Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/IyrFF6gM70muUZRMgbkNW1jo1Nc.roa
File: IyrFF6gM70muUZRMgbkNW1jo1Nc.roa (raw, json)
Hash identifier: 5jMQQHmnVcD+RC9haMRm3t08jgvDFACFCBWlhqVD0mM=
Subject key identifier: 23:2A:C5:17:A8:0C:EF:49:AE:51:94:4C:81:B9:0D:5B:58:E8:D4:D7
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0B49F86B
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/IyrFF6gM70muUZRMgbkNW1jo1Nc.roa
Signing time: Sat 01 Jan 2022 13:04:59 +0000
ROA not before: Sat 01 Jan 2022 13:04:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41953
IP address blocks: 185.202.84.0/22 maxlen: 22
92.114.111.0/24 maxlen: 24
89.40.196.0/22 maxlen: 22
93.113.47.0/24 maxlen: 24
93.115.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 189397099 (0xb49f86b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Jan 1 13:04:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=232ac517a80cef49ae51944c81b90d5b58e8d4d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:38:86:a9:53:a3:13:1f:da:b8:7f:95:76:a3:
a8:de:21:8b:4b:eb:25:d8:d8:e7:d1:68:4b:47:fd:
8e:58:d6:99:65:c4:de:e8:4d:e0:02:3e:10:ac:e0:
18:c9:6f:a8:37:f2:a6:26:4c:74:08:ba:88:2b:4c:
14:7b:20:71:5f:58:ba:df:fe:b3:09:7d:8c:1b:0d:
8a:ac:cf:a1:78:3f:90:10:7f:00:74:c2:0b:c2:12:
4b:84:bd:47:39:2c:c6:ca:53:1a:3d:9c:64:a1:d7:
24:01:b2:b9:24:a6:e9:e3:f0:41:da:29:24:60:bb:
08:32:dd:33:4d:8c:2b:18:4e:10:f9:2f:8f:c8:94:
4b:7f:d7:a1:9b:76:9b:5a:22:eb:77:4d:4b:40:7d:
10:9c:7f:de:8f:51:22:68:6b:33:d4:c6:42:c1:95:
57:84:ac:40:f6:67:d1:a2:0b:29:7a:02:9b:8a:4a:
35:b9:48:44:68:68:ce:c3:96:e6:06:31:09:29:71:
61:ae:69:09:31:27:a3:b1:aa:07:de:47:66:15:37:
58:cd:c7:34:0d:e1:3c:be:6d:c0:25:7b:58:d2:31:
c7:d1:0f:2b:89:b2:7f:65:77:30:31:73:b2:34:43:
b3:c9:a2:84:75:34:07:1a:37:33:5f:60:7e:49:c8:
c2:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:2A:C5:17:A8:0C:EF:49:AE:51:94:4C:81:B9:0D:5B:58:E8:D4:D7
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/IyrFF6gM70muUZRMgbkNW1jo1Nc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.40.196.0/22
92.114.111.0/24
93.113.47.0/24
93.115.34.0/24
185.202.84.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:ea:7a:ba:58:1a:b3:62:f2:d4:79:32:e1:bc:ba:8d:27:57:
a3:06:16:f1:b9:1d:fb:1c:50:46:2f:65:8b:ec:c7:b3:e4:47:
58:e8:bd:24:1a:d4:2c:20:ce:81:86:c1:9f:c6:30:4c:c8:a6:
e4:2f:b2:72:0a:7d:94:7e:b2:55:16:70:e6:a8:82:85:2e:bc:
