Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3a0026-2847-4276-96ba-1747378e6594/1/nWZ6G1s4pvEZItbTYbylpge8CT8.roa
File: nWZ6G1s4pvEZItbTYbylpge8CT8.roa (raw, json)
Hash identifier: uHtPb2mNqulzGOP0rCtqw41Keu5P8Wso33lXZ0/o5kQ=
Subject key identifier: 9D:66:7A:1B:5B:38:A6:F1:19:22:D6:D3:61:BC:A5:A6:07:BC:09:3F
Certificate issuer: /CN=8309f81737d6f17e7c1ad58849aff71c50064f04
Certificate serial: 0450C34A
Authority key identifier: 83:09:F8:17:37:D6:F1:7E:7C:1A:D5:88:49:AF:F7:1C:50:06:4F:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gwn4FzfW8X58GtWISa_3HFAGTwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3a0026-2847-4276-96ba-1747378e6594/1/nWZ6G1s4pvEZItbTYbylpge8CT8.roa
Signing time: Sat 01 Jan 2022 03:54:21 +0000
ROA not before: Sat 01 Jan 2022 03:54:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212944
IP address blocks: 185.163.51.0/24 maxlen: 24
89.35.78.0/23 maxlen: 24
2a07:dfc0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72401738 (0x450c34a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8309f81737d6f17e7c1ad58849aff71c50064f04
Validity
Not Before: Jan 1 03:54:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d667a1b5b38a6f11922d6d361bca5a607bc093f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:38:f2:d2:96:b9:bd:e9:7d:c5:cc:e2:0f:be:
f9:5f:3c:37:07:ac:2d:bd:e8:0a:0c:a0:71:7b:eb:
82:d9:78:73:16:06:7a:23:eb:19:66:d4:ee:5e:25:
82:35:a0:8e:c8:c3:08:70:e7:c7:21:72:93:be:e1:
2b:98:3f:5a:8e:04:7e:57:da:02:2d:ae:e7:89:e5:
a1:27:b0:87:63:b4:28:b6:96:3e:77:6f:2c:84:92:
52:cd:76:4f:b8:b5:eb:6c:15:2b:7c:78:2d:f2:e1:
ae:cf:66:35:aa:cc:70:f9:a1:a2:b1:b3:19:cf:75:
e1:d7:98:77:a4:5b:b9:56:2c:68:13:a7:06:4b:1e:
65:73:45:4e:a3:a1:23:b6:d0:9b:96:97:3e:3d:a2:
56:39:4f:59:9a:60:0c:0a:18:29:bd:40:e2:34:d4:
41:ed:d0:e5:e7:d1:ec:39:38:c5:d0:84:27:e3:68:
e1:d1:d1:43:93:59:29:02:c7:2f:48:18:2d:88:df:
51:e6:78:6f:40:ca:5d:25:d8:1f:62:bd:ee:4e:5b:
1d:b2:c0:ff:90:23:ec:42:ba:62:0f:e4:2f:88:fa:
d5:2a:bd:67:04:1e:8f:1e:c4:2f:c8:6e:47:e0:c4:
6c:79:64:e9:ca:20:90:41:15:7c:8e:a1:2c:1b:5d:
d0:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:66:7A:1B:5B:38:A6:F1:19:22:D6:D3:61:BC:A5:A6:07:BC:09:3F
X509v3 Authority Key Identifier:
keyid:83:09:F8:17:37:D6:F1:7E:7C:1A:D5:88:49:AF:F7:1C:50:06:4F:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gwn4FzfW8X58GtWISa_3HFAGTwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3a0026-2847-4276-96ba-1747378e6594/1/nWZ6G1s4pvEZItbTYbylpge8CT8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3a0026-2847-4276-96ba-1747378e6594/1/gwn4FzfW8X58GtWISa_3HFAGTwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.35.78.0/23
