Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/V5co2vVi1YMK9ROfi3EoHL7RGAQ.roa
File: V5co2vVi1YMK9ROfi3EoHL7RGAQ.roa (raw, json)
Hash identifier: nm1r2WPAk/KYE8VkE3U+zPsb+L8RCn64cqgzn5TswKE=
Subject key identifier: 57:97:28:DA:F5:62:D5:83:0A:F5:13:9F:8B:71:28:1C:BE:D1:18:04
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 0ACC3F7F
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/V5co2vVi1YMK9ROfi3EoHL7RGAQ.roa
Signing time: Sat 01 Jan 2022 03:02:36 +0000
ROA not before: Sat 01 Jan 2022 03:02:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211567
IP address blocks: 193.35.153.0/24 maxlen: 24
185.88.173.0/24 maxlen: 24
194.62.52.0/24 maxlen: 24
109.236.48.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181157759 (0xacc3f7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Jan 1 03:02:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=579728daf562d5830af5139f8b71281cbed11804
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:70:a5:01:bc:09:ff:09:f7:ef:4f:f4:9e:7b:
6f:00:57:85:c6:5c:95:13:7e:0c:7b:88:3d:43:4c:
e4:e3:a1:fd:ce:04:29:b0:05:70:89:92:e4:2e:2d:
d0:90:c9:d6:74:28:83:31:f6:77:95:a9:8d:e3:1f:
72:3b:4e:3f:fe:4a:37:6a:8e:fb:2f:a4:ab:5c:32:
95:da:4f:a1:fd:20:4d:e2:ac:7b:66:b8:59:09:9c:
5f:e7:6f:f2:ae:4d:06:86:ca:c6:86:8f:09:5e:4d:
8f:3a:0e:c1:10:47:68:97:bf:4d:90:26:90:12:00:
01:92:c1:63:d4:68:a0:dc:92:49:93:a3:21:2a:03:
2c:c2:f9:3f:92:d6:c9:dc:e2:ac:07:85:e0:7b:a0:
be:3f:88:d5:c9:65:52:b9:4a:8b:68:5a:d8:5d:b0:
6a:b4:01:99:de:5a:2b:09:24:30:39:21:a9:99:8e:
01:f8:d1:59:77:9a:e0:74:55:94:a1:c3:e2:74:e0:
4e:50:70:85:5c:d8:3f:73:e0:98:8d:1d:43:fb:e7:
6d:95:69:98:fe:1d:79:fa:cc:89:8d:cd:38:f4:df:
0a:df:1b:f6:af:19:c5:27:9b:11:e6:64:c7:b4:30:
71:0b:f9:8a:d1:53:2d:b7:28:a1:6d:54:88:2b:e9:
77:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:97:28:DA:F5:62:D5:83:0A:F5:13:9F:8B:71:28:1C:BE:D1:18:04
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/V5co2vVi1YMK9ROfi3EoHL7RGAQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.236.48.0/24
185.88.173.0/24
193.35.153.0/24
194.62.52.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:03:16:42:e5:d4:18:0d:8f:b7:91:19:06:e0:63:83:c0:9f:
f4:47:65:06:2c:51:10:d7:62:78:1f:32:7e:81:42:4a:2b:6c:
ad:2b:cb:84:0b:6e:10:2d:b8:d4:c8:e4:21:0a:dd:f9:ed:c1:
e2:a7:9f:8a:19:ce:39:e6:35:0a:72:eb:07:7c:3c:51:0d:d0:
94:16:84:c3:a5:4e:a0:1e:d2:83:74:da:54:ff:e5:fd:b2:6f:
8e:39:8f:ed:31:37:11:30:f3:a0:42:0d:cb:0b:3a:1d:1a:4d:
6b:c1:9b:52:ea:3f:cd:1b:88:12:40:83:73:f0:54:d6:bd:14:
35:3c:8f:ce:df:99:8e:b0:8e:f1:fb:1b:25:5a:fa:2c:5b:10:
ee:1d:5e:31:42:98:d9:e2:e3:0a:e6:b9:0a:b2:9a:c7:38:17:
e2:37:33:74:ca:3b:8b:16:c8:67:bd:d3:32:be:9f:86:e9:11:
8e:b6:5b:7c:9f:d6:22:e9:ba:e9:0b:ee:58:da:5d:91:95:5b:
d8:47:2f:94:78:f6:56:75:fb:8f:b3:08:be:bf:80:95:53:a9:
9f:bf:04:44:29:79:fa:90:14:02:3e:d9:21:ec:ab:36:f3:4e:
e4:b1:b0:ba:da:03:6f:49:3d:41:b7:f8:22:7b:7c:71:c8:b2:
1d:b1:54:0b
-----BEGIN CERTIFICATE-----
MIIFATCCA+mgAwIBAgIECsw/fzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NjE2YzQxOTUxNTJlZmZlZGJmN2IzYWZlZTJhYTcyZTE5MDkwZTRkMB4XDTIyMDEw
MTAzMDIzNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTc5NzI4ZGFmNTYy
ZDU4MzBhZjUxMzlmOGI3MTI4MWNiZWQxMTgwNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMdwpQG8Cf8J9+9P9J57bwBXhcZclRN+DHuIPUNM5OOh/c4E
KbAFcImS5C4t0JDJ1nQogzH2d5WpjeMfcjtOP/5KN2qO+y+kq1wyldpPof0gTeKs
e2a4WQmcX+dv8q5NBobKxoaPCV5NjzoOwRBHaJe/TZAmkBIAAZLBY9RooNySSZOj
ISoDLML5P5LWydzirAeF4Hugvj+I1cllUrlKi2ha2F2warQBmd5aKwkkMDkhqZmO
AfjRWXea4HRVlKHD4nTgTlBwhVzYP3PgmI0dQ/vnbZVpmP4defrMiY3NOPTfCt8b
9q8ZxSebEeZkx7QwcQv5itFTLbcooW1UiCvpd08CAwEAAaOCAhswggIXMB0GA1Ud
DgQWBBRXlyja9WLVgwr1E5+LcSgcvtEYBDAfBgNVHSMEGDAWgBTGFsQZUVLv/tv3
s6/uKqcuGQkOTTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hoYkVHVkZTN183Yjk3T3Y3aXFuTGhrSkRrMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDcvYWQ2NTIxLWQzYTktNGIxMy1iZTY5LTM5ZmRiOTg2ZjA1OS8x
L1Y1Y28ydlZpMVlNSzlST2ZpM0VvSEw3UkdBUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDcv
YWQ2NTIxLWQzYTktNGIxMy1iZTY5LTM5ZmRiOTg2ZjA1OS8xL3hoYkVHVkZTN183
Yjk3T3Y3aXFuTGhrSkRrMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAx
BggrBgEFBQcBBwEB/wQiMCAwHgQCAAEwGAMEAG3sMAMEALlYrQMEAMEjmQMEAMI+
NDANBgkqhkiG9w0BAQsFAAOCAQEAogMWQuXUGA2Pt5EZBuBjg8Cf9EdlBixRENdi
eB8yfoFCSitsrSvLhAtuEC241MjkIQrd+e3B4qefihnOOeY1CnLrB3w8UQ3QlBaE
w6VOoB7Sg3TaVP/l/bJvjjmP7TE3ETDzoEINyws6HRpNa8GbUuo/zRuIEkCDc/BU
1r0UNTyPzt+ZjrCO8fsbJVr6LFsQ7h1eMUKY2eLjCua5CrKaxzgX4jczdMo7ixbI
Z73TMr6fhukRjrZbfJ/WIum66QvuWNpdkZVb2EcvlHj2VnX7j7MIvr+AlVOpn78E
RCl5+pAUAj7ZIeyrNvNO5LGwutoDb0k9Qbf4Int8cciyHbFUCw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:49 2024 by rpki-client on console-fra.rpki-client.org