Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/R7YBiac8eL_Jt0dFAhi1gd2KIz8.roa
File: R7YBiac8eL_Jt0dFAhi1gd2KIz8.roa (raw, json)
Hash identifier: guOA/vzFr5iXdBg+oFRmLIROAie6D1Pgcs3wBT0PnGg=
Subject key identifier: 47:B6:01:89:A7:3C:78:BF:C9:B7:47:45:02:18:B5:81:DD:8A:23:3F
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 09518503
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/R7YBiac8eL_Jt0dFAhi1gd2KIz8.roa
Signing time: Wed 11 May 2022 07:52:47 +0000
ROA not before: Wed 11 May 2022 07:52:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59432
IP address blocks: 91.186.208.0/22 maxlen: 24
178.253.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156337411 (0x9518503)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: May 11 07:52:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=47b60189a73c78bfc9b747450218b581dd8a233f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c8:33:1c:49:19:54:ba:ce:5b:1b:0f:f2:85:
95:fe:ad:76:94:06:65:a3:7a:10:85:10:f6:b6:94:
c3:5f:f9:bd:21:2c:46:bc:c4:a8:a7:ff:51:7e:06:
27:0a:05:d4:4a:4c:2a:1a:c8:ec:b9:5a:37:98:3c:
95:af:db:8d:8c:64:c4:ef:3b:2b:a0:e1:7c:b2:4b:
fe:ea:8a:c0:4e:88:eb:36:60:d3:e7:e6:9c:6f:f1:
31:57:fb:b0:80:00:d5:55:b6:44:27:d6:17:4f:49:
0f:dd:97:c6:2e:e4:1e:68:a1:2f:b4:46:22:ae:f2:
dc:47:e5:09:91:24:31:6b:0f:96:0d:57:74:ea:83:
02:4b:4e:90:4c:18:35:06:6c:7c:f4:50:92:7e:5e:
fe:e6:71:7e:c0:e8:aa:70:f7:fa:52:bd:a4:e6:69:
4a:01:6a:bc:15:8c:a5:ec:a8:8b:d8:82:27:f6:b1:
c9:d2:79:2c:1c:8a:2c:c0:49:d3:c3:80:6f:a2:f2:
8a:90:98:ae:91:2f:2a:e3:d5:e2:55:38:72:e4:83:
26:c4:fa:27:09:64:ac:a8:ae:4f:93:d6:e4:60:5e:
70:cb:10:d4:a7:04:62:da:a9:c0:65:65:3b:fa:e6:
95:80:6c:5a:5f:35:4c:db:6c:9b:af:83:0a:30:b4:
95:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:B6:01:89:A7:3C:78:BF:C9:B7:47:45:02:18:B5:81:DD:8A:23:3F
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/R7YBiac8eL_Jt0dFAhi1gd2KIz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.186.208.0/22
178.253.40.0/22
Signature Algorithm: sha256WithRSAEncryption
3f:49:5f:4e:2c:6b:c9:be:5f:5c:6a:12:e9:4a:80:23:3d:04:
97:cf:eb:dc:e7:5c:b3:4b:a4:99:17:75:79:26:de:df:94:d2:
ba:c7:6d:56:83:a0:4e:49:5f:b5:63:7d:d2:83:68:14:b7:5b:
fe:e4:1f:ea:51:31:52:83:dd:5d:6e:3c:84:c5:ea:d5:b4:24:
5a:26:37:7d:36:32:52:af:81:6f:e3:d0:21:dc:ce:34:37:8a:
ad:f8:f7:bb:72:2c:d8:e1:d2:e3:04:4d:20:91:4a:a0:cf:2e:
26:62:6b:3c:73:59:48:56:8a:f8:19:ca:77:0b:3c:36:d9:40:
d7:9f:66:91:94:c7:de:9b:6b:a9:e0:ba:dc:cf:11:b6:28:9a:
e4:ed:c6:80:8a:f0:08:6c:1a:b7:bf:1d:c4:d4:50:6d:2f:c0:
75:0a:92:7e:a8:3a:02:ba:df:e8:c0:b6:07:c6:e1:18:29:03:
81:d2:85:b2:b3:8a:9e:ef:4a:f8:e5:df:78:56:23:ec:e7:f2:
63:2b:cf:9a:c1:c7:70:18:6b:b1:f5:e2:7e:b5:13:0d:b6:3b:
d1:98:e1:f1:04:ed:07:9f:b9:1d:99:71:b4:42:6c:de:c5:ac:
12:a8:e5:c9:32:e2:f1:cf:b3:94:cc:b7:34:97:a1:00:83:ea:
6d:c9:b1:ea
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIECVGFAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
Mjc3OGRlMmE5YmU5ODAyMTIwMzgyZTc1MGQxNTllOTU4NzJjMmFlMB4XDTIyMDUx
MTA3NTI0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDdiNjAxODlhNzNj
NzhiZmM5Yjc0NzQ1MDIxOGI1ODFkZDhhMjMzZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK3IMxxJGVS6zlsbD/KFlf6tdpQGZaN6EIUQ9raUw1/5vSEs
RrzEqKf/UX4GJwoF1EpMKhrI7LlaN5g8la/bjYxkxO87K6DhfLJL/uqKwE6I6zZg
0+fmnG/xMVf7sIAA1VW2RCfWF09JD92Xxi7kHmihL7RGIq7y3EflCZEkMWsPlg1X
dOqDAktOkEwYNQZsfPRQkn5e/uZxfsDoqnD3+lK9pOZpSgFqvBWMpeyoi9iCJ/ax
ydJ5LByKLMBJ08OAb6LyipCYrpEvKuPV4lU4cuSDJsT6JwlkrKiuT5PW5GBecMsQ
1KcEYtqpwGVlO/rmlYBsWl81TNtsm6+DCjC0ldcCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRHtgGJpzx4v8m3R0UCGLWB3YojPzAfBgNVHSMEGDAWgBTCd43iqb6YAhID
gudQ0VnpWHLCrjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3duZU40cW0tbUFJU0E0TG5VTkZaNlZoeXdxNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjgvNDEwOTMwLTlkNjUtNGJlOC05ZWJhLWY5OGRhNTRhZjQzNC8x
L1I3WUJpYWM4ZUxfSnQwZEZBaGkxZ2QyS0l6OC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjgv
NDEwOTMwLTlkNjUtNGJlOC05ZWJhLWY5OGRhNTRhZjQzNC8xL3duZU40cW0tbUFJ
U0E0TG5VTkZaNlZoeXdxNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAlu60AMEArL9KDANBgkqhkiG9w0B
AQsFAAOCAQEAP0lfTixryb5fXGoS6UqAIz0El8/r3Odcs0ukmRd1eSbe35TSusdt
VoOgTklftWN90oNoFLdb/uQf6lExUoPdXW48hMXq1bQkWiY3fTYyUq+Bb+PQIdzO
NDeKrfj3u3Is2OHS4wRNIJFKoM8uJmJrPHNZSFaK+BnKdws8NtlA159mkZTH3ptr
qeC63M8Rtiia5O3GgIrwCGwat78dxNRQbS/AdQqSfqg6Arrf6MC2B8bhGCkDgdKF
srOKnu9K+OXfeFYj7OfyYyvPmsHHcBhrsfXifrUTDbY70Zjh8QTtB5+5HZlxtEJs
3sWsEqjlyTLi8c+zlMy3NJehAIPqbcmx6g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:09 2024 by rpki-client on console-fra.rpki-client.org