Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/ccNQLki2DlUqCqfTcTiEMlwzT9o.roa
File: ccNQLki2DlUqCqfTcTiEMlwzT9o.roa (raw, json)
Hash identifier: JHCPsBdx5vP8dMzUxWnGHXeSS370KR53ZVK8DVU3P30=
Subject key identifier: 71:C3:50:2E:48:B6:0E:55:2A:0A:A7:D3:71:38:84:32:5C:33:4F:DA
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17A5BF13
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/ccNQLki2DlUqCqfTcTiEMlwzT9o.roa
Signing time: Sat 01 Jan 2022 04:54:03 +0000
ROA not before: Sat 01 Jan 2022 04:54:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39602
IP address blocks: 185.236.81.0/24 maxlen: 32
147.78.223.0/24 maxlen: 32
2a06:82c4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 396738323 (0x17a5bf13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=71c3502e48b60e552a0aa7d3713884325c334fda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:cd:f5:66:d7:5e:8f:37:5b:a3:b8:63:9e:3b:
bf:4e:8d:b8:58:22:48:e9:f3:c6:d5:0b:44:d5:fb:
03:ef:ff:f8:01:01:9c:0c:6d:c7:16:1d:0c:06:d1:
c4:6d:17:c0:22:be:f5:32:ba:31:b1:9c:b9:c2:c5:
03:f2:e4:0d:b8:d2:87:c7:cb:47:9d:6c:4b:a7:a5:
91:79:37:ed:34:6a:1a:0f:77:b6:92:1f:06:5f:4d:
58:cb:4e:91:a5:94:58:54:56:d2:e5:db:43:87:3a:
c0:6c:dd:34:50:c6:28:b0:84:a5:a7:c8:0c:b1:19:
f5:1f:cd:9d:71:8a:cc:89:0f:74:65:87:fe:88:25:
ea:f3:f4:62:2c:ca:a2:1f:42:ef:fb:49:68:41:9d:
68:29:72:d5:91:3e:b4:1f:b0:41:63:78:9b:97:13:
01:4e:76:4c:ae:35:de:cb:cd:8f:d8:3b:58:01:54:
57:e9:fa:78:2c:73:c2:8a:a2:bc:cd:af:66:5c:0e:
aa:8c:92:8d:c9:94:0a:3c:0b:f2:cd:5a:4e:7d:ae:
56:9c:c4:dd:e0:9b:bb:8a:64:7d:01:67:d9:e1:06:
60:2d:2d:52:61:d1:2c:ef:30:9a:24:2e:76:79:08:
7f:1c:b5:21:d8:74:d3:d0:da:6b:4d:4d:97:fd:33:
ee:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:C3:50:2E:48:B6:0E:55:2A:0A:A7:D3:71:38:84:32:5C:33:4F:DA
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/ccNQLki2DlUqCqfTcTiEMlwzT9o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.223.0/24
185.236.81.0/24
IPv6:
2a06:82c4::/48
Signature Algorithm: sha256WithRSAEncryption
c9:e9:d0:35:93:3d:c0:63:02:ff:ac:66:69:1b:5c:f0:3b:99:
2c:70:a2:d4:7a:c5:b9:4c:ec:c6:a4:38:e8:0c:0d:67:12:15:
88:10:de:4a:22:43:03:ae:77:f2:a7:a4:a6:68:d0:e5:c5:09:
3a:30:60:b8:9c:02:94:1b:73:42:40:94:44:4a:39:a1:2c:de:
a6:33:19:fc:de:c9:1d:a4:ce:2d:90:bd:99:06:a2:1f:52:d8:
92:4e:3d:6b:5c:7e:2f:79:d8:cb:ec:c8:b9:28:36:f5:91:ae:
b0:20:44:6c:01:22:85:81:5c:a3:6e:a7:be:b6:d1:41:42:87:
59:6e:b9:ee:59:98:13:1c:c1:07:27:a9:2c:2c:9b:50:fa:9e:
93:cd:c7:01:e8:96:4f:a7:a6:bd:8b:a7:55:7b:5c:e1:dc:76:
f9:ed:d7:f3:29:74:c6:97:bb:76:a7:c7:fc:da:c1:20:f7:26:
4e:65:49:8c:fe:7d:b2:09:ec:46:6b:1e:5c:cf:9d:80:9d:26:
2b:2c:07:d6:c5:79:3b:d9:1b:c9:4e:05:9a:c2:95:5b:78:a5:
4b:eb:25:79:8b:ed:f1:83:a6:87:0b:9f:09:ef:94:71:9a:00:
81:e2:d0:a2:89:9c:9a:84:5e:2b:3f:d3:e8:cd:4a:f8:24:63:
d0:36:ab:45
-----BEGIN CERTIFICATE-----
MIIFBjCCA+6gAwIBAgIEF6W/EzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YzhmZDFhOGFlNTk5NmMxZTU2OTJjMWE4YzQyYmZlOWMzYmE1NzQ1MB4XDTIyMDEw
MTA0NTQwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzFjMzUwMmU0OGI2
MGU1NTJhMGFhN2QzNzEzODg0MzI1YzMzNGZkYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPvN9WbXXo83W6O4Y547v06NuFgiSOnzxtULRNX7A+//+AEB
nAxtxxYdDAbRxG0XwCK+9TK6MbGcucLFA/LkDbjSh8fLR51sS6elkXk37TRqGg93
tpIfBl9NWMtOkaWUWFRW0uXbQ4c6wGzdNFDGKLCEpafIDLEZ9R/NnXGKzIkPdGWH
/ogl6vP0YizKoh9C7/tJaEGdaCly1ZE+tB+wQWN4m5cTAU52TK413svNj9g7WAFU
V+n6eCxzwoqivM2vZlwOqoySjcmUCjwL8s1aTn2uVpzE3eCbu4pkfQFn2eEGYC0t
UmHRLO8wmiQudnkIfxy1Idh009Daa01Nl/0z7tMCAwEAAaOCAiAwggIcMB0GA1Ud
DgQWBBRxw1AuSLYOVSoKp9NxOIQyXDNP2jAfBgNVHSMEGDAWgBRsj9GorlmWweVp
LBqMQr/pw7pXRTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JJX1JxSzVabHNIbGFTd2FqRUtfNmNPNlYwVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvNDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8x
L2NjTlFMa2kyRGxVcUNxZlRjVGlFTWx3elQ5by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
NDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8xL2JJX1JxSzVabHNI
bGFTd2FqRUtfNmNPNlYwVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA2
BggrBgEFBQcBBwEB/wQnMCUwEgQCAAEwDAMEAJNO3wMEALnsUTAPBAIAAjAJAwcA
KgaCxAAAMA0GCSqGSIb3DQEBCwUAA4IBAQDJ6dA1kz3AYwL/rGZpG1zwO5kscKLU
esW5TOzGpDjoDA1nEhWIEN5KIkMDrnfyp6SmaNDlxQk6MGC4nAKUG3NCQJRESjmh
LN6mMxn83skdpM4tkL2ZBqIfUtiSTj1rXH4vedjL7Mi5KDb1ka6wIERsASKFgVyj
bqe+ttFBQodZbrnuWZgTHMEHJ6ksLJtQ+p6TzccB6JZPp6a9i6dVe1zh3Hb57dfz
KXTGl7t2p8f82sEg9yZOZUmM/n2yCexGax5cz52AnSYrLAfWxXk72RvJTgWawpVb
eKVL6yV5i+3xg6aHC58J75RxmgCB4tCiiZyahF4rP9PozUr4JGPQNqtF
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org