Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/kCcjE9jPcecZBwt9eOetne6OGvU.roa
File: kCcjE9jPcecZBwt9eOetne6OGvU.roa (raw, json)
Hash identifier: 24qKmxhQZfyBKKFV4A56Mra8pqpkmvUvI2I5n+zxStI=
Subject key identifier: 90:27:23:13:D8:CF:71:E7:19:07:0B:7D:78:E7:AD:9D:EE:8E:1A:F5
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 13F8997C
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/kCcjE9jPcecZBwt9eOetne6OGvU.roa
Signing time: Tue 08 Feb 2022 16:38:57 +0000
ROA not before: Tue 08 Feb 2022 16:38:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204868
IP address blocks: 2.59.204.0/22 maxlen: 22
185.145.80.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 335059324 (0x13f8997c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Feb 8 16:38:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=90272313d8cf71e719070b7d78e7ad9dee8e1af5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:37:90:d9:73:67:01:5d:2b:bd:0e:08:0d:7a:
2b:cd:e8:a9:ba:a2:ee:9c:d9:28:7a:16:91:ab:79:
a5:68:3e:77:a1:51:ed:a7:86:1e:f5:81:24:48:55:
9f:14:e5:af:28:6d:37:d1:c8:d9:73:54:a4:a6:e7:
33:cd:89:b1:81:1b:1e:2c:2b:7a:2a:c4:55:d0:c8:
c8:3c:3b:b2:38:52:cb:0d:19:63:c9:1a:de:1e:a1:
61:47:a0:e7:13:71:10:26:fc:99:dd:55:61:b7:b6:
13:a2:4a:4d:d7:08:33:c7:1a:6a:aa:6b:9a:b5:0b:
4d:e7:e9:02:f8:43:9d:77:1d:6c:0a:4e:3a:f7:f1:
a1:07:72:cf:7f:b6:cc:26:aa:89:a4:15:1b:74:91:
11:5e:cd:2e:2b:b6:9f:ea:88:f2:88:f4:78:b7:91:
e8:40:d8:a2:8f:ba:c5:f3:56:c2:c2:8f:0c:d6:17:
b6:06:1e:b6:de:aa:3c:1f:11:b0:de:fa:a3:a4:6c:
35:a2:89:5a:92:5e:e7:15:28:06:bb:01:ff:9b:c8:
e6:8e:5e:41:3d:ce:43:89:83:3d:a6:2c:f5:d5:68:
b2:5f:3f:44:3f:91:4f:0c:8a:54:bd:90:e3:ad:a5:
ad:00:0e:80:b9:f3:ab:df:f2:71:c8:98:fe:fe:4a:
b9:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:27:23:13:D8:CF:71:E7:19:07:0B:7D:78:E7:AD:9D:EE:8E:1A:F5
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/kCcjE9jPcecZBwt9eOetne6OGvU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.204.0/22
185.145.80.0/22
Signature Algorithm: sha256WithRSAEncryption
43:16:e1:25:dc:77:bd:3a:cf:95:e5:30:0b:df:80:a1:25:10:
18:5d:fa:1b:9a:41:4b:1d:d7:e6:7e:e5:7c:d6:9b:ca:6c:d0:
94:65:1c:54:94:ca:1b:25:b9:20:d4:a6:33:67:07:a9:18:b9:
c2:ce:85:d1:61:8b:86:5f:1a:90:bc:b4:0c:9a:10:c8:a4:21:
6e:e4:19:c1:52:41:dd:88:2a:3c:24:70:2b:fc:0d:ad:33:df:
4e:b9:89:a1:72:6b:d3:9e:66:c4:e3:7c:49:50:28:3f:7f:a4:
4a:97:83:17:c6:a2:3d:14:90:cd:de:b4:28:fa:9a:e5:b5:70:
d1:99:c3:19:a6:26:2f:40:b0:83:8c:2d:b9:5b:b9:f4:8f:3f:
e2:78:94:eb:71:94:6b:2d:51:71:92:36:cf:b3:88:53:f9:80:
cf:0a:13:cd:2f:fb:c5:93:e1:4f:42:83:74:ca:17:bf:5a:05:
e7:ef:f9:61:15:f5:52:8a:b3:61:46:35:2d:7a:c4:e7:dd:68:
29:f7:d8:88:4c:77:71:84:47:e9:9d:08:8d:f4:12:ea:2d:9d:
9b:61:7f:0c:b5:0e:13:d2:50:79:e0:59:f3:d6:13:25:64:1b:
a7:d4:15:32:48:f3:9e:5d:92:e7:a5:b2:05:91:7a:78:b4:b3:
44:d1:81:82
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEE/iZfDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
YmFiMzA2ODM4NTllYzdlMDIwNmZlOTI2NTM2M2U4ZTM5NzFhOWE4MB4XDTIyMDIw
ODE2Mzg1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTAyNzIzMTNkOGNm
NzFlNzE5MDcwYjdkNzhlN2FkOWRlZThlMWFmNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANI3kNlzZwFdK70OCA16K83oqbqi7pzZKHoWkat5pWg+d6FR
7aeGHvWBJEhVnxTlryhtN9HI2XNUpKbnM82JsYEbHiwreirEVdDIyDw7sjhSyw0Z
Y8ka3h6hYUeg5xNxECb8md1VYbe2E6JKTdcIM8caaqprmrULTefpAvhDnXcdbApO
OvfxoQdyz3+2zCaqiaQVG3SREV7NLiu2n+qI8oj0eLeR6EDYoo+6xfNWwsKPDNYX
tgYett6qPB8RsN76o6RsNaKJWpJe5xUoBrsB/5vI5o5eQT3OQ4mDPaYs9dVosl8/
RD+RTwyKVL2Q462lrQAOgLnzq9/ycciY/v5KuacCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSQJyMT2M9x5xkHC314562d7o4a9TAfBgNVHSMEGDAWgBSLqzBoOFnsfgIG
/pJlNj6OOXGpqDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2k2c3dhRGhaN0g0Q0J2NlNaVFktampseHFhZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmIvODFmZDFhLTQ3YTctNDVkOC1iZTc0LTNhYzllNTZjMzA4OS8x
L2tDY2pFOWpQY2VjWkJ3dDllT2V0bmU2T0d2VS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmIv
ODFmZDFhLTQ3YTctNDVkOC1iZTc0LTNhYzllNTZjMzA4OS8xL2k2c3dhRGhaN0g0
Q0J2NlNaVFktampseHFhZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAgI7zAMEArmRUDANBgkqhkiG9w0B
AQsFAAOCAQEAQxbhJdx3vTrPleUwC9+AoSUQGF36G5pBSx3X5n7lfNabymzQlGUc
VJTKGyW5INSmM2cHqRi5ws6F0WGLhl8akLy0DJoQyKQhbuQZwVJB3YgqPCRwK/wN
rTPfTrmJoXJr055mxON8SVAoP3+kSpeDF8aiPRSQzd60KPqa5bVw0ZnDGaYmL0Cw
g4wtuVu59I8/4niU63GUay1RcZI2z7OIU/mAzwoTzS/7xZPhT0KDdMoXv1oF5+/5
YRX1UoqzYUY1LXrE591oKffYiEx3cYRH6Z0IjfQS6i2dm2F/DLUOE9JQeeBZ89YT
JWQbp9QVMkjznl2S56WyBZF6eLSzRNGBgg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:36 2023 by rpki-client on console-ams.rpki-client.org