Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/5b9878-2080-4354-9592-b7231941fc3a/1/yJBbaStUvYRIQH8BeJPISZtAd-w.roa
File: yJBbaStUvYRIQH8BeJPISZtAd-w.roa (raw, json)
Hash identifier: kvdNsEMA9vNsEKpyx+2EwDzWK3c0UBrmkFrOupQ/mm8=
Subject key identifier: C8:90:5B:69:2B:54:BD:84:48:40:7F:01:78:93:C8:49:9B:40:77:EC
Certificate issuer: /CN=1662cfd26eccf289757399cc99c17d1cb4357535
Certificate serial: 058925E1
Authority key identifier: 16:62:CF:D2:6E:CC:F2:89:75:73:99:CC:99:C1:7D:1C:B4:35:75:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FmLP0m7M8ol1c5nMmcF9HLQ1dTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/5b9878-2080-4354-9592-b7231941fc3a/1/yJBbaStUvYRIQH8BeJPISZtAd-w.roa
Signing time: Sat 01 Jan 2022 08:52:50 +0000
ROA not before: Sat 01 Jan 2022 08:52:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198818
IP address blocks: 178.132.64.0/22 maxlen: 22
178.132.70.0/23 maxlen: 23
178.132.71.0/24 maxlen: 24
2a03:2380::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92874209 (0x58925e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1662cfd26eccf289757399cc99c17d1cb4357535
Validity
Not Before: Jan 1 08:52:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c8905b692b54bd8448407f017893c8499b4077ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:52:2d:04:7c:7e:6f:35:11:6c:b4:05:37:ca:
46:5d:08:61:9c:63:0d:33:0e:fc:8f:2f:15:f9:fa:
d9:a9:ae:4f:fa:e5:ed:16:2e:71:33:20:fe:75:7e:
b8:c2:f4:1f:b4:95:66:13:cb:19:21:b4:a9:b8:70:
07:6b:1f:54:00:55:0c:60:35:67:1a:bc:17:31:63:
b7:25:a7:ce:4f:33:f2:30:d6:72:f4:18:08:a1:d0:
8f:66:6c:e2:85:37:cd:7b:51:f8:ed:2a:93:6f:07:
3d:5a:6c:f5:05:df:73:02:d3:12:61:81:60:fd:22:
a4:cf:26:e2:1b:30:c8:59:59:dc:54:39:7e:4a:c0:
f2:ba:b8:a1:fd:73:36:b3:d7:fb:6a:db:e2:13:46:
e5:a3:19:5b:18:8b:f8:5b:7a:fd:f9:12:4c:ae:6c:
d5:1e:9c:6f:38:0b:94:db:b3:d9:26:13:cb:e6:90:
12:5c:23:10:d9:77:33:91:c1:90:4a:95:e0:73:28:
86:29:8a:a0:0b:4a:ad:37:86:0a:d9:b4:d9:34:7c:
9b:3d:7c:a9:3f:f5:58:79:99:36:4a:df:d5:93:0f:
ba:a7:a6:3f:bc:f3:b5:72:fb:ad:5c:0d:ad:a8:94:
12:6c:18:7b:04:78:b3:62:f1:03:a8:ab:b2:49:d3:
7c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:90:5B:69:2B:54:BD:84:48:40:7F:01:78:93:C8:49:9B:40:77:EC
X509v3 Authority Key Identifier:
keyid:16:62:CF:D2:6E:CC:F2:89:75:73:99:CC:99:C1:7D:1C:B4:35:75:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FmLP0m7M8ol1c5nMmcF9HLQ1dTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/5b9878-2080-4354-9592-b7231941fc3a/1/yJBbaStUvYRIQH8BeJPISZtAd-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/5b9878-2080-4354-9592-b7231941fc3a/1/FmLP0m7M8ol1c5nMmcF9HLQ1dTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.132.64.0/22
