Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/24149d-d115-4330-bd49-cb56ed3ea7fa/1/ThdQXymGC_dyHzfv7NNCPQ7oYbw.roa
File: ThdQXymGC_dyHzfv7NNCPQ7oYbw.roa (raw, json)
Hash identifier: N1gKYlc8znji/MGTVyLMK2gTS1mql+rPn0sg1Rzzpi0=
Subject key identifier: 4E:17:50:5F:29:86:0B:F7:72:1F:37:EF:EC:D3:42:3D:0E:E8:61:BC
Certificate issuer: /CN=dc1089c942b68033683b4dd506c0c36f74be0ea3
Certificate serial: 092C5F62
Authority key identifier: DC:10:89:C9:42:B6:80:33:68:3B:4D:D5:06:C0:C3:6F:74:BE:0E:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BCJyUK2gDNoO03VBsDDb3S-DqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/24149d-d115-4330-bd49-cb56ed3ea7fa/1/ThdQXymGC_dyHzfv7NNCPQ7oYbw.roa
Signing time: Sat 01 Jan 2022 09:59:42 +0000
ROA not before: Sat 01 Jan 2022 09:59:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205479
IP address blocks: 92.118.29.0/24 maxlen: 24
92.118.28.0/22 maxlen: 24
2a09:a440::/29 maxlen: 48
2a09:a443::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153902946 (0x92c5f62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc1089c942b68033683b4dd506c0c36f74be0ea3
Validity
Not Before: Jan 1 09:59:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e17505f29860bf7721f37efecd3423d0ee861bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:0b:d9:27:24:0e:91:a7:f7:b5:fe:69:7e:ca:
4b:d9:0f:c6:65:2d:2a:6f:6b:79:d1:2d:69:be:5c:
6d:b3:30:30:0e:fb:c1:7d:c3:f8:d6:21:11:12:eb:
c9:36:b0:81:d6:37:82:43:a9:d0:1e:05:2b:02:0d:
49:a5:b5:a0:d2:96:8d:94:d2:3a:27:4d:2d:0f:06:
f9:08:00:80:87:b2:94:0b:fd:4d:87:03:1e:50:0f:
9e:0c:c3:8f:ed:cb:8a:ac:b3:62:fd:9f:5b:a7:6c:
bb:45:d2:a9:34:9e:c1:b8:62:0f:05:5e:f5:04:93:
07:bf:59:8f:bc:7e:0c:38:07:74:2f:aa:f6:a4:fc:
38:da:dd:3d:0f:5d:2d:d2:87:e8:2a:16:bf:ef:6e:
69:52:03:89:d6:f2:ab:91:5a:81:64:28:50:f9:bd:
a8:2b:8f:83:f0:d9:bf:dd:11:81:97:f9:32:b1:1c:
1c:18:4b:96:a8:da:03:cc:bf:c3:1a:46:7b:f0:96:
45:56:3c:00:a4:74:6a:ca:b9:db:e4:32:ef:52:b4:
ed:ff:1d:9b:59:82:dc:72:73:95:35:09:dd:e9:50:
72:7c:d4:b9:70:82:dd:f4:d5:8c:92:29:75:af:14:
2e:02:36:12:ea:6e:6e:a1:6a:ea:ac:77:98:42:03:
44:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:17:50:5F:29:86:0B:F7:72:1F:37:EF:EC:D3:42:3D:0E:E8:61:BC
X509v3 Authority Key Identifier:
keyid:DC:10:89:C9:42:B6:80:33:68:3B:4D:D5:06:C0:C3:6F:74:BE:0E:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BCJyUK2gDNoO03VBsDDb3S-DqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/24149d-d115-4330-bd49-cb56ed3ea7fa/1/ThdQXymGC_dyHzfv7NNCPQ7oYbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/24149d-d115-4330-bd49-cb56ed3ea7fa/1/3BCJyUK2gDNoO03VBsDDb3S-DqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.118.28.0/22
