Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/eVEvf3zZCmS5LVZAvmY4ngjQT1E.roa
File: eVEvf3zZCmS5LVZAvmY4ngjQT1E.roa (raw, json)
Hash identifier: /zlj2Rtv4N5NpJEQ3aH8A7WapA4jJyOGAjhIvrlK6JU=
Subject key identifier: 79:51:2F:7F:7C:D9:0A:64:B9:2D:56:40:BE:66:38:9E:08:D0:4F:51
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 01842EE8F63B2FE7CC8AC78F88C92B834D6C
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/eVEvf3zZCmS5LVZAvmY4ngjQT1E.roa
Signing time: Mon 31 Oct 2022 16:38:50 +0000
ROA not before: Mon 31 Oct 2022 16:38:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 178.253.32.0/24 maxlen: 24
83.147.252.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:2e:e8:f6:3b:2f:e7:cc:8a:c7:8f:88:c9:2b:83:4d:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Oct 31 16:38:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=79512f7f7cd90a64b92d5640be66389e08d04f51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:f8:a1:81:f6:5e:fc:83:fc:93:c0:22:79:71:
33:c7:39:30:20:ec:0b:fd:12:8c:ea:3f:72:3b:b9:
68:fd:bc:a2:e8:6e:c6:37:68:c1:3d:7a:6e:33:52:
5f:4a:65:31:10:9c:26:ee:f1:d6:be:28:d2:87:93:
25:b2:69:36:17:cb:cb:77:71:c1:ff:d4:fe:67:ea:
3b:2e:9f:b2:1a:8a:d4:a8:33:54:0c:84:ba:17:d7:
d5:36:8d:77:e9:21:54:d2:c4:8c:68:d7:52:44:37:
6b:ad:bf:3f:ac:28:fb:cf:4d:34:13:00:ea:38:91:
4a:37:40:6b:21:61:9e:6e:07:5e:ee:6c:ad:e2:fe:
7c:eb:21:0a:df:09:09:39:fb:d9:9b:db:d6:81:20:
a8:5d:4f:30:c3:9f:b2:9d:10:61:9b:a1:96:e5:8b:
0f:c2:f3:e9:b4:02:1a:51:9b:7e:93:7d:9c:6d:69:
27:c1:e0:c1:02:d4:a6:c9:ea:99:2a:60:66:09:3a:
85:62:2f:02:41:7c:fa:23:6b:53:03:1d:30:73:5f:
33:fb:5b:fe:e0:ff:ca:b0:f0:1a:d9:09:33:4e:0f:
71:2e:bb:d8:50:7b:dc:1a:5e:19:d1:07:3f:94:d0:
86:2c:02:4f:51:6b:d9:e7:2b:94:ba:fa:b6:ba:f1:
20:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:51:2F:7F:7C:D9:0A:64:B9:2D:56:40:BE:66:38:9E:08:D0:4F:51
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/eVEvf3zZCmS5LVZAvmY4ngjQT1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.252.0/22
178.253.32.0/24
Signature Algorithm: sha256WithRSAEncryption
98:4a:48:22:53:8b:60:9a:3a:f1:34:58:d7:6c:9b:80:17:bf:
82:c4:39:08:df:82:8b:37:3f:d5:0b:61:aa:60:f6:ee:9a:69:
27:bd:d0:a9:9f:58:93:fc:c7:87:1d:bd:c4:33:18:06:d0:d4:
23:b5:34:10:8f:ca:87:8f:57:bc:a4:19:83:b6:d4:df:48:9c:
49:a5:d2:8c:64:2f:fc:94:ba:07:21:e7:1d:c5:84:0f:31:b4:
3d:d2:f6:ad:5f:81:5d:f8:dd:0b:31:f5:60:04:90:6d:b0:25:
07:6b:90:b3:f9:7a:ae:7f:9a:fe:d5:bd:71:9e:43:52:81:f6:
2a:f0:33:40:b3:30:0a:5f:e3:ff:f3:c4:8b:12:b9:84:9c:bf:
73:b4:6f:d0:ee:47:e6:dd:89:87:71:fc:eb:cf:ad:c1:c4:f8:
e7:0d:a6:ef:1f:27:08:67:06:da:2c:db:85:96:bc:b6:2f:8d:
70:88:da:63:e6:d8:98:8f:29:87:6d:7c:4c:ac:42:23:72:fa:
1b:99:f2:05:17:07:27:b9:ae:a3:c8:71:51:4f:4d:2e:9d:2c:
bb:c7:f6:36:d4:40:41:56:73:dd:1f:67:5f:c9:a1:4c:bb:f3:
28:6f:35:6f:61:78:67:5a:60:63:8f:2c:9a:06:71:00:6a:93:
f9:56:7b:59
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYQu6PY7L+fMisePiMkrg01sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyNzc4ZGUyYTliZTk4MDIxMjAzODJlNzUwZDE1OWU5NTg3
MmMyYWUwHhcNMjIxMDMxMTYzODUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3OTUxMmY3ZjdjZDkwYTY0YjkyZDU2NDBiZTY2Mzg5ZTA4ZDA0ZjUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlvihgfZe/IP8k8AieXEzxzkwIOwL
/RKM6j9yO7lo/byi6G7GN2jBPXpuM1JfSmUxEJwm7vHWvijSh5Mlsmk2F8vLd3HB
/9T+Z+o7Lp+yGorUqDNUDIS6F9fVNo136SFU0sSMaNdSRDdrrb8/rCj7z000EwDq
OJFKN0BrIWGebgde7myt4v586yEK3wkJOfvZm9vWgSCoXU8ww5+ynRBhm6GW5YsP
wvPptAIaUZt+k32cbWknweDBAtSmyeqZKmBmCTqFYi8CQXz6I2tTAx0wc18z+1v+
4P/KsPAa2QkzTg9xLrvYUHvcGl4Z0Qc/lNCGLAJPUWvZ5yuUuvq2uvEgiQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFHlRL3982QpkuS1WQL5mOJ4I0E9RMB8GA1UdIwQY
MBaAFMJ3jeKpvpgCEgOC51DRWelYcsKuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEt
Zjk4ZGE1NGFmNDM0LzEvZVZFdmYzelpDbVM1TFZaQXZtWTRuZ2pRVDFFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEtZjk4ZGE1NGFmNDM0
LzEvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCU5P8AwQA
sv0gMA0GCSqGSIb3DQEBCwUAA4IBAQCYSkgiU4tgmjrxNFjXbJuAF7+CxDkI34KL
Nz/VC2GqYPbummknvdCpn1iT/MeHHb3EMxgG0NQjtTQQj8qHj1e8pBmDttTfSJxJ
pdKMZC/8lLoHIecdxYQPMbQ90vatX4Fd+N0LMfVgBJBtsCUHa5Cz+Xquf5r+1b1x
nkNSgfYq8DNAszAKX+P/88SLErmEnL9ztG/Q7kfm3YmHcfzrz63BxPjnDabvHycI
ZwbaLNuFlry2L41wiNpj5tiYjymHbXxMrEIjcvobmfIFFwcnua6jyHFRT00unSy7
x/Y21EBBVnPdH2dfyaFMu/MobzVvYXhnWmBjjyyaBnEAapP5VntZ
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:38 2023 by rpki-client on console-ams.rpki-client.org