Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/79dd9c-ce64-4b25-8f23-e6e8aae34826/1/Byyedx5ti1HRt2hImf3fajDcdKk.roa
File: Byyedx5ti1HRt2hImf3fajDcdKk.roa (raw, json)
Hash identifier: beRdpuPGMLyotm5FXP/C3nbnMZv2jiEVtBdmtXAEm1I=
Subject key identifier: 07:2C:9E:77:1E:6D:8B:51:D1:B7:68:48:99:FD:DF:6A:30:DC:74:A9
Certificate issuer: /CN=57b80e60b5adf45aeba5c0c8abccc63997a0f1db
Certificate serial: 1A12B726
Authority key identifier: 57:B8:0E:60:B5:AD:F4:5A:EB:A5:C0:C8:AB:CC:C6:39:97:A0:F1:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V7gOYLWt9FrrpcDIq8zGOZeg8ds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/79dd9c-ce64-4b25-8f23-e6e8aae34826/1/Byyedx5ti1HRt2hImf3fajDcdKk.roa
Signing time: Tue 19 Apr 2022 11:19:19 +0000
ROA not before: Tue 19 Apr 2022 11:19:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198949
IP address blocks: 78.108.224.0/20 maxlen: 24
213.55.0.0/18 maxlen: 24
80.69.208.0/20 maxlen: 24
109.122.128.0/18 maxlen: 24
185.147.224.0/22 maxlen: 24
5.57.96.0/19 maxlen: 24
2a00:a080::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 437434150 (0x1a12b726)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57b80e60b5adf45aeba5c0c8abccc63997a0f1db
Validity
Not Before: Apr 19 11:19:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=072c9e771e6d8b51d1b7684899fddf6a30dc74a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:af:6d:54:e6:a6:eb:d4:45:e9:a7:e0:f0:c2:
fb:41:10:16:c9:0b:56:03:70:27:9a:e8:1a:5e:8d:
80:d5:f7:17:ab:b4:15:d0:5d:77:9d:d0:68:25:70:
3b:c1:48:0d:bb:5c:a2:79:32:69:9a:f9:0a:27:61:
06:07:eb:9b:8f:5a:36:8e:e8:0b:c2:47:22:54:4b:
0c:2d:e8:3b:2d:27:c3:3e:e8:9c:35:41:cc:5c:0a:
c6:70:01:96:ff:4b:d1:be:64:97:c0:6c:83:bd:c7:
84:35:dd:f1:91:89:fa:5a:65:10:1f:ce:c4:68:21:
c2:3e:c5:dc:83:a1:e1:2b:da:70:05:48:09:24:3d:
e6:37:36:56:d2:e4:85:ab:86:e8:d4:b8:d4:5b:96:
6e:e6:21:9e:7f:62:e8:30:fc:2e:38:d0:53:a8:ff:
d4:fe:dd:65:fa:01:67:66:42:ee:96:d9:9d:12:99:
e8:72:a9:9b:3c:00:62:78:22:58:e5:40:6e:ab:86:
d9:75:f4:9f:b9:e8:bd:6a:86:5c:48:c5:92:19:7b:
d9:6b:38:3a:82:8d:df:56:7b:14:08:14:04:21:10:
0b:46:b6:b3:ec:66:fa:bf:7b:49:db:29:6a:9e:60:
8b:e2:08:e7:7e:5a:a4:d3:e4:ca:cc:4e:15:b1:48:
e2:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:2C:9E:77:1E:6D:8B:51:D1:B7:68:48:99:FD:DF:6A:30:DC:74:A9
X509v3 Authority Key Identifier:
keyid:57:B8:0E:60:B5:AD:F4:5A:EB:A5:C0:C8:AB:CC:C6:39:97:A0:F1:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V7gOYLWt9FrrpcDIq8zGOZeg8ds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/79dd9c-ce64-4b25-8f23-e6e8aae34826/1/Byyedx5ti1HRt2hImf3fajDcdKk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/79dd9c-ce64-4b25-8f23-e6e8aae34826/1/V7gOYLWt9FrrpcDIq8zGOZeg8ds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.96.0/19
