Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/8z3RJh5cTpf1R-tfZenVbext5rA.roa
File: 8z3RJh5cTpf1R-tfZenVbext5rA.roa (raw, json)
Hash identifier: dEsCvwH7Acy79iAuHrMLTgAiJW2R3HSj7zBdC4AIuxA=
Subject key identifier: F3:3D:D1:26:1E:5C:4E:97:F5:47:EB:5F:65:E9:D5:6D:EC:6D:E6:B0
Certificate issuer: /CN=8817aafec61c3a6b024b6a9f54ffb764ca3df922
Certificate serial: 34FCDB82
Authority key identifier: 88:17:AA:FE:C6:1C:3A:6B:02:4B:6A:9F:54:FF:B7:64:CA:3D:F9:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/8z3RJh5cTpf1R-tfZenVbext5rA.roa
Signing time: Sat 01 Jan 2022 05:57:45 +0000
ROA not before: Sat 01 Jan 2022 05:57:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12859
IP address blocks: 93.175.159.0/24 maxlen: 24
2001:67c:2d7c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 888986498 (0x34fcdb82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8817aafec61c3a6b024b6a9f54ffb764ca3df922
Validity
Not Before: Jan 1 05:57:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f33dd1261e5c4e97f547eb5f65e9d56dec6de6b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:fb:78:62:02:f6:11:4f:06:ea:30:5c:28:d5:
97:0c:63:83:24:d8:64:03:e6:e2:ac:f7:67:d9:01:
30:0d:26:52:c8:a0:ae:fa:1f:a3:df:5f:42:c3:cd:
1d:85:87:57:9c:df:33:eb:f9:89:be:ce:eb:d6:f7:
36:1a:86:49:59:b2:86:3c:68:0a:86:03:81:b1:6b:
ea:96:94:a9:25:e0:32:e3:81:66:1e:1f:cc:9e:15:
03:86:5e:07:14:4e:7b:d0:57:cb:59:db:b3:07:1b:
85:37:6e:7d:71:be:ea:c9:6b:ec:d6:2e:00:45:26:
ad:69:b0:cb:b4:28:01:3c:1f:96:1d:ee:fe:85:e1:
79:00:c4:9a:37:9a:66:5f:91:a7:49:5c:4f:6d:36:
44:ba:47:82:54:ad:2d:68:08:b1:9e:36:49:f0:2f:
f2:a6:c8:23:99:68:77:89:28:67:54:48:85:a0:ce:
1c:3b:cf:84:f3:f5:d5:ed:93:c0:08:ba:16:13:90:
6e:fb:c0:31:8b:9d:a6:32:02:d9:98:28:de:08:c4:
86:30:fc:fd:4b:05:ce:31:3a:fa:f8:e1:35:61:57:
12:56:3a:ef:8f:9d:79:ea:ac:44:8d:51:3e:89:69:
1e:7e:dd:e0:24:cf:e6:b8:ed:c0:e8:40:1d:81:64:
be:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:3D:D1:26:1E:5C:4E:97:F5:47:EB:5F:65:E9:D5:6D:EC:6D:E6:B0
X509v3 Authority Key Identifier:
keyid:88:17:AA:FE:C6:1C:3A:6B:02:4B:6A:9F:54:FF:B7:64:CA:3D:F9:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/8z3RJh5cTpf1R-tfZenVbext5rA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.175.159.0/24
IPv6:
2001:67c:2d7c::/48
Signature Algorithm: sha256WithRSAEncryption
34:f5:7e:62:d1:68:31:30:f5:0b:ef:01:a5:4c:e9:81:11:45:
5e:6d:df:96:90:2c:61:51:c0:47:d2:89:7e:a1:db:69:4e:62:
