Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/jDDgH48_klnNIzZ1qoj69XVPqro.roa
File: jDDgH48_klnNIzZ1qoj69XVPqro.roa (raw, json)
Hash identifier: mQE5sZ0vs6eiYfEVoeTC8ek8THvUG+afW8aD7hZd2QE=
Subject key identifier: 8C:30:E0:1F:8F:3F:92:59:CD:23:36:75:AA:88:FA:F5:75:4F:AA:BA
Certificate issuer: /CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Certificate serial: 06C63933
Authority key identifier: 8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/jDDgH48_klnNIzZ1qoj69XVPqro.roa
Signing time: Wed 04 May 2022 20:02:40 +0000
ROA not before: Wed 04 May 2022 20:02:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213296
IP address blocks: 158.46.192.0/22 maxlen: 22
158.46.191.0/24 maxlen: 24
158.46.188.0/24 maxlen: 24
178.171.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113654067 (0x6c63933)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Validity
Not Before: May 4 20:02:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c30e01f8f3f9259cd233675aa88faf5754faaba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:75:9f:b3:7a:78:fd:8a:5b:c0:66:81:79:3f:
fc:b9:82:c8:17:bb:35:46:74:f3:5c:b9:b8:d0:da:
45:98:d3:53:b8:bd:7e:7c:af:71:34:4d:60:c1:39:
9b:62:0b:af:b3:c8:85:a6:f9:b4:58:68:ee:d4:87:
1e:d4:1f:39:6b:fa:37:5f:0c:cb:13:82:81:10:2a:
26:78:99:bc:da:17:82:f4:82:39:07:a0:b8:97:57:
d5:ca:1f:60:b5:af:72:a8:8d:fe:fb:5a:38:ee:d3:
66:8f:18:51:da:c6:07:b0:0f:60:71:e9:e5:fc:f5:
a5:c7:45:b3:cf:e5:15:d4:08:f5:3e:53:ec:7d:ab:
53:22:55:3e:eb:6b:2e:34:c7:44:85:bb:38:58:67:
d0:63:4f:ec:96:da:dc:2f:90:e0:c1:45:be:0f:21:
b0:ba:ec:e4:d6:73:6f:ba:60:48:46:7c:58:1d:45:
a1:79:e4:5f:ed:00:6a:2f:5e:0f:ca:b8:a2:28:99:
57:f8:5a:08:56:d1:47:f4:e8:3b:1c:09:49:5d:ee:
84:d9:56:1d:45:01:48:f5:60:60:e4:14:bb:e7:82:
95:80:f1:c7:c3:e0:0e:8a:76:83:0e:1d:85:fd:fb:
a7:09:36:cb:9d:19:3b:8d:be:6b:c2:4d:7d:62:2d:
a6:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:30:E0:1F:8F:3F:92:59:CD:23:36:75:AA:88:FA:F5:75:4F:AA:BA
X509v3 Authority Key Identifier:
keyid:8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/jDDgH48_klnNIzZ1qoj69XVPqro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/jRHLAV35uqthIo27zhfdTgDmPBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.46.188.0/24
158.46.191.0-158.46.195.255
178.171.22.0/24
Signature Algorithm: sha256WithRSAEncryption
80:37:ac:5a:8d:57:1f:88:ff:03:6d:06:a3:f7:60:3c:77:05:
81:34:62:ce:32:d0:66:73:f3:d4:da:4d:af:ee:2b:14:49:64:
