Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/c7ee9e-b5bf-4c2d-a983-dee3ed497aee/1/PAQUPAfDLv8aHaV1_Hc-L_bbd_I.roa
File: PAQUPAfDLv8aHaV1_Hc-L_bbd_I.roa (raw, json)
Hash identifier: wWAM5PaR2RtVkUz0TGLuy8k4QbsrgJVV0so2nxYVO2Q=
Subject key identifier: 3C:04:14:3C:07:C3:2E:FF:1A:1D:A5:75:FC:77:3E:2F:F6:DB:77:F2
Certificate issuer: /CN=05e9fca0a8584feb1c12319071423061b08fe456
Certificate serial: 58BFC8
Authority key identifier: 05:E9:FC:A0:A8:58:4F:EB:1C:12:31:90:71:42:30:61:B0:8F:E4:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ben8oKhYT-scEjGQcUIwYbCP5FY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/c7ee9e-b5bf-4c2d-a983-dee3ed497aee/1/PAQUPAfDLv8aHaV1_Hc-L_bbd_I.roa
Signing time: Tue 01 Mar 2022 11:18:12 +0000
ROA not before: Tue 01 Mar 2022 11:18:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61960
IP address blocks: 185.54.48.0/22 maxlen: 24
91.243.120.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5816264 (0x58bfc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05e9fca0a8584feb1c12319071423061b08fe456
Validity
Not Before: Mar 1 11:18:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c04143c07c32eff1a1da575fc773e2ff6db77f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:5c:17:79:a9:42:4d:e9:7a:1e:8d:85:22:ef:
4b:17:9a:38:44:02:3a:9a:9f:7e:5e:4e:36:a5:eb:
de:6d:fd:c9:85:5a:ee:86:e0:c1:1f:d5:59:a6:83:
98:57:0f:68:15:41:79:5e:4d:12:f6:34:3f:c7:cd:
e5:17:b6:a5:c0:a1:12:73:86:e1:dc:76:e2:a1:04:
fa:ae:b1:e9:87:c9:a3:70:b6:9f:5b:55:cb:4a:b5:
39:8a:3a:41:76:46:c9:35:15:cf:23:37:03:5f:13:
7f:7c:a5:2f:d2:c0:b2:97:08:9b:75:f3:8f:84:60:
22:38:71:ae:c8:03:9b:3d:40:22:89:bd:6c:62:63:
8c:b9:63:01:16:56:b8:7c:6d:72:6d:db:a8:f8:b9:
d1:d7:86:16:99:3c:86:ec:61:8d:3b:a4:f7:87:93:
a1:29:2b:8e:e3:57:8f:43:0e:96:11:f0:21:1d:2d:
f5:0b:e8:1f:9c:dc:0c:83:e1:87:59:1f:d8:6e:a4:
b2:37:e0:ac:b8:a3:e1:f8:e2:43:e8:09:6d:f4:36:
06:d8:34:64:75:96:91:fd:3c:4f:4b:8e:cd:af:89:
46:d3:3f:80:13:32:5d:db:d6:4c:67:19:19:1c:58:
a2:82:c2:59:e9:bf:7b:2c:3d:4b:cd:bc:bc:dc:28:
04:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:04:14:3C:07:C3:2E:FF:1A:1D:A5:75:FC:77:3E:2F:F6:DB:77:F2
X509v3 Authority Key Identifier:
keyid:05:E9:FC:A0:A8:58:4F:EB:1C:12:31:90:71:42:30:61:B0:8F:E4:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ben8oKhYT-scEjGQcUIwYbCP5FY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/c7ee9e-b5bf-4c2d-a983-dee3ed497aee/1/PAQUPAfDLv8aHaV1_Hc-L_bbd_I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/c7ee9e-b5bf-4c2d-a983-dee3ed497aee/1/Ben8oKhYT-scEjGQcUIwYbCP5FY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.243.120.0/23
185.54.48.0/22
