Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/3t6CJqP14gIb_ZP6Zr1_C1e32ZU.roa
File: 3t6CJqP14gIb_ZP6Zr1_C1e32ZU.roa (raw, json)
Hash identifier: pVT08poauUthSyeJoL8+2Wg9iQ32eMkMCgDXqoiPIoA=
Subject key identifier: DE:DE:82:26:A3:F5:E2:02:1B:FD:93:FA:66:BD:7F:0B:57:B7:D9:95
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 366097BB
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/3t6CJqP14gIb_ZP6Zr1_C1e32ZU.roa
Signing time: Sat 01 Jan 2022 13:57:22 +0000
ROA not before: Sat 01 Jan 2022 13:57:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41763
IP address blocks: 89.42.192.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 912299963 (0x366097bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Jan 1 13:57:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dede8226a3f5e2021bfd93fa66bd7f0b57b7d995
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a5:29:93:5a:a1:89:ca:d7:1d:37:db:1a:9a:
44:5c:9b:93:e5:bf:62:9e:02:97:5e:e4:aa:bb:7a:
71:1c:d7:f6:cf:2a:7d:b8:ee:20:af:83:3e:f3:5a:
69:eb:ba:27:6e:18:0c:00:bc:5e:fe:21:b2:96:51:
22:ad:52:7a:52:95:c5:e6:67:76:8e:cc:19:70:26:
f7:0e:35:ad:f8:1a:e9:f7:0e:4f:7a:61:bc:a6:7d:
9a:d1:f8:eb:d3:fb:ea:6c:65:ab:f4:43:8e:b9:51:
e8:1d:8c:e1:0c:f8:2a:54:68:96:7a:eb:ac:e4:08:
7d:b5:ba:20:2e:c7:04:77:f2:ff:b3:12:69:ab:20:
b9:46:fb:50:ef:cf:b8:6b:95:73:5b:c0:7a:80:ba:
d3:d1:f3:6f:83:03:e5:85:63:4e:d8:f7:31:e0:73:
26:bf:b6:d0:b8:5b:60:ac:73:dc:9c:f7:65:a6:fd:
70:4a:9f:8b:af:d7:0c:c0:41:26:82:de:68:9f:bb:
4b:3b:a4:3e:e5:82:49:fa:f6:81:c6:f8:9f:ef:78:
6e:8e:48:de:b9:70:b6:11:68:a5:57:66:3f:d9:e0:
c9:49:2a:58:5e:03:ac:cd:0f:7c:fd:b1:04:0a:fa:
48:ef:b2:f6:cd:ae:46:5c:64:04:98:23:0f:3d:61:
a1:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:DE:82:26:A3:F5:E2:02:1B:FD:93:FA:66:BD:7F:0B:57:B7:D9:95
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/3t6CJqP14gIb_ZP6Zr1_C1e32ZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.42.192.0/22
Signature Algorithm: sha256WithRSAEncryption
24:d6:60:d7:4c:8a:21:3c:0f:3f:b2:e7:70:0d:a2:85:77:08:
1a:b2:da:9e:83:42:81:7c:ec:a9:b9:60:ab:8b:8e:b3:8f:00:
39:29:87:9d:2c:aa:c7:07:13:d5:be:60:49:99:3a:e7:c2:33:
72:f7:08:03:58:7e:42:ac:96:3d:4e:91:07:c6:44:57:eb:75:
37:15:8f:74:b6:5b:0d:11:f5:13:a7:26:cb:2b:80:b0:d2:7d:
58:ad:08:29:c8:63:b2:d1:6d:dc:3e:21:f5:6d:02:bf:51:76:
a6:e1:08:60:85:54:bb:3b:71:2b:8f:30:ee:e3:e4:bf:c0:49:
0a:09:8d:de:0e:92:bd:a7:68:e1:b2:af:0e:9a:70:6c:d5:e0:
1f:51:15:8b:bb:3f:a3:df:72:8d:5c:76:ab:c0:14:d9:2c:28:
73:87:d5:51:8f:40:97:46:d4:2d:0f:c4:83:4e:22:20:9f:d0:
d0:ac:0f:ab:de:81:85:e3:d8:ec:ee:6c:bc:e6:f8:c3:cd:b7:
99:86:47:f5:b5:ac:45:3c:79:81:fd:63:43:c1:2f:9f:7e:0f:
16:c0:2e:a2:c8:9c:8d:44:eb:ff:b2:a7:56:0d:34:40:6c:0c:
7a:ed:a9:a9:d6:e6:7c:24:14:1e:48:5b:c6:70:3f:de:64:94:
7c:71:5b:3f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIENmCXuzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
MWQ0NmUwZTNlOGNhYWFlZDRhNTI5YmQ3ZDczMDhiZDFlZjAxYzFkMB4XDTIyMDEw
MTEzNTcyMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGVkZTgyMjZhM2Y1
ZTIwMjFiZmQ5M2ZhNjZiZDdmMGI1N2I3ZDk5NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMClKZNaoYnK1x032xqaRFybk+W/Yp4Cl17kqrt6cRzX9s8q
fbjuIK+DPvNaaeu6J24YDAC8Xv4hspZRIq1SelKVxeZndo7MGXAm9w41rfga6fcO
T3phvKZ9mtH469P76mxlq/RDjrlR6B2M4Qz4KlRolnrrrOQIfbW6IC7HBHfy/7MS
aasguUb7UO/PuGuVc1vAeoC609Hzb4MD5YVjTtj3MeBzJr+20LhbYKxz3Jz3Zab9
cEqfi6/XDMBBJoLeaJ+7SzukPuWCSfr2gcb4n+94bo5I3rlwthFopVdmP9ngyUkq
WF4DrM0PfP2xBAr6SO+y9s2uRlxkBJgjDz1hoR8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTe3oImo/XiAhv9k/pmvX8LV7fZlTAfBgNVHSMEGDAWgBTx1G4OPoyqrtSl
Kb19cwi9HvAcHTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzhkUnVEajZNcXE3VXBTbTlmWE1JdlI3d0hCMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWIvODRlYjQ0LWJiZGYtNDZjMS1iMDQzLWI0MmYyM2Q4MjhjMy8x
LzN0NkNKcVAxNGdJYl9aUDZacjFfQzFlMzJaVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWIv
ODRlYjQ0LWJiZGYtNDZjMS1iMDQzLWI0MmYyM2Q4MjhjMy8xLzhkUnVEajZNcXE3
VXBTbTlmWE1JdlI3d0hCMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAlkqwDANBgkqhkiG9w0BAQsFAAOC
AQEAJNZg10yKITwPP7LncA2ihXcIGrLanoNCgXzsqblgq4uOs48AOSmHnSyqxwcT
1b5gSZk658IzcvcIA1h+QqyWPU6RB8ZEV+t1NxWPdLZbDRH1E6cmyyuAsNJ9WK0I
KchjstFt3D4h9W0Cv1F2puEIYIVUuztxK48w7uPkv8BJCgmN3g6Svado4bKvDppw
bNXgH1EVi7s/o99yjVx2q8AU2Swoc4fVUY9Al0bULQ/Eg04iIJ/Q0KwPq96BhePY
7O5svOb4w823mYZH9bWsRTx5gf1jQ8Evn34PFsAuosicjUTr/7KnVg00QGwMeu2p
qdbmfCQUHkhbxnA/3mSUfHFbPw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:56 2023 by rpki-client on console-ams.rpki-client.org