Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/3b1657-7891-41a2-8b1d-c8421c3b6554/1/sB72Bkys_-OjdLwdDIOqV494Gds.roa
File: sB72Bkys_-OjdLwdDIOqV494Gds.roa (raw, json)
Hash identifier: DVTeCe5q0h7SRfeB+PqA1TDD6JmVX2EVKTLTy2dR89c=
Subject key identifier: B0:1E:F6:06:4C:AC:FF:E3:A3:74:BC:1D:0C:83:AA:57:8F:78:19:DB
Certificate issuer: /CN=5688b11c5f24f2e938c88a51cb49ceb135364389
Certificate serial: 5ACA05
Authority key identifier: 56:88:B1:1C:5F:24:F2:E9:38:C8:8A:51:CB:49:CE:B1:35:36:43:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VoixHF8k8uk4yIpRy0nOsTU2Q4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/3b1657-7891-41a2-8b1d-c8421c3b6554/1/sB72Bkys_-OjdLwdDIOqV494Gds.roa
Signing time: Thu 03 Mar 2022 21:36:43 +0000
ROA not before: Thu 03 Mar 2022 21:36:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201935
IP address blocks: 178.219.64.0/20 maxlen: 24
178.219.74.0/23 maxlen: 24
178.219.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5949957 (0x5aca05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5688b11c5f24f2e938c88a51cb49ceb135364389
Validity
Not Before: Mar 3 21:36:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b01ef6064cacffe3a374bc1d0c83aa578f7819db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:4f:bb:d7:79:b2:42:f5:62:2d:14:26:e5:29:
cd:43:24:93:ee:eb:8d:32:74:a4:0e:22:e2:30:99:
b6:d9:3b:50:78:63:8d:38:ad:25:c5:f4:33:42:f4:
fa:da:c6:d7:1e:7f:64:27:78:61:fe:9d:22:7e:76:
bf:e8:73:44:18:4e:5d:19:8f:1c:14:14:b9:bb:05:
d1:7b:6f:75:54:cf:d9:e4:df:01:8b:68:e9:e3:f6:
2e:9e:af:30:7e:f7:33:f0:d3:86:0c:94:f7:15:b8:
61:3c:9a:e4:2f:d5:35:de:31:2e:3c:7b:3d:cf:1b:
f6:d1:2e:49:f2:72:42:fd:84:04:3f:15:0b:7c:22:
e1:2f:79:ad:7a:e8:bd:72:12:d9:b2:8e:81:ef:92:
d1:20:6b:9b:39:94:97:fd:82:a8:51:ab:85:13:9a:
45:5a:23:8b:ee:04:2b:3b:38:00:75:ec:a6:7c:a2:
15:1a:fc:ab:0f:78:b1:f3:fc:f8:32:51:8c:b8:b2:
ab:27:97:ba:85:1b:97:83:04:fe:fc:b3:0a:bb:8c:
63:a9:e0:f4:7a:98:96:ff:42:29:c3:e8:a2:eb:1b:
fc:89:a4:87:69:84:66:d1:d0:2c:ff:41:b5:58:d9:
18:e4:e0:4f:01:a6:96:24:82:f9:c9:8a:e0:a2:70:
73:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:1E:F6:06:4C:AC:FF:E3:A3:74:BC:1D:0C:83:AA:57:8F:78:19:DB
X509v3 Authority Key Identifier:
keyid:56:88:B1:1C:5F:24:F2:E9:38:C8:8A:51:CB:49:CE:B1:35:36:43:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VoixHF8k8uk4yIpRy0nOsTU2Q4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/3b1657-7891-41a2-8b1d-c8421c3b6554/1/sB72Bkys_-OjdLwdDIOqV494Gds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/3b1657-7891-41a2-8b1d-c8421c3b6554/1/VoixHF8k8uk4yIpRy0nOsTU2Q4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.219.64.0/20
