Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/PiIjc7egcx156-0zx82Zidb5S7c.roa
File: PiIjc7egcx156-0zx82Zidb5S7c.roa (raw, json)
Hash identifier: CJDWm7MLJa3rpc9dX24inqoTbTdmY9wtdSNY6iElHDY=
Subject key identifier: 3E:22:23:73:B7:A0:73:1D:79:EB:ED:33:C7:CD:99:89:D6:F9:4B:B7
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0D480241
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/PiIjc7egcx156-0zx82Zidb5S7c.roa
Signing time: Tue 15 Feb 2022 14:51:24 +0000
ROA not before: Tue 15 Feb 2022 14:51:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206092
IP address blocks: 45.130.83.0/24 maxlen: 24
45.130.81.0/24 maxlen: 24
203.26.81.0/24 maxlen: 24
185.192.71.0/24 maxlen: 24
188.212.135.0/24 maxlen: 24
89.47.15.0/24 maxlen: 24
193.19.109.0/24 maxlen: 24
45.135.186.0/24 maxlen: 24
45.135.187.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 222822977 (0xd480241)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Feb 15 14:51:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e222373b7a0731d79ebed33c7cd9989d6f94bb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f6:9b:5f:f9:bb:81:45:ca:ef:17:14:37:62:
f0:42:bb:60:cc:f3:1c:f0:d0:c0:a3:e9:e2:aa:c3:
a1:5d:3f:c4:8c:36:1c:5a:99:57:76:75:70:58:44:
bb:b6:45:c2:ba:f7:c0:35:b4:14:dd:76:64:f0:cf:
91:56:94:a4:d4:59:f2:82:1f:57:02:e8:7c:a8:cc:
c0:eb:4c:cd:4c:4a:45:25:37:47:7a:9b:ed:45:aa:
8f:a5:16:d1:3b:68:95:c1:49:af:cf:fc:fb:79:95:
fd:2c:57:2b:34:2c:b8:58:7e:15:78:7e:99:c6:82:
17:96:0a:68:2b:8b:a5:39:ad:05:de:09:12:95:81:
fa:8e:cb:37:d8:fa:90:7c:42:ca:64:2e:9b:c8:06:
55:a1:9b:45:5f:d0:02:8b:3e:59:f8:0a:18:ab:89:
cd:3b:c4:ec:97:79:1f:33:47:50:75:10:1c:fa:ce:
1d:ab:1c:bb:f0:0b:94:56:9d:c2:72:5f:6d:19:de:
2a:63:5b:38:2f:6c:60:ba:c6:26:c8:c1:d4:c1:4b:
b9:e5:29:94:80:9d:46:76:fd:0c:2b:17:bd:f8:91:
7b:e6:a2:89:36:52:c5:b1:24:ae:ca:c0:44:8f:b6:
16:dc:22:1c:ac:ec:00:5b:e3:6e:fb:a9:e4:94:e9:
40:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:22:23:73:B7:A0:73:1D:79:EB:ED:33:C7:CD:99:89:D6:F9:4B:B7
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/PiIjc7egcx156-0zx82Zidb5S7c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.81.0/24
45.130.83.0/24
45.135.186.0/23
89.47.15.0/24
185.192.71.0/24
188.212.135.0/24
193.19.109.0/24
203.26.81.0/24
Signature Algorithm: sha256WithRSAEncryption
17:93:f3:67:d0:e8:6a:08:1e:14:cf:7a:f3:75:cc:2e:0b:74:
14:52:df:7d:6b:c9:bc:0f:e9:5f:fa:06:61:9d:57:24:41:e3:
86:10:81:4f:a9:54:c9:b9:43:40:c6:1a:b2:4f:dd:e5:2b:0d:
d2:cd:3b:29:4c:24:94:3f:dc:6b:e0:58:83:2b:8c:2f:bf:0c:
b6:62:5f:ff:25:c2:43:54:d3:b4:ca:cf:45:c2:64:ac:3f:f1:
85:ec:19:16:a7:1f:ad:22:2f:0a:6b:56:cd:dc:37:e7:52:27:
52:38:e9:7d:59:25:94:f6:3c:5e:23:5b:f9:57:40:96:6c:a9:
77:5e:3e:fa:08:76:30:0c:6d:bf:2a:fe:04:90:07:5c:24:8f:
30:fd:89:69:d2:8f:8a:50:67:b9:6d:40:fc:5e:52:c8:f4:ab:
da:de:de:53:9c:78:17:79:ad:22:c2:20:97:07:83:6f:27:a2:
ad:19:4d:46:83:20:e3:fd:7f:7a:6f:22:38:47:d1:2c:35:22:
56:dc:49:68:71:2a:81:fe:61:84:90:96:05:b9:89:ee:d0:b9:
1a:ad:13:d6:34:d2:77:de:66:da:32:f5:93:62:51:3f:42:dd:
fb:62:e4:d6:d8:de:3f:82:63:85:af:3b:d2:32:d8:7d:8c:d0:
64:fe:8d:fa
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgIEDUgCQTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NmMyYTRiN2Q1ZDczYzViNTcwNDYyMjNiZjMwZWI2NTMwMDViMGUyMB4XDTIyMDIx
NTE0NTEyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2UyMjIzNzNiN2Ew
NzMxZDc5ZWJlZDMzYzdjZDk5ODlkNmY5NGJiNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMP2m1/5u4FFyu8XFDdi8EK7YMzzHPDQwKPp4qrDoV0/xIw2
HFqZV3Z1cFhEu7ZFwrr3wDW0FN12ZPDPkVaUpNRZ8oIfVwLofKjMwOtMzUxKRSU3
R3qb7UWqj6UW0TtolcFJr8/8+3mV/SxXKzQsuFh+FXh+mcaCF5YKaCuLpTmtBd4J
EpWB+o7LN9j6kHxCymQum8gGVaGbRV/QAos+WfgKGKuJzTvE7Jd5HzNHUHUQHPrO
Hascu/ALlFadwnJfbRneKmNbOC9sYLrGJsjB1MFLueUplICdRnb9DCsXvfiRe+ai
iTZSxbEkrsrARI+2FtwiHKzsAFvjbvup5JTpQEsCAwEAAaOCAjMwggIvMB0GA1Ud
DgQWBBQ+IiNzt6BzHXnr7TPHzZmJ1vlLtzAfBgNVHSMEGDAWgBQ2wqS31dc8W1cE
YiO/MOtlMAWw4jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05zS2t0OVhYUEZ0WEJHSWp2ekRyWlRBRnNPSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmMvOGRkODVhLWJmOGYtNDI1ZS1hMjRiLTJjY2VkYjk2NmE1OC8x
L1BpSWpjN2VnY3gxNTYtMHp4ODJaaWRiNVM3Yy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmMv
OGRkODVhLWJmOGYtNDI1ZS1hMjRiLTJjY2VkYjk2NmE1OC8xL05zS2t0OVhYUEZ0
WEJHSWp2ekRyWlRBRnNPSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBJ
BggrBgEFBQcBBwEB/wQ6MDgwNgQCAAEwMAMEAC2CUQMEAC2CUwMEAS2HugMEAFkv
DwMEALnARwMEALzUhwMEAMETbQMEAMsaUTANBgkqhkiG9w0BAQsFAAOCAQEAF5Pz
Z9DoaggeFM9683XMLgt0FFLffWvJvA/pX/oGYZ1XJEHjhhCBT6lUyblDQMYask/d
5SsN0s07KUwklD/ca+BYgyuML78MtmJf/yXCQ1TTtMrPRcJkrD/xhewZFqcfrSIv
CmtWzdw351InUjjpfVkllPY8XiNb+VdAlmypd14++gh2MAxtvyr+BJAHXCSPMP2J
adKPilBnuW1A/F5SyPSr2t7eU5x4F3mtIsIglweDbyeirRlNRoMg4/1/em8iOEfR
LDUiVtxJaHEqgf5hhJCWBbmJ7tC5Gq0T1jTSd95m2jL1k2JRP0Ld+2Lk1tjeP4Jj
ha870jLYfYzQZP6N+g==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:01 2023 by rpki-client on console-fra.rpki-client.org