Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/e45e30-e7d8-4fb8-90ad-f71038e967a4/1/nORyNg1vBNRkM-XJjs2xZVP7iTk.roa
File: nORyNg1vBNRkM-XJjs2xZVP7iTk.roa (raw, json)
Hash identifier: yXbYKEv2ptpFvzkLFVREvNeIPpjmx7Ssg0OKvoH3tCg=
Subject key identifier: 9C:E4:72:36:0D:6F:04:D4:64:33:E5:C9:8E:CD:B1:65:53:FB:89:39
Certificate issuer: /CN=b4852ffba7d57c5a8afbb6ea5beaf7dfec0c145a
Certificate serial: 34B37504
Authority key identifier: B4:85:2F:FB:A7:D5:7C:5A:8A:FB:B6:EA:5B:EA:F7:DF:EC:0C:14:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tIUv-6fVfFqK-7bqW-r33-wMFFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/e45e30-e7d8-4fb8-90ad-f71038e967a4/1/nORyNg1vBNRkM-XJjs2xZVP7iTk.roa
Signing time: Sat 01 Jan 2022 14:57:42 +0000
ROA not before: Sat 01 Jan 2022 14:57:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35950
IP address blocks: 153.112.217.0/24 maxlen: 24
153.112.216.0/23 maxlen: 23
153.112.216.0/24 maxlen: 24
153.112.223.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 884176132 (0x34b37504)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4852ffba7d57c5a8afbb6ea5beaf7dfec0c145a
Validity
Not Before: Jan 1 14:57:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ce472360d6f04d46433e5c98ecdb16553fb8939
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:19:65:09:54:ee:0c:b4:e1:df:aa:d7:08:9f:
04:59:a0:11:04:68:14:cd:4d:0c:ed:a3:f8:39:74:
88:5f:5a:f0:e6:e5:6f:9d:3b:64:60:0c:89:63:d1:
fc:4d:ba:db:d8:05:74:da:d5:73:31:e0:ee:a9:50:
15:47:2f:22:04:3a:ec:9c:d1:76:82:fd:4f:4d:03:
f1:cf:3f:26:e7:b7:ec:a0:0f:da:3d:d0:b0:ec:a8:
e2:94:c2:de:c7:2b:ea:03:de:d9:b9:46:87:07:57:
ed:f6:6f:d8:93:a6:2e:2a:9b:9f:52:27:93:4e:e7:
d1:74:85:64:fc:6f:74:b8:33:39:42:75:5b:44:16:
d6:1d:11:19:97:fc:cf:e7:2a:31:55:dd:68:d3:3a:
74:d8:8f:9b:0b:4b:a8:07:b6:fd:34:23:84:90:c9:
03:76:28:01:61:26:e7:d6:1b:5f:8f:4c:55:59:dd:
b5:69:6b:ab:ee:98:2f:6b:83:cd:cd:4f:2a:5b:ea:
ea:ec:74:ad:3d:08:a5:d4:33:77:c9:58:86:9a:63:
ca:10:1e:2a:61:04:7f:c6:a9:2d:89:ba:70:31:bb:
ee:9a:0b:c1:59:f2:68:e2:ec:d0:7a:76:41:f9:a3:
e5:b7:53:0e:a1:c1:ed:ad:35:e1:9d:04:f6:76:b5:
0d:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:E4:72:36:0D:6F:04:D4:64:33:E5:C9:8E:CD:B1:65:53:FB:89:39
X509v3 Authority Key Identifier:
keyid:B4:85:2F:FB:A7:D5:7C:5A:8A:FB:B6:EA:5B:EA:F7:DF:EC:0C:14:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIUv-6fVfFqK-7bqW-r33-wMFFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/e45e30-e7d8-4fb8-90ad-f71038e967a4/1/nORyNg1vBNRkM-XJjs2xZVP7iTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/e45e30-e7d8-4fb8-90ad-f71038e967a4/1/tIUv-6fVfFqK-7bqW-r33-wMFFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
