Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/e4705c-e6da-422e-859c-3b68a49dc042/1/EvNXviXihMx5PNvseoS-ZQTT_cw.roa
File: EvNXviXihMx5PNvseoS-ZQTT_cw.roa (raw, json)
Hash identifier: el9S1qGk+U15XQzszh/QOuiELN7lsZhC0N2IZ2Giepc=
Subject key identifier: 12:F3:57:BE:25:E2:84:CC:79:3C:DB:EC:7A:84:BE:65:04:D3:FD:CC
Certificate issuer: /CN=9ae7d661afca3d3370b8e634494d5246b83d585f
Certificate serial: 18D25F30
Authority key identifier: 9A:E7:D6:61:AF:CA:3D:33:70:B8:E6:34:49:4D:52:46:B8:3D:58:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mufWYa_KPTNwuOY0SU1SRrg9WF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/e4705c-e6da-422e-859c-3b68a49dc042/1/EvNXviXihMx5PNvseoS-ZQTT_cw.roa
Signing time: Sat 01 Jan 2022 08:00:48 +0000
ROA not before: Sat 01 Jan 2022 08:00:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42336
IP address blocks: 89.45.84.0/22 maxlen: 24
185.39.228.0/22 maxlen: 24
2a01:4aa0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 416440112 (0x18d25f30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ae7d661afca3d3370b8e634494d5246b83d585f
Validity
Not Before: Jan 1 08:00:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=12f357be25e284cc793cdbec7a84be6504d3fdcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:5f:ff:8d:06:93:00:a5:ec:34:72:cf:95:53:
d3:be:3d:0f:c8:f7:53:3f:50:71:a6:8f:4d:e4:a9:
37:b8:cc:80:bc:67:81:ee:13:2d:bf:ec:f3:5a:9f:
6f:52:6b:f8:7d:84:86:ca:fe:81:c8:b3:70:95:14:
bc:5f:8a:a2:9d:07:97:d4:a5:a1:89:6b:26:7e:1d:
99:5c:b9:1e:d0:a7:c0:a3:18:da:6e:ce:1b:c4:bd:
28:fb:2d:5e:80:6e:1e:56:71:e0:c3:1f:44:4e:64:
de:7d:d6:dd:bf:c9:2f:0a:1a:46:4a:92:e1:93:af:
f5:e0:8f:50:55:12:c9:91:d5:3a:ff:1c:8b:cc:43:
9d:1c:cf:64:15:62:d9:92:ec:87:9f:f5:5c:34:bd:
96:8c:67:bc:6e:9f:de:11:83:db:80:3f:8e:f4:17:
d0:5c:b9:dc:fd:12:e3:f3:02:4b:34:9f:dc:f3:d7:
3c:d1:3e:85:5f:92:f2:22:36:af:d7:93:c3:5f:4c:
0b:d0:0a:11:fd:f3:a3:17:43:91:d8:9f:f9:16:d2:
7f:03:f1:af:16:76:bc:e8:2d:67:00:d1:fe:32:e4:
5a:c8:21:fa:03:9f:d8:8b:0f:aa:b2:d8:fd:a8:94:
10:93:46:69:9d:33:2b:00:b1:6a:e0:03:cd:76:26:
ce:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:F3:57:BE:25:E2:84:CC:79:3C:DB:EC:7A:84:BE:65:04:D3:FD:CC
X509v3 Authority Key Identifier:
keyid:9A:E7:D6:61:AF:CA:3D:33:70:B8:E6:34:49:4D:52:46:B8:3D:58:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mufWYa_KPTNwuOY0SU1SRrg9WF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e4705c-e6da-422e-859c-3b68a49dc042/1/EvNXviXihMx5PNvseoS-ZQTT_cw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e4705c-e6da-422e-859c-3b68a49dc042/1/mufWYa_KPTNwuOY0SU1SRrg9WF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.45.84.0/22
