Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/62764b-9aa6-4f12-a71c-6bac34987019/1/QVBD2zaC47y5HI0iWXKdxE2BQUM.roa
File: QVBD2zaC47y5HI0iWXKdxE2BQUM.roa (raw, json)
Hash identifier: gtfkNbHaCEk7w2AtLkylohh2ZD7R0XUToeTFiYcv2os=
Subject key identifier: 41:50:43:DB:36:82:E3:BC:B9:1C:8D:22:59:72:9D:C4:4D:81:41:43
Certificate issuer: /CN=35c96065093998ba42cfba11bf0d17d3ac403d40
Certificate serial: 026A59E1
Authority key identifier: 35:C9:60:65:09:39:98:BA:42:CF:BA:11:BF:0D:17:D3:AC:40:3D:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NclgZQk5mLpCz7oRvw0X06xAPUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/62764b-9aa6-4f12-a71c-6bac34987019/1/QVBD2zaC47y5HI0iWXKdxE2BQUM.roa
Signing time: Tue 01 Feb 2022 23:18:21 +0000
ROA not before: Tue 01 Feb 2022 23:18:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 198.14.16.0/20 maxlen: 24
77.223.192.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40524257 (0x26a59e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35c96065093998ba42cfba11bf0d17d3ac403d40
Validity
Not Before: Feb 1 23:18:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=415043db3682e3bcb91c8d2259729dc44d814143
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f2:81:07:dc:da:1c:42:7e:2d:ed:ab:73:9a:
60:88:ef:3d:b8:ff:64:08:eb:b8:0b:31:92:cc:1c:
26:d1:23:49:1a:5d:95:5c:b3:e3:cc:d1:b4:b1:a2:
57:c0:c8:c7:e3:d2:fe:87:4b:f0:4e:d6:97:7c:57:
7e:1d:88:72:a4:97:fa:32:2c:77:74:23:d3:10:8a:
7f:f8:1c:e1:91:f5:d9:87:27:cc:b9:ff:47:bd:50:
30:db:aa:a1:20:d4:5f:5a:b7:a5:19:31:be:f3:4b:
16:02:c6:42:14:26:c8:5a:12:47:2b:c1:39:aa:31:
07:de:a7:7a:c4:f9:ae:4a:70:0a:73:b6:82:78:6f:
24:34:fd:72:3a:42:1c:a9:f3:3b:7c:1f:ac:87:01:
52:9e:4b:a1:cd:c4:e0:f3:12:c1:3b:65:1f:b6:64:
95:0b:43:55:c2:d9:2e:b4:d0:14:a5:fb:00:73:f6:
6d:3f:5b:a5:f4:95:7e:54:48:a7:83:61:78:e8:00:
61:e1:51:7a:3b:cf:4e:d8:47:a9:f0:e1:81:8d:8e:
05:f7:db:39:70:48:0a:32:74:1c:81:f2:49:c8:d1:
a2:94:bf:79:3d:4a:c6:a9:3e:52:d6:94:09:58:29:
11:30:67:7e:3f:c7:cf:c4:09:59:7b:e6:db:7e:02:
d7:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:50:43:DB:36:82:E3:BC:B9:1C:8D:22:59:72:9D:C4:4D:81:41:43
X509v3 Authority Key Identifier:
keyid:35:C9:60:65:09:39:98:BA:42:CF:BA:11:BF:0D:17:D3:AC:40:3D:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NclgZQk5mLpCz7oRvw0X06xAPUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/62764b-9aa6-4f12-a71c-6bac34987019/1/QVBD2zaC47y5HI0iWXKdxE2BQUM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/62764b-9aa6-4f12-a71c-6bac34987019/1/NclgZQk5mLpCz7oRvw0X06xAPUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.223.192.0/21