Signature Algorithm: sha256WithRSAEncryption
56:0f:c8:81:80:48:cd:f6:93:81:4c:ce:fc:f5:fb:9c:9d:f9:
c9:f7:96:f6:15:84:43:b9:e8:ab:54:35:84:6f:f1:8b:55:51:
17:26:e2:8e:65:b1:24:37:31:5d:ac:87:42:29:5a:a3:b7:99:
ef:94:50:1d:e6:d4:be:d7:71:d3:6b:27:d6:f2:85:04:5d:25:
3f:62:84:c6:bf:6a:76:fd:8a:29:19:57:35:cf:9a:46:ba:b8:
a4:68:c1:ad:0f:53:ae:2e:07:f9:7e:03:a2:33:fd:fb:f0:e0:
ec:c7:8b:7a:74:2f:52:e6:36:3e:14:c0:b2:6e:18:6b:ff:9f:
54:85:38:7c:85:7c:4b:52:02:e8:fa:99:f8:45:4f:82:11:e9:
42:f9:f8:44:a4:73:45:f5:bb:dc:73:0c:f7:ce:fe:c2:01:ee:
9f:09:79:36:90:0e:3a:fb:a6:97:9c:55:18:5a:f1:2d:8a:d6:
2f:8a:05:eb:12:75:08:e4:33:6d:32:04:f8:47:14:a3:1d:4f:
c3:09:17:3b:4d:2a:32:07:6a:3f:89:ea:f8:4f:3b:2b:0e:f6:
6c:b1:86:77:96:db:23:1f:3a:d1:56:fc:c9:ea:91:60:53:32:
14:ea:56:eb:e7:3e:80:bd:b7:07:68:23:6f:2a:21:cf:65:bf:
06:2b:74:16
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDWsoFMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDU2
ODhiMTFjNWYyNGYyZTkzOGM4OGE1MWNiNDljZWIxMzUzNjQzODkwHhcNMjIwMzAz
MjEzNjQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhiMDFlZjYwNjRjYWNm
ZmUzYTM3NGJjMWQwYzgzYWE1NzhmNzgxOWRiMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAvE+713myQvViLRQm5SnNQyST7uuNMnSkDiLiMJm22TtQeGON
OK0lxfQzQvT62sbXHn9kJ3hh/p0ifna/6HNEGE5dGY8cFBS5uwXRe291VM/Z5N8B
i2jp4/Yunq8wfvcz8NOGDJT3FbhhPJrkL9U13jEuPHs9zxv20S5J8nJC/YQEPxUL
fCLhL3mteui9chLZso6B75LRIGubOZSX/YKoUauFE5pFWiOL7gQrOzgAdeymfKIV
GvyrD3ix8/z4MlGMuLKrJ5e6hRuXgwT+/LMKu4xjqeD0epiW/0Ipw+ii6xv8iaSH
aYRm0dAs/0G1WNkY5OBPAaaWJIL5yYrgonBzGQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFLAe9gZMrP/jo3S8HQyDqlePeBnbMB8GA1UdIwQYMBaAFFaIsRxfJPLpOMiK
UctJzrE1NkOJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
Vm9peEhGOGs4dWs0eUlwUnkwbk9zVFUyUTRrLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC84YS8zYjE2NTctNzg5MS00MWEyLThiMWQtYzg0MjFjM2I2NTU0LzEv
c0I3MkJreXNfLU9qZEx3ZERJT3FWNDk0R2RzLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS8z
YjE2NTctNzg5MS00MWEyLThiMWQtYzg0MjFjM2I2NTU0LzEvVm9peEhGOGs4dWs0
eUlwUnkwbk9zVFUyUTRrLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEsttAMA0GCSqGSIb3DQEBCwUAA4IB
AQBWD8iBgEjN9pOBTM789fucnfnJ95b2FYRDueirVDWEb/GLVVEXJuKOZbEkNzFd
rIdCKVqjt5nvlFAd5tS+13HTayfW8oUEXSU/YoTGv2p2/YopGVc1z5pGurikaMGt
D1OuLgf5fgOiM/378ODsx4t6dC9S5jY+FMCybhhr/59UhTh8hXxLUgLo+pn4RU+C
EelC+fhEpHNF9bvccwz3zv7CAe6fCXk2kA46+6aXnFUYWvEtitYvigXrEnUI5DNt
MgT4RxSjHU/DCRc7TSoyB2o/ier4TzsrDvZssYZ3ltsjHzrRVvzJ6pFgUzIU6lbr
5z6AvbcHaCNvKiHPZb8GK3QW
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:18 2024 by rpki-client on console-ams.rpki-client.org