185.163.51.0/24
IPv6:
2a07:dfc0::/32
Signature Algorithm: sha256WithRSAEncryption
a9:d3:7a:69:aa:96:f4:78:f1:36:08:92:f1:70:08:c6:f7:71:
84:fa:43:c5:21:0f:26:9f:a3:da:67:34:6d:cf:66:0b:55:87:
78:6d:9c:05:4a:63:bc:78:48:38:d8:93:65:29:51:83:8d:f8:
07:1f:9b:29:02:28:8b:a1:00:be:e9:46:a8:d1:57:6a:15:be:
6e:64:f2:a2:e2:7a:40:fa:e4:1e:ee:f8:f8:b6:c5:f5:f0:ee:
76:48:a4:63:00:bf:d7:7e:9f:f7:b0:55:e8:95:e9:01:9d:31:
b5:67:c8:23:7d:5e:9e:3f:fc:93:89:f6:74:3c:e3:30:ad:7e:
14:49:24:e0:6a:a5:57:60:80:bf:a2:87:59:08:b0:41:5c:15:
6a:32:47:e1:b0:80:74:8f:02:83:80:96:82:fa:11:23:50:9d:
cf:3f:d2:d4:ec:a8:43:9a:3d:e7:9d:6f:e6:eb:3e:91:50:c1:
7f:83:0b:21:f8:19:67:e6:a7:e6:8a:20:e1:71:90:ae:43:23:
5d:76:2c:82:5a:f8:a3:be:64:04:9e:57:e8:bd:92:33:f7:dd:
0a:ad:75:ad:69:63:c3:2e:0c:75:0f:4b:66:dd:f5:6a:b0:65:
6c:3e:30:52:09:bf:95:4f:c6:3a:3c:fe:f9:49:36:df:a7:64:
e5:5a:aa:a4
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEBFDDSjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MzA5ZjgxNzM3ZDZmMTdlN2MxYWQ1ODg0OWFmZjcxYzUwMDY0ZjA0MB4XDTIyMDEw
MTAzNTQyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWQ2NjdhMWI1YjM4
YTZmMTE5MjJkNmQzNjFiY2E1YTYwN2JjMDkzZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOI48tKWub3pfcXM4g+++V88NwesLb3oCgygcXvrgtl4cxYG
eiPrGWbU7l4lgjWgjsjDCHDnxyFyk77hK5g/Wo4EflfaAi2u54nloSewh2O0KLaW
PndvLISSUs12T7i162wVK3x4LfLhrs9mNarMcPmhorGzGc914deYd6RbuVYsaBOn
BkseZXNFTqOhI7bQm5aXPj2iVjlPWZpgDAoYKb1A4jTUQe3Q5efR7Dk4xdCEJ+No
4dHRQ5NZKQLHL0gYLYjfUeZ4b0DKXSXYH2K97k5bHbLA/5Aj7EK6Yg/kL4j61Sq9
ZwQejx7EL8huR+DEbHlk6cogkEEVfI6hLBtd0C8CAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBSdZnobWzim8Rki1tNhvKWmB7wJPzAfBgNVHSMEGDAWgBSDCfgXN9bxfnwa
1YhJr/ccUAZPBDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2d3bjRGemZXOFg1OEd0V0lTYV8zSEZBR1R3US5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjUvM2EwMDI2LTI4NDctNDI3Ni05NmJhLTE3NDczNzhlNjU5NC8x
L25XWjZHMXM0cHZFWkl0YlRZYnlscGdlOENUOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjUv
M2EwMDI2LTI4NDctNDI3Ni05NmJhLTE3NDczNzhlNjU5NC8xL2d3bjRGemZXOFg1
OEd0V0lTYV8zSEZBR1R3US5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEAVkjTgMEALmjMzANBAIAAjAHAwUA
KgffwDANBgkqhkiG9w0BAQsFAAOCAQEAqdN6aaqW9HjxNgiS8XAIxvdxhPpDxSEP
Jp+j2mc0bc9mC1WHeG2cBUpjvHhIONiTZSlRg434Bx+bKQIoi6EAvulGqNFXahW+
bmTyouJ6QPrkHu74+LbF9fDudkikYwC/136f97BV6JXpAZ0xtWfII31enj/8k4n2
dDzjMK1+FEkk4GqlV2CAv6KHWQiwQVwVajJH4bCAdI8Cg4CWgvoRI1Cdzz/S1Oyo
Q5o9551v5us+kVDBf4MLIfgZZ+an5oog4XGQrkMjXXYsglr4o75kBJ5X6L2SM/fd
Cq11rWljwy4MdQ9LZt31arBlbD4wUgm/lU/GOjz++Uk236dk5VqqpA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:32 2024 by rpki-client on console-ams.rpki-client.org