Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/deaef1-6241-49ab-9825-8fc373757684/1/Pu8ImC5qMIc8u4oTAYhGasZMSLU.roa
File: Pu8ImC5qMIc8u4oTAYhGasZMSLU.roa (raw, json)
Hash identifier: c+I+xgNUDfTv1ZMJqzme0vbKQqJw88yfT39DhI83Z9g=
Subject key identifier: 3E:EF:08:98:2E:6A:30:87:3C:BB:8A:13:01:88:46:6A:C6:4C:48:B5
Certificate issuer: /CN=1d65b7b7b898faaee70767d09715c436a83fcdc2
Certificate serial: 26BA0C9C
Authority key identifier: 1D:65:B7:B7:B8:98:FA:AE:E7:07:67:D0:97:15:C4:36:A8:3F:CD:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HWW3t7iY-q7nB2fQlxXENqg_zcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/deaef1-6241-49ab-9825-8fc373757684/1/Pu8ImC5qMIc8u4oTAYhGasZMSLU.roa
Signing time: Sat 01 Jan 2022 15:02:52 +0000
ROA not before: Sat 01 Jan 2022 15:02:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29286
IP address blocks: 164.215.104.0/24 maxlen: 24
164.215.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 649727132 (0x26ba0c9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d65b7b7b898faaee70767d09715c436a83fcdc2
Validity
Not Before: Jan 1 15:02:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3eef08982e6a30873cbb8a130188466ac64c48b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8b:2d:44:8b:c8:a9:79:f2:24:f7:9b:fa:bc:
04:78:c4:37:5c:06:d4:37:80:80:8e:d5:11:bd:a6:
ac:82:04:48:0c:24:fd:dc:9a:8d:0b:85:d4:e8:22:
fb:02:9c:51:91:28:f0:63:4a:35:36:da:4b:85:fb:
1b:e4:57:a2:70:91:56:2a:49:01:a1:3f:5a:f6:30:
d0:02:3b:5b:21:84:65:fb:63:c3:88:23:c2:17:64:
0f:11:c8:f0:d6:82:2c:56:a1:ad:f0:c0:3a:b6:c2:
df:db:a3:dd:cf:7c:27:2b:da:a9:c1:d8:66:6b:fe:
81:74:08:14:b8:f5:7b:ac:66:94:c6:ee:39:34:d5:
b3:fe:e6:ae:14:1b:ff:73:8a:82:2f:71:1b:5f:9b:
0b:28:b4:62:65:29:56:85:2b:89:f7:fc:b8:77:19:
f7:3a:a6:57:1b:44:13:05:a5:73:c9:a0:bd:5a:87:
96:0a:5b:a2:49:8f:c1:b0:83:dd:48:ad:d8:ef:89:
3d:a8:e7:e4:eb:df:3f:5d:bb:ba:a3:bd:91:d7:7c:
f9:d6:84:40:ad:a8:8b:67:4c:19:62:1a:7d:f1:e4:
38:10:31:43:fa:5b:41:17:6b:b7:a6:a1:73:6d:a1:
8b:1f:cf:a5:ca:8a:90:d6:b5:67:61:24:6b:64:36:
11:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:EF:08:98:2E:6A:30:87:3C:BB:8A:13:01:88:46:6A:C6:4C:48:B5
X509v3 Authority Key Identifier:
keyid:1D:65:B7:B7:B8:98:FA:AE:E7:07:67:D0:97:15:C4:36:A8:3F:CD:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HWW3t7iY-q7nB2fQlxXENqg_zcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/deaef1-6241-49ab-9825-8fc373757684/1/Pu8ImC5qMIc8u4oTAYhGasZMSLU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/deaef1-6241-49ab-9825-8fc373757684/1/HWW3t7iY-q7nB2fQlxXENqg_zcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.215.104.0/24
