Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/5cecc0-2a53-4500-85ae-e8b60a2dd6b4/1/6j57iwa7myvREB-5K_e59v6jTnU.roa
File: 6j57iwa7myvREB-5K_e59v6jTnU.roa (raw, json)
Hash identifier: trWGWGHh0WXse5Wx6sYxOve4dIQ+ixHjEkbCuLZdZWI=
Subject key identifier: EA:3E:7B:8B:06:BB:9B:2B:D1:10:1F:B9:2B:F7:B9:F6:FE:A3:4E:75
Certificate issuer: /CN=d49922ca8d139a4d03d6d57cbc8177dc05feb9ec
Certificate serial: 03BE8A51
Authority key identifier: D4:99:22:CA:8D:13:9A:4D:03:D6:D5:7C:BC:81:77:DC:05:FE:B9:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Jkiyo0Tmk0D1tV8vIF33AX-uew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/5cecc0-2a53-4500-85ae-e8b60a2dd6b4/1/6j57iwa7myvREB-5K_e59v6jTnU.roa
Signing time: Sat 01 Jan 2022 11:01:16 +0000
ROA not before: Sat 01 Jan 2022 11:01:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51665
IP address blocks: 178.237.192.0/24 maxlen: 24
178.237.192.0/21 maxlen: 21
178.237.198.0/24 maxlen: 24
178.237.199.0/24 maxlen: 24
178.237.193.0/24 maxlen: 24
178.237.194.0/24 maxlen: 24
178.237.195.0/24 maxlen: 24
178.237.196.0/24 maxlen: 24
178.237.197.0/24 maxlen: 24
178.237.205.0/24 maxlen: 24
178.237.200.0/24 maxlen: 24
178.237.201.0/24 maxlen: 24
178.237.202.0/24 maxlen: 24
178.237.200.0/22 maxlen: 22
178.237.203.0/24 maxlen: 24
178.237.204.0/24 maxlen: 24
178.237.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62818897 (0x3be8a51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d49922ca8d139a4d03d6d57cbc8177dc05feb9ec
Validity
Not Before: Jan 1 11:01:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea3e7b8b06bb9b2bd1101fb92bf7b9f6fea34e75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:0a:77:a9:01:d4:f7:f6:9d:ee:dc:cc:cf:a2:
00:ce:c5:b5:c5:8f:3b:e5:95:2a:b4:6a:02:c9:2e:
f2:95:7e:f5:de:09:82:2b:18:be:af:5a:16:c3:f7:
88:bb:c7:e0:49:3c:f6:a2:00:1a:9d:28:a4:e9:82:
f6:8b:a9:54:6e:23:84:87:f2:42:cb:34:d9:70:27:
fc:96:ee:57:55:f7:bd:4f:eb:94:f4:c4:a6:4d:1b:
a3:4c:e9:74:79:cb:28:cd:63:b6:e4:95:4e:14:ba:
91:42:ef:24:e4:fd:95:f6:2b:2e:04:8f:df:8f:93:
27:a8:d7:5c:95:5d:b4:97:32:81:dd:da:f4:d6:35:
b7:f7:56:1e:69:6d:c6:a6:e1:2d:ae:85:2a:f6:70:
ac:15:f8:cc:cf:36:e5:c1:17:10:b5:02:fc:4f:b5:
c3:d1:f6:7d:e9:79:3d:ac:c5:e6:36:d0:de:99:bc:
b9:24:98:51:6c:4e:d9:b2:04:bc:c1:e4:db:d5:f5:
58:5d:83:86:81:61:2f:f5:f7:bd:fc:31:05:b9:27:
a2:59:2b:55:0e:93:49:25:b7:36:9a:a1:9d:b1:5d:
69:a6:99:2c:aa:a5:f5:28:40:9d:15:be:7f:31:f5:
27:61:95:51:ae:9b:17:87:05:19:3b:01:a5:d9:58:
bb:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:3E:7B:8B:06:BB:9B:2B:D1:10:1F:B9:2B:F7:B9:F6:FE:A3:4E:75
X509v3 Authority Key Identifier:
keyid:D4:99:22:CA:8D:13:9A:4D:03:D6:D5:7C:BC:81:77:DC:05:FE:B9:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Jkiyo0Tmk0D1tV8vIF33AX-uew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/5cecc0-2a53-4500-85ae-e8b60a2dd6b4/1/6j57iwa7myvREB-5K_e59v6jTnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/5cecc0-2a53-4500-85ae-e8b60a2dd6b4/1/1Jkiyo0Tmk0D1tV8vIF33AX-uew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.237.192.0-178.237.205.255
