Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/PQIBhE4oqgOm-FPwhcpmkPSCbRc.roa
File: PQIBhE4oqgOm-FPwhcpmkPSCbRc.roa (raw, json)
Hash identifier: gr7I/NGmkbkU077Eiphl5ylqiUTmCiyCuEeMw7nn91M=
Subject key identifier: 3D:02:01:84:4E:28:AA:03:A6:F8:53:F0:85:CA:66:90:F4:82:6D:17
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 42CEFF43
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/PQIBhE4oqgOm-FPwhcpmkPSCbRc.roa
Signing time: Mon 02 May 2022 13:10:09 +0000
ROA not before: Mon 02 May 2022 13:10:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57009
IP address blocks: 89.43.55.0/24 maxlen: 24
94.176.97.0/24 maxlen: 24
93.115.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1120862019 (0x42ceff43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: May 2 13:10:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d0201844e28aa03a6f853f085ca6690f4826d17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:6d:20:be:21:f4:81:06:24:f2:b9:56:94:59:
80:6d:23:dc:4f:fd:0d:6b:aa:ff:2b:eb:33:3d:c1:
67:18:ec:4b:d4:a9:70:4d:24:13:ed:b4:9c:5f:fc:
47:b9:d5:f5:b1:cd:b5:16:f7:03:90:ff:9c:96:b6:
54:79:8b:be:c3:ff:c2:b5:c2:2c:87:5a:7c:2d:81:
d8:9c:1a:1a:5b:ae:46:30:3e:3d:5d:bd:d3:3d:91:
89:70:d9:74:98:c1:17:87:e2:35:24:6f:8d:a9:36:
f3:c0:14:a0:07:cb:f9:b3:48:ca:52:9d:65:4d:a6:
85:36:d7:23:ab:e8:75:9d:dd:27:f8:0d:3e:d0:fb:
88:63:df:44:a3:be:b9:4f:a2:0f:dc:bd:f9:65:03:
05:70:37:ee:dd:72:87:03:26:b6:1c:78:42:71:24:
2e:36:fa:50:af:92:98:70:d3:91:fc:1f:d2:cc:7f:
17:d8:cb:44:33:5f:ab:b6:05:e6:0b:5c:f6:d1:ba:
77:bf:52:d6:bb:32:1b:a7:ec:d4:95:df:c0:64:79:
de:d4:d9:47:eb:74:38:58:1c:8c:2d:7e:47:42:92:
b6:41:92:a5:61:3c:97:0e:49:69:bf:5b:aa:1d:98:
15:4e:ee:f5:90:f4:07:d2:ad:09:90:c7:1e:ee:4b:
be:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:02:01:84:4E:28:AA:03:A6:F8:53:F0:85:CA:66:90:F4:82:6D:17
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/PQIBhE4oqgOm-FPwhcpmkPSCbRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.43.55.0/24
93.115.9.0/24
94.176.97.0/24
Signature Algorithm: sha256WithRSAEncryption
39:a2:a8:c3:bf:b6:3c:3b:9c:a1:23:1d:cb:af:8c:02:1e:6e:
78:ba:8c:7d:69:33:84:f8:89:64:40:54:74:71:94:d8:46:d8:
d0:4a:5e:82:de:56:27:3a:95:b6:45:81:0a:ab:fe:22:fd:5c:
b6:05:e2:43:72:25:05:08:96:9b:d3:1b:e9:b8:e9:57:bc:14:
6c:ac:7d:4d:55:a9:f4:14:8c:a1:dd:3c:a8:ae:72:06:c3:26:
dc:e8:7f:f3:92:19:7a:b6:10:a6:d1:0b:56:fd:6d:8c:b3:f5:
16:e5:ac:1f:29:37:b1:b7:1a:ed:96:25:75:9b:10:f3:9c:d4:
95:7f:b5:2c:af:d4:c9:bf:73:58:6e:fc:b9:97:d5:49:20:d2:
86:31:9e:aa:8f:9c:99:a0:cc:28:65:dd:0e:76:e1:61:d9:67:
55:a8:22:8a:a1:2a:e7:11:4b:b1:a3:4a:27:ff:d8:a4:e4:94:
52:7b:a7:99:52:45:05:5f:4d:b2:d5:25:db:4d:dc:c0:b1:09:
eb:02:5c:d7:f2:6a:02:18:8f:14:97:14:4a:57:df:44:b4:93:
72:1a:c8:a6:51:95:60:6e:bb:b4:a1:ea:a6:59:41:8c:24:49:
78:16:30:ac:0b:28:74:b4:26:b8:d0:10:7d:5b:f0:ad:62:c9:
7a:96:43:63
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgIEQs7/QzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
OGU2MjYzNGUxYmQ1MTMzYTlkZTQ1MTJhZTk4Y2FkMWIyMjE5YjU5MB4XDTIyMDUw
MjEzMTAwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2QwMjAxODQ0ZTI4
YWEwM2E2Zjg1M2YwODVjYTY2OTBmNDgyNmQxNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM1tIL4h9IEGJPK5VpRZgG0j3E/9DWuq/yvrMz3BZxjsS9Sp
cE0kE+20nF/8R7nV9bHNtRb3A5D/nJa2VHmLvsP/wrXCLIdafC2B2JwaGluuRjA+
PV290z2RiXDZdJjBF4fiNSRvjak288AUoAfL+bNIylKdZU2mhTbXI6vodZ3dJ/gN
PtD7iGPfRKO+uU+iD9y9+WUDBXA37t1yhwMmthx4QnEkLjb6UK+SmHDTkfwf0sx/
F9jLRDNfq7YF5gtc9tG6d79S1rsyG6fs1JXfwGR53tTZR+t0OFgcjC1+R0KStkGS
pWE8lw5Jab9bqh2YFU7u9ZD0B9KtCZDHHu5LviMCAwEAAaOCAhcwggITMB0GA1Ud
DgQWBBQ9AgGETiiqA6b4U/CFymaQ9IJtFzAfBgNVHSMEGDAWgBT45iY04b1RM6ne
RRKumMrRsiGbWTAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtT1ltTk9HOVVUT3Aza1VTcnBqSzBiSWhtMWsuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzc4L2RhMzM5OC02Njk4LTQ1ZjItYmFhZS05MmUyNWZlMTYzMzEv
MS9QUUlCaEU0b3FnT20tRlB3aGNwbWtQU0NiUmMucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzc4
L2RhMzM5OC02Njk4LTQ1ZjItYmFhZS05MmUyNWZlMTYzMzEvMS8xLU9ZbU5PRzlV
VE9wM2tVU3JwakswYklobTFrLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAWSs3AwQAXXMJAwQAXrBhMA0G
CSqGSIb3DQEBCwUAA4IBAQA5oqjDv7Y8O5yhIx3Lr4wCHm54uox9aTOE+IlkQFR0
cZTYRtjQSl6C3lYnOpW2RYEKq/4i/Vy2BeJDciUFCJab0xvpuOlXvBRsrH1NVan0
FIyh3TyornIGwybc6H/zkhl6thCm0QtW/W2Ms/UW5awfKTextxrtliV1mxDznNSV
f7Usr9TJv3NYbvy5l9VJINKGMZ6qj5yZoMwoZd0OduFh2WdVqCKKoSrnEUuxo0on
/9ik5JRSe6eZUkUFX02y1SXbTdzAsQnrAlzX8moCGI8UlxRKV99EtJNyGsimUZVg
bru0oeqmWUGMJEl4FjCsCyh0tCa40BB9W/CtYsl6lkNj
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:12 2023 by rpki-client on console-fra.rpki-client.org