Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/vmU6zEsAnCmkvio8UdJnf6v-BsQ.roa
File: vmU6zEsAnCmkvio8UdJnf6v-BsQ.roa (raw, json)
Hash identifier: d2yWUJ70E0xDZ/kgspFve/pwnaZeiIrwVHo9DNaZPrM=
Subject key identifier: BE:65:3A:CC:4B:00:9C:29:A4:BE:2A:3C:51:D2:67:7F:AB:FE:06:C4
Certificate issuer: /CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Certificate serial: 063A27E5
Authority key identifier: 8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/vmU6zEsAnCmkvio8UdJnf6v-BsQ.roa
Signing time: Thu 10 Mar 2022 13:41:02 +0000
ROA not before: Thu 10 Mar 2022 13:41:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399587
IP address blocks: 158.46.188.0/22 maxlen: 22
178.171.119.0/24 maxlen: 24
178.171.20.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104474597 (0x63a27e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Validity
Not Before: Mar 10 13:41:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be653acc4b009c29a4be2a3c51d2677fabfe06c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:e5:6b:9b:7f:a5:c2:1b:bf:df:f7:b1:47:78:
09:6a:bc:63:7e:cd:9a:79:b1:82:0c:7a:23:f9:c9:
ee:2d:ad:56:d1:42:fc:ef:82:f9:d5:16:fb:49:4c:
eb:bc:fc:cd:f2:1c:d5:c5:a2:97:64:77:f5:72:5c:
92:58:e3:22:7c:9f:a6:c9:44:0c:91:43:c7:53:3f:
48:9e:4b:5f:aa:d0:58:ab:25:bc:03:88:29:1f:53:
da:28:e0:cc:39:21:35:42:11:b3:d5:ef:35:cf:ef:
de:db:6d:b3:9f:14:6d:6e:79:4b:f8:ed:8f:85:b1:
2c:d8:4a:c4:08:00:4a:1a:69:30:d7:96:f8:e2:12:
04:b2:23:b4:fe:9b:cb:58:29:c2:98:5e:cb:4a:b2:
0c:53:37:21:20:dc:94:af:02:a2:4e:0a:3d:13:c9:
01:f0:ce:32:21:84:5a:8c:80:c9:ae:d5:52:ba:9a:
00:ac:ef:40:f0:98:db:2b:62:b8:34:d6:cd:6d:ce:
cf:35:3d:92:b0:51:d8:f7:3f:eb:a3:45:7b:e8:d7:
ca:da:00:f2:8d:37:70:94:96:b6:98:6e:db:69:9b:
6c:6b:76:f1:7e:84:95:eb:d7:9a:4f:87:f2:38:9c:
bf:d4:3a:91:b5:06:9d:d7:46:54:c4:6f:96:37:3a:
79:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:65:3A:CC:4B:00:9C:29:A4:BE:2A:3C:51:D2:67:7F:AB:FE:06:C4
X509v3 Authority Key Identifier:
keyid:8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/vmU6zEsAnCmkvio8UdJnf6v-BsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/jRHLAV35uqthIo27zhfdTgDmPBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.46.188.0/22
178.171.20.0/22
178.171.119.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:f1:0b:c8:61:b6:b2:4f:4b:e5:da:cb:21:c4:78:de:c0:e5:
6e:dd:24:a8:b9:fb:38:58:8a:f6:2e:2b:33:19:ce:a9:57:66:
