Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/QU89Vzd7oFT-KmnkM5DT0JMYKu4.roa
File: QU89Vzd7oFT-KmnkM5DT0JMYKu4.roa (raw, json)
Hash identifier: QVxTfDlg6AnDw72kHjLmtZ72FSAqZhbRQ3QG+q0MQ2E=
Subject key identifier: 41:4F:3D:57:37:7B:A0:54:FE:2A:69:E4:33:90:D3:D0:93:18:2A:EE
Certificate issuer: /CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Certificate serial: 042A8C4A
Authority key identifier: A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/QU89Vzd7oFT-KmnkM5DT0JMYKu4.roa
Signing time: Tue 08 Mar 2022 11:44:26 +0000
ROA not before: Tue 08 Mar 2022 11:44:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207967
IP address blocks: 81.19.131.0/24 maxlen: 32
81.19.134.0/24 maxlen: 32
81.19.140.0/24 maxlen: 32
81.19.141.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69897290 (0x42a8c4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Validity
Not Before: Mar 8 11:44:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=414f3d57377ba054fe2a69e43390d3d093182aee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e9:39:b6:26:51:08:1a:ea:a2:ea:15:18:66:
7d:52:5d:4b:b7:a3:67:0c:cb:52:62:3e:73:70:db:
66:65:ac:a6:51:b1:6c:42:bd:9d:74:ba:a0:b1:e7:
41:59:eb:bf:50:94:b8:e7:1a:89:34:0e:9d:e3:20:
e8:42:10:9c:a1:fd:a9:c7:aa:fd:e6:9a:ae:4e:0b:
2c:97:6f:01:b2:d7:d9:73:87:ac:dd:02:48:4e:fc:
7f:bb:fd:6f:97:b3:94:b2:e4:32:7c:a2:c5:90:54:
65:91:6b:85:d0:3d:eb:72:78:87:30:d0:0f:37:45:
95:52:17:e0:61:40:63:7f:b2:8f:af:80:95:4d:21:
e0:88:55:ae:19:4f:fb:bb:83:f4:08:14:ac:e3:d8:
7f:b3:d6:53:db:3e:6a:da:af:b8:d0:df:71:84:37:
f3:0b:46:30:78:4c:f1:6a:e6:65:ff:0f:c3:73:ff:
81:26:b0:a4:1f:60:ae:23:e7:4d:15:66:03:00:94:
7c:1c:d1:05:ca:fa:a2:16:bc:52:eb:c3:d2:a6:52:
d7:4a:1a:6d:5e:5c:ce:22:7b:e9:6b:df:c0:61:64:
fe:bb:8a:30:43:6a:5c:d5:50:bb:01:26:b8:66:f6:
87:ef:99:ed:6c:13:38:7f:2f:d1:f0:93:c9:88:3b:
bc:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:4F:3D:57:37:7B:A0:54:FE:2A:69:E4:33:90:D3:D0:93:18:2A:EE
X509v3 Authority Key Identifier:
keyid:A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/QU89Vzd7oFT-KmnkM5DT0JMYKu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.131.0/24
81.19.134.0/24
81.19.140.0/23
Signature Algorithm: sha256WithRSAEncryption
19:00:35:da:27:41:a1:59:ab:29:3e:f9:86:d1:19:14:ad:c1:
6a:a3:9c:d7:00:89:16:83:d6:f7:18:1d:4f:b4:4d:47:89:01:
f2:a9:d8:77:f2:d2:28:a3:2d:4d:fe:a9:5b:d2:6e:c8:d9:ac:
3d:d5:66:3f:c4:0b:9c:f5:bc:a2:36:05:4b:d1:2d:e5:3d:9a:
43:45:97:1f:58:45:b4:11:92:24:89:92:53:5e:ff:e8:4c:7d:
13:4d:62:f0:25:1f:27:e2:fa:3a:b6:e7:f5:6e:d4:e2:ec:90:
c6:82:8b:96:25:1a:b7:22:d2:2e:6c:e1:71:bb:f0:ef:2c:04:
42:5e:82:8b:99:bd:36:5c:6f:5c:19:13:b4:00:80:2c:19:8c:
0a:98:12:2a:57:82:aa:2f:3e:7b:19:d0:b5:51:09:8c:e0:b0:
96:da:11:6c:e3:cf:ca:4c:1a:a3:32:89:2c:09:d1:cb:b7:01:
84:2f:49:1c:45:8b:18:09:32:62:21:fe:f3:1c:6b:70:02:22:
7c:b0:f9:2a:cf:65:69:66:16:45:c7:2a:35:f6:6c:d2:17:30:
2c:c1:e2:31:b2:62:1c:04:56:14:d5:4d:fe:00:68:3e:95:3b:
02:14:a7:b2:27:77:39:8d:0c:a7:fb:f7:5e:8c:55:b4:86:09:
fb:5b:6f:38
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEBCqMSjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NGNlOTY0MGEzZWYyZmVhMTkzNzRhZDhmOTlmNDIzZDdhYTdjNzZiMB4XDTIyMDMw
ODExNDQyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDE0ZjNkNTczNzdi
YTA1NGZlMmE2OWU0MzM5MGQzZDA5MzE4MmFlZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJXpObYmUQga6qLqFRhmfVJdS7ejZwzLUmI+c3DbZmWsplGx
bEK9nXS6oLHnQVnrv1CUuOcaiTQOneMg6EIQnKH9qceq/eaark4LLJdvAbLX2XOH
rN0CSE78f7v9b5ezlLLkMnyixZBUZZFrhdA963J4hzDQDzdFlVIX4GFAY3+yj6+A
lU0h4IhVrhlP+7uD9AgUrOPYf7PWU9s+atqvuNDfcYQ38wtGMHhM8WrmZf8Pw3P/
gSawpB9griPnTRVmAwCUfBzRBcr6oha8UuvD0qZS10oabV5cziJ76WvfwGFk/ruK
MENqXNVQuwEmuGb2h++Z7WwTOH8v0fCTyYg7vB0CAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBRBTz1XN3ugVP4qaeQzkNPQkxgq7jAfBgNVHSMEGDAWgBSkzpZAo+8v6hk3
Stj5n0I9eqfHazAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3BNNldRS1B2TC1vWk4wclktWjlDUFhxbngycy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGIvZjhhNWQxLTI2MGEtNDZhNC1hOGU0LTI4M2ZlNTRhNmYyZi8x
L1FVODlWemQ3b0ZULUttbmtNNURUMEpNWUt1NC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGIv
ZjhhNWQxLTI2MGEtNDZhNC1hOGU0LTI4M2ZlNTRhNmYyZi8xL3BNNldRS1B2TC1v
Wk4wclktWjlDUFhxbngycy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAFETgwMEAFEThgMEAVETjDANBgkq
hkiG9w0BAQsFAAOCAQEAGQA12idBoVmrKT75htEZFK3BaqOc1wCJFoPW9xgdT7RN
R4kB8qnYd/LSKKMtTf6pW9JuyNmsPdVmP8QLnPW8ojYFS9Et5T2aQ0WXH1hFtBGS
JImSU17/6Ex9E01i8CUfJ+L6Orbn9W7U4uyQxoKLliUatyLSLmzhcbvw7ywEQl6C
i5m9NlxvXBkTtACALBmMCpgSKleCqi8+exnQtVEJjOCwltoRbOPPykwaozKJLAnR
y7cBhC9JHEWLGAkyYiH+8xxrcAIifLD5Ks9laWYWRccqNfZs0hcwLMHiMbJiHARW
FNVN/gBoPpU7AhSnsid3OY0Mp/v3XoxVtIYJ+1tvOA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:19 2024 by rpki-client on console-ams.rpki-client.org