Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/tkeLoMRNaO5bE0s5lm3ovrc_ULE.roa
File: tkeLoMRNaO5bE0s5lm3ovrc_ULE.roa (raw, json)
Hash identifier: sVlP0cgXpywxuunIcbwBGsjsEZYkh6WmB3gOwT9TFBg=
Subject key identifier: B6:47:8B:A0:C4:4D:68:EE:5B:13:4B:39:96:6D:E8:BE:B7:3F:50:B1
Certificate issuer: /CN=7df132df13e4be53d8250c8c48420264eef6c14c
Certificate serial: 1742DEEA
Authority key identifier: 7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/tkeLoMRNaO5bE0s5lm3ovrc_ULE.roa
Signing time: Sat 01 Jan 2022 16:03:46 +0000
ROA not before: Sat 01 Jan 2022 16:03:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34847
IP address blocks: 89.33.119.0/24 maxlen: 24
86.107.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 390258410 (0x1742deea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df132df13e4be53d8250c8c48420264eef6c14c
Validity
Not Before: Jan 1 16:03:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b6478ba0c44d68ee5b134b39966de8beb73f50b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a7:18:e6:62:83:70:ed:f3:a7:6a:ed:b6:48:
3b:d1:5d:50:8f:cf:0b:0b:7b:14:a4:55:a5:f1:39:
09:8f:8c:10:fe:61:56:3a:c1:a5:19:a4:74:12:7e:
c7:40:3e:ce:b8:84:a3:e6:06:46:c9:f8:8a:fe:92:
fc:a3:b9:c5:e0:64:f7:bd:f6:49:89:5c:c6:f8:a4:
00:0f:2f:e9:57:bd:3a:a3:bc:f2:08:24:de:40:52:
54:82:91:81:e0:fb:b8:ba:31:a5:06:d6:81:15:62:
06:82:cc:c7:d6:54:3c:78:09:63:3c:3e:c8:73:fb:
3c:64:78:da:03:00:d8:19:73:cc:17:11:39:43:fb:
2a:da:73:1d:e2:aa:79:9a:ad:7a:27:d3:86:6c:29:
98:a6:46:db:50:ee:e3:0d:ca:9c:ea:44:c5:c8:77:
2f:5f:97:39:5a:5e:1d:a4:7c:44:19:70:71:43:68:
5b:59:a1:27:ed:dd:ef:03:68:46:16:3c:56:55:c5:
20:97:6e:b2:bd:e6:3e:03:12:18:17:dc:7f:a8:2b:
79:d2:78:40:3c:21:d4:e9:3e:2a:f2:ad:ce:46:b7:
56:63:d9:56:7f:b6:f8:03:b9:b1:27:ba:f9:16:f3:
ac:fe:e8:6a:f7:76:1f:4f:48:9c:ec:55:40:3b:8b:
7c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:47:8B:A0:C4:4D:68:EE:5B:13:4B:39:96:6D:E8:BE:B7:3F:50:B1
X509v3 Authority Key Identifier:
keyid:7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/tkeLoMRNaO5bE0s5lm3ovrc_ULE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.107.76.0/24
89.33.119.0/24
Signature Algorithm: sha256WithRSAEncryption
06:aa:63:7a:d3:e4:bf:9a:31:c2:a7:b0:2d:9f:46:c8:31:2a:
87:46:f5:a0:1f:1f:9e:94:c9:b4:61:f6:6a:20:55:92:9e:78:
08:57:38:3d:6f:c0:62:83:3b:5b:cc:7b:0a:c4:27:9a:bd:7c:
