Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/mR8qW64XyG8Qqmt8v6VVvT7nK-E.roa
File: mR8qW64XyG8Qqmt8v6VVvT7nK-E.roa (raw, json)
Hash identifier: W0j4OXrh9qWq854YC37B8cDmGuHrMS5FCBDw/Mxx6iE=
Subject key identifier: 99:1F:2A:5B:AE:17:C8:6F:10:AA:6B:7C:BF:A5:55:BD:3E:E7:2B:E1
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0182C5ABF2C8476DB7D650BC1BA9D46839A0
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/mR8qW64XyG8Qqmt8v6VVvT7nK-E.roa
Signing time: Mon 22 Aug 2022 13:09:16 +0000
ROA not before: Mon 22 Aug 2022 13:09:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201069
IP address blocks: 93.170.187.0/24 maxlen: 24
93.170.96.0/24 maxlen: 24
95.47.119.0/24 maxlen: 24
93.171.218.0/24 maxlen: 24
93.171.13.0/24 maxlen: 24
2a02:128:14::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c5:ab:f2:c8:47:6d:b7:d6:50:bc:1b:a9:d4:68:39:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Aug 22 13:09:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=991f2a5bae17c86f10aa6b7cbfa555bd3ee72be1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:44:86:ee:f4:98:5f:0c:ee:8b:b7:dd:f8:80:
cc:23:69:aa:ac:35:98:59:50:dc:38:2a:c8:bc:a9:
98:57:ab:ff:5d:a0:5a:b9:8a:f9:fd:0d:1c:1a:b9:
8f:b8:ff:5c:c0:0c:69:1b:c7:d9:2b:7e:6f:af:15:
36:07:c1:0e:c6:bd:5d:94:5b:f5:a6:1a:14:c7:70:
cb:f2:e6:23:5f:3c:d0:f4:5c:11:1a:ae:47:dd:9d:
d4:eb:3c:12:75:54:12:70:b3:5f:de:fc:a6:a0:73:
43:55:87:1a:7b:17:8e:af:6e:ae:5a:4b:ec:66:05:
37:ac:d5:f8:b8:f9:0d:0c:9b:54:ce:c8:94:23:7d:
80:f1:3d:48:c3:8e:44:1a:3e:a3:21:9e:5d:f8:76:
16:1c:f8:1c:bf:46:ac:61:57:16:8c:ee:50:1e:31:
8e:6a:08:ef:a7:3f:97:dd:be:4d:ef:ac:0a:eb:7f:
1a:de:d0:6d:b5:d1:34:b7:90:4a:87:ac:66:b3:2d:
a3:72:3d:97:75:59:d6:ef:7e:01:7e:a3:06:f1:d9:
eb:1d:99:15:55:b8:24:dd:b5:c1:96:30:f9:4e:08:
f5:a2:86:b5:b9:7b:46:f3:52:a1:33:8b:b3:79:07:
9b:31:d0:7a:02:5c:ed:0e:34:6c:86:83:a7:e6:93:
c1:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:1F:2A:5B:AE:17:C8:6F:10:AA:6B:7C:BF:A5:55:BD:3E:E7:2B:E1
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/mR8qW64XyG8Qqmt8v6VVvT7nK-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.96.0/24
93.170.187.0/24
93.171.13.0/24
93.171.218.0/24
95.47.119.0/24
IPv6:
2a02:128:14::/48
Signature Algorithm: sha256WithRSAEncryption
b0:0d:7d:60:9d:04:2a:e4:e7:c8:5e:2e:b1:51:f2:2d:6b:c0:
65:66:01:ff:0e:c6:e2:96:e5:df:70:b6:d4:fa:c9:30:c2:d0:
44:22:de:5b:87:b0:45:1a:79:21:2f:74:fa:50:3f:ff:c6:99:
3c:d2:31:3e:1b:94:f8:02:d0:d3:00:9d:1d:6e:32:f9:ce:c7:
bf:61:b2:35:7d:e7:df:b8:63:99:b1:d2:37:2b:af:12:fd:c9:
12:c9:89:d4:3d:6f:39:8e:f9:ef:6a:00:b8:fd:f5:88:5f:06:
4e:c5:53:d0:6b:f0:7c:e5:ca:19:55:78:d9:c7:b4:e9:41:22:
c3:70:c6:8c:93:ac:fe:1d:1b:73:e1:7c:ec:45:80:df:51:1e:
a6:b8:a6:ae:f9:89:f7:98:6f:24:e2:58:90:3f:eb:f7:45:c5:
41:c2:52:e4:0e:26:9e:84:9f:7f:e0:95:7c:fc:8a:12:f3:a0:
97:57:b7:80:78:9f:80:64:0d:f4:42:64:25:b5:aa:e6:70:94:
34:42:d1:56:58:8a:83:46:2a:91:f2:76:34:2f:ed:2a:61:48:
f7:23:62:5d:39:f8:36:29:da:5b:a1:1c:bd:7e:c1:4c:9b:46:
9e:7c:22:cb:76:18:20:a9:96:f8:35:a2:2a:86:45:0a:ec:24:
a5:16:95:c5
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgISAYLFq/LIR2231lC8G6nUaDmgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh
YWVmNDIwHhcNMjIwODIyMTMwOTE2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OTFmMmE1YmFlMTdjODZmMTBhYTZiN2NiZmE1NTViZDNlZTcyYmUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs0SG7vSYXwzui7fd+IDMI2mqrDWY
WVDcOCrIvKmYV6v/XaBauYr5/Q0cGrmPuP9cwAxpG8fZK35vrxU2B8EOxr1dlFv1
phoUx3DL8uYjXzzQ9FwRGq5H3Z3U6zwSdVQScLNf3vymoHNDVYcaexeOr26uWkvs
ZgU3rNX4uPkNDJtUzsiUI32A8T1Iw45EGj6jIZ5d+HYWHPgcv0asYVcWjO5QHjGO
agjvpz+X3b5N76wK638a3tBttdE0t5BKh6xmsy2jcj2XdVnW734BfqMG8dnrHZkV
Vbgk3bXBljD5Tgj1ooa1uXtG81KhM4uzeQebMdB6AlztDjRshoOn5pPB6wIDAQAB
o4ICMjCCAi4wHQYDVR0OBBYEFJkfKluuF8hvEKprfL+lVb0+5yvhMB8GA1UdIwQY
MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt
MDYyYzY5MzNhYmVkLzEvbVI4cVc2NFh5RzhRcW10OHY2VlZ2VDduSy1FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk
LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEgGCCsGAQUFBwEHAQH/BDkwNzAkBAIAATAeAwQAXapgAwQA
Xaq7AwQAXasNAwQAXavaAwQAXy93MA8EAgACMAkDBwAqAgEoABQwDQYJKoZIhvcN
AQELBQADggEBALANfWCdBCrk58heLrFR8i1rwGVmAf8OxuKW5d9wttT6yTDC0EQi
3luHsEUaeSEvdPpQP//GmTzSMT4blPgC0NMAnR1uMvnOx79hsjV959+4Y5mx0jcr
rxL9yRLJidQ9bzmO+e9qALj99YhfBk7FU9Br8HzlyhlVeNnHtOlBIsNwxoyTrP4d
G3PhfOxFgN9RHqa4pq75ifeYbyTiWJA/6/dFxUHCUuQOJp6En3/glXz8ihLzoJdX
t4B4n4BkDfRCZCW1quZwlDRC0VZYioNGKpHydjQv7SphSPcjYl05+DYp2luhHL1+
wUybRp58Ist2GCCplvg1oiqGRQrsJKUWlcU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:37 2024 by rpki-client on console-fra.rpki-client.org