Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/042c33-ab6b-48be-a492-66849019627e/1/Vf98Hp9IAPK7YPdjkADLV20Vz14.roa
File: Vf98Hp9IAPK7YPdjkADLV20Vz14.roa (raw, json)
Hash identifier: P3lsPEftLAOJcgOZuF81niZ28nbKbWo3r1PWh77cRe0=
Subject key identifier: 55:FF:7C:1E:9F:48:00:F2:BB:60:F7:63:90:00:CB:57:6D:15:CF:5E
Certificate issuer: /CN=c868ca82147ed2277b4bcc69a5285bae735f2e44
Certificate serial: 1503601B
Authority key identifier: C8:68:CA:82:14:7E:D2:27:7B:4B:CC:69:A5:28:5B:AE:73:5F:2E:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yGjKghR-0id7S8xppShbrnNfLkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/042c33-ab6b-48be-a492-66849019627e/1/Vf98Hp9IAPK7YPdjkADLV20Vz14.roa
Signing time: Sat 01 Jan 2022 14:05:36 +0000
ROA not before: Sat 01 Jan 2022 14:05:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206296
IP address blocks: 91.92.18.0/23 maxlen: 23
185.189.20.0/22 maxlen: 24
45.65.104.0/21 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 352542747 (0x1503601b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c868ca82147ed2277b4bcc69a5285bae735f2e44
Validity
Not Before: Jan 1 14:05:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55ff7c1e9f4800f2bb60f7639000cb576d15cf5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:c7:84:0a:5e:3a:3b:5f:59:23:c1:7d:69:29:
79:a2:27:bf:aa:c4:ab:14:bf:77:9e:e3:50:de:b2:
14:d0:58:8c:69:58:34:00:3e:82:cc:d5:31:b9:a6:
4b:45:73:5c:ac:e8:69:33:cb:f9:24:a7:2a:f8:1b:
54:1c:68:f9:36:13:6b:58:2f:56:ae:8a:07:0b:9e:
d0:f2:d8:10:81:5e:9f:fd:8b:43:13:32:23:69:91:
24:e5:57:29:fa:5e:fc:3f:db:66:e1:33:68:d6:bb:
6b:80:c5:8f:11:ba:13:c2:d4:40:b0:f1:ff:9f:e0:
45:ee:3a:05:50:2d:eb:df:98:e7:25:b3:b7:c1:8e:
1f:21:e1:dc:7d:4d:a6:ea:7e:d3:61:28:db:03:d9:
d9:7f:30:fb:55:34:82:ab:ef:9b:bd:f9:65:38:84:
1d:e3:15:42:8a:36:28:2d:dd:18:ad:f5:37:3b:09:
41:29:2e:68:57:56:e4:29:a1:1c:ff:0a:3f:c4:b1:
18:dd:78:29:3a:97:ea:b0:48:63:a2:ab:c2:c0:07:
ff:a9:cc:49:59:91:26:13:86:8e:f6:93:51:6e:96:
5b:bc:31:84:f4:d2:9f:bd:1c:7e:47:f4:d7:a8:92:
ce:c2:15:15:66:e6:1c:67:23:97:7c:9e:76:d8:34:
ea:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:FF:7C:1E:9F:48:00:F2:BB:60:F7:63:90:00:CB:57:6D:15:CF:5E
X509v3 Authority Key Identifier:
keyid:C8:68:CA:82:14:7E:D2:27:7B:4B:CC:69:A5:28:5B:AE:73:5F:2E:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yGjKghR-0id7S8xppShbrnNfLkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/042c33-ab6b-48be-a492-66849019627e/1/Vf98Hp9IAPK7YPdjkADLV20Vz14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/042c33-ab6b-48be-a492-66849019627e/1/yGjKghR-0id7S8xppShbrnNfLkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.104.0/21