39:54:63:5c:90:44:8d:aa:a3:54:4b:ff:60:d7:74:d8:b7:94:
59:74:90:41:65:bb:ff:2f:76:11:dc:dc:13:5c:cb:a0:af:d0:
90:f6:ad:d6:26:41:7e:35:bd:ad:b6:a3:1a:e4:c5:c6:0e:16:
53:1f:6a:c2:70:89:5f:be:03:5d:ca:87:4a:f2:e9:8b:cc:a5:
03:6b:f2:cc:5a:fa:4e:3e:e2:96:dd:49:8d:f9:71:cd:12:67:
c5:cb:b3:ab:9f:18:3d:17:d9:d7:80:dd:a5:1d:5b:51:f8:30:
a8:ea:77:9e:24:92:89:c4:70:f0:c4:dd:2b:41:c4:de:5c:cd:
f8:94:12:69:cb:73:ac:05:d8:da:ca:24:77:0d:67:1e:6e:c0:
dd:2c:81:c3:7a:9f:19:95:da:b8:9c:33:db:35:8b:9b:75:ed:
80:b2:14:01:eb:cf:6d:a3:7c:4f:0d:07:e0:af:e6:3d:32:a0:
f7:67:1c:7b:92:44:cd:7c:36:e8:02:d1:91:6b:a0:92:ab:5e:
5f:2b:ff:5a:86:47:ef:7a:2b:67:56:b7:29:d9:9f:30:7e:05:
36:c5:03:72
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEBjon5TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZDExY2IwMTVkZjliYWFiNjEyMjhkYmJjZTE3ZGQ0ZTAwZTYzYzEzMB4XDTIyMDMx
MDEzNDEwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmU2NTNhY2M0YjAw
OWMyOWE0YmUyYTNjNTFkMjY3N2ZhYmZlMDZjNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANvla5t/pcIbv9/3sUd4CWq8Y37Nmnmxggx6I/nJ7i2tVtFC
/O+C+dUW+0lM67z8zfIc1cWil2R39XJckljjInyfpslEDJFDx1M/SJ5LX6rQWKsl
vAOIKR9T2ijgzDkhNUIRs9XvNc/v3ttts58UbW55S/jtj4WxLNhKxAgAShppMNeW
+OISBLIjtP6by1gpwphey0qyDFM3ISDclK8Cok4KPRPJAfDOMiGEWoyAya7VUrqa
AKzvQPCY2ytiuDTWzW3OzzU9krBR2Pc/66NFe+jXytoA8o03cJSWtphu22mbbGt2
8X6ElevXmk+H8jicv9Q6kbUGnddGVMRvljc6eRMCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBS+ZTrMSwCcKaS+KjxR0md/q/4GxDAfBgNVHSMEGDAWgBSNEcsBXfm6q2Ei
jbvOF91OAOY8EzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2pSSExBVjM1dXF0aElvMjd6aGZkVGdEbVBCTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDYvNWQ4OTE1LWM0NDgtNDBlNy04Y2FhLWJhNzcxZmZkMjY5Yy8x
L3ZtVTZ6RXNBbkNta3ZpbzhVZEpuZjZ2LUJzUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDYv
NWQ4OTE1LWM0NDgtNDBlNy04Y2FhLWJhNzcxZmZkMjY5Yy8xL2pSSExBVjM1dXF0
aElvMjd6aGZkVGdEbVBCTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAp4uvAMEArKrFAMEALKrdzANBgkq
hkiG9w0BAQsFAAOCAQEAP/ELyGG2sk9L5drLIcR43sDlbt0kqLn7OFiK9i4rMxnO
qVdmOVRjXJBEjaqjVEv/YNd02LeUWXSQQWW7/y92EdzcE1zLoK/QkPat1iZBfjW9
rbajGuTFxg4WUx9qwnCJX74DXcqHSvLpi8ylA2vyzFr6Tj7ilt1JjflxzRJnxcuz
q58YPRfZ14DdpR1bUfgwqOp3niSSicRw8MTdK0HE3lzN+JQSactzrAXY2sokdw1n
Hm7A3SyBw3qfGZXauJwz2zWLm3XtgLIUAevPbaN8Tw0H4K/mPTKg92cce5JEzXw2
6ALRkWugkqteXyv/WoZH73orZ1a3KdmfMH4FNsUDcg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:39 2024 by rpki-client on console-fra.rpki-client.org