93:c7:75:a8:36:6c:2c:19:c0:7c:e1:94:2d:20:de:a9:a3:43:
ff:78:41:99:c5:a5:bf:8f:64:35:56:86:99:86:f4:3e:a0:ed:
f9:b5:6e:c7:72:3d:ac:bc:bd:37:62:85:9c:6a:96:97:eb:58:
c1:86:a3:00:5a:b9:04:4f:e2:51:e1:e1:eb:0c:4a:6a:b4:d4:
11:99:60:43:8a:df:5c:0a:d2:39:b2:85:96:b0:82:84:f0:8d:
bf:b3:e9:4c:fd:1c:27:37:e8:6e:83:39:60:90:6e:0a:80:7b:
33:52:82:c5:37:26:08:89:86:e7:2e:5b:67:fd:d6:d3:8f:87:
a2:22:a3:79:b9:46:df:5a:ac:d5:3f:f4:c3:3d:0d:a6:4d:81:
f4:93:32:c7:83:de:34:99:c7:ee:f6:43:d4:46:ad:07:61:3d:
d2:86:62:d0:69:f9:12:01:4d:3a:86:81:63:08:8c:28:fc:02:
3f:55:25:d3:77:a1:aa:d9:e3:21:15:59:b4:fc:ce:cc:6b:dc:
2a:a5:aa:7a:34:49:fb:49:14:b2:45:84:e9:d6:d0:2b:8e:06:
ff:a7:19:8f
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIENPzbgjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ODE3YWFmZWM2MWMzYTZiMDI0YjZhOWY1NGZmYjc2NGNhM2RmOTIyMB4XDTIyMDEw
MTA1NTc0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjMzZGQxMjYxZTVj
NGU5N2Y1NDdlYjVmNjVlOWQ1NmRlYzZkZTZiMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ77eGIC9hFPBuowXCjVlwxjgyTYZAPm4qz3Z9kBMA0mUsig
rvofo99fQsPNHYWHV5zfM+v5ib7O69b3NhqGSVmyhjxoCoYDgbFr6paUqSXgMuOB
Zh4fzJ4VA4ZeBxROe9BXy1nbswcbhTdufXG+6slr7NYuAEUmrWmwy7QoATwflh3u
/oXheQDEmjeaZl+Rp0lcT202RLpHglStLWgIsZ42SfAv8qbII5lod4koZ1RIhaDO
HDvPhPP11e2TwAi6FhOQbvvAMYudpjIC2Zgo3gjEhjD8/UsFzjE6+vjhNWFXElY6
74+deeqsRI1RPolpHn7d4CTP5rjtwOhAHYFkvicCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBTzPdEmHlxOl/VH619l6dVt7G3msDAfBgNVHSMEGDAWgBSIF6r+xhw6awJL
ap9U/7dkyj35IjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2lCZXFfc1ljT21zQ1MycWZWUC0zWk1vOS1TSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzMvZmUyZDcyLWMyZGQtNDZjMS05NDI5LWU2NjM2OTY0OTQxMS8x
Lzh6M1JKaDVjVHBmMVItdGZaZW5WYmV4dDVyQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzMv
ZmUyZDcyLWMyZGQtNDZjMS05NDI5LWU2NjM2OTY0OTQxMS8xL2lCZXFfc1ljT21z
Q1MycWZWUC0zWk1vOS1TSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAF2vnzAPBAIAAjAJAwcAIAEGfC18
MA0GCSqGSIb3DQEBCwUAA4IBAQA09X5i0WgxMPUL7wGlTOmBEUVebd+WkCxhUcBH
0ol+odtpTmKTx3WoNmwsGcB84ZQtIN6po0P/eEGZxaW/j2Q1VoaZhvQ+oO35tW7H
cj2svL03YoWcapaX61jBhqMAWrkET+JR4eHrDEpqtNQRmWBDit9cCtI5soWWsIKE
8I2/s+lM/RwnN+hugzlgkG4KgHszUoLFNyYIiYbnLltn/dbTj4eiIqN5uUbfWqzV
P/TDPQ2mTYH0kzLHg940mcfu9kPURq0HYT3ShmLQafkSAU06hoFjCIwo/AI/VSXT
d6Gq2eMhFVm0/M7Ma9wqpap6NEn7SRSyRYTp1tArjgb/pxmP
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:59 2024 by rpki-client on console-ams.rpki-client.org