Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/T1dxrVbe_jwv5CNabCg7Opva1h0.roa
File: T1dxrVbe_jwv5CNabCg7Opva1h0.roa (raw, json)
Hash identifier: 1sVw3ckUZyBywpCr8bWsptmDVkqDaM2PghU1kXt4pE8=
Subject key identifier: 4F:57:71:AD:56:DE:FE:3C:2F:E4:23:5A:6C:28:3B:3A:9B:DA:D6:1D
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 05136A7D
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/T1dxrVbe_jwv5CNabCg7Opva1h0.roa
Signing time: Tue 17 May 2022 14:55:29 +0000
ROA not before: Tue 17 May 2022 14:55:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201909
IP address blocks: 178.157.76.0/24 maxlen: 24
37.35.53.0/24 maxlen: 24
188.119.159.0/24 maxlen: 24
188.119.158.0/24 maxlen: 24
188.119.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85158525 (0x5136a7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: May 17 14:55:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f5771ad56defe3c2fe4235a6c283b3a9bdad61d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:53:cb:c0:91:2a:7a:30:ed:60:bc:86:ad:ea:
76:e3:99:06:80:b5:9e:83:14:2d:5a:6b:fe:e6:a2:
82:b5:52:d1:0e:57:5e:2a:b7:5d:da:12:9d:85:66:
02:e9:cf:c2:9d:b5:49:1f:e3:3d:dd:c3:2f:87:6a:
03:5e:55:cf:4f:46:69:30:e7:77:66:62:05:69:c4:
52:2b:58:02:f3:6f:8c:62:b2:10:b3:f7:6d:71:fd:
32:7c:1c:13:ab:4a:92:aa:56:b3:23:49:e7:aa:b0:
88:f5:a2:71:44:8a:95:29:a1:fd:da:09:dc:64:c4:
14:92:c6:c0:21:0a:c6:b5:7e:de:e7:fc:5d:40:74:
87:89:7f:60:fa:05:7f:51:bb:cd:22:61:ae:82:67:
bb:a4:3f:a8:13:19:8c:31:59:da:cc:e6:59:51:7a:
d7:a9:9f:c2:18:33:57:b9:c8:de:e5:68:63:e7:8a:
37:32:fd:57:0d:c5:29:e6:ab:ce:72:df:93:50:8e:
82:6e:98:3d:c8:52:7c:32:aa:b9:37:d7:34:9b:db:
2d:76:21:8c:1a:64:e9:15:05:11:e7:b2:6d:0c:a8:
81:69:e8:be:4d:94:48:88:4b:e7:89:03:ee:8d:da:
33:9f:18:a6:8c:e1:1e:8f:f5:3d:a4:9e:60:ba:df:
db:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:57:71:AD:56:DE:FE:3C:2F:E4:23:5A:6C:28:3B:3A:9B:DA:D6:1D
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/T1dxrVbe_jwv5CNabCg7Opva1h0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.35.53.0/24
178.157.76.0/24
188.119.158.0/23
188.119.163.0/24
Signature Algorithm: sha256WithRSAEncryption
37:21:26:b9:c3:84:c5:70:30:ba:05:4e:64:0e:e8:10:37:cf:
c3:69:7f:91:b8:8f:c6:33:b1:93:c9:d2:a6:2c:95:04:40:e8:
c0:91:ab:8c:a2:10:89:dd:69:e6:13:4b:fe:b1:0c:47:67:9b:
e7:fe:52:f0:2e:25:66:03:23:1b:64:f7:98:d6:5b:1c:d8:ae:
