Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/qQgiiNO1rNEcGag1Qx7rE5iJjI8.roa
File: qQgiiNO1rNEcGag1Qx7rE5iJjI8.roa (raw, json)
Hash identifier: Uhf52An2k+aQUj4p3kFJB1LHUKuyoI6y7LFQrZNuHwA=
Subject key identifier: A9:08:22:88:D3:B5:AC:D1:1C:19:A8:35:43:1E:EB:13:98:89:8C:8F
Certificate issuer: /CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Certificate serial: 01828B9CC6BFE228D0AE01E4236F301CBE6C
Authority key identifier: 21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/qQgiiNO1rNEcGag1Qx7rE5iJjI8.roa
Signing time: Thu 11 Aug 2022 06:34:43 +0000
ROA not before: Thu 11 Aug 2022 06:34:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202369
IP address blocks: 147.234.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:8b:9c:c6:bf:e2:28:d0:ae:01:e4:23:6f:30:1c:be:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Validity
Not Before: Aug 11 06:34:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a9082288d3b5acd11c19a835431eeb1398898c8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:28:de:d2:62:bc:e0:09:07:1a:a2:ab:0f:c2:
1a:f0:bb:a7:8e:d6:d9:6e:da:bf:a5:fa:e0:46:54:
ef:d8:33:37:88:0b:25:46:cd:ec:7e:9c:7a:ac:bb:
99:55:e1:eb:04:1c:39:e9:88:b9:67:3f:60:9a:d6:
c0:43:41:bd:b2:e6:98:f5:58:2a:66:6a:74:8a:ab:
c8:94:d1:cb:48:41:f1:53:43:c7:63:38:97:50:3f:
4c:a2:b4:23:74:ac:4e:3b:48:2d:97:10:bd:43:cb:
cb:bc:83:e2:6b:82:2c:bb:7c:e0:99:08:d0:c1:da:
99:9c:d1:34:11:c4:1c:e8:63:63:f9:21:5d:da:0f:
ad:f4:55:28:95:28:64:05:bd:93:31:4a:bf:53:ab:
6e:12:b1:2c:7d:c5:39:6d:26:25:04:0d:90:9e:13:
8e:e8:f7:7e:09:6f:02:b4:4b:85:36:77:8d:7c:e9:
7f:ba:c0:51:36:4b:c5:e8:1c:d7:c0:12:e8:a3:44:
81:c7:99:d0:be:1c:22:0e:16:e2:2d:d4:d6:7b:39:
1b:7c:4a:c7:26:79:5e:d9:09:6a:5b:93:3a:38:f1:
fc:4a:92:f2:84:43:93:e7:15:c5:ca:20:bf:29:1c:
7b:c9:47:f4:75:6c:94:76:87:1b:58:02:79:fb:db:
98:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:08:22:88:D3:B5:AC:D1:1C:19:A8:35:43:1E:EB:13:98:89:8C:8F
X509v3 Authority Key Identifier:
keyid:21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/qQgiiNO1rNEcGag1Qx7rE5iJjI8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.234.33.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:d3:ac:4b:64:92:11:ee:21:75:13:c6:d3:a7:aa:03:98:b6:
24:39:64:95:b8:df:14:cc:0b:e2:41:4e:56:94:59:84:2b:76:
84:a7:c3:2d:34:a4:51:fb:56:66:3a:d1:c1:a7:f0:d0:3b:22:
3a:3f:a2:6a:40:c6:69:bc:05:47:42:d7:f6:d8:be:d3:e0:d5:
c0:25:2b:92:71:80:4e:8f:50:9e:bc:0c:d2:3d:81:ee:d1:34:
d3:6d:11:97:8a:bc:86:92:49:8e:1f:97:9c:71:ed:f2:ab:50:
97:65:b0:45:4b:6e:ef:97:19:7b:b5:35:7b:25:ad:fd:ba:58:
fe:27:a9:15:7a:83:17:1a:6f:c0:7c:52:df:e0:ee:70:0e:b0:
08:dc:9c:36:55:1e:1f:7e:4a:90:94:2c:00:6c:bf:c2:3c:a3:
f4:88:99:39:12:43:04:2d:6a:4b:c8:a5:b8:d4:85:93:6b:b0:
99:eb:8d:32:5e:4e:3e:c2:26:82:e9:e9:17:37:ad:fa:31:e1:
fa:32:33:b8:66:f7:3b:47:99:78:10:fc:1c:04:b6:49:b8:97:
13:e9:a4:a6:f2:ff:04:cb:e2:2a:20:07:05:6f:81:b4:40:71:
97:23:50:27:ce:a7:c7:23:4c:38:54:cb:d1:53:67:46:bf:a1:
29:27:7d:c0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYKLnMa/4ijQrgHkI28wHL5sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxYmFkNzRlN2Y2YzA5NDlhMjczNmE1NzQ3ODQ5NmQ3ZDhi
NDUwZTYwHhcNMjIwODExMDYzNDQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhOTA4MjI4OGQzYjVhY2QxMWMxOWE4MzU0MzFlZWIxMzk4ODk4YzhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnije0mK84AkHGqKrD8Ia8LunjtbZ
btq/pfrgRlTv2DM3iAslRs3sfpx6rLuZVeHrBBw56Yi5Zz9gmtbAQ0G9suaY9Vgq
Zmp0iqvIlNHLSEHxU0PHYziXUD9MorQjdKxOO0gtlxC9Q8vLvIPia4Isu3zgmQjQ
wdqZnNE0EcQc6GNj+SFd2g+t9FUolShkBb2TMUq/U6tuErEsfcU5bSYlBA2QnhOO
6Pd+CW8CtEuFNneNfOl/usBRNkvF6BzXwBLoo0SBx5nQvhwiDhbiLdTWezkbfErH
Jnle2QlqW5M6OPH8SpLyhEOT5xXFyiC/KRx7yUf0dWyUdocbWAJ5+9uYWQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKkIIojTtazRHBmoNUMe6xOYiYyPMB8GA1UdIwQY
MBaAFCG6105/bAlJonNqV0eEltfYtFDmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWJyWFRuOXNDVW1pYzJwWFI0U1cxOWkwVU9ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC84ZGRjMzgtN2ExYS00OTA2LWE4ZWQt
NDQzMzIyOWE4NDczLzEvcVFnaWlOTzFyTkVjR2FnMVF4N3JFNWlKakk4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MC84ZGRjMzgtN2ExYS00OTA2LWE4ZWQtNDQzMzIyOWE4NDcz
LzEvSWJyWFRuOXNDVW1pYzJwWFI0U1cxOWkwVU9ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAk+ohMA0G
CSqGSIb3DQEBCwUAA4IBAQAq06xLZJIR7iF1E8bTp6oDmLYkOWSVuN8UzAviQU5W
lFmEK3aEp8MtNKRR+1ZmOtHBp/DQOyI6P6JqQMZpvAVHQtf22L7T4NXAJSuScYBO
j1CevAzSPYHu0TTTbRGXiryGkkmOH5ecce3yq1CXZbBFS27vlxl7tTV7Ja39ulj+
J6kVeoMXGm/AfFLf4O5wDrAI3Jw2VR4ffkqQlCwAbL/CPKP0iJk5EkMELWpLyKW4
1IWTa7CZ640yXk4+wiaC6ekXN636MeH6MjO4Zvc7R5l4EPwcBLZJuJcT6aSm8v8E
y+IqIAcFb4G0QHGXI1AnzqfHI0w4VMvRU2dGv6EpJ33A
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:17 2024 by rpki-client on console-fra.rpki-client.org