Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/31dca4-1ce8-4318-956c-d4f08be050d5/1/DOYZA_h2eTzeqRHg3Acip_rUuaQ.roa
File: DOYZA_h2eTzeqRHg3Acip_rUuaQ.roa (raw, json)
Hash identifier: 68MdCq4kWOVm8+ds8cm7u6av+BOyYRSlEiqh0VoAiYw=
Subject key identifier: 0C:E6:19:03:F8:76:79:3C:DE:A9:11:E0:DC:07:22:A7:FA:D4:B9:A4
Certificate issuer: /CN=f1f42360a3970a808016fdf8d8dba396c5a1d034
Certificate serial: 1B290FBD
Authority key identifier: F1:F4:23:60:A3:97:0A:80:80:16:FD:F8:D8:DB:A3:96:C5:A1:D0:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8fQjYKOXCoCAFv342NujlsWh0DQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/31dca4-1ce8-4318-956c-d4f08be050d5/1/DOYZA_h2eTzeqRHg3Acip_rUuaQ.roa
Signing time: Sat 01 Jan 2022 09:59:44 +0000
ROA not before: Sat 01 Jan 2022 09:59:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61149
IP address blocks: 185.16.90.0/23 maxlen: 23
185.16.91.0/24 maxlen: 24
185.16.90.0/24 maxlen: 24
185.16.89.0/24 maxlen: 24
185.16.88.0/23 maxlen: 23
185.16.88.0/22 maxlen: 22
185.16.88.0/24 maxlen: 24
45.82.107.0/24 maxlen: 24
45.82.106.0/24 maxlen: 24
91.235.107.0/24 maxlen: 24
2a03:cac0:2::/48 maxlen: 48
2a03:cac0:a::/48 maxlen: 48
2a03:cac0:b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 455675837 (0x1b290fbd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1f42360a3970a808016fdf8d8dba396c5a1d034
Validity
Not Before: Jan 1 09:59:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0ce61903f876793cdea911e0dc0722a7fad4b9a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:e4:b6:2d:bc:0f:ba:99:3a:1e:41:90:87:de:
e9:11:0c:96:92:3a:ba:df:89:ae:9d:f9:c5:43:75:
c4:d1:29:88:41:65:7f:47:c9:42:b8:40:07:c2:b0:
4c:93:b8:28:f9:26:9e:66:a9:e4:9f:b6:e3:a6:0f:
70:ad:9c:83:bc:a9:a6:df:1a:71:6a:6a:0e:57:aa:
d7:60:9b:6a:ba:be:bc:a9:b4:0a:65:9b:56:44:bc:
6e:d2:c9:ac:57:ee:12:9b:77:d4:28:10:a6:8e:07:
bf:37:bc:89:7e:2b:21:aa:ad:4b:2d:9c:9e:6b:76:
ac:d3:9a:51:d6:bf:bd:9d:e2:dd:c9:27:68:4f:c4:
51:e5:32:3f:f1:42:14:cb:e6:f0:aa:fa:6b:6e:c1:
99:61:97:f6:ea:89:82:be:c0:90:3a:15:59:00:6b:
64:2b:43:fd:6f:1d:de:58:4c:0b:b0:e5:d4:61:33:
c5:1f:7a:8a:c7:02:2b:b4:9e:ba:2e:1e:90:a9:55:
2f:74:09:18:65:c4:cf:57:65:0f:54:41:c5:65:9e:
ed:96:2e:d5:ce:fd:a8:40:d2:8c:9c:3e:a3:f0:cb:
ff:16:d3:1b:ed:75:e1:37:c3:f3:52:15:6e:45:a2:
b7:ae:ef:dc:cc:07:19:83:65:d4:55:0f:39:f6:9b:
d9:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:E6:19:03:F8:76:79:3C:DE:A9:11:E0:DC:07:22:A7:FA:D4:B9:A4
X509v3 Authority Key Identifier:
keyid:F1:F4:23:60:A3:97:0A:80:80:16:FD:F8:D8:DB:A3:96:C5:A1:D0:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8fQjYKOXCoCAFv342NujlsWh0DQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/31dca4-1ce8-4318-956c-d4f08be050d5/1/DOYZA_h2eTzeqRHg3Acip_rUuaQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/31dca4-1ce8-4318-956c-d4f08be050d5/1/8fQjYKOXCoCAFv342NujlsWh0DQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.106.0/23