b7:d2:b0:aa:a9:7f:d0:50:7b:35:38:01:24:04:c3:35:a4:bf:
09:ca:30:c2:10:71:9f:97:a9:80:a3:7f:33:2d:5e:94:97:2d:
3c:50:6c:87:3c:f1:dc:68:66:03:80:72:9b:41:d6:b3:97:4f:
5f:e9:bd:e3:6f:eb:52:88:c8:64:33:5f:ad:a1:f5:c5:8c:1e:
51:98:8a:15:52:96:9e:1f:35:3a:8c:77:68:06:c7:5f:f8:b9:
3d:a1:c5:a3:9c:46:80:5a:08:f5:28:2c:88:a8:56:58:66:e2:
c9:71:24:9d:d7:1f:c1:e6:52:d8:8a:a5:df:fc:45:7b:51:d3:
8f:2c:4f:1e:73:68:d5:20:09:e8:1a:bf:e5:99:51:ad:39:fd:
bd:8a:37:e7:95:58:96:9c:53:ff:10:26:b2:a1:a0:51:b0:91:
26:cf:f1:42:35:05:df:a0:af:9c:2e:a1:80:bf:98:72:6d:94:
86:c6:83:03
-----BEGIN CERTIFICATE-----
MIIFATCCA+mgAwIBAgIEBRNqfTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YjIzM2Q3NTUwOGI0ZTg1Y2NjZjQ0MzQ5YTdjYjcwMzE5OGQxZDI2MB4XDTIyMDUx
NzE0NTUyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGY1NzcxYWQ1NmRl
ZmUzYzJmZTQyMzVhNmMyODNiM2E5YmRhZDYxZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMpTy8CRKnow7WC8hq3qduOZBoC1noMULVpr/uaigrVS0Q5X
Xiq3XdoSnYVmAunPwp21SR/jPd3DL4dqA15Vz09GaTDnd2ZiBWnEUitYAvNvjGKy
ELP3bXH9MnwcE6tKkqpWsyNJ56qwiPWicUSKlSmh/doJ3GTEFJLGwCEKxrV+3uf8
XUB0h4l/YPoFf1G7zSJhroJnu6Q/qBMZjDFZ2szmWVF616mfwhgzV7nI3uVoY+eK
NzL9Vw3FKearznLfk1COgm6YPchSfDKquTfXNJvbLXYhjBpk6RUFEeeybQyogWno
vk2USIhL54kD7o3aM58YpozhHo/1PaSeYLrf26kCAwEAAaOCAhswggIXMB0GA1Ud
DgQWBBRPV3GtVt7+PC/kI1psKDs6m9rWHTAfBgNVHSMEGDAWgBRrIz11UItOhczP
RDSafLcDGY0dJjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2F5TTlkVkNMVG9YTXowUTBtbnkzQXhtTkhTWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTAvOWQ5MTkyLTI3M2MtNGNhOS1iMmJhLWZhOWNiNTFjZDBmMS8x
L1QxZHhyVmJlX2p3djVDTmFiQ2c3T3B2YTFoMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTAv
OWQ5MTkyLTI3M2MtNGNhOS1iMmJhLWZhOWNiNTFjZDBmMS8xL2F5TTlkVkNMVG9Y
TXowUTBtbnkzQXhtTkhTWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAx
BggrBgEFBQcBBwEB/wQiMCAwHgQCAAEwGAMEACUjNQMEALKdTAMEAbx3ngMEALx3
ozANBgkqhkiG9w0BAQsFAAOCAQEANyEmucOExXAwugVOZA7oEDfPw2l/kbiPxjOx
k8nSpiyVBEDowJGrjKIQid1p5hNL/rEMR2eb5/5S8C4lZgMjG2T3mNZbHNiut9Kw
qql/0FB7NTgBJATDNaS/CcowwhBxn5epgKN/My1elJctPFBshzzx3GhmA4Bym0HW
s5dPX+m942/rUojIZDNfraH1xYweUZiKFVKWnh81Oox3aAbHX/i5PaHFo5xGgFoI
9SgsiKhWWGbiyXEkndcfweZS2Iql3/xFe1HTjyxPHnNo1SAJ6Bq/5ZlRrTn9vYo3
55VYlpxT/xAmsqGgUbCRJs/xQjUF36CvnC6hgL+Ycm2UhsaDAw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:16 2024 by rpki-client on console-fra.rpki-client.org