Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/bKY_bsr32jIumC-0TFcGWFIEryY.roa
File: bKY_bsr32jIumC-0TFcGWFIEryY.roa (raw, json)
Hash identifier: vPAAyl0PvhwaurCvlc/lG7gJU6fDstqlsXjHVVIrRpA=
Subject key identifier: 6C:A6:3F:6E:CA:F7:DA:32:2E:98:2F:B4:4C:57:06:58:52:04:AF:26
Certificate issuer: /CN=e7796d8c19f32a1cafbd5b78f5276ce8df995d0a
Certificate serial: 07C39D69
Authority key identifier: E7:79:6D:8C:19:F3:2A:1C:AF:BD:5B:78:F5:27:6C:E8:DF:99:5D:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/53ltjBnzKhyvvVt49Sds6N-ZXQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/bKY_bsr32jIumC-0TFcGWFIEryY.roa
Signing time: Sat 01 Jan 2022 15:00:10 +0000
ROA not before: Sat 01 Jan 2022 15:00:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42742
IP address blocks: 188.191.0.0/20 maxlen: 20
185.211.164.0/22 maxlen: 22
78.157.224.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130260329 (0x7c39d69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7796d8c19f32a1cafbd5b78f5276ce8df995d0a
Validity
Not Before: Jan 1 15:00:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ca63f6ecaf7da322e982fb44c5706585204af26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:0e:78:05:e6:ca:8e:37:00:db:d0:f3:e7:1e:
80:b5:79:1f:af:ef:a5:b0:b1:a0:c2:82:c7:8f:68:
5b:43:dd:0b:f7:b4:e4:7a:a0:cb:b1:e0:bb:a7:30:
02:e4:c9:35:0e:4f:df:bf:6f:3c:19:b3:f8:e1:b6:
60:f0:d0:24:ab:0a:01:ea:16:d0:b7:83:bf:2d:43:
9b:79:9e:8a:c4:3d:61:b4:4b:e5:bb:36:2a:19:bd:
17:b3:ee:43:f4:ca:13:71:af:c5:27:57:5a:1e:23:
fb:c8:1d:75:98:04:04:0e:c4:e8:a0:16:01:39:eb:
bd:90:46:30:8f:c1:6a:c8:ff:96:5f:2b:65:07:0c:
ca:0d:af:ac:7c:fe:58:a8:01:8b:6e:9c:da:a4:bb:
b2:f1:05:c8:82:0a:b8:92:d7:d0:97:54:5a:e2:e1:
c0:f4:87:fa:47:0e:a7:9b:42:6d:34:8c:60:4d:19:
01:d8:db:99:cd:a6:91:a6:d8:b5:6a:11:30:24:eb:
c7:38:94:25:4e:f3:fe:44:ad:99:f8:f4:d9:e3:11:
7e:5d:c8:8b:df:df:f1:5a:85:2b:94:ca:96:b4:fb:
94:f5:ab:1b:82:81:2d:1a:02:df:28:87:8f:75:98:
c3:23:28:55:e7:5c:27:9f:ab:5e:f1:5c:ac:d0:bc:
38:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:A6:3F:6E:CA:F7:DA:32:2E:98:2F:B4:4C:57:06:58:52:04:AF:26
X509v3 Authority Key Identifier:
keyid:E7:79:6D:8C:19:F3:2A:1C:AF:BD:5B:78:F5:27:6C:E8:DF:99:5D:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/53ltjBnzKhyvvVt49Sds6N-ZXQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/bKY_bsr32jIumC-0TFcGWFIEryY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.157.224.0/19
185.211.164.0/22
188.191.0.0/20
Signature Algorithm: sha256WithRSAEncryption
