Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/XkyTClnL_kqoKyJVw0oQabqRhy4.roa
File: XkyTClnL_kqoKyJVw0oQabqRhy4.roa (raw, json)
Hash identifier: C/+mNc+eApOm0WiGX7ZOkZoVc/vgjvsACrHmYXZWJPg=
Subject key identifier: 5E:4C:93:0A:59:CB:FE:4A:A8:2B:22:55:C3:4A:10:69:BA:91:87:2E
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 01841D7F48F21F55B2F5A01F1897CD540EFD
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/XkyTClnL_kqoKyJVw0oQabqRhy4.roa
Signing time: Fri 28 Oct 2022 07:29:51 +0000
ROA not before: Fri 28 Oct 2022 07:29:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51219
IP address blocks: 109.73.14.0/24 maxlen: 24
81.23.10.0/23 maxlen: 24
5.8.180.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1d:7f:48:f2:1f:55:b2:f5:a0:1f:18:97:cd:54:0e:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Oct 28 07:29:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e4c930a59cbfe4aa82b2255c34a1069ba91872e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:1c:dd:1e:60:f3:ac:18:92:27:76:52:3c:f6:
ed:e5:e5:65:a0:20:55:73:86:64:66:6d:98:fd:2d:
69:65:57:55:c4:23:8a:d6:bf:ee:8c:60:6e:38:f5:
e9:79:c1:71:d9:a9:68:14:4f:d8:b2:ba:6f:4f:6e:
e0:e8:16:bf:b5:af:a0:57:94:ba:51:e8:4e:bb:14:
b1:5d:ae:ec:f5:7f:49:a4:06:02:d1:ef:6a:f9:80:
91:02:25:8f:ad:e2:97:7d:77:cd:10:38:78:90:3a:
2c:70:02:86:01:f4:6c:97:63:df:c1:c9:a4:53:7e:
20:40:61:bf:57:89:71:6c:48:42:52:31:3d:dc:61:
30:28:46:f4:d8:9f:87:33:73:8e:a2:55:07:d5:f3:
b9:2c:c5:ee:ed:b1:5a:dd:e5:5e:ea:0b:52:cc:20:
fe:d4:c8:e0:b8:76:f6:94:ed:6e:59:78:69:31:e1:
ee:d8:9b:f3:62:d5:a7:ed:13:29:1f:0e:88:08:63:
87:ff:a8:b9:46:98:ff:4b:ab:6f:e9:fb:8c:91:db:
ea:c0:fc:d6:1e:f4:dc:45:a0:34:45:62:d8:f5:6d:
2a:3c:3c:91:ea:66:fe:2f:e4:86:3a:7d:b1:c0:ec:
55:64:ea:91:16:65:70:ca:e2:b1:83:ad:53:cd:23:
a7:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:4C:93:0A:59:CB:FE:4A:A8:2B:22:55:C3:4A:10:69:BA:91:87:2E
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/XkyTClnL_kqoKyJVw0oQabqRhy4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.180.0/23
81.23.10.0/23
109.73.14.0/24
Signature Algorithm: sha256WithRSAEncryption
70:01:ba:15:17:b1:39:b6:b6:3b:79:cb:d2:ce:ae:31:3d:d8:
13:cf:a8:07:79:5f:04:12:b7:50:3e:1c:e9:49:1d:a0:f0:f9:
fb:c3:99:03:ad:95:6b:47:aa:85:fa:1e:74:56:09:e5:4f:07:
61:97:c2:b7:04:1d:eb:5d:bb:7d:dc:37:78:6b:90:d4:b3:7e:
ac:3f:f4:ca:84:ef:41:1d:f1:2f:05:71:f8:b9:72:f4:ec:fa:
84:d2:4c:05:83:81:d6:5b:28:36:38:9d:c1:fa:fe:8c:48:4e:
02:37:5d:08:c2:12:43:fb:ad:f2:8f:9d:34:44:fc:70:54:3e:
14:5e:0f:1f:01:6b:8e:e6:f0:e5:d4:3e:a6:99:4c:88:9e:8f:
92:7c:c0:b3:f9:fd:30:1d:3b:f2:9a:69:00:9a:26:d2:cf:59:
ec:28:47:58:ba:17:4c:12:42:15:c6:c8:ef:ed:b9:d4:4c:54:
7a:24:6d:07:11:f2:0a:bd:59:23:e4:95:81:af:63:0d:25:cd:
3b:e8:a0:e7:67:47:c0:e9:5c:c1:29:1c:3d:9b:ff:4a:1b:69:
b9:55:46:48:ad:49:f3:c4:08:50:ab:56:55:87:48:a7:aa:2e:
54:fe:f2:73:90:40:0b:88:35:5d:d0:40:96:e5:16:b2:30:0c:
d1:6d:21:01
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYQdf0jyH1Wy9aAfGJfNVA79MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyZDdjMmExMDcyZDczNTA3YWRiZjY1MDdkZTY4YWFhYzAx
Nzg1YzAwHhcNMjIxMDI4MDcyOTUxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZTRjOTMwYTU5Y2JmZTRhYTgyYjIyNTVjMzRhMTA2OWJhOTE4NzJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnRzdHmDzrBiSJ3ZSPPbt5eVloCBV
c4ZkZm2Y/S1pZVdVxCOK1r/ujGBuOPXpecFx2aloFE/YsrpvT27g6Ba/ta+gV5S6
UehOuxSxXa7s9X9JpAYC0e9q+YCRAiWPreKXfXfNEDh4kDoscAKGAfRsl2Pfwcmk
U34gQGG/V4lxbEhCUjE93GEwKEb02J+HM3OOolUH1fO5LMXu7bFa3eVe6gtSzCD+
1MjguHb2lO1uWXhpMeHu2JvzYtWn7RMpHw6ICGOH/6i5Rpj/S6tv6fuMkdvqwPzW
HvTcRaA0RWLY9W0qPDyR6mb+L+SGOn2xwOxVZOqRFmVwyuKxg61TzSOnewIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFF5MkwpZy/5KqCsiVcNKEGm6kYcuMB8GA1UdIwQY
MBaAFJLXwqEHLXNQetv2UH3miqrAF4XAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTct
ODllNTZjODBkMWQwLzEvWGt5VENsbkxfa3FvS3lKVncwb1FhYnFSaHk0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTctODllNTZjODBkMWQw
LzEva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQBBQi0AwQB
URcKAwQAbUkOMA0GCSqGSIb3DQEBCwUAA4IBAQBwAboVF7E5trY7ecvSzq4xPdgT
z6gHeV8EErdQPhzpSR2g8Pn7w5kDrZVrR6qF+h50VgnlTwdhl8K3BB3rXbt93Dd4
a5DUs36sP/TKhO9BHfEvBXH4uXL07PqE0kwFg4HWWyg2OJ3B+v6MSE4CN10IwhJD
+63yj500RPxwVD4UXg8fAWuO5vDl1D6mmUyIno+SfMCz+f0wHTvymmkAmibSz1ns
KEdYuhdMEkIVxsjv7bnUTFR6JG0HEfIKvVkj5JWBr2MNJc076KDnZ0fA6VzBKRw9
m/9KG2m5VUZIrUnzxAhQq1ZVh0inqi5U/vJzkEALiDVd0ECW5RayMAzRbSEB
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:25 2024 by rpki-client on console-fra.rpki-client.org