IPv6:
2a09:a440::/29
Signature Algorithm: sha256WithRSAEncryption
d0:01:c0:26:b2:5a:23:27:7a:92:e9:e9:e8:35:4f:d4:10:e0:
a4:ad:84:c3:25:80:1b:bc:71:c0:d4:db:92:3c:6e:1f:d9:d9:
d2:62:36:3a:6d:22:f7:d1:1f:5e:3c:ff:1c:c8:4a:38:56:f6:
7d:be:77:69:62:03:49:bc:d8:ef:c8:8c:7b:c7:52:48:3d:61:
eb:35:65:7c:90:77:28:6e:6e:a6:77:41:c8:e3:4a:89:01:c1:
9f:86:4f:b5:de:28:67:4f:33:70:05:5b:a1:0d:e0:77:65:7a:
d7:26:5d:58:d5:7f:2d:c7:f8:93:1d:f6:71:f9:8a:38:ca:4e:
61:c7:32:ae:0a:bd:9a:f5:dc:7f:f6:46:db:c7:4a:97:74:35:
34:3d:74:2e:28:c8:e7:3e:95:8a:a6:0f:dd:c7:26:b3:fe:ff:
d5:e0:ff:53:af:db:e4:df:89:ce:82:c5:6c:a7:58:e8:12:93:
87:d8:b8:17:79:eb:01:9a:8d:01:db:14:f1:a0:9c:6f:b9:b0:
09:5c:d1:71:04:73:c9:d3:74:d0:02:ec:2a:4f:46:c3:08:7e:
7d:ed:ea:d9:92:ac:3f:93:3d:1a:bc:67:a9:a1:5a:2e:39:3a:
49:5b:13:e7:d2:d9:f5:19:23:9b:82:2a:a6:a8:25:5e:5c:4e:
7a:8c:fb:71
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIECSxfYjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
YzEwODljOTQyYjY4MDMzNjgzYjRkZDUwNmMwYzM2Zjc0YmUwZWEzMB4XDTIyMDEw
MTA5NTk0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGUxNzUwNWYyOTg2
MGJmNzcyMWYzN2VmZWNkMzQyM2QwZWU4NjFiYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKIL2SckDpGn97X+aX7KS9kPxmUtKm9redEtab5cbbMwMA77
wX3D+NYhERLryTawgdY3gkOp0B4FKwINSaW1oNKWjZTSOidNLQ8G+QgAgIeylAv9
TYcDHlAPngzDj+3LiqyzYv2fW6dsu0XSqTSewbhiDwVe9QSTB79Zj7x+DDgHdC+q
9qT8ONrdPQ9dLdKH6CoWv+9uaVIDidbyq5FagWQoUPm9qCuPg/DZv90RgZf5MrEc
HBhLlqjaA8y/wxpGe/CWRVY8AKR0asq52+Qy71K07f8dm1mC3HJzlTUJ3elQcnzU
uXCC3fTVjJIpda8ULgI2EupubqFq6qx3mEIDRCcCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBROF1BfKYYL93IfN+/s00I9DuhhvDAfBgNVHSMEGDAWgBTcEInJQraAM2g7
TdUGwMNvdL4OozAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzNCQ0p5VUsyZ0ROb08wM1ZCc0REYjNTLURxTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmMvMjQxNDlkLWQxMTUtNDMzMC1iZDQ5LWNiNTZlZDNlYTdmYS8x
L1RoZFFYeW1HQ19keUh6ZnY3Tk5DUFE3b1lidy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmMv
MjQxNDlkLWQxMTUtNDMzMC1iZDQ5LWNiNTZlZDNlYTdmYS8xLzNCQ0p5VUsyZ0RO
b08wM1ZCc0REYjNTLURxTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAlx2HDANBAIAAjAHAwUDKgmkQDAN
BgkqhkiG9w0BAQsFAAOCAQEA0AHAJrJaIyd6kunp6DVP1BDgpK2EwyWAG7xxwNTb
kjxuH9nZ0mI2Om0i99EfXjz/HMhKOFb2fb53aWIDSbzY78iMe8dSSD1h6zVlfJB3
KG5upndByONKiQHBn4ZPtd4oZ08zcAVboQ3gd2V61yZdWNV/Lcf4kx32cfmKOMpO
Yccyrgq9mvXcf/ZG28dKl3Q1ND10LijI5z6ViqYP3ccms/7/1eD/U6/b5N+JzoLF
bKdY6BKTh9i4F3nrAZqNAdsU8aCcb7mwCVzRcQRzydN00ALsKk9Gwwh+fe3q2ZKs
P5M9GrxnqaFaLjk6SVsT59LZ9Rkjm4IqpqglXlxOeoz7cQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:33 2024 by rpki-client on console-ams.rpki-client.org