178.237.207.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:89:1b:6b:69:7c:93:fb:26:15:18:91:56:03:10:3c:31:07:
61:54:a6:16:04:20:17:13:83:1b:e5:e7:f0:d5:84:aa:a7:90:
36:98:b5:47:c4:bc:2f:c1:24:e7:fc:9d:a0:a1:52:6b:4d:27:
69:64:77:09:22:15:b0:8a:f9:b3:4a:61:8b:65:db:0d:ed:36:
72:ca:40:e0:ad:23:c0:de:7f:0f:ab:7f:94:05:89:d5:1c:45:
39:51:3a:18:d1:73:39:0b:08:5e:26:c4:58:cb:5a:e5:3a:88:
73:ca:96:72:f0:10:ca:8e:46:f7:25:e8:44:c8:da:44:c0:18:
a0:5f:06:50:46:33:1a:bb:3b:32:96:ab:aa:c6:29:5e:81:05:
65:5c:40:f0:2d:a8:31:57:d8:87:ca:53:43:da:0d:5e:e7:c2:
c1:50:83:82:64:95:b2:19:84:32:63:d0:99:99:6e:30:90:75:
2c:6c:05:e1:40:90:a7:8c:87:b7:d8:da:81:ff:ae:2b:8c:4f:
dd:fa:2f:fa:3b:05:47:74:f7:04:ac:a7:b1:33:8e:77:01:ff:
58:8d:33:f8:fc:21:f3:cd:cb:d4:7e:65:b2:aa:28:8b:bf:e4:
47:76:8b:53:ed:48:d1:03:c6:a6:2a:30:3d:e8:53:11:59:64:
a3:c6:c2:24
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgIEA76KUTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NDk5MjJjYThkMTM5YTRkMDNkNmQ1N2NiYzgxNzdkYzA1ZmViOWVjMB4XDTIyMDEw
MTExMDExNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWEzZTdiOGIwNmJi
OWIyYmQxMTAxZmI5MmJmN2I5ZjZmZWEzNGU3NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJwKd6kB1Pf2ne7czM+iAM7FtcWPO+WVKrRqAsku8pV+9d4J
gisYvq9aFsP3iLvH4Ek89qIAGp0opOmC9oupVG4jhIfyQss02XAn/JbuV1X3vU/r
lPTEpk0bo0zpdHnLKM1jtuSVThS6kULvJOT9lfYrLgSP34+TJ6jXXJVdtJcygd3a
9NY1t/dWHmltxqbhLa6FKvZwrBX4zM825cEXELUC/E+1w9H2fel5PazF5jbQ3pm8
uSSYUWxO2bIEvMHk29X1WF2DhoFhL/X3vfwxBbknolkrVQ6TSSW3NpqhnbFdaaaZ
LKql9ShAnRW+fzH1J2GVUa6bF4cFGTsBpdlYu4cCAwEAAaOCAhcwggITMB0GA1Ud
DgQWBBTqPnuLBrubK9EQH7kr97n2/qNOdTAfBgNVHSMEGDAWgBTUmSLKjROaTQPW
1Xy8gXfcBf657DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzFKa2l5bzBUbWswRDF0Vjh2SUYzM0FYLXVldy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzQvNWNlY2MwLTJhNTMtNDUwMC04NWFlLWU4YjYwYTJkZDZiNC8x
LzZqNTdpd2E3bXl2UkVCLTVLX2U1OXY2alRuVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzQv
NWNlY2MwLTJhNTMtNDUwMC04NWFlLWU4YjYwYTJkZDZiNC8xLzFKa2l5bzBUbWsw
RDF0Vjh2SUYzM0FYLXVldy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAt
BggrBgEFBQcBBwEB/wQeMBwwGgQCAAEwFDAMAwQGsu3AAwQBsu3MAwQAsu3PMA0G
CSqGSIb3DQEBCwUAA4IBAQCPiRtraXyT+yYVGJFWAxA8MQdhVKYWBCAXE4Mb5efw
1YSqp5A2mLVHxLwvwSTn/J2goVJrTSdpZHcJIhWwivmzSmGLZdsN7TZyykDgrSPA
3n8Pq3+UBYnVHEU5UToY0XM5CwheJsRYy1rlOohzypZy8BDKjkb3JehEyNpEwBig
XwZQRjMauzsylquqxilegQVlXEDwLagxV9iHylND2g1e58LBUIOCZJWyGYQyY9CZ
mW4wkHUsbAXhQJCnjIe32NqB/64rjE/d+i/6OwVHdPcErKexM453Af9YjTP4/CHz
zcvUfmWyqiiLv+RHdotT7UjRA8amKjA96FMRWWSjxsIk
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:20 2023 by rpki-client on console-fra.rpki-client.org