Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/13oB58d9zMuhKNSO7abmj4mdJ08.roa
File: 13oB58d9zMuhKNSO7abmj4mdJ08.roa (raw, json)
Hash identifier: k8sh+4xNCZFr20TwG/hceahhsTbLIiR/Mf5YTkHGRL4=
Subject key identifier: D7:7A:01:E7:C7:7D:CC:CB:A1:28:D4:8E:ED:A6:E6:8F:89:9D:27:4F
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 095A86CA
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/13oB58d9zMuhKNSO7abmj4mdJ08.roa
Signing time: Sat 14 May 2022 19:35:40 +0000
ROA not before: Sat 14 May 2022 19:35:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 178.253.32.0/24 maxlen: 24
178.253.33.0/24 maxlen: 24
83.147.240.0/22 maxlen: 24
83.147.252.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156927690 (0x95a86ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: May 14 19:35:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d77a01e7c77dcccba128d48eeda6e68f899d274f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:9c:ec:c0:75:f1:a4:7b:d8:7a:d7:3d:1d:3d:
be:37:af:4b:a9:47:aa:14:37:3f:af:2e:26:77:23:
97:a3:8b:3a:0f:be:31:07:65:c0:aa:cc:fd:3d:36:
45:ea:63:af:43:2c:0a:44:0d:b1:f0:24:82:43:98:
6d:cf:41:70:7b:b8:bd:87:5c:ae:64:4b:ff:5a:37:
47:a4:6d:23:0b:f8:45:d8:d0:93:ed:a5:65:66:df:
84:33:2d:47:14:d2:3b:c9:ce:4c:20:06:19:90:39:
d9:a9:5e:53:9c:e8:cb:ab:41:cb:11:08:6e:36:06:
b3:bc:35:77:fb:d9:67:9c:f2:35:0b:f9:1f:2d:51:
7d:55:d7:8e:d8:9c:6e:d9:c3:64:4d:f3:bd:87:68:
74:72:a5:a4:bd:c8:3d:b9:cb:15:2e:22:fe:d0:5b:
84:31:d8:c4:7d:55:f7:6d:ca:15:9e:ab:8f:71:84:
e1:23:95:de:83:1b:e2:e7:bf:9e:4b:5d:c3:07:69:
7c:d0:cc:0f:1e:df:1d:16:88:73:0a:3f:5d:b0:94:
74:56:54:01:e7:b3:f5:60:a0:6b:0e:ee:89:aa:25:
fb:50:fe:c0:c2:01:36:9a:2c:c5:c9:86:cd:13:18:
63:59:2c:ac:ba:58:ac:31:f2:b0:44:e1:4a:96:1f:
3c:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:7A:01:E7:C7:7D:CC:CB:A1:28:D4:8E:ED:A6:E6:8F:89:9D:27:4F
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/13oB58d9zMuhKNSO7abmj4mdJ08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.240.0/22
83.147.252.0/22
178.253.32.0/23
Signature Algorithm: sha256WithRSAEncryption
17:fd:2b:97:13:e8:0f:44:bb:6c:ac:25:0c:00:10:1d:b6:4a:
a3:58:3c:d4:10:b5:f3:1d:33:b2:ee:c5:b3:e3:cb:70:1f:98:
2f:2f:c9:e4:6a:4a:0f:69:b0:d1:00:1a:c2:31:84:a2:69:c2:
7c:ff:a7:f4:e2:d6:57:26:22:02:92:ca:b1:44:df:11:3e:62:
66:0f:74:42:e8:e6:54:b6:72:43:22:64:93:58:d6:45:7c:5b:
92:02:46:a4:27:27:51:e9:b8:c4:70:05:dd:48:f9:02:7d:f9:
bf:ad:e5:3d:58:1b:25:c6:46:22:9d:07:fc:97:aa:f1:54:9e:
e2:b3:bd:27:67:66:af:d9:d3:d7:b9:40:36:69:b1:5f:cf:fd:
e5:9d:2a:18:96:2d:35:a1:ad:ed:56:ba:f9:dc:85:3e:e5:38:
e2:d5:dd:77:1c:bf:55:6b:0d:63:b9:07:8f:2f:e3:19:22:98:
7b:8e:fb:19:fb:80:02:05:4b:cf:2b:44:89:98:03:93:4c:a1:
8f:26:14:b9:35:a3:ab:32:3e:11:97:b6:56:79:28:18:8e:f0:
d0:d4:46:33:2d:7a:3d:6f:83:85:3b:87:bc:ee:77:b1:76:c9:
fc:47:3d:19:9c:7c:72:2c:d3:99:e1:5e:75:d9:7e:6c:68:2c:
5c:be:75:fc
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIECVqGyjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
Mjc3OGRlMmE5YmU5ODAyMTIwMzgyZTc1MGQxNTllOTU4NzJjMmFlMB4XDTIyMDUx
NDE5MzU0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDc3YTAxZTdjNzdk
Y2NjYmExMjhkNDhlZWRhNmU2OGY4OTlkMjc0ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALKc7MB18aR72HrXPR09vjevS6lHqhQ3P68uJncjl6OLOg++
MQdlwKrM/T02Repjr0MsCkQNsfAkgkOYbc9BcHu4vYdcrmRL/1o3R6RtIwv4RdjQ
k+2lZWbfhDMtRxTSO8nOTCAGGZA52aleU5zoy6tByxEIbjYGs7w1d/vZZ5zyNQv5
Hy1RfVXXjticbtnDZE3zvYdodHKlpL3IPbnLFS4i/tBbhDHYxH1V923KFZ6rj3GE
4SOV3oMb4ue/nktdwwdpfNDMDx7fHRaIcwo/XbCUdFZUAeez9WCgaw7uiaol+1D+
wMIBNposxcmGzRMYY1ksrLpYrDHysEThSpYfPH8CAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBTXegHnx33My6Eo1I7tpuaPiZ0nTzAfBgNVHSMEGDAWgBTCd43iqb6YAhID
gudQ0VnpWHLCrjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3duZU40cW0tbUFJU0E0TG5VTkZaNlZoeXdxNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjgvNDEwOTMwLTlkNjUtNGJlOC05ZWJhLWY5OGRhNTRhZjQzNC8x
LzEzb0I1OGQ5ek11aEtOU083YWJtajRtZEowOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjgv
NDEwOTMwLTlkNjUtNGJlOC05ZWJhLWY5OGRhNTRhZjQzNC8xL3duZU40cW0tbUFJ
U0E0TG5VTkZaNlZoeXdxNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAlOT8AMEAlOT/AMEAbL9IDANBgkq
hkiG9w0BAQsFAAOCAQEAF/0rlxPoD0S7bKwlDAAQHbZKo1g81BC18x0zsu7Fs+PL
cB+YLy/J5GpKD2mw0QAawjGEomnCfP+n9OLWVyYiApLKsUTfET5iZg90QujmVLZy
QyJkk1jWRXxbkgJGpCcnUem4xHAF3Uj5An35v63lPVgbJcZGIp0H/Jeq8VSe4rO9
J2dmr9nT17lANmmxX8/95Z0qGJYtNaGt7Va6+dyFPuU44tXddxy/VWsNY7kHjy/j
GSKYe477GfuAAgVLzytEiZgDk0yhjyYUuTWjqzI+EZe2VnkoGI7w0NRGMy16PW+D
hTuHvO53sXbJ/Ec9GZx8cizTmeFeddl+bGgsXL51/A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:18 2024 by rpki-client on console-ams.rpki-client.org