Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/RWzzYGZonHjdePCALRjpur-ZHt4.roa
File: RWzzYGZonHjdePCALRjpur-ZHt4.roa (raw, json)
Hash identifier: qf3QwlE/kknaw+fjXZ4LrNFy5Nf/kHHpnoxLBTd47AM=
Subject key identifier: 45:6C:F3:60:66:68:9C:78:DD:78:F0:80:2D:18:E9:BA:BF:99:1E:DE
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 1B4B0D45
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/RWzzYGZonHjdePCALRjpur-ZHt4.roa
Signing time: Wed 23 Feb 2022 19:46:04 +0000
ROA not before: Wed 23 Feb 2022 19:46:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209466
IP address blocks: 85.153.156.0/24 maxlen: 24
176.88.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 457903429 (0x1b4b0d45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Feb 23 19:46:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=456cf36066689c78dd78f0802d18e9babf991ede
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:82:9a:e9:3e:b7:af:2e:29:7a:37:fc:0f:9a:
27:59:3b:d8:a6:e1:53:9f:23:ca:57:21:03:2f:05:
0d:60:84:0f:6e:06:d9:73:9e:56:b2:66:12:49:c4:
42:91:a9:cd:1c:ab:4d:de:8f:33:bf:d7:ec:61:fc:
97:f7:fe:da:da:2c:93:02:ef:a5:8c:a1:e7:81:ea:
90:35:03:62:e4:73:31:09:62:00:38:e3:ae:dd:03:
2a:f1:c1:a5:b8:a6:43:af:e5:a4:58:44:19:2e:97:
0a:49:a5:4c:80:97:6f:8f:d3:13:29:1e:28:94:44:
fc:7d:67:ad:03:97:b6:ca:c7:b7:7e:6a:a2:c3:f0:
30:b7:0a:8b:98:52:eb:77:76:72:67:c9:e1:e0:46:
c1:ee:98:a1:b9:54:9b:6a:63:89:dd:1b:ee:36:8b:
19:42:24:64:85:b1:2c:a4:b2:80:f6:ee:ac:76:cb:
17:aa:d2:14:94:e4:b3:a4:bf:fe:ad:56:6b:ac:ea:
4b:e9:5f:e5:2a:ee:54:93:87:52:c6:76:83:b5:48:
57:8b:e0:03:f1:4c:62:d4:bc:23:ea:7f:59:78:e2:
bd:36:88:46:20:c7:f8:fe:f7:74:7e:3a:33:d6:24:
b7:5d:d9:fb:75:91:85:45:6a:8e:97:ad:eb:38:67:
16:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:6C:F3:60:66:68:9C:78:DD:78:F0:80:2D:18:E9:BA:BF:99:1E:DE
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/RWzzYGZonHjdePCALRjpur-ZHt4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.153.156.0/24
176.88.51.0/24
Signature Algorithm: sha256WithRSAEncryption
24:9f:72:eb:27:f2:e3:d4:5c:9f:57:58:e0:fb:23:b7:8f:a6:
71:a2:22:0c:50:3e:a1:67:4f:90:0e:63:8c:90:83:db:63:e7:
ad:0d:9e:e5:ed:42:a8:59:27:42:cd:18:6b:16:50:51:56:42:
f0:04:a9:cb:b1:a5:24:18:c1:40:ea:20:66:b2:b3:56:92:d7:
18:2d:28:5c:40:99:83:cd:89:f3:fd:56:4e:d7:c4:c7:ea:c5:
1f:a1:61:37:26:bb:5f:81:16:7a:53:27:53:f0:bb:0e:8e:b6:
bc:f8:91:41:a6:1e:e5:b0:60:b9:cd:f7:a7:08:e8:01:7c:f3:
db:12:b3:f3:fc:5c:da:c7:cd:4b:11:41:99:75:2e:e8:e3:5e:
a6:f7:e5:c4:e8:5f:ad:5a:05:8c:82:3c:72:76:f3:ec:f9:31:
34:6f:2e:97:9c:a5:e9:fc:98:4a:69:93:dd:88:59:48:ad:08:
c6:02:66:31:82:2a:70:c6:d2:91:08:69:97:12:1e:95:52:66:
c0:f7:ec:92:b8:ae:b4:94:b5:8a:37:52:90:c0:01:10:ad:f5:
df:4a:9b:ab:72:85:13:9a:91:c2:24:39:e7:fd:7c:27:61:29:
21:9a:c2:65:fb:2b:87:51:98:81:f9:21:d7:2e:68:1a:53:63:
ee:d0:02:c7
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEG0sNRTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZDU5YzQzMjNmNzY3Y2U0ZmZjODVkYWFkMjA4YjkwYzA0ZmJkM2U5MB4XDTIyMDIy
MzE5NDYwNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDU2Y2YzNjA2NjY4
OWM3OGRkNzhmMDgwMmQxOGU5YmFiZjk5MWVkZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMSCmuk+t68uKXo3/A+aJ1k72KbhU58jylchAy8FDWCED24G
2XOeVrJmEknEQpGpzRyrTd6PM7/X7GH8l/f+2toskwLvpYyh54HqkDUDYuRzMQli
ADjjrt0DKvHBpbimQ6/lpFhEGS6XCkmlTICXb4/TEykeKJRE/H1nrQOXtsrHt35q
osPwMLcKi5hS63d2cmfJ4eBGwe6YoblUm2pjid0b7jaLGUIkZIWxLKSygPburHbL
F6rSFJTks6S//q1Wa6zqS+lf5SruVJOHUsZ2g7VIV4vgA/FMYtS8I+p/WXjivTaI
RiDH+P73dH46M9Ykt13Z+3WRhUVqjpet6zhnFoMCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRFbPNgZmiceN148IAtGOm6v5ke3jAfBgNVHSMEGDAWgBSNWcQyP3Z85P/I
XarSCLkMBPvT6TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2pWbkVNajkyZk9UX3lGMnEwZ2k1REFUNzAtay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjYvZjA5ZWNmLWU4MDUtNDE1OC1iMzE1LWYyYmU5ZjZjNjY0Yy8x
L1JXenpZR1pvbkhqZGVQQ0FMUmpwdXItWkh0NC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjYv
ZjA5ZWNmLWU4MDUtNDE1OC1iMzE1LWYyYmU5ZjZjNjY0Yy8xL2pWbkVNajkyZk9U
X3lGMnEwZ2k1REFUNzAtay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFWZnAMEALBYMzANBgkqhkiG9w0B
AQsFAAOCAQEAJJ9y6yfy49Rcn1dY4Psjt4+mcaIiDFA+oWdPkA5jjJCD22PnrQ2e
5e1CqFknQs0YaxZQUVZC8ASpy7GlJBjBQOogZrKzVpLXGC0oXECZg82J8/1WTtfE
x+rFH6FhNya7X4EWelMnU/C7Do62vPiRQaYe5bBguc33pwjoAXzz2xKz8/xc2sfN
SxFBmXUu6ONepvflxOhfrVoFjII8cnbz7PkxNG8ul5yl6fyYSmmT3YhZSK0IxgJm
MYIqcMbSkQhplxIelVJmwPfskriutJS1ijdSkMABEK3130qbq3KFE5qRwiQ55/18
J2EpIZrCZfsrh1GYgfkh1y5oGlNj7tACxw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:16 2024 by rpki-client on console-fra.rpki-client.org