a2:b1:bc:8a:81:78:8e:10:0b:02:04:54:b0:69:24:d5:a5:a8:
eb:6c:a2:d5:e6:ef:98:96:e5:bc:ab:be:96:47:92:3a:a4:43:
e3:48:bf:01:7f:b0:5a:dd:52:20:44:2d:88:37:3c:77:40:3e:
45:9f:2a:75:20:f7:a4:72:42:b0:d3:76:b4:50:36:81:e9:e0:
70:22:c2:61:5b:55:7d:4f:25:ee:3d:f2:aa:59:99:37:a2:98:
4e:c8:e4:c2:c3:92:bc:0e:f8:b5:ba:d6:24:6e:20:47:14:83:
cd:21:a4:1e:83:15:2f:b8:b7:9e:6a:04:a8:8b:c9:c1:b6:9f:
a9:e7:1a:db:3a:d5:14:56:39:e6:f6:4a:07:a5:63:36:c9:7b:
59:d0:b6:e0:d9:56:07:5a:b9:c2:ea:0e:cf:a5:34:2f:9e:ae:
cb:9a:33:a3:1a:24:c8:63:80:53:29:56:ed:6e:56:1e:15:c6:
6c:8c:c7:13:9b:71:9b:ed:e5:02:19:79:e4:2c:cb:e5:6f:2b:
d8:9e:c9:5f:9f:ef:a2:a6:9d:f0:c1:68:71:7b:68:3e:de:19:
8a:37:8c:36:c5:d7:c1:bf:dd:72:1d:8f:a2:5f:02:d3:e7:f0:
3a:0b:69:8f:0f:55:ea:2e:d5:fe:b3:48:13:ec:97:30:cf:24:
78:22:db:08
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEB8OdaTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
Nzc5NmQ4YzE5ZjMyYTFjYWZiZDViNzhmNTI3NmNlOGRmOTk1ZDBhMB4XDTIyMDEw
MTE1MDAxMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmNhNjNmNmVjYWY3
ZGEzMjJlOTgyZmI0NGM1NzA2NTg1MjA0YWYyNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMUOeAXmyo43ANvQ8+cegLV5H6/vpbCxoMKCx49oW0PdC/e0
5Hqgy7Hgu6cwAuTJNQ5P379vPBmz+OG2YPDQJKsKAeoW0LeDvy1Dm3meisQ9YbRL
5bs2Khm9F7PuQ/TKE3GvxSdXWh4j+8gddZgEBA7E6KAWATnrvZBGMI/Basj/ll8r
ZQcMyg2vrHz+WKgBi26c2qS7svEFyIIKuJLX0JdUWuLhwPSH+kcOp5tCbTSMYE0Z
Adjbmc2mkabYtWoRMCTrxziUJU7z/kStmfj02eMRfl3Ii9/f8VqFK5TKlrT7lPWr
G4KBLRoC3yiHj3WYwyMoVedcJ5+rXvFcrNC8ODsCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBRspj9uyvfaMi6YL7RMVwZYUgSvJjAfBgNVHSMEGDAWgBTneW2MGfMqHK+9
W3j1J2zo35ldCjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzUzbHRqQm56S2h5dnZWdDQ5U2RzNk4tWlhRby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmUvNWVjOTcwLTc5NjUtNGUwYi1iOTQ3LTI4NTdlOGEyMzU1OC8x
L2JLWV9ic3IzMmpJdW1DLTBURmNHV0ZJRXJ5WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmUv
NWVjOTcwLTc5NjUtNGUwYi1iOTQ3LTI4NTdlOGEyMzU1OC8xLzUzbHRqQm56S2h5
dnZWdDQ5U2RzNk4tWlhRby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEBU6d4AMEArnTpAMEBLy/ADANBgkq
hkiG9w0BAQsFAAOCAQEAorG8ioF4jhALAgRUsGkk1aWo62yi1ebvmJblvKu+lkeS
OqRD40i/AX+wWt1SIEQtiDc8d0A+RZ8qdSD3pHJCsNN2tFA2gengcCLCYVtVfU8l
7j3yqlmZN6KYTsjkwsOSvA74tbrWJG4gRxSDzSGkHoMVL7i3nmoEqIvJwbafqeca
2zrVFFY55vZKB6VjNsl7WdC24NlWB1q5wuoOz6U0L56uy5ozoxokyGOAUylW7W5W
HhXGbIzHE5txm+3lAhl55CzL5W8r2J7JX5/voqad8MFocXtoPt4ZijeMNsXXwb/d
ch2Pol8C0+fwOgtpjw9V6i7V/rNIE+yXMM8keCLbCA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:59 2023 by rpki-client on console-fra.rpki-client.org