Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/3ee7c5-1264-47e9-8a12-041b78ada215/1/n_N27ucvwi2hIyJVIGwd3BMDviE.roa
File: n_N27ucvwi2hIyJVIGwd3BMDviE.roa (raw, json)
Hash identifier: PwL8c/w3syAkGxiEGHqIouOOS5wjuepHQNGAMYxVRvk=
Subject key identifier: 9F:F3:76:EE:E7:2F:C2:2D:A1:23:22:55:20:6C:1D:DC:13:03:BE:21
Certificate issuer: /CN=a34f365e78064b58c44d48cfb39291d3fb1d9e10
Certificate serial: 0558468A
Authority key identifier: A3:4F:36:5E:78:06:4B:58:C4:4D:48:CF:B3:92:91:D3:FB:1D:9E:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o082XngGS1jETUjPs5KR0_sdnhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/3ee7c5-1264-47e9-8a12-041b78ada215/1/n_N27ucvwi2hIyJVIGwd3BMDviE.roa
Signing time: Sat 01 Jan 2022 02:54:41 +0000
ROA not before: Sat 01 Jan 2022 02:54:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20694
IP address blocks: 185.166.200.0/22 maxlen: 22
217.114.64.0/20 maxlen: 20
188.94.24.0/21 maxlen: 21
2a01:688::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89671306 (0x558468a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a34f365e78064b58c44d48cfb39291d3fb1d9e10
Validity
Not Before: Jan 1 02:54:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ff376eee72fc22da1232255206c1ddc1303be21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c6:94:e7:51:a5:06:27:81:ca:4b:d5:cb:50:
53:d6:95:fa:ce:f7:ce:2d:c6:fb:17:6a:74:ef:55:
9b:09:e5:bd:ae:22:f1:61:67:d7:ac:be:cd:78:4d:
16:2e:b3:04:3e:73:90:72:9a:87:c8:d8:d2:29:57:
60:92:1c:1e:21:46:90:63:87:3c:1b:c8:6d:cb:e3:
a2:33:75:78:3d:29:44:3f:5a:02:3a:6b:32:97:18:
77:f2:52:46:d8:e6:f9:fa:5c:ea:e5:44:30:d7:3b:
79:e2:a0:60:75:4c:70:c7:f0:3b:78:59:bb:89:19:
d7:ca:96:75:c5:cf:9a:99:e9:91:c6:27:90:1d:bb:
63:51:df:5f:bb:4b:c8:4a:98:86:a7:18:04:7e:0f:
92:d4:72:cb:26:72:3f:24:a0:d4:7c:b9:7d:0e:9f:
20:c2:50:91:bc:77:8d:fd:78:16:8b:5f:cc:f2:85:
a7:30:6e:51:7f:83:cb:84:37:48:74:df:6d:5b:1f:
87:4e:54:17:4a:eb:49:8f:21:f8:b3:41:09:b4:43:
81:f0:3f:6f:ff:06:e1:18:a7:98:69:df:6d:b7:fe:
04:d4:0d:c0:7c:74:72:81:48:99:63:21:fe:b9:7d:
e8:38:85:15:2b:98:79:eb:81:e6:80:4e:2f:44:4a:
ab:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:F3:76:EE:E7:2F:C2:2D:A1:23:22:55:20:6C:1D:DC:13:03:BE:21
X509v3 Authority Key Identifier:
keyid:A3:4F:36:5E:78:06:4B:58:C4:4D:48:CF:B3:92:91:D3:FB:1D:9E:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o082XngGS1jETUjPs5KR0_sdnhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/3ee7c5-1264-47e9-8a12-041b78ada215/1/n_N27ucvwi2hIyJVIGwd3BMDviE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/3ee7c5-1264-47e9-8a12-041b78ada215/1/o082XngGS1jETUjPs5KR0_sdnhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.166.200.0/22