bc:b6:55:a8:d0:3e:3f:ee:98:cd:b1:5d:74:7f:61:ba:95:71:
d3:7b:23:35:cb:74:95:6d:b3:08:44:ae:69:c4:0f:32:6d:59:
e3:50:10:d1:2c:e3:d3:b2:8b:20:da:44:ae:86:ff:7f:7b:16:
29:e9:c9:ec:b0:1d:cb:da:d3:52:fa:9d:2f:40:6b:34:f4:71:
f3:9a:a4:b9:5a:b7:14:80:9b:ec:48:89:18:ee:d4:52:65:23:
72:b6:8c:42:66:03:45:aa:35:01:60:b5:93:39:a8:c8:1a:0c:
dd:72:3e:ce:f0:de:36:6b:68:06:0e:b6:44:30:99:6a:61:c9:
56:93:4a:c1:57:a0:4d:d6:aa:6f:ce:14:ec:59:b1:c1:09:c7:
c9:9a:d4:d8:ac:1c:7d:d6:13:d7:2a:57:31:49:81:dc:cb:69:
9f:fb:b4:d1:b1:49:92:e8:f2:b3:e3:de:46:7e:1f:98:c6:67:
42:2f:39:6a:8c:0a:2a:de:8e:72:e8:fe:94:55:b3:8d:36:38:
1c:60:8d:dd:09:f8:1a:aa:3e:39:4a:98:ce:7b:2d:b4:52:77:
58:11:1b:a7
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgIEBsY5MzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZDExY2IwMTVkZjliYWFiNjEyMjhkYmJjZTE3ZGQ0ZTAwZTYzYzEzMB4XDTIyMDUw
NDIwMDI0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGMzMGUwMWY4ZjNm
OTI1OWNkMjMzNjc1YWE4OGZhZjU3NTRmYWFiYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOx1n7N6eP2KW8BmgXk//LmCyBe7NUZ081y5uNDaRZjTU7i9
fnyvcTRNYME5m2ILr7PIhab5tFho7tSHHtQfOWv6N18MyxOCgRAqJniZvNoXgvSC
OQeguJdX1cofYLWvcqiN/vtaOO7TZo8YUdrGB7APYHHp5fz1pcdFs8/lFdQI9T5T
7H2rUyJVPutrLjTHRIW7OFhn0GNP7Jba3C+Q4MFFvg8hsLrs5NZzb7pgSEZ8WB1F
oXnkX+0Aai9eD8q4oiiZV/haCFbRR/ToOxwJSV3uhNlWHUUBSPVgYOQUu+eClYDx
x8PgDop2gw4dhf37pwk2y50ZO42+a8JNfWItpo0CAwEAAaOCAh0wggIZMB0GA1Ud
DgQWBBSMMOAfjz+SWc0jNnWqiPr1dU+qujAfBgNVHSMEGDAWgBSNEcsBXfm6q2Ei
jbvOF91OAOY8EzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2pSSExBVjM1dXF0aElvMjd6aGZkVGdEbVBCTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDYvNWQ4OTE1LWM0NDgtNDBlNy04Y2FhLWJhNzcxZmZkMjY5Yy8x
L2pERGdINDhfa2xuTkl6WjFxb2o2OVhWUHFyby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDYv
NWQ4OTE1LWM0NDgtNDBlNy04Y2FhLWJhNzcxZmZkMjY5Yy8xL2pSSExBVjM1dXF0
aElvMjd6aGZkVGdEbVBCTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAz
BggrBgEFBQcBBwEB/wQkMCIwIAQCAAEwGgMEAJ4uvDAMAwQAni6/AwQCni7AAwQA
sqsWMA0GCSqGSIb3DQEBCwUAA4IBAQCAN6xajVcfiP8DbQaj92A8dwWBNGLOMtBm
c/PU2k2v7isUSWS8tlWo0D4/7pjNsV10f2G6lXHTeyM1y3SVbbMIRK5pxA8ybVnj
UBDRLOPTsosg2kSuhv9/exYp6cnssB3L2tNS+p0vQGs09HHzmqS5WrcUgJvsSIkY
7tRSZSNytoxCZgNFqjUBYLWTOajIGgzdcj7O8N42a2gGDrZEMJlqYclWk0rBV6BN
1qpvzhTsWbHBCcfJmtTYrBx91hPXKlcxSYHcy2mf+7TRsUmS6PKz495Gfh+YxmdC
LzlqjAoq3o5y6P6UVbONNjgcYI3dCfgaqj45SpjOey20UndYERun
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:22 2023 by rpki-client on console-fra.rpki-client.org