178.132.70.0/23
IPv6:
2a03:2380::/32
Signature Algorithm: sha256WithRSAEncryption
74:d9:3e:78:fc:af:0b:4a:a6:e9:5c:34:cf:e8:68:f9:e6:b8:
cc:f4:c6:3b:89:26:8f:0d:f9:d9:ac:36:b3:f7:69:66:09:33:
4a:7f:19:e7:3c:8a:50:5c:c5:f3:14:e7:d4:82:22:4b:0b:ad:
e1:37:9e:d3:73:f0:e3:4c:b0:b1:c3:d2:b4:6b:48:ae:a4:ae:
58:ac:68:ed:0e:cd:5f:9f:12:21:96:6c:ad:51:93:f9:16:ca:
af:94:1d:16:1f:82:01:0a:06:2e:5e:b5:01:ac:6c:00:7d:89:
4c:8a:52:81:49:43:b3:3b:5d:38:6a:38:68:6f:9f:0e:f8:77:
a2:03:83:f8:31:37:2b:f1:25:6a:51:a4:59:30:38:d5:bc:89:
02:cc:7e:21:9d:56:6f:25:26:4f:d9:c8:bb:31:78:b0:d2:0c:
d9:32:ec:14:93:5e:23:fe:04:42:ec:ce:c0:46:fd:e5:4d:07:
15:d2:50:21:90:55:b1:f7:f9:3b:3d:35:e1:18:9d:1d:97:b9:
2e:e6:6e:94:28:53:0b:3c:1c:80:6d:17:3a:7f:10:bf:2e:7e:
21:4f:7f:15:43:02:1f:b4:c9:d2:52:59:d8:7a:27:d7:51:1b:
ac:b4:23:7a:76:1c:ae:d5:36:f7:5d:d6:a9:36:9b:45:f1:8e:
07:c6:58:de
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEBYkl4TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
NjYyY2ZkMjZlY2NmMjg5NzU3Mzk5Y2M5OWMxN2QxY2I0MzU3NTM1MB4XDTIyMDEw
MTA4NTI1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzg5MDViNjkyYjU0
YmQ4NDQ4NDA3ZjAxNzg5M2M4NDk5YjQwNzdlYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIlSLQR8fm81EWy0BTfKRl0IYZxjDTMO/I8vFfn62amuT/rl
7RYucTMg/nV+uML0H7SVZhPLGSG0qbhwB2sfVABVDGA1Zxq8FzFjtyWnzk8z8jDW
cvQYCKHQj2Zs4oU3zXtR+O0qk28HPVps9QXfcwLTEmGBYP0ipM8m4hswyFlZ3FQ5
fkrA8rq4of1zNrPX+2rb4hNG5aMZWxiL+Ft6/fkSTK5s1R6cbzgLlNuz2SYTy+aQ
ElwjENl3M5HBkEqV4HMohimKoAtKrTeGCtm02TR8mz18qT/1WHmZNkrf1ZMPuqem
P7zztXL7rVwNraiUEmwYewR4s2LxA6irsknTfKkCAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBTIkFtpK1S9hEhAfwF4k8hJm0B37DAfBgNVHSMEGDAWgBQWYs/SbszyiXVz
mcyZwX0ctDV1NTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0ZtTFAwbTdNOG9sMWM1bk1tY0Y5SExRMWRUVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODMvNWI5ODc4LTIwODAtNDM1NC05NTkyLWI3MjMxOTQxZmMzYS8x
L3lKQmJhU3RVdllSSVFIOEJlSlBJU1p0QWQtdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODMv
NWI5ODc4LTIwODAtNDM1NC05NTkyLWI3MjMxOTQxZmMzYS8xL0ZtTFAwbTdNOG9s
MWM1bk1tY0Y5SExRMWRUVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEArKEQAMEAbKERjANBAIAAjAHAwUA
KgMjgDANBgkqhkiG9w0BAQsFAAOCAQEAdNk+ePyvC0qm6Vw0z+ho+ea4zPTGO4km
jw352aw2s/dpZgkzSn8Z5zyKUFzF8xTn1IIiSwut4Tee03Pw40ywscPStGtIrqSu
WKxo7Q7NX58SIZZsrVGT+RbKr5QdFh+CAQoGLl61AaxsAH2JTIpSgUlDsztdOGo4
aG+fDvh3ogOD+DE3K/ElalGkWTA41byJAsx+IZ1WbyUmT9nIuzF4sNIM2TLsFJNe
I/4EQuzOwEb95U0HFdJQIZBVsff5Oz014RidHZe5LuZulChTCzwcgG0XOn8Qvy5+
IU9/FUMCH7TJ0lJZ2Hon11EbrLQjenYcrtU2913WqTabRfGOB8ZY3g==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:23 2023 by rpki-client on console-ams.rpki-client.org