Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/6e6405-dbe7-42b2-887c-ffdebec8f505/1/y0THO025uCEtk888EW8KhHMrMkU.roa
File: y0THO025uCEtk888EW8KhHMrMkU.roa (raw, json)
Hash identifier: GcI9ItRnn265xFmh9puAR3C0y0K9ELZGCtwRDQ0kWaE=
Subject key identifier: CB:44:C7:3B:4D:B9:B8:21:2D:93:CF:3C:11:6F:0A:84:73:2B:32:45
Certificate issuer: /CN=e4db0301fe2461c6de3f718d847cb5dc7c00b2d2
Certificate serial: 02C7BCA4
Authority key identifier: E4:DB:03:01:FE:24:61:C6:DE:3F:71:8D:84:7C:B5:DC:7C:00:B2:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5NsDAf4kYcbeP3GNhHy13HwAstI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/6e6405-dbe7-42b2-887c-ffdebec8f505/1/y0THO025uCEtk888EW8KhHMrMkU.roa
Signing time: Sat 01 Jan 2022 05:59:27 +0000
ROA not before: Sat 01 Jan 2022 05:59:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29107
IP address blocks: 195.69.84.0/23 maxlen: 23
195.69.84.0/22 maxlen: 22
195.69.86.0/23 maxlen: 23
194.0.88.0/23 maxlen: 23
194.0.88.0/22 maxlen: 22
194.0.90.0/23 maxlen: 23
194.0.90.0/24 maxlen: 24
92.249.64.0/18 maxlen: 18
77.87.148.0/22 maxlen: 22
193.201.80.0/23 maxlen: 23
178.54.4.0/24 maxlen: 24
178.54.0.0/17 maxlen: 17
178.54.5.0/24 maxlen: 24
178.54.6.0/24 maxlen: 24
178.54.7.0/24 maxlen: 24
178.54.8.0/24 maxlen: 24
178.54.9.0/24 maxlen: 24
178.54.10.0/24 maxlen: 24
178.54.11.0/24 maxlen: 24
77.87.144.0/22 maxlen: 22
178.54.79.0/24 maxlen: 24
178.54.120.0/24 maxlen: 24
178.54.121.0/24 maxlen: 24
2001:67c:2b14::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46644388 (0x2c7bca4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4db0301fe2461c6de3f718d847cb5dc7c00b2d2
Validity
Not Before: Jan 1 05:59:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb44c73b4db9b8212d93cf3c116f0a84732b3245
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:81:7c:97:d0:5c:cd:ef:df:73:ab:91:f8:e6:
8c:16:0e:89:8f:1c:af:73:cc:ef:a3:a2:0a:8b:90:
dc:30:07:1b:ef:11:54:81:4b:97:c3:f7:94:88:37:
ed:db:46:66:b1:e7:fd:cb:f9:7a:56:a6:3b:60:b1:
d8:bb:20:1e:13:07:83:1c:b6:84:2f:0d:99:1a:6c:
9d:50:9d:27:13:37:35:ad:97:0c:54:e3:0e:fc:e4:
1c:dc:24:ac:f9:e9:1b:6a:10:a3:ac:db:fb:17:9b:
6c:5d:5d:20:6b:b9:71:65:ec:a3:cc:52:cd:cb:24:
3f:39:29:d4:b7:72:61:3c:84:69:f8:f1:db:43:7a:
b9:80:4d:80:3a:f8:9e:21:19:fb:b0:c4:63:2a:b3:
72:10:9d:bd:38:27:c6:89:42:dc:dc:6d:4a:9e:7f:
98:96:ed:03:b9:04:a2:a5:ed:49:60:9c:92:c2:29:
4e:5a:f7:04:e9:ce:91:6e:20:0a:38:33:f6:99:d0:
ff:d2:93:88:65:42:98:f9:9e:af:7b:11:e6:07:2b:
17:12:29:ef:f6:42:14:60:b0:da:2d:de:3c:f1:51:
4d:31:fb:2d:03:ae:97:30:29:2c:3a:11:bf:d4:26:
5e:cd:5f:df:ef:a9:97:ae:6b:8c:ea:d9:c3:e9:0b:
7f:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:44:C7:3B:4D:B9:B8:21:2D:93:CF:3C:11:6F:0A:84:73:2B:32:45
X509v3 Authority Key Identifier:
keyid:E4:DB:03:01:FE:24:61:C6:DE:3F:71:8D:84:7C:B5:DC:7C:00:B2:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5NsDAf4kYcbeP3GNhHy13HwAstI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/6e6405-dbe7-42b2-887c-ffdebec8f505/1/y0THO025uCEtk888EW8KhHMrMkU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/6e6405-dbe7-42b2-887c-ffdebec8f505/1/5NsDAf4kYcbeP3GNhHy13HwAstI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.87.144.0/21