91.235.107.0/24
185.16.88.0/22
IPv6:
2a03:cac0:2::/48
2a03:cac0:a::/47
Signature Algorithm: sha256WithRSAEncryption
5d:3e:4d:0d:ea:51:ab:0e:93:2b:de:2f:f3:e8:f4:29:85:9b:
c4:78:e3:7d:67:91:83:70:d9:1f:af:f1:0d:31:4e:07:ef:03:
eb:bd:c2:00:92:41:d3:d4:94:26:8b:10:98:6f:5f:28:26:f5:
44:ac:2e:46:91:42:09:9b:1d:49:0d:05:24:b0:64:01:1c:8c:
66:69:c8:0e:d4:a9:a4:1a:a9:67:0d:fa:27:1d:ec:87:dd:44:
52:62:00:f4:35:0c:f5:f1:6e:bb:41:33:64:5d:ae:3a:d3:ed:
41:0a:00:39:29:ad:46:e6:2d:32:e2:4e:d8:f7:58:47:bc:fd:
1e:6c:72:4b:26:7f:6d:27:a8:67:3e:e3:32:71:d2:17:41:ac:
43:22:49:8f:70:e1:4a:27:19:f6:3d:05:46:c8:b9:a9:12:12:
e0:b7:3b:11:60:28:f5:cb:c3:b8:e8:0d:34:ac:7f:ce:30:e2:
55:c7:ac:7a:3d:cf:37:c7:e4:da:dc:61:0a:f0:76:6d:5a:5e:
15:aa:ea:bd:b1:36:b0:47:6e:66:7e:e7:ac:fc:27:50:6e:4c:
cb:4d:79:4d:76:e4:34:a0:7a:d8:e6:85:d6:ff:cf:6c:7c:d5:
a3:05:49:6c:5d:fc:56:14:3e:18:c2:73:82:1d:a0:df:5e:50:
f0:a3:61:7d
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgIEGykPvTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
MWY0MjM2MGEzOTcwYTgwODAxNmZkZjhkOGRiYTM5NmM1YTFkMDM0MB4XDTIyMDEw
MTA5NTk0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGNlNjE5MDNmODc2
NzkzY2RlYTkxMWUwZGMwNzIyYTdmYWQ0YjlhNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI/kti28D7qZOh5BkIfe6REMlpI6ut+Jrp35xUN1xNEpiEFl
f0fJQrhAB8KwTJO4KPkmnmap5J+246YPcK2cg7yppt8acWpqDleq12Cbarq+vKm0
CmWbVkS8btLJrFfuEpt31CgQpo4Hvze8iX4rIaqtSy2cnmt2rNOaUda/vZ3i3ckn
aE/EUeUyP/FCFMvm8Kr6a27BmWGX9uqJgr7AkDoVWQBrZCtD/W8d3lhMC7Dl1GEz
xR96iscCK7Seui4ekKlVL3QJGGXEz1dlD1RBxWWe7ZYu1c79qEDSjJw+o/DL/xbT
G+114TfD81IVbkWit67v3MwHGYNl1FUPOfab2XUCAwEAAaOCAi8wggIrMB0GA1Ud
DgQWBBQM5hkD+HZ5PN6pEeDcByKn+tS5pDAfBgNVHSMEGDAWgBTx9CNgo5cKgIAW
/fjY26OWxaHQNDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzhmUWpZS09YQ29DQUZ2MzQyTnVqbHNXaDBEUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTAvMzFkY2E0LTFjZTgtNDMxOC05NTZjLWQ0ZjA4YmUwNTBkNS8x
L0RPWVpBX2gyZVR6ZXFSSGczQWNpcF9yVXVhUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTAv
MzFkY2E0LTFjZTgtNDMxOC05NTZjLWQ0ZjA4YmUwNTBkNS8xLzhmUWpZS09YQ29D
QUZ2MzQyTnVqbHNXaDBEUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBF
BggrBgEFBQcBBwEB/wQ2MDQwGAQCAAEwEgMEAS1SagMEAFvrawMEArkQWDAYBAIA
AjASAwcAKgPKwAACAwcBKgPKwAAKMA0GCSqGSIb3DQEBCwUAA4IBAQBdPk0N6lGr
DpMr3i/z6PQphZvEeON9Z5GDcNkfr/ENMU4H7wPrvcIAkkHT1JQmixCYb18oJvVE
rC5GkUIJmx1JDQUksGQBHIxmacgO1KmkGqlnDfonHeyH3URSYgD0NQz18W67QTNk
Xa460+1BCgA5Ka1G5i0y4k7Y91hHvP0ebHJLJn9tJ6hnPuMycdIXQaxDIkmPcOFK
Jxn2PQVGyLmpEhLgtzsRYCj1y8O46A00rH/OMOJVx6x6Pc83x+Ta3GEK8HZtWl4V
quq9sTawR25mfues/CdQbkzLTXlNduQ0oHrY5oXW/89sfNWjBUlsXfxWFD4YwnOC
HaDfXlDwo2F9
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:12 2023 by rpki-client on console-ams.rpki-client.org