164.215.111.0/24
Signature Algorithm: sha256WithRSAEncryption
18:98:d9:b0:4f:c2:ac:c4:73:02:8f:c4:1e:e0:a0:6b:11:ec:
83:f8:5e:6a:5d:e3:ac:e9:18:34:c0:c4:79:35:0b:74:c3:c0:
61:d9:ee:0a:90:e3:bf:b2:d8:d7:5a:66:66:a9:99:ca:6d:19:
9e:4a:4b:c7:0d:bc:90:a9:de:42:29:cd:c4:9a:92:c4:6e:24:
87:2b:93:e7:63:c1:d4:fe:35:53:bf:b9:7b:fc:fb:8b:40:bb:
6f:c3:4a:df:48:b7:3e:61:ce:3b:9d:0b:5a:bf:8b:40:fe:01:
5f:7c:db:1b:e5:5e:7a:d0:fb:9f:6d:fc:45:14:79:71:e0:f7:
6d:00:71:d0:95:5c:ae:97:63:88:0c:af:d0:bc:89:ae:dc:07:
6d:99:66:ec:a7:3c:80:95:55:22:9f:59:f5:59:a9:bd:29:93:
0e:a7:9d:41:fa:6d:ae:d5:1a:31:ad:a9:ed:d2:5b:82:22:a9:
a3:73:d9:99:6c:74:55:e9:0b:ce:7f:22:3f:30:81:2d:1e:cc:
31:9c:d8:2a:35:25:b1:bd:15:7a:89:1a:e5:84:4e:b6:45:0d:
4f:a4:7f:06:1f:ae:0a:6d:2c:71:79:40:be:d2:57:0e:07:ef:
32:02:c1:1f:b7:19:38:6a:c0:57:b5:e8:b5:51:88:49:fb:dd:
25:23:be:df
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEJroMnDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZDY1YjdiN2I4OThmYWFlZTcwNzY3ZDA5NzE1YzQzNmE4M2ZjZGMyMB4XDTIyMDEw
MTE1MDI1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2VlZjA4OTgyZTZh
MzA4NzNjYmI4YTEzMDE4ODQ2NmFjNjRjNDhiNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALqLLUSLyKl58iT3m/q8BHjEN1wG1DeAgI7VEb2mrIIESAwk
/dyajQuF1Ogi+wKcUZEo8GNKNTbaS4X7G+RXonCRVipJAaE/WvYw0AI7WyGEZftj
w4gjwhdkDxHI8NaCLFahrfDAOrbC39uj3c98JyvaqcHYZmv+gXQIFLj1e6xmlMbu
OTTVs/7mrhQb/3OKgi9xG1+bCyi0YmUpVoUriff8uHcZ9zqmVxtEEwWlc8mgvVqH
lgpbokmPwbCD3Uit2O+JPajn5OvfP127uqO9kdd8+daEQK2oi2dMGWIaffHkOBAx
Q/pbQRdrt6ahc22hix/PpcqKkNa1Z2Eka2Q2EbECAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQ+7wiYLmowhzy7ihMBiEZqxkxItTAfBgNVHSMEGDAWgBQdZbe3uJj6rucH
Z9CXFcQ2qD/NwjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0hXVzN0N2lZLXE3bkIyZlFseFhFTnFnX3pjSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2MvZGVhZWYxLTYyNDEtNDlhYi05ODI1LThmYzM3Mzc1NzY4NC8x
L1B1OEltQzVxTUljOHU0b1RBWWhHYXNaTVNMVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Mv
ZGVhZWYxLTYyNDEtNDlhYi05ODI1LThmYzM3Mzc1NzY4NC8xL0hXVzN0N2lZLXE3
bkIyZlFseFhFTnFnX3pjSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAKTXaAMEAKTXbzANBgkqhkiG9w0B
AQsFAAOCAQEAGJjZsE/CrMRzAo/EHuCgaxHsg/heal3jrOkYNMDEeTULdMPAYdnu
CpDjv7LY11pmZqmZym0ZnkpLxw28kKneQinNxJqSxG4khyuT52PB1P41U7+5e/z7
i0C7b8NK30i3PmHOO50LWr+LQP4BX3zbG+VeetD7n238RRR5ceD3bQBx0JVcrpdj
iAyv0LyJrtwHbZlm7Kc8gJVVIp9Z9VmpvSmTDqedQfptrtUaMa2p7dJbgiKpo3PZ
mWx0VekLzn8iPzCBLR7MMZzYKjUlsb0Veoka5YROtkUNT6R/Bh+uCm0scXlAvtJX
DgfvMgLBH7cZOGrAV7XotVGISfvdJSO+3w==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:04 2023 by rpki-client on console-fra.rpki-client.org