92.249.64.0/18
178.54.0.0/17
193.201.80.0/23
194.0.88.0/22
195.69.84.0/22
IPv6:
2001:67c:2b14::/48
Signature Algorithm: sha256WithRSAEncryption
4f:d5:c5:0b:fc:83:e4:d6:9b:b3:18:fd:b2:60:61:ad:0f:26:
a2:d8:cf:3d:7e:8d:3c:7e:54:80:c7:40:73:b6:75:9f:38:ff:
72:e2:7a:94:25:0c:01:49:01:5c:7b:0f:08:7a:39:ff:f2:b0:
37:af:3e:f6:69:e7:66:9d:f7:63:93:7e:53:8e:71:4f:1e:4d:
49:36:6c:59:7f:73:2d:43:0b:9f:a5:5c:a2:e7:e3:7f:12:84:
3d:64:34:7e:46:e9:46:88:ec:b0:2f:01:08:9f:26:aa:ab:cf:
66:e7:29:63:64:15:f4:08:03:6b:1b:16:36:d2:0d:51:11:12:
1e:82:2d:cc:29:b6:90:c6:35:30:c3:81:e4:1f:0c:8a:d0:0c:
c4:c2:34:34:c0:ab:82:84:16:13:e4:30:13:7c:b0:1c:7f:f5:
a4:ae:17:83:8e:43:72:70:5f:89:eb:f6:ad:49:18:11:64:5c:
96:29:0a:3e:ba:41:92:d1:1b:29:ad:c6:4e:d7:f7:66:d1:08:
be:92:e3:73:17:bf:c5:a2:56:59:ad:4f:db:05:7c:d4:9d:04:
28:7d:33:f7:8d:1a:1b:70:ed:7b:14:85:ed:91:f4:fb:7b:4b:
27:02:61:be:14:41:48:7f:3d:cd:99:18:63:b0:05:85:41:c6:
c6:07:93:24
-----BEGIN CERTIFICATE-----
MIIFHjCCBAagAwIBAgIEAse8pDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
NGRiMDMwMWZlMjQ2MWM2ZGUzZjcxOGQ4NDdjYjVkYzdjMDBiMmQyMB4XDTIyMDEw
MTA1NTkyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2I0NGM3M2I0ZGI5
YjgyMTJkOTNjZjNjMTE2ZjBhODQ3MzJiMzI0NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL2BfJfQXM3v33OrkfjmjBYOiY8cr3PM76OiCouQ3DAHG+8R
VIFLl8P3lIg37dtGZrHn/cv5elamO2Cx2LsgHhMHgxy2hC8NmRpsnVCdJxM3Na2X
DFTjDvzkHNwkrPnpG2oQo6zb+xebbF1dIGu5cWXso8xSzcskPzkp1LdyYTyEafjx
20N6uYBNgDr4niEZ+7DEYyqzchCdvTgnxolC3NxtSp5/mJbtA7kEoqXtSWCcksIp
Tlr3BOnOkW4gCjgz9pnQ/9KTiGVCmPmer3sR5gcrFxIp7/ZCFGCw2i3ePPFRTTH7
LQOulzApLDoRv9QmXs1f3++pl65rjOrZw+kLf4kCAwEAAaOCAjgwggI0MB0GA1Ud
DgQWBBTLRMc7Tbm4IS2TzzwRbwqEcysyRTAfBgNVHSMEGDAWgBTk2wMB/iRhxt4/
cY2EfLXcfACy0jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzVOc0RBZjRrWWNiZVAzR05oSHkxM0h3QXN0SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTQvNmU2NDA1LWRiZTctNDJiMi04ODdjLWZmZGViZWM4ZjUwNS8x
L3kwVEhPMDI1dUNFdGs4ODhFVzhLaEhNck1rVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTQv
NmU2NDA1LWRiZTctNDJiMi04ODdjLWZmZGViZWM4ZjUwNS8xLzVOc0RBZjRrWWNi
ZVAzR05oSHkxM0h3QXN0SS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBO
BggrBgEFBQcBBwEB/wQ/MD0wKgQCAAEwJAMEA01XkAMEBlz5QAMEB7I2AAMEAcHJ
UAMEAsIAWAMEAsNFVDAPBAIAAjAJAwcAIAEGfCsUMA0GCSqGSIb3DQEBCwUAA4IB
AQBP1cUL/IPk1puzGP2yYGGtDyai2M89fo08flSAx0BztnWfOP9y4nqUJQwBSQFc
ew8Iejn/8rA3rz72aedmnfdjk35TjnFPHk1JNmxZf3MtQwufpVyi5+N/EoQ9ZDR+
RulGiOywLwEInyaqq89m5yljZBX0CANrGxY20g1RERIegi3MKbaQxjUww4HkHwyK
0AzEwjQ0wKuChBYT5DATfLAcf/WkrheDjkNycF+J6/atSRgRZFyWKQo+ukGS0Rsp
rcZO1/dm0Qi+kuNzF7/FolZZrU/bBXzUnQQofTP3jRobcO17FIXtkfT7e0snAmG+
FEFIfz3NmRhjsAWFQcbGB5Mk
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:19 2024 by rpki-client on console-fra.rpki-client.org