Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/DuLjjgmXH4kMAqyVQFQJtZ9bSII.roa
File: DuLjjgmXH4kMAqyVQFQJtZ9bSII.roa (raw, json)
Hash identifier: PT7wmVkl9fakjBE/ppuErwn1iOzRBruCqOgTCAC74aU=
Subject key identifier: 0E:E2:E3:8E:09:97:1F:89:0C:02:AC:95:40:54:09:B5:9F:5B:48:82
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 01839DDCFB9FD8FE934025A34D4F75B1B258
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/DuLjjgmXH4kMAqyVQFQJtZ9bSII.roa
Signing time: Mon 03 Oct 2022 12:40:48 +0000
ROA not before: Mon 03 Oct 2022 12:40:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 188.215.124.0/22 maxlen: 24
89.46.176.0/22 maxlen: 24
89.46.180.0/22 maxlen: 24
31.186.180.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:9d:dc:fb:9f:d8:fe:93:40:25:a3:4d:4f:75:b1:b2:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Oct 3 12:40:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0ee2e38e09971f890c02ac95405409b59f5b4882
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:69:60:19:9f:07:91:e3:7e:d1:6c:00:e5:9b:
37:87:b3:7f:09:71:ec:e0:98:df:b7:0e:0f:91:46:
24:e8:3f:63:12:8d:a5:1e:7a:b1:37:61:e7:45:9f:
92:37:ae:45:b7:a2:a4:55:82:cd:4a:43:67:0a:14:
f8:46:8b:12:4c:67:65:3c:a3:5e:26:79:6e:f5:04:
ca:79:02:c6:66:87:99:ae:f0:f1:1e:6b:e5:bd:7e:
2e:ea:75:f1:0d:56:3b:10:94:ed:ca:ff:f7:cf:28:
c0:fd:42:0a:a1:b2:4a:aa:d6:f6:cf:a0:de:50:79:
c8:79:25:bc:9f:0f:01:0f:91:a1:0e:97:1f:3a:02:
6c:c0:35:5f:15:fc:7c:ce:e4:bf:81:99:83:ab:c2:
d4:ba:9e:e1:79:34:cf:6b:fa:d9:65:0f:0e:99:da:
e0:9b:be:06:62:39:5c:b8:14:05:6b:4f:e7:88:0b:
ce:9f:ea:1e:80:03:c0:20:98:5d:34:0a:3b:4f:ba:
08:a0:1d:a9:82:36:34:12:f2:21:0c:1c:e0:8e:fb:
ad:84:81:dc:0f:34:50:3f:03:71:74:6c:3e:9d:d9:
ea:7d:12:9b:1f:ed:bf:a6:95:13:8a:01:05:1a:46:
7e:41:29:c4:ee:4c:82:a0:d9:3a:39:6c:a9:2b:92:
d1:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:E2:E3:8E:09:97:1F:89:0C:02:AC:95:40:54:09:B5:9F:5B:48:82
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/DuLjjgmXH4kMAqyVQFQJtZ9bSII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.186.180.0/22
89.46.176.0/21
188.215.124.0/22
Signature Algorithm: sha256WithRSAEncryption
93:75:03:fa:0b:95:c9:fe:43:5f:56:fa:7c:f3:cb:9d:2b:73:
e3:31:86:10:f5:da:02:af:20:fc:95:a7:f4:4e:fa:87:da:ca:
9d:fb:d3:f9:43:cc:23:6a:b0:ef:97:50:65:f3:e6:c4:04:34:
d4:48:6d:c3:21:6b:c2:0c:03:f3:9e:f7:73:b0:67:ed:46:67:
12:65:e9:4b:ee:13:e9:73:7f:95:eb:d8:76:09:fe:49:a5:75:
06:e6:1d:73:67:3b:9e:fb:72:a6:61:bb:6d:b8:76:fa:17:82:
a6:1d:49:52:61:4c:5f:dc:98:c2:b0:66:78:de:3f:24:0a:0d:
a0:75:9e:50:5a:24:3a:42:bf:fc:9b:32:e5:7c:4e:49:40:0d:
c0:d7:19:50:62:99:6b:eb:ff:43:e3:68:12:97:56:66:d0:e9:
0b:54:08:29:bc:4c:ae:ef:2d:8a:5f:c1:20:94:19:b5:c2:70:
09:88:a6:a9:f0:0e:76:80:14:28:73:dd:14:fb:32:32:33:5b:
57:a0:9c:af:ad:be:af:9c:cc:c2:c7:7e:61:50:d2:09:2b:eb:
b2:69:9f:8c:68:0f:d1:3d:59:31:7f:62:17:4b:8f:8a:0d:fd:
ff:7c:bd:0c:38:7b:93:27:ae:f9:cb:2e:c1:8f:dc:4e:ab:20:
a8:f9:dc:ca
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYOd3Puf2P6TQCWjTU91sbJYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2Y2NlMDZlNzBkZjk3MGQ5MGFiZmUzY2JlN2ZhODgyZjQ2
N2IxZTQwHhcNMjIxMDAzMTI0MDQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZWUyZTM4ZTA5OTcxZjg5MGMwMmFjOTU0MDU0MDliNTlmNWI0ODgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj2lgGZ8HkeN+0WwA5Zs3h7N/CXHs
4Jjftw4PkUYk6D9jEo2lHnqxN2HnRZ+SN65Ft6KkVYLNSkNnChT4RosSTGdlPKNe
Jnlu9QTKeQLGZoeZrvDxHmvlvX4u6nXxDVY7EJTtyv/3zyjA/UIKobJKqtb2z6De
UHnIeSW8nw8BD5GhDpcfOgJswDVfFfx8zuS/gZmDq8LUup7heTTPa/rZZQ8Omdrg
m74GYjlcuBQFa0/niAvOn+oegAPAIJhdNAo7T7oIoB2pgjY0EvIhDBzgjvuthIHc
DzRQPwNxdGw+ndnqfRKbH+2/ppUTigEFGkZ+QSnE7kyCoNk6OWypK5LRhQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFA7i444Jlx+JDAKslUBUCbWfW0iCMB8GA1UdIwQY
MBaAFIbM4G5w35cNkKv+PL5/qIL0Z7HkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2Ut
ODk3MTRhN2U4ZDU4LzEvRHVMampnbVhINGtNQXF5VlFGUUp0WjliU0lJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2UtODk3MTRhN2U4ZDU4
LzEvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCH7q0AwQD
WS6wAwQCvNd8MA0GCSqGSIb3DQEBCwUAA4IBAQCTdQP6C5XJ/kNfVvp888udK3Pj
MYYQ9doCryD8laf0TvqH2sqd+9P5Q8wjarDvl1Bl8+bEBDTUSG3DIWvCDAPznvdz
sGftRmcSZelL7hPpc3+V69h2Cf5JpXUG5h1zZzue+3KmYbttuHb6F4KmHUlSYUxf
3JjCsGZ43j8kCg2gdZ5QWiQ6Qr/8mzLlfE5JQA3A1xlQYplr6/9D42gSl1Zm0OkL
VAgpvEyu7y2KX8EglBm1wnAJiKap8A52gBQoc90U+zIyM1tXoJyvrb6vnMzCx35h
UNIJK+uyaZ+MaA/RPVkxf2IXS4+KDf3/fL0MOHuTJ675yy7Bj9xOqyCo+dzK
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org