:05:64:2f:e2:17:09:98:86:84:e3:ec:b3:a0:1c:
17:93:4c:f4:41:66:53:f4:de:90:ce:71:f6:56:da:
18:90:ab:9f:d9:4a:c7:45:32:65:d9:9e:65:a0:a6:
ea:10:fa:3a:0a:65:53:8d:9d:c4:da:d6:79:70:76:
35:af:8c:fe:73:33:7c:b0:de:da:bb:74:a3:e9:3f:
1d:9c:16:3f:ca:04:28:26:d9:34:57:27:f1:52:08:
2a:87:4f:99:42:c9:a0:97:8f:ab:0d:aa:7d:00:bc:
c4:79:77:d8:04:19:8b:64:bf:bd:c6:fd:5d:a1:8f:
a8:02:93:75:06:41:f9:88:18:f5:92:59:c3:02:85:
d5:a7:14:60:69:3f:bb:a3:f8:ef:fc:25:ff:ba:87:
14:c8:a0:95:46:69:21:06:27:5a:8f:ee:16:d7:af:
cc:99:62:2c:6d:da:0c:7a:a2:a8:b1:27:92:17:8d:
95:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:79:DF:6A:A3:81:3E:59:AA:E5:B7:2E:A7:31:75:F5:AC:3D:18:98
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/zHnfaqOBPlmq5bcupzF19aw9GJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.59.0.0/16
217.9.160.0/20
Signature Algorithm: sha256WithRSAEncryption
88:5a:ee:2e:9c:5f:5d:bd:73:ec:9e:b3:52:45:94:96:f9:e8:
2a:d6:87:c3:f1:5f:e6:7d:dd:89:7b:3a:8b:77:e1:15:eb:7a:
25:c9:f3:87:61:22:fa:aa:75:e2:7c:3b:99:58:87:ac:2a:a0:
c9:b2:9c:49:df:66:32:54:c6:6a:db:e7:ab:8c:f9:6a:05:32:
8b:3a:12:7a:b8:13:18:54:d3:f6:70:e4:44:54:8a:6b:26:69:
7e:1e:36:9d:89:96:5f:84:4e:57:cf:3d:4c:40:08:62:e8:af:
5e:cc:5e:c1:42:80:d5:20:57:ac:23:c5:81:fe:53:64:47:06:
c3:f2:26:fb:1b:ed:1a:db:b8:59:2f:b8:a3:2f:48:df:67:de:
e9:5f:00:d8:d5:60:6b:6f:e4:ac:ed:41:7c:a4:08:6d:a6:d7:
98:14:62:d4:d6:f0:21:00:d6:d5:76:e6:21:b2:d1:f2:5d:59:
95:29:ad:28:9c:55:a2:d7:6a:52:94:06:50:07:80:81:18:9d:
2d:02:98:d6:e6:4a:01:28:18:51:e0:5a:68:dd:94:97:83:89:
b2:66:2e:1e:a8:57:63:e8:33:13:a4:d7:6d:02:7f:2b:bd:f6:
1d:61:57:8f:c2:24:e0:d8:e7:e1:71:21:03:91:bc:f9:1a:cc:
5e:a3:75:5c
-----BEGIN CERTIFICATE-----
MIIE9DCCA9ygAwIBAgIEBGWB2TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
MGM0MDk2MTNmZWEwYTJiNDQyY2UxMTJlOWNiZGI0ODVlMDExODhmMB4XDTIyMDMw
MTA4Mjk1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2M3OWRmNmFhMzgx
M2U1OWFhZTViNzJlYTczMTc1ZjVhYzNkMTg5ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALX9KnCgZWQDkrFIt/SqAvdO1Nj6GTKSFMKuZtJtvHj7cldo
06cKB9uaMe/7dqQ5F4o1Y3VI7onJ/S8qjaEQiRzoXIgsynXRq+xyAwVkL+IXCZiG
hOPss6AcF5NM9EFmU/TekM5x9lbaGJCrn9lKx0UyZdmeZaCm6hD6OgplU42dxNrW
eXB2Na+M/nMzfLDe2rt0o+k/HZwWP8oEKCbZNFcn8VIIKodPmULJoJePqw2qfQC8
xHl32AQZi2S/vcb9XaGPqAKTdQZB+YgY9ZJZwwKF1acUYGk/u6P47/wl/7qHFMig
lUZpIQYnWo/uFtevzJliLG3aDHqiqLEnkheNlTUCAwEAAaOCAg4wggIKMB0GA1Ud
DgQWBBTMed9qo4E+Warlty6nMXX1rD0YmDAfBgNVHSMEGDAWgBQwxAlhP+oKK0Qs
4RLpy9tIXgEYjzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L01NUUpZVF9xQ2l0RUxPRVM2Y3ZiU0Y0QkdJOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTEvYjc4ZmI1LWFmY2EtNGRiNy04ODg2LWMwNjcxYmY0Y2YzZS8x
L3pIbmZhcU9CUGxtcTViY3VwekYxOWF3OUdKZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTEv
Yjc4ZmI1LWFmY2EtNGRiNy04ODg2LWMwNjcxYmY0Y2YzZS8xL01NUUpZVF9xQ2l0
RUxPRVM2Y3ZiU0Y0QkdJOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAk
BggrBgEFBQcBBwEB/wQVMBMwEQQCAAEwCwMDAME7AwQE2QmgMA0GCSqGSIb3DQEB
CwUAA4IBAQCIWu4unF9dvXPsnrNSRZSW+egq1ofD8V/mfd2JezqLd+EV63olyfOH
YSL6qnXifDuZWIesKqDJspxJ32YyVMZq2+erjPlqBTKLOhJ6uBMYVNP2cOREVIpr
Jml+HjadiZZfhE5Xzz1MQAhi6K9ezF7BQoDVIFesI8WB/lNkRwbD8ib7G+0a27hZ
L7ijL0jfZ97pXwDY1WBrb+Ss7UF8pAhtpteYFGLU1vAhANbVduYhstHyXVmVKa0o
nFWi12pSlAZQB4CBGJ0tApjW5koBKBhR4Fpo3ZSXg4myZi4eqFdj6DMTpNdtAn8r
vfYdYVePwiTg2OfhcSEDkbz5Gsxeo3Vc
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:40 2024 by rpki-client on console-fra.rpki-client.org