153.112.216.0/23
153.112.223.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:15:18:ac:f9:15:35:a9:5b:98:04:88:77:17:59:85:ac:08:
7d:e7:10:ca:49:96:e3:d0:21:ec:92:96:85:54:14:22:40:09:
59:78:39:eb:81:a8:cb:db:37:6f:14:60:4d:94:79:b1:c5:f6:
0a:56:2c:f0:43:82:1f:15:03:27:38:fe:da:96:3f:05:b6:05:
19:5a:fc:04:f4:3e:0a:b4:32:2e:51:7e:f6:86:8a:b4:38:c9:
51:de:a5:b6:05:fa:d7:6d:e3:ff:6a:81:29:d5:d4:e2:5e:7a:
3a:8a:7b:6f:e6:71:49:1b:5a:04:8e:c3:6e:a6:35:d1:2d:d6:
82:ab:05:5a:22:7d:f3:77:85:6f:48:28:5c:63:96:f8:76:8c:
35:3f:b0:dc:60:5b:91:56:c4:56:1e:e8:b3:7a:8a:13:77:bb:
38:4a:8f:f2:7d:f9:38:eb:d0:d7:f1:43:66:ec:c5:5c:4e:44:
fb:de:03:3b:b9:74:d6:a0:67:c4:30:17:b4:f7:b0:7e:e9:01:
e0:ff:e7:c1:f2:43:4f:b4:f1:c2:ca:6e:b4:e1:3e:34:a0:fd:
5b:81:1b:20:54:1a:5f:6f:eb:b2:5b:ab:7c:92:c8:a5:44:23:
5f:4b:1b:64:34:f8:6e:41:9f:9b:e9:61:89:04:b4:e4:62:b7:
a2:47:4c:5c
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIENLN1BDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NDg1MmZmYmE3ZDU3YzVhOGFmYmI2ZWE1YmVhZjdkZmVjMGMxNDVhMB4XDTIyMDEw
MTE0NTc0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWNlNDcyMzYwZDZm
MDRkNDY0MzNlNWM5OGVjZGIxNjU1M2ZiODkzOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJoZZQlU7gy04d+q1wifBFmgEQRoFM1NDO2j+Dl0iF9a8Obl
b507ZGAMiWPR/E2629gFdNrVczHg7qlQFUcvIgQ67JzRdoL9T00D8c8/Jue37KAP
2j3QsOyo4pTC3scr6gPe2blGhwdX7fZv2JOmLiqbn1Ink07n0XSFZPxvdLgzOUJ1
W0QW1h0RGZf8z+cqMVXdaNM6dNiPmwtLqAe2/TQjhJDJA3YoAWEm59YbX49MVVnd
tWlrq+6YL2uDzc1PKlvq6ux0rT0IpdQzd8lYhppjyhAeKmEEf8apLYm6cDG77poL
wVnyaOLs0Hp2Qfmj5bdTDqHB7a014Z0E9na1DUkCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSc5HI2DW8E1GQz5cmOzbFlU/uJOTAfBgNVHSMEGDAWgBS0hS/7p9V8Wor7
tupb6vff7AwUWjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3RJVXYtNmZWZkZxSy03YnFXLXIzMy13TUZGby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzAvZTQ1ZTMwLWU3ZDgtNGZiOC05MGFkLWY3MTAzOGU5NjdhNC8x
L25PUnlOZzF2Qk5Sa00tWEpqczJ4WlZQN2lUay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzAv
ZTQ1ZTMwLWU3ZDgtNGZiOC05MGFkLWY3MTAzOGU5NjdhNC8xL3RJVXYtNmZWZkZx
Sy03YnFXLXIzMy13TUZGby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAZlw2AMEAJlw3zANBgkqhkiG9w0B
AQsFAAOCAQEAohUYrPkVNalbmASIdxdZhawIfecQykmW49Ah7JKWhVQUIkAJWXg5
64Goy9s3bxRgTZR5scX2ClYs8EOCHxUDJzj+2pY/BbYFGVr8BPQ+CrQyLlF+9oaK
tDjJUd6ltgX6123j/2qBKdXU4l56Oop7b+ZxSRtaBI7DbqY10S3WgqsFWiJ983eF
b0goXGOW+HaMNT+w3GBbkVbEVh7os3qKE3e7OEqP8n35OOvQ1/FDZuzFXE5E+94D
O7l01qBnxDAXtPewfukB4P/nwfJDT7TxwsputOE+NKD9W4EbIFQaX2/rslurfJLI
pUQjX0sbZDT4bkGfm+lhiQS05GK3okdMXA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:31 2024 by rpki-client on console-fra.rpki-client.org