Signature Algorithm: sha256WithRSAEncryption
33:7d:4a:59:34:f1:c9:f0:aa:b5:52:df:30:f5:2f:b4:57:d0:
a6:8b:d6:8e:f5:fd:2b:0f:dc:82:06:8d:f6:07:fa:c3:da:ca:
38:5c:ac:c5:a8:b6:4c:8d:f5:12:fd:3f:67:d3:18:9d:00:f9:
99:03:27:2f:2f:a8:53:53:30:4b:27:91:b5:35:64:74:42:27:
43:c8:ce:5e:1b:d7:b9:7b:42:5d:0c:41:7d:9e:1b:5d:f8:31:
d5:ef:2a:bb:d0:0d:6f:e6:51:3c:ba:b8:08:f7:68:77:41:ec:
01:04:0d:b9:da:a6:8e:54:05:3c:ce:e3:83:9c:99:7b:d5:b7:
7a:95:23:ab:51:6a:63:68:89:2b:05:7f:09:54:9b:97:24:31:
d6:0b:c0:fa:08:8d:e9:3f:4b:b1:e5:0f:9c:1b:46:ca:e6:75:
ef:78:66:3b:ba:53:12:ec:15:81:23:81:48:d2:42:0d:7f:60:
e6:e7:ee:5c:54:45:32:7d:5e:1c:59:f8:89:e8:61:a7:83:60:
50:24:50:35:f9:a2:c8:8d:79:5a:40:be:e0:d8:f0:55:83:e6:
6c:97:c3:6d:85:dc:67:ce:71:03:03:8f:53:4c:11:a6:da:a4:
b1:f7:01:a8:e0:06:45:a1:fe:4f:db:42:46:e5:55:a4:14:94:
3f:8f:0a:d9
-----BEGIN CERTIFICATE-----
MIIE9DCCA9ygAwIBAgIDWL/IMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDA1
ZTlmY2EwYTg1ODRmZWIxYzEyMzE5MDcxNDIzMDYxYjA4ZmU0NTYwHhcNMjIwMzAx
MTExODEyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygzYzA0MTQzYzA3YzMy
ZWZmMWExZGE1NzVmYzc3M2UyZmY2ZGI3N2YyMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA0lwXealCTel6Ho2FIu9LF5o4RAI6mp9+Xk42pevebf3JhVru
huDBH9VZpoOYVw9oFUF5Xk0S9jQ/x83lF7alwKESc4bh3HbioQT6rrHph8mjcLaf
W1XLSrU5ijpBdkbJNRXPIzcDXxN/fKUv0sCylwibdfOPhGAiOHGuyAObPUAiib1s
YmOMuWMBFla4fG1ybduo+LnR14YWmTyG7GGNO6T3h5OhKSuO41ePQw6WEfAhHS31
C+gfnNwMg+GHWR/YbqSyN+CsuKPh+OJD6Alt9DYG2DRkdZaR/TxPS47Nr4lG0z+A
EzJd29ZMZxkZHFiigsJZ6b97LD1Lzby83CgElwIDAQABo4ICDzCCAgswHQYDVR0O
BBYEFDwEFDwHwy7/Gh2ldfx3Pi/223fyMB8GA1UdIwQYMBaAFAXp/KCoWE/rHBIx
kHFCMGGwj+RWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
QmVuOG9LaFlULXNjRWpHUWNVSXdZYkNQNUZZLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9iZC9jN2VlOWUtYjViZi00YzJkLWE5ODMtZGVlM2VkNDk3YWVlLzEv
UEFRVVBBZkRMdjhhSGFWMV9IYy1MX2JiZF9JLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9j
N2VlOWUtYjViZi00YzJkLWE5ODMtZGVlM2VkNDk3YWVlLzEvQmVuOG9LaFlULXNj
RWpHUWNVSXdZYkNQNUZZLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUG
CCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBW/N4AwQCuTYwMA0GCSqGSIb3DQEB
CwUAA4IBAQAzfUpZNPHJ8Kq1Ut8w9S+0V9Cmi9aO9f0rD9yCBo32B/rD2so4XKzF
qLZMjfUS/T9n0xidAPmZAycvL6hTUzBLJ5G1NWR0QidDyM5eG9e5e0JdDEF9nhtd
+DHV7yq70A1v5lE8urgI92h3QewBBA252qaOVAU8zuODnJl71bd6lSOrUWpjaIkr
BX8JVJuXJDHWC8D6CI3pP0ux5Q+cG0bK5nXveGY7ulMS7BWBI4FI0kINf2Dm5+5c
VEUyfV4cWfiJ6GGng2BQJFA1+aLIjXlaQL7g2PBVg+Zsl8NthdxnznEDA49TTBGm
2qSx9wGo4AZFof5P20JG5VWkFJQ/jwrZ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:58 2024 by rpki-client on console-fra.rpki-client.org