15:64:86:3a:62:07:2d:b7:04:ca:fb:8b:d6:5a:a8:38:e0:01:
6a:e7:91:30:e7:77:d9:e8:87:bd:91:7e:43:99:94:e2:03:10:
3f:02:fb:47:ae:ea:b9:e8:c8:59:1b:31:39:ac:e1:d9:c8:0f:
ea:4c:ca:a1:ad:8b:be:fe:2e:94:df:8e:6a:8e:5d:0a:ab:ad:
2a:ad:00:b4:39:31:74:72:d8:cd:99:df:d3:5d:86:e2:1a:9d:
7b:9a:ea:b8:a4:89:cf:97:03:8f:0a:f2:62:4e:b3:93:88:84:
68:24:97:57:8c:eb:34:88:83:cd:f7:93:69:82:2e:64:71:ef:
0a:09:af:85:ea:b3:98:34:d1:41:e9:68:f1:6d:9e:5c:3d:d9:
6e:5c:1f:8d:fd:95:cf:c4:92:c8:9a:76:ff:e3:09:90:59:39:
17:f5:8b:57:7c:d0:38:c5:55:68:bd:60:da:dd:c3:69:bc:a9:
31:cd:83:77:c2:48:53:f9:97:1a:0c:cc:75:ec:1f:fa:a2:04:
8f:36:ac:43
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEF0Le6jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
ZGYxMzJkZjEzZTRiZTUzZDgyNTBjOGM0ODQyMDI2NGVlZjZjMTRjMB4XDTIyMDEw
MTE2MDM0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjY0NzhiYTBjNDRk
NjhlZTViMTM0YjM5OTY2ZGU4YmViNzNmNTBiMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL6nGOZig3Dt86dq7bZIO9FdUI/PCwt7FKRVpfE5CY+MEP5h
VjrBpRmkdBJ+x0A+zriEo+YGRsn4iv6S/KO5xeBk9732SYlcxvikAA8v6Ve9OqO8
8ggk3kBSVIKRgeD7uLoxpQbWgRViBoLMx9ZUPHgJYzw+yHP7PGR42gMA2BlzzBcR
OUP7KtpzHeKqeZqteifThmwpmKZG21Du4w3KnOpExch3L1+XOVpeHaR8RBlwcUNo
W1mhJ+3d7wNoRhY8VlXFIJdusr3mPgMSGBfcf6gredJ4QDwh1Ok+KvKtzka3VmPZ
Vn+2+AO5sSe6+RbzrP7oavd2H09InOxVQDuLfEkCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBS2R4ugxE1o7lsTSzmWbei+tz9QsTAfBgNVHSMEGDAWgBR98TLfE+S+U9gl
DIxIQgJk7vbBTDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ZmRXkzeFBrdmxQWUpReU1TRUlDWk83MndVdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmUvYzM3NDk3LTYzNzYtNDYxZS05M2M2LTk3Nzg2NzRlZGM5Ny8x
L3RrZUxvTVJOYU81YkUwczVsbTNvdnJjX1VMRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmUv
YzM3NDk3LTYzNzYtNDYxZS05M2M2LTk3Nzg2NzRlZGM5Ny8xL2ZmRXkzeFBrdmxQ
WUpReU1TRUlDWk83MndVdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFZrTAMEAFkhdzANBgkqhkiG9w0B
AQsFAAOCAQEABqpjetPkv5oxwqewLZ9GyDEqh0b1oB8fnpTJtGH2aiBVkp54CFc4
PW/AYoM7W8x7CsQnmr18FWSGOmIHLbcEyvuL1lqoOOABaueRMOd32eiHvZF+Q5mU
4gMQPwL7R67quejIWRsxOazh2cgP6kzKoa2Lvv4ulN+Oao5dCqutKq0AtDkxdHLY
zZnf012G4hqde5rquKSJz5cDjwryYk6zk4iEaCSXV4zrNIiDzfeTaYIuZHHvCgmv
heqzmDTRQelo8W2eXD3Zblwfjf2Vz8SSyJp2/+MJkFk5F/WLV3zQOMVVaL1g2t3D
abypMc2Dd8JIU/mXGgzMdewf+qIEjzasQw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:41 2024 by rpki-client on console-ams.rpki-client.org