188.94.24.0/21
217.114.64.0/20
IPv6:
2a01:688::/32
Signature Algorithm: sha256WithRSAEncryption
36:01:5e:f2:17:a0:73:17:9e:b3:10:29:ba:af:e6:19:c7:8e:
6c:94:17:3e:ba:d0:e7:4d:bf:cf:60:8d:0c:71:9e:02:64:78:
41:8b:4d:e3:17:65:90:4c:de:b8:0c:d6:62:ef:f5:77:66:3c:
3e:1a:ca:83:f9:dd:f7:ab:48:3f:11:57:43:29:cc:12:87:6e:
fd:1e:17:0a:f1:83:bf:31:76:b7:66:95:f1:e4:ca:23:e4:c8:
58:97:8f:e1:da:2d:47:4b:ba:64:42:56:f6:80:a4:3d:b6:58:
53:a9:9c:51:2d:54:0c:07:d8:6c:41:e2:a3:5c:30:ba:51:26:
28:2b:92:bb:ef:e3:82:a4:a8:02:fb:71:5a:00:e0:90:b7:ee:
01:35:85:5c:c0:0d:d8:1a:55:86:02:e7:25:11:3b:fb:62:1a:
69:f7:21:c0:93:5d:29:45:bc:9f:32:1d:8c:da:16:d6:79:ba:
82:f5:c0:1e:de:06:df:43:0e:e8:52:5a:ab:fe:37:72:a0:9b:
54:cb:3e:2c:c8:17:d6:da:c2:d2:4a:55:2b:a1:89:2d:cc:fd:
71:f3:19:1c:6e:98:33:66:fa:09:0c:c0:19:f3:b6:cc:1e:bd:
68:6f:40:f7:b7:b8:b9:82:17:fe:07:34:66:9e:05:30:01:a8:
68:28:76:9f
-----BEGIN CERTIFICATE-----
MIIFCjCCA/KgAwIBAgIEBVhGijANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
MzRmMzY1ZTc4MDY0YjU4YzQ0ZDQ4Y2ZiMzkyOTFkM2ZiMWQ5ZTEwMB4XDTIyMDEw
MTAyNTQ0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWZmMzc2ZWVlNzJm
YzIyZGExMjMyMjU1MjA2YzFkZGMxMzAzYmUyMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKPGlOdRpQYngcpL1ctQU9aV+s73zi3G+xdqdO9Vmwnlva4i
8WFn16y+zXhNFi6zBD5zkHKah8jY0ilXYJIcHiFGkGOHPBvIbcvjojN1eD0pRD9a
AjprMpcYd/JSRtjm+fpc6uVEMNc7eeKgYHVMcMfwO3hZu4kZ18qWdcXPmpnpkcYn
kB27Y1HfX7tLyEqYhqcYBH4PktRyyyZyPySg1Hy5fQ6fIMJQkbx3jf14FotfzPKF
pzBuUX+Dy4Q3SHTfbVsfh05UF0rrSY8h+LNBCbRDgfA/b/8G4RinmGnfbbf+BNQN
wHx0coFImWMh/rl96DiFFSuYeeuB5oBOL0RKq8ECAwEAAaOCAiQwggIgMB0GA1Ud
DgQWBBSf83bu5y/CLaEjIlUgbB3cEwO+ITAfBgNVHSMEGDAWgBSjTzZeeAZLWMRN
SM+zkpHT+x2eEDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L28wODJYbmdHUzFqRVRValBzNUtSMF9zZG5oQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODQvM2VlN2M1LTEyNjQtNDdlOS04YTEyLTA0MWI3OGFkYTIxNS8x
L25fTjI3dWN2d2kyaEl5SlZJR3dkM0JNRHZpRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODQv
M2VlN2M1LTEyNjQtNDdlOS04YTEyLTA0MWI3OGFkYTIxNS8xL28wODJYbmdHUzFq
RVRValBzNUtSMF9zZG5oQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA6
BggrBgEFBQcBBwEB/wQrMCkwGAQCAAEwEgMEArmmyAMEA7xeGAMEBNlyQDANBAIA
AjAHAwUAKgEGiDANBgkqhkiG9w0BAQsFAAOCAQEANgFe8hegcxeesxApuq/mGceO
bJQXPrrQ502/z2CNDHGeAmR4QYtN4xdlkEzeuAzWYu/1d2Y8PhrKg/nd96tIPxFX
QynMEodu/R4XCvGDvzF2t2aV8eTKI+TIWJeP4dotR0u6ZEJW9oCkPbZYU6mcUS1U
DAfYbEHio1wwulEmKCuSu+/jgqSoAvtxWgDgkLfuATWFXMAN2BpVhgLnJRE7+2Ia
afchwJNdKUW8nzIdjNoW1nm6gvXAHt4G30MO6FJaq/43cqCbVMs+LMgX1trC0kpV
K6GJLcz9cfMZHG6YM2b6CQzAGfO2zB69aG9A97e4uYIX/gc0Zp4FMAGoaCh2nw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:25 2023 by rpki-client on console-ams.rpki-client.org