Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/61a140-110e-4197-8da5-56ba198d17f0/1/0m40dk4E4X6Y6b8HtLEOKNMgIsI.roa
File: 0m40dk4E4X6Y6b8HtLEOKNMgIsI.roa (raw, json)
Hash identifier: PqrRMG9UxVLHMdGfuh7hKyLCycF4PuWoyDQhJ3nXLos=
Subject key identifier: D2:6E:34:76:4E:04:E1:7E:98:E9:BF:07:B4:B1:0E:28:D3:20:22:C2
Certificate issuer: /CN=8eac36ff533eb6f8f8aa65920220cfa471e5a2b1
Certificate serial: 0317A4A3
Authority key identifier: 8E:AC:36:FF:53:3E:B6:F8:F8:AA:65:92:02:20:CF:A4:71:E5:A2:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jqw2_1M-tvj4qmWSAiDPpHHlorE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/61a140-110e-4197-8da5-56ba198d17f0/1/0m40dk4E4X6Y6b8HtLEOKNMgIsI.roa
Signing time: Sat 01 Jan 2022 06:06:04 +0000
ROA not before: Sat 01 Jan 2022 06:06:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210127
IP address blocks: 194.61.132.0/24 maxlen: 24
194.61.132.0/22 maxlen: 24
194.61.134.0/24 maxlen: 24
194.61.133.0/24 maxlen: 24
194.61.135.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51881123 (0x317a4a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8eac36ff533eb6f8f8aa65920220cfa471e5a2b1
Validity
Not Before: Jan 1 06:06:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d26e34764e04e17e98e9bf07b4b10e28d32022c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:71:a7:30:a2:b2:66:46:b4:d7:4d:c7:e5:0d:
b5:5f:67:ca:e6:9b:6d:a6:e0:9a:15:4d:58:36:d9:
9a:f4:ea:e0:7d:10:aa:8e:4c:70:6c:af:95:29:3e:
9d:8d:11:07:e0:48:bc:5c:46:01:74:28:7c:34:fd:
0c:65:7e:6d:04:82:66:2d:2c:42:3f:ce:be:ed:e2:
07:d1:82:4f:0e:87:16:f9:72:b5:e6:cc:56:d0:97:
90:1b:71:0b:4a:56:02:0e:64:99:ba:c0:fb:76:26:
b2:77:2f:47:2f:70:4f:77:ad:5c:47:94:83:e2:82:
5e:70:69:83:a6:b0:3d:83:90:3d:0c:2e:0d:bd:db:
77:f3:f2:24:ea:ff:a2:2d:ce:ca:ea:d3:8a:e0:bb:
81:99:cb:aa:5d:30:ca:f7:c1:1a:36:e6:c4:2c:4e:
7e:22:f0:80:cf:20:9b:6c:10:36:a5:31:aa:1b:77:
01:2d:93:22:a5:da:70:fc:9d:ef:90:74:cb:60:e3:
bc:7d:f2:65:96:bf:f0:81:fb:98:f8:ed:86:62:a6:
20:b9:1a:7a:1f:62:d0:74:ca:f0:14:4e:54:21:69:
53:49:04:de:4a:00:5e:a3:2f:35:16:f2:dc:da:10:
89:a4:41:cd:c3:90:1f:02:59:3b:7a:c8:ac:a8:b4:
73:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:6E:34:76:4E:04:E1:7E:98:E9:BF:07:B4:B1:0E:28:D3:20:22:C2
X509v3 Authority Key Identifier:
keyid:8E:AC:36:FF:53:3E:B6:F8:F8:AA:65:92:02:20:CF:A4:71:E5:A2:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jqw2_1M-tvj4qmWSAiDPpHHlorE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/61a140-110e-4197-8da5-56ba198d17f0/1/0m40dk4E4X6Y6b8HtLEOKNMgIsI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/61a140-110e-4197-8da5-56ba198d17f0/1/jqw2_1M-tvj4qmWSAiDPpHHlorE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.61.132.0/22