198.14.16.0/20
Signature Algorithm: sha256WithRSAEncryption
80:f7:19:1e:8c:87:9d:a8:c5:94:3d:fc:3f:bc:a4:0e:a8:35:
51:3a:51:23:ae:e9:72:66:db:33:1a:d4:62:96:c1:5c:1a:65:
4b:94:07:0a:bc:07:95:0d:c5:3f:4a:e5:fd:c5:a8:a9:26:54:
98:bb:f1:1d:39:c0:db:e8:b2:a7:18:75:1f:57:b6:4c:3c:d0:
75:72:70:81:5a:8c:5b:53:b8:aa:57:f5:2d:ac:28:7e:e6:df:
9d:3e:e4:a5:79:66:8b:8a:1c:60:03:be:27:fc:43:58:78:10:
15:5f:24:bd:c7:1e:5c:28:44:b1:83:df:da:81:d6:1b:74:fa:
e0:f8:ce:9c:20:3e:2d:6c:bd:cc:ae:83:bf:3d:9e:52:63:7b:
dc:e4:13:3b:c3:5c:b4:97:15:f1:82:af:b0:2a:85:ef:e5:43:
a6:a2:11:da:8c:d1:b3:b2:bd:3d:05:96:f2:9a:30:58:17:95:
b0:b7:90:94:68:b7:6b:3c:42:0a:8d:dc:74:f0:85:ff:70:ea:
0d:37:6e:a8:b3:89:f4:bb:89:70:7d:9e:2a:fb:7e:a0:25:0a:
cc:dc:60:ac:2c:1e:e4:05:9c:80:bc:a8:25:cd:c7:7d:c4:19:
02:68:df:19:63:03:fb:d8:c7:61:bd:ec:8e:ca:46:27:9f:75:
61:4e:dd:23
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEAmpZ4TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NWM5NjA2NTA5Mzk5OGJhNDJjZmJhMTFiZjBkMTdkM2FjNDAzZDQwMB4XDTIyMDIw
MTIzMTgyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDE1MDQzZGIzNjgy
ZTNiY2I5MWM4ZDIyNTk3MjlkYzQ0ZDgxNDE0MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALTygQfc2hxCfi3tq3OaYIjvPbj/ZAjruAsxkswcJtEjSRpd
lVyz48zRtLGiV8DIx+PS/odL8E7Wl3xXfh2IcqSX+jIsd3Qj0xCKf/gc4ZH12Ycn
zLn/R71QMNuqoSDUX1q3pRkxvvNLFgLGQhQmyFoSRyvBOaoxB96nesT5rkpwCnO2
gnhvJDT9cjpCHKnzO3wfrIcBUp5Loc3E4PMSwTtlH7ZklQtDVcLZLrTQFKX7AHP2
bT9bpfSVflRIp4NheOgAYeFRejvPTthHqfDhgY2OBffbOXBICjJ0HIHyScjRopS/
eT1Kxqk+UtaUCVgpETBnfj/Hz8QJWXvm234C1+0CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRBUEPbNoLjvLkcjSJZcp3ETYFBQzAfBgNVHSMEGDAWgBQ1yWBlCTmYukLP
uhG/DRfTrEA9QDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05jbGdaUWs1bUxwQ3o3b1J2dzBYMDZ4QVBVQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGIvNjI3NjRiLTlhYTYtNGYxMi1hNzFjLTZiYWMzNDk4NzAxOS8x
L1FWQkQyemFDNDd5NUhJMGlXWEtkeEUyQlFVTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGIv
NjI3NjRiLTlhYTYtNGYxMi1hNzFjLTZiYWMzNDk4NzAxOS8xL05jbGdaUWs1bUxw
Q3o3b1J2dzBYMDZ4QVBVQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEA03fwAMEBMYOEDANBgkqhkiG9w0B
AQsFAAOCAQEAgPcZHoyHnajFlD38P7ykDqg1UTpRI67pcmbbMxrUYpbBXBplS5QH
CrwHlQ3FP0rl/cWoqSZUmLvxHTnA2+iypxh1H1e2TDzQdXJwgVqMW1O4qlf1Lawo
fubfnT7kpXlmi4ocYAO+J/xDWHgQFV8kvcceXChEsYPf2oHWG3T64PjOnCA+LWy9
zK6Dvz2eUmN73OQTO8NctJcV8YKvsCqF7+VDpqIR2ozRs7K9PQWW8powWBeVsLeQ
lGi3azxCCo3cdPCF/3DqDTduqLOJ9LuJcH2eKvt+oCUKzNxgrCwe5AWcgLyoJc3H
fcQZAmjfGWMD+9jHYb3sjspGJ591YU7dIw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:41 2023 by rpki-client on console-fra.rpki-client.org