91.92.18.0/23
185.189.20.0/22
Signature Algorithm: sha256WithRSAEncryption
55:2a:4f:b8:4c:27:b1:fb:fb:10:52:18:cc:91:7a:ed:5e:c8:
e7:fc:2d:52:29:a8:de:61:e8:f1:f0:4c:d9:3b:81:f3:23:5a:
3d:f6:9c:c6:30:cf:e8:73:38:0f:cc:8e:f5:b0:1d:df:bf:c8:
c5:dc:6d:73:51:5d:9e:bb:41:ba:5c:2d:a5:2e:0a:ab:aa:45:
93:3a:35:9d:69:b1:6f:ad:20:1c:2e:2b:7a:13:a5:66:39:e3:
75:fa:60:3b:d9:0d:f1:45:c3:7a:af:1b:83:e4:91:12:09:e5:
9f:86:aa:21:1d:ad:cc:26:b7:68:98:91:36:36:d9:0b:8b:06:
27:4a:d4:20:32:da:bd:25:60:11:e7:9c:da:bb:73:e0:30:e9:
11:36:87:20:7e:d4:0a:a4:a2:a3:d9:53:63:a6:75:b6:90:27:
3c:c3:c9:a4:1b:69:e8:b3:c5:03:33:bd:00:5c:e5:d8:3a:a7:
1b:17:ca:86:a5:7e:2d:be:db:51:de:de:33:17:4f:48:be:da:
71:a3:8d:ae:cf:0d:f1:eb:9c:0b:90:29:55:7c:0d:3f:74:ce:
de:3e:ba:b9:e7:91:76:da:90:97:c5:81:c2:5d:ae:0a:4d:aa:
c3:b6:28:2c:f3:eb:53:83:fe:af:af:f0:e9:15:2f:27:88:9e:
c2:5c:b4:ae
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEFQNgGzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
ODY4Y2E4MjE0N2VkMjI3N2I0YmNjNjlhNTI4NWJhZTczNWYyZTQ0MB4XDTIyMDEw
MTE0MDUzNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTVmZjdjMWU5ZjQ4
MDBmMmJiNjBmNzYzOTAwMGNiNTc2ZDE1Y2Y1ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOnHhApeOjtfWSPBfWkpeaInv6rEqxS/d57jUN6yFNBYjGlY
NAA+gszVMbmmS0VzXKzoaTPL+SSnKvgbVBxo+TYTa1gvVq6KBwue0PLYEIFen/2L
QxMyI2mRJOVXKfpe/D/bZuEzaNa7a4DFjxG6E8LUQLDx/5/gRe46BVAt69+Y5yWz
t8GOHyHh3H1Npup+02Eo2wPZ2X8w+1U0gqvvm735ZTiEHeMVQoo2KC3dGK31NzsJ
QSkuaFdW5CmhHP8KP8SxGN14KTqX6rBIY6KrwsAH/6nMSVmRJhOGjvaTUW6WW7wx
hPTSn70cfkf016iSzsIVFWbmHGcjl3yedtg06msCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBRV/3wen0gA8rtg92OQAMtXbRXPXjAfBgNVHSMEGDAWgBTIaMqCFH7SJ3tL
zGmlKFuuc18uRDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3lHaktnaFItMGlkN1M4eHBwU2hicm5OZkxrUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2EvMDQyYzMzLWFiNmItNDhiZS1hNDkyLTY2ODQ5MDE5NjI3ZS8x
L1ZmOThIcDlJQVBLN1lQZGprQURMVjIwVnoxNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Ev
MDQyYzMzLWFiNmItNDhiZS1hNDkyLTY2ODQ5MDE5NjI3ZS8xL3lHaktnaFItMGlk
N1M4eHBwU2hicm5OZkxrUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAy1BaAMEAVtcEgMEArm9FDANBgkq
hkiG9w0BAQsFAAOCAQEAVSpPuEwnsfv7EFIYzJF67V7I5/wtUimo3mHo8fBM2TuB
8yNaPfacxjDP6HM4D8yO9bAd37/Ixdxtc1FdnrtBulwtpS4Kq6pFkzo1nWmxb60g
HC4rehOlZjnjdfpgO9kN8UXDeq8bg+SREgnln4aqIR2tzCa3aJiRNjbZC4sGJ0rU
IDLavSVgEeec2rtz4DDpETaHIH7UCqSio9lTY6Z1tpAnPMPJpBtp6LPFAzO9AFzl
2DqnGxfKhqV+Lb7bUd7eMxdPSL7acaONrs8N8eucC5ApVXwNP3TO3j66ueeRdtqQ
l8WBwl2uCk2qw7YoLPPrU4P+r6/w6RUvJ4iewly0rg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:13 2024 by rpki-client on console-ams.rpki-client.org