Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/Qz93ZGz0zP9Z2kYzNl_OVEdt7CA.roa
File: Qz93ZGz0zP9Z2kYzNl_OVEdt7CA.roa (raw, json)
Hash identifier: JLrogyM+tW6Kcj3ueBN9P5Okrx0XJwSZZddkyjXlM08=
Subject key identifier: 43:3F:77:64:6C:F4:CC:FF:59:DA:46:33:36:5F:CE:54:47:6D:EC:20
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3A6F877C
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/Qz93ZGz0zP9Z2kYzNl_OVEdt7CA.roa
Signing time: Sat 01 Jan 2022 04:51:52 +0000
ROA not before: Sat 01 Jan 2022 04:51:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39599
IP address blocks: 88.220.116.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 980387708 (0x3a6f877c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 04:51:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=433f77646cf4ccff59da4633365fce54476dec20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:65:8b:e7:ca:1f:b9:63:fe:06:3f:ab:30:6b:
3b:d6:0c:25:60:da:ab:aa:94:a1:66:29:02:6f:02:
9b:bb:86:9b:9b:6b:bd:ba:c8:64:d0:87:19:7c:e1:
4d:79:81:e9:63:7d:75:b0:3b:b4:8b:9a:4a:7f:8e:
f6:02:ee:a4:5c:5e:98:3e:b2:fa:eb:59:71:b1:b8:
4e:29:44:8c:8d:a3:87:1b:1b:20:e2:10:79:bb:32:
38:63:4a:38:1f:00:72:34:bd:e8:7a:5f:84:cd:93:
0a:3f:a5:e1:3e:ab:7d:03:e5:70:23:f9:59:e2:4d:
b2:9c:8b:35:ec:af:97:83:4f:fc:3d:a6:6c:7b:b8:
6f:1c:e5:60:85:5d:00:59:2b:ff:60:93:17:9d:6d:
fa:ce:de:3f:9d:69:6a:c2:41:72:cf:db:f4:43:e7:
9a:25:c4:d5:f1:4a:3a:ac:84:74:f6:30:d0:2f:f3:
f8:15:01:03:e1:9f:71:7c:84:59:49:27:32:3a:e7:
40:81:9b:5d:5d:33:39:8a:4f:eb:11:3e:ed:6b:21:
57:39:20:dc:9e:2d:bb:cc:8f:a0:21:f4:1f:7a:2a:
ea:f4:2a:de:7a:cf:d2:29:74:7b:ff:ac:f4:0b:56:
5a:e5:20:f3:48:fd:be:41:6e:92:2e:9d:f9:32:c9:
08:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:3F:77:64:6C:F4:CC:FF:59:DA:46:33:36:5F:CE:54:47:6D:EC:20
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/Qz93ZGz0zP9Z2kYzNl_OVEdt7CA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.220.116.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:45:13:e6:00:40:ac:18:49:24:fa:5b:1f:6d:d8:21:fc:cb:
b3:d6:12:37:28:97:fc:ae:f6:c0:4b:16:21:ea:52:f8:7e:86:
56:d2:9a:52:69:61:bd:d0:8c:e8:0a:d0:64:9e:22:9a:22:79:
a2:07:a1:a5:bb:d1:0c:5c:94:4c:24:20:b9:8e:d3:b2:9c:4e:
ec:e3:ef:ff:1e:f5:50:14:20:33:7f:84:d3:4b:4f:d1:5e:17:
0f:0c:82:09:43:01:5c:32:1b:b7:26:c8:26:55:bb:43:2d:b0:
61:c3:26:bb:f1:66:d6:ef:79:c2:88:4b:19:df:a8:2c:0e:6f:
31:b2:e2:a2:fe:51:f6:8a:fe:72:ea:b0:af:a6:f1:72:28:9c:
0e:0a:af:cf:d7:9c:ce:24:bb:b5:49:53:3a:f4:e6:a2:1d:f4:
79:5a:c9:38:f7:0e:61:05:ba:e5:81:54:a4:63:c4:a7:97:5c:
58:3b:4b:6b:cb:19:1a:54:d1:da:ed:8b:99:83:83:5d:0d:88:
e1:39:42:c4:53:b5:8e:94:5b:6b:d3:d9:41:dd:33:7b:85:01:
71:cb:b0:65:73:79:32:d7:b2:1d:ba:2f:a9:63:0d:ad:32:35:
2e:5a:2b:61:05:b3:5d:5a:ed:75:e9:34:f5:0d:ec:ab:a2:f3:
86:e1:a8:46
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEOm+HfDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NDY4MzRlNjg4OTBmMzk4NmExYjA0NTdjZTBmNTRhZTAzYzJkNzZiMB4XDTIyMDEw
MTA0NTE1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDMzZjc3NjQ2Y2Y0
Y2NmZjU5ZGE0NjMzMzY1ZmNlNTQ0NzZkZWMyMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAO9li+fKH7lj/gY/qzBrO9YMJWDaq6qUoWYpAm8Cm7uGm5tr
vbrIZNCHGXzhTXmB6WN9dbA7tIuaSn+O9gLupFxemD6y+utZcbG4TilEjI2jhxsb
IOIQebsyOGNKOB8AcjS96HpfhM2TCj+l4T6rfQPlcCP5WeJNspyLNeyvl4NP/D2m
bHu4bxzlYIVdAFkr/2CTF51t+s7eP51pasJBcs/b9EPnmiXE1fFKOqyEdPYw0C/z
+BUBA+GfcXyEWUknMjrnQIGbXV0zOYpP6xE+7WshVzkg3J4tu8yPoCH0H3oq6vQq
3nrP0il0e/+s9AtWWuUg80j9vkFuki6d+TLJCFcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRDP3dkbPTM/1naRjM2X85UR23sIDAfBgNVHSMEGDAWgBRUaDTmiJDzmGob
BFfOD1SuA8LXazAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ZHZzA1b2lRODVocUd3Ulh6ZzlVcmdQQzEycy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjkvNWYyZjBiLWZkODItNDRmYS1iNjM0LTUyNzY2YjI0YmFhNC8x
L1F6OTNaR3owelA5WjJrWXpObF9PVkVkdDdDQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjkv
NWYyZjBiLWZkODItNDRmYS1iNjM0LTUyNzY2YjI0YmFhNC8xL1ZHZzA1b2lRODVo
cUd3Ulh6ZzlVcmdQQzEycy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFjcdDANBgkqhkiG9w0BAQsFAAOC
AQEAa0UT5gBArBhJJPpbH23YIfzLs9YSNyiX/K72wEsWIepS+H6GVtKaUmlhvdCM
6ArQZJ4imiJ5ogehpbvRDFyUTCQguY7TspxO7OPv/x71UBQgM3+E00tP0V4XDwyC
CUMBXDIbtybIJlW7Qy2wYcMmu/Fm1u95wohLGd+oLA5vMbLiov5R9or+cuqwr6bx
ciicDgqvz9ecziS7tUlTOvTmoh30eVrJOPcOYQW65YFUpGPEp5dcWDtLa8sZGlTR
2u2LmYODXQ2I4TlCxFO1jpRba9PZQd0ze4UBccuwZXN5MteyHbovqWMNrTI1Llor
YQWzXVrtdek09Q3sq6LzhuGoRg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:21 2023 by rpki-client on console-fra.rpki-client.org