Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/IvGUDZKsWiY7yEyh1Jwjhu7uDbQ.roa
File: IvGUDZKsWiY7yEyh1Jwjhu7uDbQ.roa (raw, json)
Hash identifier: dXS31mEFuwg0w7e3gWlECsE15safgeQq9kAM3lSyiQ8=
Subject key identifier: 22:F1:94:0D:92:AC:5A:26:3B:C8:4C:A1:D4:9C:23:86:EE:EE:0D:B4
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0183D0BC2F6024DF857C8001E620EA91D012
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/IvGUDZKsWiY7yEyh1Jwjhu7uDbQ.roa
Signing time: Thu 13 Oct 2022 09:45:37 +0000
ROA not before: Thu 13 Oct 2022 09:45:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 178.253.32.0/24 maxlen: 24
178.253.33.0/24 maxlen: 24
83.147.252.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d0:bc:2f:60:24:df:85:7c:80:01:e6:20:ea:91:d0:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Oct 13 09:45:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=22f1940d92ac5a263bc84ca1d49c2386eeee0db4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:4a:56:71:48:26:96:d3:71:56:23:61:4c:02:
b8:36:aa:60:1a:49:07:43:9e:c2:a3:06:86:b3:86:
37:c1:8d:ac:bf:3a:ea:ec:94:bb:68:0e:23:2e:a2:
38:08:8f:2b:f4:37:8c:9c:84:93:bb:6e:8d:4f:12:
7e:dd:4f:b6:f5:95:01:b5:c2:59:4c:0a:c2:8b:84:
87:79:40:ef:4d:62:b4:c2:04:db:5e:f6:0d:99:6a:
30:de:32:9c:b9:bb:af:55:8e:cc:08:81:be:f8:3d:
fc:0a:25:9b:0d:ce:f0:b2:f8:82:8e:98:ea:49:1d:
41:86:c5:4c:d9:27:c1:50:4f:8a:d1:98:77:43:91:
2e:52:e7:74:2c:d5:80:55:23:61:a6:b0:28:cd:e1:
8b:05:40:7f:91:c2:c1:83:7c:2e:a8:e0:cd:c6:28:
51:cf:56:22:90:83:e4:48:21:82:12:2d:f4:7b:29:
77:c4:63:35:57:61:5a:a4:58:f4:98:dd:0a:27:2c:
74:86:7e:fd:e2:56:5b:9d:c7:19:90:c6:00:29:35:
b2:eb:71:3c:f5:a0:dd:57:42:6a:c2:f6:07:76:e0:
38:6b:c7:30:6a:61:65:2c:35:b1:2c:a0:64:1b:6b:
b5:70:88:47:78:d5:bd:58:68:45:9c:63:a7:3d:07:
55:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:F1:94:0D:92:AC:5A:26:3B:C8:4C:A1:D4:9C:23:86:EE:EE:0D:B4
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/IvGUDZKsWiY7yEyh1Jwjhu7uDbQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.252.0/22
178.253.32.0/23
Signature Algorithm: sha256WithRSAEncryption
0a:a0:54:7d:88:de:9e:60:44:ab:05:4a:01:57:42:b9:9b:cf:
b9:fb:e1:ee:f9:cd:d5:44:2b:e8:0b:ce:22:35:42:09:3a:92:
ff:5d:a1:98:2f:ab:69:41:ce:35:9f:24:5b:e2:b4:6e:43:b4:
6d:f3:39:cd:c1:19:9e:49:9f:e2:dc:be:a9:69:c1:08:04:46:
d2:42:3c:33:fd:74:07:b1:ae:60:81:8b:5d:9f:9b:d4:1f:eb:
94:7a:d1:28:52:e6:36:7e:33:fa:55:a2:af:e4:10:67:5a:f8:
67:81:65:0d:6b:c3:5c:74:fd:d3:e7:77:0a:66:d0:2f:4a:26:
52:ae:eb:12:c2:4c:5e:2a:79:61:e5:9b:73:b8:7e:2d:10:f7:
21:cd:4d:2a:28:cf:16:fd:ff:56:ed:9d:d1:25:49:04:f6:3f:
cf:00:da:b0:fe:ac:1b:be:5f:c4:10:5a:b3:b0:b0:3e:05:27:
bc:ea:48:ce:dc:27:e4:55:a9:f4:41:84:09:3c:72:34:55:9a:
76:6f:7f:07:97:87:0a:a4:c9:67:24:15:ee:92:f5:d0:8a:6c:
86:a0:1d:46:93:c9:04:2f:50:ff:1a:37:36:40:0d:50:67:53:
01:95:b6:cb:59:40:21:12:f3:80:cf:46:fc:96:59:c2:8d:f3:
d2:12:da:3d
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYPQvC9gJN+FfIAB5iDqkdASMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyNzc4ZGUyYTliZTk4MDIxMjAzODJlNzUwZDE1OWU5NTg3
MmMyYWUwHhcNMjIxMDEzMDk0NTM3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMmYxOTQwZDkyYWM1YTI2M2JjODRjYTFkNDljMjM4NmVlZWUwZGI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyUpWcUgmltNxViNhTAK4NqpgGkkH
Q57CowaGs4Y3wY2svzrq7JS7aA4jLqI4CI8r9DeMnISTu26NTxJ+3U+29ZUBtcJZ
TArCi4SHeUDvTWK0wgTbXvYNmWow3jKcubuvVY7MCIG++D38CiWbDc7wsviCjpjq
SR1BhsVM2SfBUE+K0Zh3Q5EuUud0LNWAVSNhprAozeGLBUB/kcLBg3wuqODNxihR
z1YikIPkSCGCEi30eyl3xGM1V2FapFj0mN0KJyx0hn794lZbnccZkMYAKTWy63E8
9aDdV0JqwvYHduA4a8cwamFlLDWxLKBkG2u1cIhHeNW9WGhFnGOnPQdVDQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFCLxlA2SrFomO8hModScI4bu7g20MB8GA1UdIwQY
MBaAFMJ3jeKpvpgCEgOC51DRWelYcsKuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEt
Zjk4ZGE1NGFmNDM0LzEvSXZHVURaS3NXaVk3eUV5aDFKd2podTd1RGJRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEtZjk4ZGE1NGFmNDM0
LzEvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCU5P8AwQB
sv0gMA0GCSqGSIb3DQEBCwUAA4IBAQAKoFR9iN6eYESrBUoBV0K5m8+5++Hu+c3V
RCvoC84iNUIJOpL/XaGYL6tpQc41nyRb4rRuQ7Rt8znNwRmeSZ/i3L6pacEIBEbS
Qjwz/XQHsa5ggYtdn5vUH+uUetEoUuY2fjP6VaKv5BBnWvhngWUNa8NcdP3T53cK
ZtAvSiZSrusSwkxeKnlh5ZtzuH4tEPchzU0qKM8W/f9W7Z3RJUkE9j/PANqw/qwb
vl/EEFqzsLA+BSe86kjO3CfkVan0QYQJPHI0VZp2b38Hl4cKpMlnJBXukvXQimyG
oB1Gk8kEL1D/Gjc2QA1QZ1MBlbbLWUAhEvOAz0b8llnCjfPSEto9
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:09 2024 by rpki-client on console-fra.rpki-client.org