185.39.228.0/22
IPv6:
2a01:4aa0::/32
Signature Algorithm: sha256WithRSAEncryption
44:5f:d0:5f:a6:15:94:88:e8:2e:37:86:f8:97:44:6b:bc:64:
77:9d:bc:ab:40:60:c1:a0:e9:b4:d6:8e:f9:b8:f6:6b:3e:c0:
94:f8:e2:45:7a:1b:8b:d8:2c:b7:96:9f:b7:91:72:9a:0e:1b:
b7:23:9b:a6:f9:f7:11:4d:09:7f:f3:51:1e:2f:d7:cc:b4:69:
25:67:1e:2a:5b:5c:63:10:08:5b:7e:21:bc:c9:69:99:27:5f:
d2:4a:d2:e7:bf:4c:2d:80:a5:cd:ae:30:8f:9a:ba:11:cc:ac:
be:ed:ad:b0:a9:83:22:67:1b:dd:5a:06:80:40:d6:49:9d:2a:
40:f7:17:1b:84:5a:23:75:1e:41:94:ce:ce:65:08:97:db:a3:
6d:b8:6a:76:11:75:d6:02:56:b0:44:be:ec:85:d6:e1:82:83:
f5:17:87:4a:ef:36:9c:8a:cc:83:bb:3a:4a:2e:52:d7:1d:76:
22:1f:09:f2:06:16:5d:c3:1d:58:cb:7f:32:35:dd:e1:21:af:
73:7a:60:4d:f2:02:9d:01:42:60:f2:bd:ad:e0:09:a9:d1:82:
61:8a:32:cf:ab:2d:1d:97:5e:b7:39:69:11:f0:ef:54:0b:31:
79:3c:12:3b:73:02:85:b1:d3:51:43:91:4a:54:b3:e0:4c:f9:
7b:86:e9:82
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEGNJfMDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
YWU3ZDY2MWFmY2EzZDMzNzBiOGU2MzQ0OTRkNTI0NmI4M2Q1ODVmMB4XDTIyMDEw
MTA4MDA0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTJmMzU3YmUyNWUy
ODRjYzc5M2NkYmVjN2E4NGJlNjUwNGQzZmRjYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALVf/40GkwCl7DRyz5VT0749D8j3Uz9QcaaPTeSpN7jMgLxn
ge4TLb/s81qfb1Jr+H2Ehsr+gcizcJUUvF+Kop0Hl9SloYlrJn4dmVy5HtCnwKMY
2m7OG8S9KPstXoBuHlZx4MMfRE5k3n3W3b/JLwoaRkqS4ZOv9eCPUFUSyZHVOv8c
i8xDnRzPZBVi2ZLsh5/1XDS9loxnvG6f3hGD24A/jvQX0Fy53P0S4/MCSzSf3PPX
PNE+hV+S8iI2r9eTw19MC9AKEf3zoxdDkdif+RbSfwPxrxZ2vOgtZwDR/jLkWsgh
+gOf2IsPqrLY/aiUEJNGaZ0zKwCxauADzXYmzv0CAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBQS81e+JeKEzHk82+x6hL5lBNP9zDAfBgNVHSMEGDAWgBSa59Zhr8o9M3C4
5jRJTVJGuD1YXzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L211ZldZYV9LUFROd3VPWTBTVTFTUnJnOVdGOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjcvZTQ3MDVjLWU2ZGEtNDIyZS04NTljLTNiNjhhNDlkYzA0Mi8x
L0V2Tlh2aVhpaE14NVBOdnNlb1MtWlFUVF9jdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjcv
ZTQ3MDVjLWU2ZGEtNDIyZS04NTljLTNiNjhhNDlkYzA0Mi8xL211ZldZYV9LUFRO
d3VPWTBTVTFTUnJnOVdGOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEAlktVAMEArkn5DANBAIAAjAHAwUA
KgFKoDANBgkqhkiG9w0BAQsFAAOCAQEARF/QX6YVlIjoLjeG+JdEa7xkd528q0Bg
waDptNaO+bj2az7AlPjiRXobi9gst5aft5Fymg4btyObpvn3EU0Jf/NRHi/XzLRp
JWceKltcYxAIW34hvMlpmSdf0krS579MLYClza4wj5q6Ecysvu2tsKmDImcb3VoG
gEDWSZ0qQPcXG4RaI3UeQZTOzmUIl9ujbbhqdhF11gJWsES+7IXW4YKD9ReHSu82
nIrMg7s6Si5S1x12Ih8J8gYWXcMdWMt/MjXd4SGvc3pgTfICnQFCYPK9reAJqdGC
YYoyz6stHZdetzlpEfDvVAsxeTwSO3MChbHTUUORSlSz4Ez5e4bpgg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:06 2024 by rpki-client on console-fra.rpki-client.org