Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/3453b2-9773-455e-8b08-d92dae861a7d/1/ta823gEcs5TRYYiNTLT1fosovwM.roa
File: ta823gEcs5TRYYiNTLT1fosovwM.roa (raw, json)
Hash identifier: A/5mYbeaiTjQOVkKmSLrpXGISjZLBn4NuLR06OEt4nU=
Subject key identifier: B5:AF:36:DE:01:1C:B3:94:D1:61:88:8D:4C:B4:F5:7E:8B:28:BF:03
Certificate issuer: /CN=622f517b08182c6eda1b3f988ee01816ee264dc0
Certificate serial: 0B2BCA5D
Authority key identifier: 62:2F:51:7B:08:18:2C:6E:DA:1B:3F:98:8E:E0:18:16:EE:26:4D:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yi9RewgYLG7aGz-YjuAYFu4mTcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/3453b2-9773-455e-8b08-d92dae861a7d/1/ta823gEcs5TRYYiNTLT1fosovwM.roa
Signing time: Sat 01 Jan 2022 00:51:57 +0000
ROA not before: Sat 01 Jan 2022 00:51:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59775
IP address blocks: 78.108.220.0/24 maxlen: 26
78.108.221.0/24 maxlen: 26
185.56.112.0/22 maxlen: 26
2a02:5260::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 187419229 (0xb2bca5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=622f517b08182c6eda1b3f988ee01816ee264dc0
Validity
Not Before: Jan 1 00:51:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5af36de011cb394d161888d4cb4f57e8b28bf03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:af:59:b0:fe:86:39:a2:46:5d:33:16:8d:ea:
8f:bb:ea:5a:3b:17:d1:ce:b2:b4:c0:50:18:23:55:
ca:8a:e1:09:42:95:75:fc:c7:c7:f8:39:e5:d4:88:
91:b1:d9:a2:a2:02:30:8e:64:d9:df:1e:b2:82:ac:
5c:8d:66:ba:e8:81:6f:f1:37:d7:6d:b6:77:f1:34:
9f:10:ed:96:3c:c0:96:1b:7e:d5:74:41:89:a5:40:
76:0b:3f:b7:ec:94:96:a3:5d:ad:15:cb:a4:d6:87:
b8:11:10:e0:4f:59:66:5d:cc:04:52:10:f3:32:6f:
5e:8d:b5:9d:5c:8a:f3:97:fb:28:f8:66:77:ea:f9:
b8:4f:2f:72:fc:74:fa:4e:cb:51:4c:53:a9:e6:76:
01:68:6e:65:8b:22:c7:02:e2:72:a2:e0:8f:b1:11:
25:70:93:f6:7c:58:b2:85:9b:06:b6:4c:fb:ab:16:
89:42:02:c5:fb:1a:02:c2:99:ab:af:73:3d:91:a2:
e9:e1:89:a3:c5:af:85:e9:fb:57:5b:d6:fc:8a:a6:
16:5e:24:01:ea:f6:26:da:63:3f:fd:cc:86:e6:c0:
84:1b:82:8c:ff:d1:08:3e:5f:0b:c7:5e:75:8a:88:
94:8c:be:af:48:9e:29:be:61:56:9b:de:3d:e0:60:
35:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:AF:36:DE:01:1C:B3:94:D1:61:88:8D:4C:B4:F5:7E:8B:28:BF:03
X509v3 Authority Key Identifier:
keyid:62:2F:51:7B:08:18:2C:6E:DA:1B:3F:98:8E:E0:18:16:EE:26:4D:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yi9RewgYLG7aGz-YjuAYFu4mTcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/3453b2-9773-455e-8b08-d92dae861a7d/1/ta823gEcs5TRYYiNTLT1fosovwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/3453b2-9773-455e-8b08-d92dae861a7d/1/Yi9RewgYLG7aGz-YjuAYFu4mTcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.108.220.0/23