Signature Algorithm: sha256WithRSAEncryption
49:9b:4a:77:e2:c6:e7:18:84:d7:43:3d:b7:e3:68:11:d3:ad:
9e:89:76:42:37:ac:c3:f9:68:fe:a5:48:e0:d3:49:f0:66:7a:
e4:8c:e8:0a:6d:e7:bc:4f:2b:01:a2:39:3d:cc:77:7e:88:9b:
47:2a:98:d0:42:93:ed:0f:e8:b3:c8:3f:6c:0f:e9:06:0f:85:
72:07:ac:35:9e:a2:b6:62:c9:ca:53:ee:f8:cc:21:a9:8d:e7:
7c:44:2e:c1:7b:f6:bd:75:6b:fe:12:30:ce:ea:5f:ad:9f:a3:
fa:dc:df:95:60:b8:fe:23:d6:ef:1f:f3:42:54:33:49:c4:12:
28:bc:ac:4b:27:97:f8:f2:db:1b:9c:41:dc:6e:e5:58:96:c1:
e0:46:49:e4:37:2b:f3:35:31:4c:6d:73:aa:a2:46:55:71:4b:
fc:94:d1:45:07:52:6c:7e:33:5d:86:59:c2:a1:9d:8f:6d:8f:
e6:80:4b:1c:5a:77:f0:6e:9a:9f:16:12:91:4a:70:81:61:56:
c0:45:fd:68:e7:13:53:f0:89:c1:9e:84:49:9d:1a:6b:d1:52:
b7:65:58:33:99:5b:6e:0d:5e:d3:69:c7:43:e2:3a:25:84:6c:
94:57:a8:15:31:71:20:7c:ab:67:a8:47:fb:07:98:31:33:99:
20:a9:c7:be
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAxekozANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZWFjMzZmZjUzM2ViNmY4ZjhhYTY1OTIwMjIwY2ZhNDcxZTVhMmIxMB4XDTIyMDEw
MTA2MDYwNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDI2ZTM0NzY0ZTA0
ZTE3ZTk4ZTliZjA3YjRiMTBlMjhkMzIwMjJjMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALVxpzCismZGtNdNx+UNtV9nyuabbabgmhVNWDbZmvTq4H0Q
qo5McGyvlSk+nY0RB+BIvFxGAXQofDT9DGV+bQSCZi0sQj/Ovu3iB9GCTw6HFvly
tebMVtCXkBtxC0pWAg5kmbrA+3YmsncvRy9wT3etXEeUg+KCXnBpg6awPYOQPQwu
Db3bd/PyJOr/oi3OyurTiuC7gZnLql0wyvfBGjbmxCxOfiLwgM8gm2wQNqUxqht3
AS2TIqXacPyd75B0y2DjvH3yZZa/8IH7mPjthmKmILkaeh9i0HTK8BROVCFpU0kE
3koAXqMvNRby3NoQiaRBzcOQHwJZO3rIrKi0c2sCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTSbjR2TgThfpjpvwe0sQ4o0yAiwjAfBgNVHSMEGDAWgBSOrDb/Uz62+Piq
ZZICIM+kceWisTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2pxdzJfMU0tdHZqNHFtV1NBaURQcEhIbG9yRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjUvNjFhMTQwLTExMGUtNDE5Ny04ZGE1LTU2YmExOThkMTdmMC8x
LzBtNDBkazRFNFg2WTZiOEh0TEVPS05NZ0lzSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjUv
NjFhMTQwLTExMGUtNDE5Ny04ZGE1LTU2YmExOThkMTdmMC8xL2pxdzJfMU0tdHZq
NHFtV1NBaURQcEhIbG9yRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsI9hDANBgkqhkiG9w0BAQsFAAOC
AQEASZtKd+LG5xiE10M9t+NoEdOtnol2Qjesw/lo/qVI4NNJ8GZ65IzoCm3nvE8r
AaI5Pcx3foibRyqY0EKT7Q/os8g/bA/pBg+FcgesNZ6itmLJylPu+MwhqY3nfEQu
wXv2vXVr/hIwzupfrZ+j+tzflWC4/iPW7x/zQlQzScQSKLysSyeX+PLbG5xB3G7l
WJbB4EZJ5Dcr8zUxTG1zqqJGVXFL/JTRRQdSbH4zXYZZwqGdj22P5oBLHFp38G6a
nxYSkUpwgWFWwEX9aOcTU/CJwZ6ESZ0aa9FSt2VYM5lbbg1e02nHQ+I6JYRslFeo
FTFxIHyrZ6hH+weYMTOZIKnHvg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:48 2024 by rpki-client on console-ams.rpki-client.org