Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/Y-Pk5BlwptscQDH5DztpC6DgPYI.roa
File: Y-Pk5BlwptscQDH5DztpC6DgPYI.roa (raw, json)
Hash identifier: 0GRC5D11kWereCeUkPR3dWnrLFshxPg6swrWj7MsjAg=
Subject key identifier: 63:E3:E4:E4:19:70:A6:DB:1C:40:31:F9:0F:3B:69:0B:A0:E0:3D:82
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 018570F0A083B112A9C17D5D769988CE6955
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/Y-Pk5BlwptscQDH5DztpC6DgPYI.roa
Signing time: Mon 02 Jan 2023 05:24:55 +0000
ROA not before: Mon 02 Jan 2023 05:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35463
IP address blocks: 82.177.224.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:a0:83:b1:12:a9:c1:7d:5d:76:99:88:ce:69:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 2 05:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=63e3e4e41970a6db1c4031f90f3b690ba0e03d82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:10:95:cd:66:00:0b:5a:6e:b3:f6:b0:54:5a:
42:e2:72:b9:03:59:fb:5a:58:7e:1e:64:06:b0:d2:
c0:f6:6b:8d:26:2e:c4:2d:94:ac:e9:42:16:5b:7b:
bd:ea:77:0e:e0:c9:cb:de:f1:f2:d6:da:45:06:b6:
0c:16:5b:67:c7:b3:09:a2:b4:73:f2:95:75:90:af:
c9:94:bf:60:06:a3:f6:62:de:8b:65:74:7c:e1:a3:
24:94:f8:f9:88:df:9b:f7:b1:b0:27:4e:98:da:91:
dc:f4:d2:77:31:a1:74:f7:a5:5c:70:ab:36:05:5b:
48:a8:b1:2c:cb:e2:03:c6:67:e3:2b:60:da:10:af:
08:ba:2c:3a:d3:11:e9:a3:97:ed:0f:b9:de:dc:2a:
48:12:6c:4f:86:09:16:a8:42:dd:69:00:c8:9a:81:
15:81:f9:d0:58:25:bb:d9:0a:2b:1b:43:7d:86:66:
7e:08:b0:63:34:7e:a1:0a:7e:28:e4:cd:b4:43:ab:
a1:b1:96:9b:11:e6:ae:94:53:9e:d1:6f:4f:d6:89:
3f:a1:6d:8f:9a:08:0e:d1:ef:1a:bf:dd:22:9b:64:
d1:20:49:68:37:81:c8:e9:15:91:7a:e3:53:6e:fb:
6e:ce:82:d7:74:0d:84:9d:e5:da:6f:fd:28:b3:bd:
5d:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:E3:E4:E4:19:70:A6:DB:1C:40:31:F9:0F:3B:69:0B:A0:E0:3D:82
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/Y-Pk5BlwptscQDH5DztpC6DgPYI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.177.224.0/20
Signature Algorithm: sha256WithRSAEncryption
15:40:7d:fd:b0:18:a3:e6:01:db:3f:25:f5:98:6a:f9:d3:42:
fd:c6:d4:bb:7e:43:7d:cf:12:c7:cc:d7:7f:96:52:71:46:d2:
c1:6a:04:6d:cd:c1:ff:cd:93:1b:57:90:bf:1f:06:8a:19:36:
8c:68:3f:98:69:13:64:88:8b:d8:ad:2d:07:b9:31:f8:9b:93:
1f:57:82:07:8c:3c:b7:6a:c4:b7:03:25:40:70:d8:da:be:75:
62:d4:cd:7c:65:2f:e5:1b:89:a5:20:89:20:60:25:d8:14:4e:
20:9c:bf:72:4d:1d:cc:15:75:7e:06:c5:c8:ae:71:23:a2:f3:
b4:d0:a4:8a:9a:c3:ad:16:c8:0f:56:c4:40:ed:34:a3:88:bd:
97:d7:32:f3:e8:a8:88:91:33:15:13:01:de:24:0f:ab:79:0b:
f7:dd:9f:8d:90:d9:3d:4c:9a:3a:3a:98:3f:20:47:e2:97:e5:
80:9f:79:46:9b:81:72:38:f8:97:fa:f2:e7:5f:4d:8f:5f:73:
fd:f6:cc:e3:9d:50:31:76:60:62:7f:5e:a4:8a:f1:cd:6d:22:
8d:f7:c9:65:b5:b2:0d:5c:d7:71:86:01:d4:ed:a6:c1:95:bb:
46:dd:77:a5:4f:66:b5:15:0c:0e:ed:92:8e:ea:e0:77:39:b4:
31:66:28:79
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVw8KCDsRKpwX1ddpmIzmlVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0NjgzNGU2ODg5MGYzOTg2YTFiMDQ1N2NlMGY1NGFlMDNj
MmQ3NmIwHhcNMjMwMTAyMDUyNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2M2UzZTRlNDE5NzBhNmRiMWM0MDMxZjkwZjNiNjkwYmEwZTAzZDgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjRCVzWYAC1pus/awVFpC4nK5A1n7
Wlh+HmQGsNLA9muNJi7ELZSs6UIWW3u96ncO4MnL3vHy1tpFBrYMFltnx7MJorRz
8pV1kK/JlL9gBqP2Yt6LZXR84aMklPj5iN+b97GwJ06Y2pHc9NJ3MaF096VccKs2
BVtIqLEsy+IDxmfjK2DaEK8Iuiw60xHpo5ftD7ne3CpIEmxPhgkWqELdaQDImoEV
gfnQWCW72QorG0N9hmZ+CLBjNH6hCn4o5M20Q6uhsZabEeaulFOe0W9P1ok/oW2P
mggO0e8av90im2TRIEloN4HI6RWReuNTbvtuzoLXdA2EneXab/0os71dmQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGPj5OQZcKbbHEAx+Q87aQug4D2CMB8GA1UdIwQY
MBaAFFRoNOaIkPOYahsEV84PVK4DwtdrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkdnMDVvaVE4NWhxR3dSWHpnOVVyZ1BDMTJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS81ZjJmMGItZmQ4Mi00NGZhLWI2MzQt
NTI3NjZiMjRiYWE0LzEvWS1QazVCbHdwdHNjUURINUR6dHBDNkRnUFlJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS81ZjJmMGItZmQ4Mi00NGZhLWI2MzQtNTI3NjZiMjRiYWE0
LzEvVkdnMDVvaVE4NWhxR3dSWHpnOVVyZ1BDMTJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEUrHgMA0G
CSqGSIb3DQEBCwUAA4IBAQAVQH39sBij5gHbPyX1mGr500L9xtS7fkN9zxLHzNd/
llJxRtLBagRtzcH/zZMbV5C/HwaKGTaMaD+YaRNkiIvYrS0HuTH4m5MfV4IHjDy3
asS3AyVAcNjavnVi1M18ZS/lG4mlIIkgYCXYFE4gnL9yTR3MFXV+BsXIrnEjovO0
0KSKmsOtFsgPVsRA7TSjiL2X1zLz6KiIkTMVEwHeJA+reQv33Z+NkNk9TJo6Opg/
IEfil+WAn3lGm4FyOPiX+vLnX02PX3P99szjnVAxdmBif16kivHNbSKN98lltbIN
XNdxhgHU7abBlbtG3XelT2a1FQwO7ZKO6uB3ObQxZih5
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:06:54 2025 by rpki-client