Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/jSnn0-PQzUI7bgu-RHYSt3FLI4M.roa
File: jSnn0-PQzUI7bgu-RHYSt3FLI4M.roa (raw, json)
Hash identifier: 45fV8cDYUe1/c3CzMH64wFiHcHwH4gyx7hvwb2PKrkc=
Subject key identifier: 8D:29:E7:D3:E3:D0:CD:42:3B:6E:0B:BE:44:76:12:B7:71:4B:23:83
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 07D74946
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/jSnn0-PQzUI7bgu-RHYSt3FLI4M.roa
Signing time: Tue 24 May 2022 10:05:15 +0000
ROA not before: Tue 24 May 2022 10:05:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 194.15.96.0/22 maxlen: 24
188.209.128.0/20 maxlen: 24
188.209.136.0/22 maxlen: 24
185.83.200.0/22 maxlen: 24
45.154.156.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131549510 (0x7d74946)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: May 24 10:05:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d29e7d3e3d0cd423b6e0bbe447612b7714b2383
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f1:aa:6e:d9:da:62:db:ec:d2:b5:c3:d5:de:
dd:34:f1:40:8a:ee:ed:c3:37:0c:4d:97:86:38:31:
b0:38:1f:f4:c8:98:70:a3:e5:18:8a:4a:96:6e:df:
ad:bc:45:f2:67:e4:b8:07:97:86:c0:7e:92:e9:95:
10:5a:3c:05:2f:e2:8b:7f:ec:ac:ce:6c:fe:96:5f:
ec:e9:45:bf:4a:78:03:fe:09:f3:80:d8:a3:2d:7f:
c3:3f:e4:3b:62:7a:1f:64:3f:d1:b2:16:ec:c9:8c:
9d:8f:71:07:0e:19:e0:6a:67:a3:85:6d:f5:16:ae:
89:29:a2:49:d7:fd:46:62:2e:65:85:4d:70:f7:df:
52:31:6c:3e:d4:6c:58:b0:1e:3c:ce:76:4a:b1:b0:
c6:78:41:9b:0f:48:cd:ee:9b:53:ce:bd:b9:95:9e:
14:f8:4c:b5:b9:ce:41:00:30:74:0a:00:b7:fb:17:
2f:98:76:7a:18:d7:b4:30:2a:89:98:de:2b:92:97:
de:bf:4f:bd:fc:56:95:21:0d:1d:55:8d:e9:3d:ff:
47:91:79:30:19:d2:5e:56:c3:25:c8:d4:f5:36:6d:
0f:7c:36:ee:96:35:ef:05:eb:41:5d:cb:54:3e:f3:
ce:2e:63:86:a2:90:78:e7:97:6b:d1:c7:4e:02:6e:
9b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:29:E7:D3:E3:D0:CD:42:3B:6E:0B:BE:44:76:12:B7:71:4B:23:83
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/jSnn0-PQzUI7bgu-RHYSt3FLI4M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.156.0/22
185.83.200.0/22
188.209.128.0/20
194.15.96.0/22
Signature Algorithm: sha256WithRSAEncryption
74:69:d7:7a:78:be:2e:cb:44:8e:63:bd:e7:1b:65:57:d9:5e:
71:8b:b1:b4:28:a7:f3:b4:3b:56:c3:03:a4:c7:7b:b9:8e:be:
fc:88:f4:fb:34:0f:4c:0e:0f:d8:70:ec:e9:85:0c:ea:fe:ea:
4b:58:eb:6b:a4:8f:47:fa:d7:8e:b1:64:57:bc:01:17:bc:e2:
0e:f1:24:ef:01:84:3b:e5:a1:88:20:53:2d:0a:9d:83:07:69:
7a:9c:e3:6c:c1:61:0d:c1:4f:42:7e:51:4d:3c:90:a0:62:8d:
f7:79:9c:97:5a:5e:b8:64:f7:98:56:a7:7c:68:a2:a8:44:5c:
55:6d:f8:b1:7f:9c:a1:64:9d:1a:6b:47:cf:b0:53:f0:5e:64:
9d:a5:a4:f5:a5:fe:6b:40:79:09:36:a3:82:92:b4:b3:9c:4e:
f3:65:73:f7:ae:01:ac:50:97:19:69:3e:1a:ec:e6:42:6a:a7:
78:9c:14:9c:2d:29:87:64:cf:1f:b2:26:de:73:50:ab:7b:87:
6b:9b:c3:26:c0:d4:02:0f:33:c5:3f:f8:c4:64:ad:fb:ac:55:
e8:c5:20:86:a1:6b:24:b8:2b:29:53:34:91:2f:ff:64:82:be:
96:d5:ab:d1:c2:c5:64:62:07:82:94:0c:96:13:21:27:e7:57:
7a:2c:6d:9b
-----BEGIN CERTIFICATE-----
MIIFATCCA+mgAwIBAgIEB9dJRjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
OTNkYTIwMTk5MDlkOWZjMzc4MjlmZDllYzI5ZDk0OGVjZmY3YzkyMB4XDTIyMDUy
NDEwMDUxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGQyOWU3ZDNlM2Qw
Y2Q0MjNiNmUwYmJlNDQ3NjEyYjc3MTRiMjM4MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKPxqm7Z2mLb7NK1w9Xe3TTxQIru7cM3DE2XhjgxsDgf9MiY
cKPlGIpKlm7frbxF8mfkuAeXhsB+kumVEFo8BS/ii3/srM5s/pZf7OlFv0p4A/4J
84DYoy1/wz/kO2J6H2Q/0bIW7MmMnY9xBw4Z4Gpno4Vt9RauiSmiSdf9RmIuZYVN
cPffUjFsPtRsWLAePM52SrGwxnhBmw9Ize6bU869uZWeFPhMtbnOQQAwdAoAt/sX
L5h2ehjXtDAqiZjeK5KX3r9PvfxWlSENHVWN6T3/R5F5MBnSXlbDJcjU9TZtD3w2
7pY17wXrQV3LVD7zzi5jhqKQeOeXa9HHTgJum3UCAwEAAaOCAhswggIXMB0GA1Ud
DgQWBBSNKefT49DNQjtuC75EdhK3cUsjgzAfBgNVHSMEGDAWgBTZPaIBmQnZ/DeC
n9nsKdlI7P98kjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzJUMmlBWmtKMmZ3M2dwX1o3Q25aU096X2ZKSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzIvNDdhZmEzLWNlMzEtNDA2MC1hMDc4LWY1YWRkZGRmMWVjNS8x
L2pTbm4wLVBRelVJN2JndS1SSFlTdDNGTEk0TS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzIv
NDdhZmEzLWNlMzEtNDA2MC1hMDc4LWY1YWRkZGRmMWVjNS8xLzJUMmlBWmtKMmZ3
M2dwX1o3Q25aU096X2ZKSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAx
BggrBgEFBQcBBwEB/wQiMCAwHgQCAAEwGAMEAi2anAMEArlTyAMEBLzRgAMEAsIP
YDANBgkqhkiG9w0BAQsFAAOCAQEAdGnXeni+LstEjmO95xtlV9lecYuxtCin87Q7
VsMDpMd7uY6+/Ij0+zQPTA4P2HDs6YUM6v7qS1jra6SPR/rXjrFkV7wBF7ziDvEk
7wGEO+WhiCBTLQqdgwdpepzjbMFhDcFPQn5RTTyQoGKN93mcl1peuGT3mFanfGii
qERcVW34sX+coWSdGmtHz7BT8F5knaWk9aX+a0B5CTajgpK0s5xO82Vz964BrFCX
GWk+GuzmQmqneJwUnC0ph2TPH7Im3nNQq3uHa5vDJsDUAg8zxT/4xGSt+6xV6MUg
hqFrJLgrKVM0kS//ZIK+ltWr0cLFZGIHgpQMlhMhJ+dXeixtmw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:54 2024 by rpki-client on console-ams.rpki-client.org