e2:a2:0f:b5:ec:6f:a2:cb:7f:b5:9b:bc:6c:47:98:e5:08:da:
e4:40:51:27:84:71:e6:9f:15:fb:d5:8d:d2:84:26:9c:c2:a0:
2e:a9:76:01:3e:72:9c:50:4a:4f:ea:ea:9c:2f:55:4d:2e:12:
e4:50:91:f2:a0:a6:88:bd:79:ba:f6:23:66:87:e6:f1:57:b9:
9e:6a:d3:74:da:b8:7e:72:b4:55:14:41:78:96:e9:de:72:05:
63:53:6b:ad:32:3a:81:f9:09:91:23:c2:09:46:a7:49:9f:00:
17:00:0c:c6:a3:2b:92:7c:99:80:3a:8c:bf:22:57:a9:82:c7:
57:34:cc:5a:2b:ad:91:b5:ec:3b:2d:63:a1:44:a0:fc:da:34:
08:f3:85:c6:c6:27:33:2f:5c:8f:10:2a:4a:40:6a:4a:97:94:
ef:0c:cd:1b:f8:99:94:f5:9a:1b:80:58:44:e8:2d:3d:c9:c4:
c2:01:ad:ac
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIEC0n4azANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ZTU4OTUyZDM5MzkzNWYwZDNiY2U4MTRmZDkxNzhkMDQ2OTNhZWI5MB4XDTIyMDEw
MTEzMDQ1OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjMyYWM1MTdhODBj
ZWY0OWFlNTE5NDRjODFiOTBkNWI1OGU4ZDRkNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALA4hqlToxMf2rh/lXajqN4hi0vrJdjY59FoS0f9jljWmWXE
3uhN4AI+EKzgGMlvqDfypiZMdAi6iCtMFHsgcV9Yut/+swl9jBsNiqzPoXg/kBB/
AHTCC8ISS4S9RzksxspTGj2cZKHXJAGyuSSm6ePwQdopJGC7CDLdM02MKxhOEPkv
j8iUS3/XoZt2m1oi63dNS0B9EJx/3o9RImhrM9TGQsGVV4SsQPZn0aILKXoCm4pK
NblIRGhozsOW5gYxCSlxYa5pCTEno7GqB95HZhU3WM3HNA3hPL5twCV7WNIxx9EP
K4myf2V3MDFzsjRDs8mihHU0Bxo3M19gfknIwkMCAwEAAaOCAiEwggIdMB0GA1Ud
DgQWBBQjKsUXqAzvSa5RlEyBuQ1bWOjU1zAfBgNVHSMEGDAWgBT+WJUtOTk18NO8
6BT9kXjQRpOuuTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19saVZMVGs1TmZEVHZPZ1VfWkY0MEVhVHJyay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzAvYjI2YWE4LWFjZTctNGZhNi05ZThlLTVkNDhiNjVjZTU3My8x
L0l5ckZGNmdNNzBtdVVaUk1nYmtOVzFqbzFOYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzAv
YjI2YWE4LWFjZTctNGZhNi05ZThlLTVkNDhiNjVjZTU3My8xL19saVZMVGs1TmZE
VHZPZ1VfWkY0MEVhVHJyay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA3
BggrBgEFBQcBBwEB/wQoMCYwJAQCAAEwHgMEAlkoxAMEAFxybwMEAF1xLwMEAF1z
IgMEArnKVDANBgkqhkiG9w0BAQsFAAOCAQEAo+p6ulgas2Ly1Hky4by6jSdXowYW
8bkd+xxQRi9li+zHs+RHWOi9JBrULCDOgYbBn8YwTMim5C+ycgp9lH6yVRZw5qiC
hS684qIPtexvost/tZu8bEeY5Qja5EBRJ4Rx5p8V+9WN0oQmnMKgLql2AT5ynFBK
T+rqnC9VTS4S5FCR8qCmiL15uvYjZofm8Ve5nmrTdNq4fnK0VRRBeJbp3nIFY1Nr
rTI6gfkJkSPCCUanSZ8AFwAMxqMrknyZgDqMvyJXqYLHVzTMWiutkbXsOy1joUSg
/No0CPOFxsYnMy9cjxAqSkBqSpeU7wzNG/iZlPWaG4BYROgtPcnEwgGtrA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:54 2023 by rpki-client on console-ams.rpki-client.org