Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/6u-i5_87L9ozbIxb26t41uBipII.roa
File: 6u-i5_87L9ozbIxb26t41uBipII.roa (raw, json)
Hash identifier: OGATMBQHcbP1B+4eRqvmTqb/ZxIsJ3X1geArxumE0JI=
Subject key identifier: EA:EF:A2:E7:FF:3B:2F:DA:33:6C:8C:5B:DB:AB:78:D6:E0:62:A4:82
Certificate issuer: /CN=612c1c53f6c1d996236cbb37ba3247670399a62d
Certificate serial: 342D8F
Authority key identifier: 61:2C:1C:53:F6:C1:D9:96:23:6C:BB:37:BA:32:47:67:03:99:A6:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/6u-i5_87L9ozbIxb26t41uBipII.roa
Signing time: Wed 27 Apr 2022 13:34:03 +0000
ROA not before: Wed 27 Apr 2022 13:34:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49215
IP address blocks: 83.220.0.0/21 maxlen: 21
83.220.9.0/24 maxlen: 24
83.220.11.0/24 maxlen: 24
83.220.10.0/24 maxlen: 24
83.220.12.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3419535 (0x342d8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=612c1c53f6c1d996236cbb37ba3247670399a62d
Validity
Not Before: Apr 27 13:34:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eaefa2e7ff3b2fda336c8c5bdbab78d6e062a482
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:f0:6b:68:12:d3:4a:05:d6:34:22:0d:b2:1b:
c2:32:ce:59:3f:17:52:bf:ed:77:e7:ea:7c:9e:81:
79:59:30:3c:85:0d:34:24:19:c9:f5:9e:62:76:91:
e8:25:f0:e1:d1:47:23:21:27:b1:97:1e:9d:61:6e:
8a:21:3c:d6:ee:69:f5:aa:ae:9a:39:00:b1:2f:28:
fd:39:1a:4b:4a:ee:b5:03:4d:b7:08:80:c0:c4:21:
44:88:47:b0:c0:da:8a:e4:b4:0c:ad:43:8d:59:64:
00:b1:f9:dc:66:c1:1d:dd:a5:e5:e1:dc:87:e9:a6:
a9:b3:ac:d6:7f:b0:ea:20:6a:ce:8f:9d:0c:c9:7a:
ac:6c:c1:e9:a8:8c:cc:0f:c4:c5:59:da:b5:6e:cd:
09:b8:cf:f8:fa:ee:f3:18:14:63:2a:45:22:d4:ba:
2e:65:55:ff:68:5c:16:98:f6:67:1a:c0:10:11:f5:
b6:ee:50:9c:33:3f:5c:c1:c0:9c:63:27:b4:f4:6c:
99:f8:03:64:9a:70:ee:95:ad:2e:cb:0a:15:22:9c:
de:55:56:4a:97:7c:a5:02:13:a0:b5:19:41:46:2d:
bc:01:e7:62:ce:ad:a0:d9:15:6c:45:e0:81:7a:26:
c6:6b:f3:a3:43:62:1f:b0:b4:50:6d:da:b8:17:63:
69:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:EF:A2:E7:FF:3B:2F:DA:33:6C:8C:5B:DB:AB:78:D6:E0:62:A4:82
X509v3 Authority Key Identifier:
keyid:61:2C:1C:53:F6:C1:D9:96:23:6C:BB:37:BA:32:47:67:03:99:A6:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/6u-i5_87L9ozbIxb26t41uBipII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.220.0.0/21
83.220.9.0-83.220.15.255
Signature Algorithm: sha256WithRSAEncryption
53:5c:c4:9d:c4:ea:2d:eb:05:58:5f:8d:b2:ec:88:be:40:e8:
13:9a:53:d0:14:21:76:a1:a8:43:d7:b5:dc:b4:3a:e9:11:d3:
4a:0c:d6:14:29:80:ac:26:6f:c9:d1:0e:a2:f8:10:2e:72:ed:
d6:4b:15:80:ab:ee:24:0b:a0:bb:96:78:6d:ee:98:60:16:97:
f8:85:ef:57:45:b6:86:df:9b:b1:22:9b:ce:0f:86:bb:f6:dd:
b7:83:f9:f2:0a:c5:ce:b2:35:12:2e:3f:2d:2b:d8:74:54:a4:
18:0e:65:24:a7:a4:2d:c1:ee:6a:f8:42:e2:28:67:b4:20:40:
65:8b:4c:23:4f:cf:9a:0f:1f:da:1c:38:e6:34:ff:cb:50:c7:
cd:17:58:64:88:e4:f3:ff:6a:6f:23:6e:3a:2e:8d:7c:9c:25:
32:09:d0:5c:3c:3d:59:f3:52:6b:02:90:10:b8:f5:92:4f:9a:
61:b0:05:47:31:0c:62:bb:6f:bc:da:c9:0b:e8:58:6a:de:54:
b3:be:52:dc:26:0f:08:55:cb:c5:24:9d:82:92:5f:ae:7e:2e:
cc:ed:0c:ac:ca:a9:2a:b4:12:6a:1d:e5:ba:12:6a:09:bf:1b:
9a:08:97:64:a4:16:3b:a6:7e:0d:eb:ed:6a:6b:87:91:34:f9:
35:cc:99:f6
-----BEGIN CERTIFICATE-----
MIIE/DCCA+SgAwIBAgIDNC2PMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDYx
MmMxYzUzZjZjMWQ5OTYyMzZjYmIzN2JhMzI0NzY3MDM5OWE2MmQwHhcNMjIwNDI3
MTMzNDAzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhlYWVmYTJlN2ZmM2Iy
ZmRhMzM2YzhjNWJkYmFiNzhkNmUwNjJhNDgyMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA1/BraBLTSgXWNCINshvCMs5ZPxdSv+135+p8noF5WTA8hQ00
JBnJ9Z5idpHoJfDh0UcjISexlx6dYW6KITzW7mn1qq6aOQCxLyj9ORpLSu61A023
CIDAxCFEiEewwNqK5LQMrUONWWQAsfncZsEd3aXl4dyH6aaps6zWf7DqIGrOj50M
yXqsbMHpqIzMD8TFWdq1bs0JuM/4+u7zGBRjKkUi1LouZVX/aFwWmPZnGsAQEfW2
7lCcMz9cwcCcYye09GyZ+ANkmnDula0uywoVIpzeVVZKl3ylAhOgtRlBRi28Aedi
zq2g2RVsReCBeibGa/OjQ2IfsLRQbdq4F2NpFQIDAQABo4ICFzCCAhMwHQYDVR0O
BBYEFOrvouf/Oy/aM2yMW9ureNbgYqSCMB8GA1UdIwQYMBaAFGEsHFP2wdmWI2y7
N7oyR2cDmaYtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
WVN3Y1VfYkIyWllqYkxzM3VqSkhad09acGkwLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9hZi9mMDA3OGUtZDBjNy00MjhlLTk1MjQtZWNhZjU3OGEzNGUzLzEv
NnUtaTVfODdMOW96Ykl4YjI2dDQxdUJpcElJLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi9m
MDA3OGUtZDBjNy00MjhlLTk1MjQtZWNhZjU3OGEzNGUzLzEvWVN3Y1VfYkIyWllq
YkxzM3VqSkhad09acGkwLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC0G
CCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQDU9wAMAwDBABT3AkDBART3AAwDQYJ
KoZIhvcNAQELBQADggEBAFNcxJ3E6i3rBVhfjbLsiL5A6BOaU9AUIXahqEPXtdy0
OukR00oM1hQpgKwmb8nRDqL4EC5y7dZLFYCr7iQLoLuWeG3umGAWl/iF71dFtobf
m7Eim84Phrv23beD+fIKxc6yNRIuPy0r2HRUpBgOZSSnpC3B7mr4QuIoZ7QgQGWL
TCNPz5oPH9ocOOY0/8tQx80XWGSI5PP/am8jbjoujXycJTIJ0Fw8PVnzUmsCkBC4
9ZJPmmGwBUcxDGK7b7zayQvoWGreVLO+UtwmDwhVy8UknYKSX65+LsztDKzKqSq0
Emod5boSagm/G5oIl2SkFjumfg3r7Wprh5E0+TXMmfY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:35 2024 by rpki-client on console-ams.rpki-client.org