Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/pnJ8UU2-uPT5Aq7YiXnex6aTp9Y.roa
File: pnJ8UU2-uPT5Aq7YiXnex6aTp9Y.roa (raw, json)
Hash identifier: s6IzHWVoV6PhNkiRZ2Qkn4Y7pNxPWmoRE7T0kH04sKs=
Subject key identifier: A6:72:7C:51:4D:BE:B8:F4:F9:02:AE:D8:89:79:DE:C7:A6:93:A7:D6
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 0183B352A863846486718142CEBEF2780363
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/pnJ8UU2-uPT5Aq7YiXnex6aTp9Y.roa
Signing time: Fri 07 Oct 2022 16:41:22 +0000
ROA not before: Fri 07 Oct 2022 16:41:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49443
IP address blocks: 80.94.80.0/23 maxlen: 23
62.182.100.0/23 maxlen: 23
45.86.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:b3:52:a8:63:84:64:86:71:81:42:ce:be:f2:78:03:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Oct 7 16:41:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a6727c514dbeb8f4f902aed88979dec7a693a7d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f5:35:21:d3:44:39:5d:d8:09:8e:e1:cd:f7:
cb:3c:6e:f0:1c:48:4f:46:3c:08:ba:92:9d:a0:e6:
fb:7b:19:20:0f:a1:5d:8e:e9:fa:a9:6d:45:b2:5e:
33:f8:8e:c6:26:9a:21:17:9c:3f:c9:c1:56:10:db:
3b:f1:ba:d6:55:64:bd:c4:c7:bd:8b:54:0c:ec:ee:
f3:90:2f:2f:75:83:8c:46:21:0a:42:1a:d5:21:17:
70:c4:c4:c2:96:9b:91:10:83:cd:20:e6:6f:fe:36:
d9:1a:ed:c3:78:56:a7:db:28:11:76:09:ed:fa:99:
05:b7:99:47:69:be:31:6b:8c:45:3f:b3:ed:50:8a:
d0:22:75:be:aa:35:22:75:a3:21:dc:32:1a:22:28:
93:c2:a0:30:17:44:9d:e1:f8:f2:f5:ec:f4:c6:e1:
dd:af:33:4d:e0:0a:75:94:0f:18:51:ca:d8:c5:69:
6f:24:8b:01:b0:65:8f:1c:ec:fc:2a:07:e2:1c:52:
41:d5:89:32:22:30:8b:68:b2:4c:6d:4d:32:69:73:
c8:2d:b2:ad:f0:08:32:3c:93:b5:0c:84:e9:92:22:
94:15:1b:46:f3:4c:cf:f3:2d:e6:7b:90:19:3a:48:
64:45:bb:96:5c:80:3c:3f:a5:09:05:a9:ad:45:e2:
84:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:72:7C:51:4D:BE:B8:F4:F9:02:AE:D8:89:79:DE:C7:A6:93:A7:D6
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/pnJ8UU2-uPT5Aq7YiXnex6aTp9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.19.0/24
62.182.100.0/23
80.94.80.0/23
Signature Algorithm: sha256WithRSAEncryption
38:32:cb:5b:2e:3f:2d:d1:50:79:2e:43:44:5c:bc:8e:5d:a7:
1d:05:8c:99:db:d9:5e:39:65:29:8e:45:69:34:a4:2c:5c:91:
45:52:69:2c:52:46:6b:22:b1:78:19:4b:ff:56:a4:12:67:8d:
c5:13:1c:33:98:d6:8c:b3:bb:e4:13:2f:66:49:7f:6c:16:df:
4c:34:8a:41:26:d4:ab:39:80:4f:23:c8:bb:70:33:77:dd:68:
9b:57:03:be:64:a6:06:ff:be:d0:87:45:e1:a9:86:3e:1b:fb:
1d:8f:10:5f:fc:31:e5:d9:11:3b:a3:c8:09:3b:df:b6:24:2c:
d1:1a:5a:7a:5d:e1:7a:8a:13:27:a4:27:45:d6:65:2e:ca:ab:
20:51:92:c3:8a:74:28:7b:d5:2a:4c:bd:9b:ef:85:8c:5a:0f:
d4:65:92:a1:72:08:c9:fb:84:21:76:f8:d9:f3:0d:ab:62:2e:
14:f8:a8:c6:a6:a4:50:fe:a4:43:0f:f0:9b:40:60:d7:37:79:
a1:51:ea:f0:25:de:2e:8f:a2:ec:86:e4:4e:30:2b:2b:86:83:
c4:ec:cd:e1:03:05:d6:a3:e7:1d:0e:8e:69:c0:04:b5:12:54:
f6:66:11:19:52:9a:ea:74:95:1f:1e:ac:cb:bc:43:d9:31:5e:
4c:92:25:d5
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYOzUqhjhGSGcYFCzr7yeANjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiYWIzMDY4Mzg1OWVjN2UwMjA2ZmU5MjY1MzYzZThlMzk3
MWE5YTgwHhcNMjIxMDA3MTY0MTIyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNjcyN2M1MTRkYmViOGY0ZjkwMmFlZDg4OTc5ZGVjN2E2OTNhN2Q2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl/U1IdNEOV3YCY7hzffLPG7wHEhP
RjwIupKdoOb7exkgD6Fdjun6qW1Fsl4z+I7GJpohF5w/ycFWENs78brWVWS9xMe9
i1QM7O7zkC8vdYOMRiEKQhrVIRdwxMTClpuREIPNIOZv/jbZGu3DeFan2ygRdgnt
+pkFt5lHab4xa4xFP7PtUIrQInW+qjUidaMh3DIaIiiTwqAwF0Sd4fjy9ez0xuHd
rzNN4Ap1lA8YUcrYxWlvJIsBsGWPHOz8KgfiHFJB1YkyIjCLaLJMbU0yaXPILbKt
8AgyPJO1DITpkiKUFRtG80zP8y3me5AZOkhkRbuWXIA8P6UJBamtReKE1QIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFKZyfFFNvrj0+QKu2Il53semk6fWMB8GA1UdIwQY
MBaAFIurMGg4Wex+Agb+kmU2Po45camoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTZzd2FEaFo3SDRDQnY2U1pUWS1qamx4cWFnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi84MWZkMWEtNDdhNy00NWQ4LWJlNzQt
M2FjOWU1NmMzMDg5LzEvcG5KOFVVMi11UFQ1QXE3WWlYbmV4NmFUcDlZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi84MWZkMWEtNDdhNy00NWQ4LWJlNzQtM2FjOWU1NmMzMDg5
LzEvaTZzd2FEaFo3SDRDQnY2U1pUWS1qamx4cWFnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQALVYTAwQB
PrZkAwQBUF5QMA0GCSqGSIb3DQEBCwUAA4IBAQA4MstbLj8t0VB5LkNEXLyOXacd
BYyZ29leOWUpjkVpNKQsXJFFUmksUkZrIrF4GUv/VqQSZ43FExwzmNaMs7vkEy9m
SX9sFt9MNIpBJtSrOYBPI8i7cDN33WibVwO+ZKYG/77Qh0XhqYY+G/sdjxBf/DHl
2RE7o8gJO9+2JCzRGlp6XeF6ihMnpCdF1mUuyqsgUZLDinQoe9UqTL2b74WMWg/U
ZZKhcgjJ+4QhdvjZ8w2rYi4U+KjGpqRQ/qRDD/CbQGDXN3mhUerwJd4uj6LshuRO
MCsrhoPE7M3hAwXWo+cdDo5pwAS1ElT2ZhEZUprqdJUfHqzLvEPZMV5MkiXV
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:42 2024 by rpki-client on console-fra.rpki-client.org