Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/VMFVvPWJ_xjrS7_-OsTI3tVZzxo.roa
File: VMFVvPWJ_xjrS7_-OsTI3tVZzxo.roa (raw, json)
Hash identifier: BAsClpjrr9++tVn3ef9hAQKFTKryx1Oh61mQq4m+vBw=
Subject key identifier: 54:C1:55:BC:F5:89:FF:18:EB:4B:BF:FE:3A:C4:C8:DE:D5:59:CF:1A
Certificate issuer: /CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Certificate serial: 0993DCAA
Authority key identifier: DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/VMFVvPWJ_xjrS7_-OsTI3tVZzxo.roa
Signing time: Sat 01 Jan 2022 05:04:06 +0000
ROA not before: Sat 01 Jan 2022 05:04:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198192
IP address blocks: 84.232.124.0/24 maxlen: 24
88.148.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160685226 (0x993dcaa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Validity
Not Before: Jan 1 05:04:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=54c155bcf589ff18eb4bbffe3ac4c8ded559cf1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:3b:fd:1c:10:2c:9c:2e:08:cf:6c:b4:ed:7f:
d6:90:72:2e:e0:c1:36:42:a2:19:0a:ba:57:c4:cf:
e5:8e:6c:ed:e3:61:6d:93:20:7c:14:9a:3d:b4:a2:
32:0b:52:b4:3d:66:40:ff:36:94:0a:3d:2f:9f:33:
df:c2:e7:8f:5c:a6:ed:b2:ba:93:6e:8b:8c:35:a4:
df:f2:90:1c:28:cc:87:9a:a3:18:50:2e:5a:be:5e:
4d:cf:95:bb:46:47:ea:0a:da:fe:2e:0f:7e:2c:cf:
05:74:89:11:d7:e0:9f:e8:8b:bc:8a:a5:3f:15:7e:
00:5e:e5:3e:28:c2:f3:4d:7f:f6:35:c9:eb:e0:f6:
51:2c:ad:a1:c6:fa:63:93:80:22:d7:f9:5c:22:7b:
04:10:ff:c9:d2:c3:bf:51:27:e3:ea:35:4c:85:0c:
1e:97:64:dc:15:8a:99:43:e6:42:11:fe:52:94:dd:
b6:1f:4a:68:43:83:15:01:5a:b8:b9:5f:c1:ce:56:
a6:93:0c:e7:0c:4e:60:b7:4d:ae:f6:73:d2:16:48:
e2:86:a2:cf:65:7e:0d:24:a8:ab:be:6a:9c:08:07:
55:2c:86:3d:b5:2f:7f:8d:36:9e:4a:69:a6:57:ff:
85:5c:1b:70:4a:5f:89:19:97:07:1f:27:e5:17:22:
ea:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:C1:55:BC:F5:89:FF:18:EB:4B:BF:FE:3A:C4:C8:DE:D5:59:CF:1A
X509v3 Authority Key Identifier:
keyid:DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/VMFVvPWJ_xjrS7_-OsTI3tVZzxo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.232.124.0/24
88.148.74.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:3f:ed:f3:35:5f:d5:c1:39:8f:fa:94:a4:71:d8:1c:9d:b4:
e6:97:32:00:55:07:63:64:46:14:47:4e:34:a0:4b:c0:b2:28:
85:e0:26:ac:5c:ad:77:5d:41:9a:f2:91:be:06:7e:e3:36:d7:
0a:f8:b7:0d:c3:fb:51:07:57:12:f2:84:20:22:b5:74:2c:61:
80:78:9c:92:c0:a7:88:42:86:af:b6:ab:c2:2c:6f:d3:d5:72:
5f:4a:6e:9e:52:71:bd:da:69:14:f8:33:db:fc:13:e0:d0:85:
db:c7:6c:26:83:47:98:2d:55:a7:9c:8f:93:69:d4:6d:d9:e0:
ea:98:80:f5:ba:27:aa:eb:a1:2f:8c:1a:77:61:ed:a5:c1:c2:
65:e9:f4:54:01:10:1c:ca:87:38:06:d4:67:69:cb:d9:b3:c5:
b3:f5:87:92:ed:ff:5c:58:64:ed:b0:b2:df:42:21:8a:0a:65:
29:42:c6:3a:cb:5f:3c:e6:53:f0:fb:3a:f0:e4:b8:67:e9:0c:
8a:8c:28:33:55:86:28:49:d2:a4:f6:4b:1d:d6:62:a9:a7:45:
52:2a:83:f8:9f:a5:e2:2f:38:41:91:55:a3:3d:99:9b:1b:0e:
fb:ab:2e:2e:d8:dd:0f:1c:ae:de:c1:e3:2e:1b:3d:4c:23:52:
3f:58:b2:1b
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIECZPcqjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
YWFmMTdiMDAxNWRiYjdjZDk5MmYyNmNkZmYwMWM0ZTI2MjBiNzNlMB4XDTIyMDEw
MTA1MDQwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTRjMTU1YmNmNTg5
ZmYxOGViNGJiZmZlM2FjNGM4ZGVkNTU5Y2YxYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALI7/RwQLJwuCM9stO1/1pByLuDBNkKiGQq6V8TP5Y5s7eNh
bZMgfBSaPbSiMgtStD1mQP82lAo9L58z38Lnj1ym7bK6k26LjDWk3/KQHCjMh5qj
GFAuWr5eTc+Vu0ZH6gra/i4PfizPBXSJEdfgn+iLvIqlPxV+AF7lPijC801/9jXJ
6+D2USytocb6Y5OAItf5XCJ7BBD/ydLDv1En4+o1TIUMHpdk3BWKmUPmQhH+UpTd
th9KaEODFQFauLlfwc5WppMM5wxOYLdNrvZz0hZI4oaiz2V+DSSoq75qnAgHVSyG
PbUvf402nkppplf/hVwbcEpfiRmXBx8n5Rci6tkCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRUwVW89Yn/GOtLv/46xMje1VnPGjAfBgNVHSMEGDAWgBTarxewAV27fNmS
8mzf8BxOJiC3PjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzJxOFhzQUZkdTN6Wmt2SnMzX0FjVGlZZ3R6NC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDUvYzg5NzNjLTNjZmEtNDYwNC04MTEwLWNmMDZkMTk4M2JhMS8x
L1ZNRlZ2UFdKX3hqclM3Xy1Pc1RJM3RWWnp4by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDUv
Yzg5NzNjLTNjZmEtNDYwNC04MTEwLWNmMDZkMTk4M2JhMS8xLzJxOFhzQUZkdTN6
Wmt2SnMzX0FjVGlZZ3R6NC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFTofAMEAFiUSjANBgkqhkiG9w0B
AQsFAAOCAQEAiz/t8zVf1cE5j/qUpHHYHJ205pcyAFUHY2RGFEdONKBLwLIoheAm
rFytd11BmvKRvgZ+4zbXCvi3DcP7UQdXEvKEICK1dCxhgHicksCniEKGr7arwixv
09VyX0punlJxvdppFPgz2/wT4NCF28dsJoNHmC1Vp5yPk2nUbdng6piA9bonquuh
L4wad2HtpcHCZen0VAEQHMqHOAbUZ2nL2bPFs/WHku3/XFhk7bCy30IhigplKULG
OstfPOZT8Ps68OS4Z+kMiowoM1WGKEnSpPZLHdZiqadFUiqD+J+l4i84QZFVoz2Z
mxsO+6suLtjdDxyu3sHjLhs9TCNSP1iyGw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:20 2023 by rpki-client on console-fra.rpki-client.org