78.108.224.0/20
80.69.208.0/20
109.122.128.0/18
185.147.224.0/22
213.55.0.0/18
IPv6:
2a00:a080::/32
Signature Algorithm: sha256WithRSAEncryption
38:3f:99:98:da:54:50:e1:29:47:d5:98:00:20:26:df:fa:43:
66:72:01:fd:f1:82:d4:8a:98:f4:d6:6e:6a:cd:cd:fb:fa:ab:
8b:8b:ed:c9:df:ec:89:43:d9:ee:a7:49:1c:d0:a7:66:d7:b2:
1e:2c:2a:01:d1:2a:3e:3c:0c:07:a7:1b:ce:3c:75:aa:a5:2e:
c5:0d:a7:09:21:a6:b4:80:b6:07:aa:33:d1:33:6c:5b:43:d0:
cd:fd:25:88:01:5f:2b:59:30:3a:1f:04:d8:e5:55:ad:8a:aa:
b0:4a:9e:dc:c1:a2:99:d6:a1:cb:4f:89:e9:c2:4c:00:00:85:
3c:fc:15:b4:df:e3:31:74:22:2d:df:44:13:b7:ae:ec:05:9a:
4c:ff:43:d5:a7:b8:87:7f:23:71:de:a1:66:6c:88:d3:68:f3:
14:22:29:48:14:87:29:35:dc:dd:6d:ea:a8:f1:b2:d7:a1:64:
8b:7b:ff:bc:1a:c8:0e:e9:4f:49:95:7f:e0:c3:38:fa:1e:3d:
35:f3:33:cc:4f:ff:3e:4b:2f:a1:41:fc:70:82:e0:9b:df:38:
47:01:63:96:60:e9:13:b1:27:54:d5:d9:03:61:59:b4:36:ad:
40:a8:2a:d7:d9:ce:fa:64:db:bc:42:60:15:c2:30:e1:bc:d7:
70:bf:95:1d
-----BEGIN CERTIFICATE-----
MIIFHDCCBASgAwIBAgIEGhK3JjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
N2I4MGU2MGI1YWRmNDVhZWJhNWMwYzhhYmNjYzYzOTk3YTBmMWRiMB4XDTIyMDQx
OTExMTkxOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDcyYzllNzcxZTZk
OGI1MWQxYjc2ODQ4OTlmZGRmNmEzMGRjNzRhOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJyvbVTmpuvURemn4PDC+0EQFskLVgNwJ5roGl6NgNX3F6u0
FdBdd53QaCVwO8FIDbtconkyaZr5CidhBgfrm49aNo7oC8JHIlRLDC3oOy0nwz7o
nDVBzFwKxnABlv9L0b5kl8Bsg73HhDXd8ZGJ+lplEB/OxGghwj7F3IOh4SvacAVI
CSQ95jc2VtLkhauG6NS41FuWbuYhnn9i6DD8LjjQU6j/1P7dZfoBZ2ZC7pbZnRKZ
6HKpmzwAYngiWOVAbquG2XX0n7novWqGXEjFkhl72Ws4OoKN31Z7FAgUBCEQC0a2
s+xm+r97Sdspap5gi+II535apNPkysxOFbFI4nMCAwEAAaOCAjYwggIyMB0GA1Ud
DgQWBBQHLJ53Hm2LUdG3aEiZ/d9qMNx0qTAfBgNVHSMEGDAWgBRXuA5gta30Wuul
wMirzMY5l6Dx2zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1Y3Z09ZTFd0OUZycnBjRElxOHpHT1plZzhkcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmIvNzlkZDljLWNlNjQtNGIyNS04ZjIzLWU2ZThhYWUzNDgyNi8x
L0J5eWVkeDV0aTFIUnQyaEltZjNmYWpEY2RLay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmIv
NzlkZDljLWNlNjQtNGIyNS04ZjIzLWU2ZThhYWUzNDgyNi8xL1Y3Z09ZTFd0OUZy
cnBjRElxOHpHT1plZzhkcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBM
BggrBgEFBQcBBwEB/wQ9MDswKgQCAAEwJAMEBQU5YAMEBE5s4AMEBFBF0AMEBm16
gAMEArmT4AMEBtU3ADANBAIAAjAHAwUAKgCggDANBgkqhkiG9w0BAQsFAAOCAQEA
OD+ZmNpUUOEpR9WYACAm3/pDZnIB/fGC1IqY9NZuas3N+/qri4vtyd/siUPZ7qdJ
HNCnZteyHiwqAdEqPjwMB6cbzjx1qqUuxQ2nCSGmtIC2B6oz0TNsW0PQzf0liAFf
K1kwOh8E2OVVrYqqsEqe3MGimdahy0+J6cJMAACFPPwVtN/jMXQiLd9EE7eu7AWa
TP9D1ae4h38jcd6hZmyI02jzFCIpSBSHKTXc3W3qqPGy16Fki3v/vBrIDulPSZV/
4MM4+h49NfMzzE//PksvoUH8cILgm984RwFjlmDpE7EnVNXZA2FZtDatQKgq19nO
+mTbvEJgFcIw4bzXcL+VHQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:50 2023 by rpki-client on console-ams.rpki-client.org