185.56.112.0/22
IPv6:
2a02:5260::/29
Signature Algorithm: sha256WithRSAEncryption
02:4c:6d:3f:5e:81:c9:3f:fc:85:67:f5:64:bf:46:02:ab:6f:
c3:06:e6:1b:11:32:fb:9e:94:41:6f:52:36:93:2b:0c:17:90:
49:35:ed:ea:70:66:92:85:d9:ce:e0:f2:3d:53:b4:75:70:26:
6f:ac:a0:b4:1e:e5:84:49:26:bf:60:08:29:b8:54:60:11:35:
2f:f9:88:69:e4:91:90:64:83:52:d3:1d:d7:7e:37:03:61:45:
87:d1:3c:f5:e3:b7:c0:4a:a6:01:70:52:b5:eb:04:c9:e5:87:
0f:92:69:74:8f:9d:f7:ad:8b:97:bc:46:a7:d1:04:ea:c4:ec:
c5:68:fa:15:dc:74:b7:6a:34:c8:0a:23:ce:45:46:e7:aa:d3:
90:19:b9:e4:9f:b2:d4:42:40:a7:bd:f2:31:d0:54:d3:c0:f4:
cd:ce:ba:d8:75:27:bd:70:cd:38:a2:c9:17:64:26:0d:ce:08:
92:d8:ef:24:86:3d:a8:fa:9e:5d:df:3c:fd:50:bb:78:d3:0d:
85:99:e2:c9:e7:90:cb:61:95:58:ca:f4:da:aa:05:52:1d:de:
e4:03:6f:fa:58:62:7e:f0:21:c6:fc:d2:d3:6d:ab:fd:d0:55:
c0:8f:79:82:6a:a0:a7:74:ab:d3:a1:eb:61:ac:76:1c:4b:6e:
44:49:ef:23
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIECyvKXTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MjJmNTE3YjA4MTgyYzZlZGExYjNmOTg4ZWUwMTgxNmVlMjY0ZGMwMB4XDTIyMDEw
MTAwNTE1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjVhZjM2ZGUwMTFj
YjM5NGQxNjE4ODhkNGNiNGY1N2U4YjI4YmYwMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJqvWbD+hjmiRl0zFo3qj7vqWjsX0c6ytMBQGCNVyorhCUKV
dfzHx/g55dSIkbHZoqICMI5k2d8esoKsXI1muuiBb/E31222d/E0nxDtljzAlht+
1XRBiaVAdgs/t+yUlqNdrRXLpNaHuBEQ4E9ZZl3MBFIQ8zJvXo21nVyK85f7KPhm
d+r5uE8vcvx0+k7LUUxTqeZ2AWhuZYsixwLicqLgj7ERJXCT9nxYsoWbBrZM+6sW
iUICxfsaAsKZq69zPZGi6eGJo8Wvhen7V1vW/IqmFl4kAer2JtpjP/3MhubAhBuC
jP/RCD5fC8dedYqIlIy+r0ieKb5hVpvePeBgNSkCAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBS1rzbeARyzlNFhiI1MtPV+iyi/AzAfBgNVHSMEGDAWgBRiL1F7CBgsbtob
P5iO4BgW7iZNwDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1lpOVJld2dZTEc3YUd6LVlqdUFZRnU0bVRjQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDMvMzQ1M2IyLTk3NzMtNDU1ZS04YjA4LWQ5MmRhZTg2MWE3ZC8x
L3RhODIzZ0VjczVUUllZaU5UTFQxZm9zb3Z3TS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDMv
MzQ1M2IyLTk3NzMtNDU1ZS04YjA4LWQ5MmRhZTg2MWE3ZC8xL1lpOVJld2dZTEc3
YUd6LVlqdUFZRnU0bVRjQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEAU5s3AMEArk4cDANBAIAAjAHAwUD
KgJSYDANBgkqhkiG9w0BAQsFAAOCAQEAAkxtP16ByT/8hWf1ZL9GAqtvwwbmGxEy
+56UQW9SNpMrDBeQSTXt6nBmkoXZzuDyPVO0dXAmb6ygtB7lhEkmv2AIKbhUYBE1
L/mIaeSRkGSDUtMd1343A2FFh9E89eO3wEqmAXBStesEyeWHD5JpdI+d962Ll7xG
p9EE6sTsxWj6Fdx0t2o0yAojzkVG56rTkBm55J+y1EJAp73yMdBU08D0zc662HUn
vXDNOKLJF2QmDc4IktjvJIY9qPqeXd88/VC7eNMNhZniyeeQy2GVWMr02qoFUh3e
5ANv+lhifvAhxvzS022r/dBVwI95gmqgp3Sr06HrYax2HEtuREnvIw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:03 2024 by rpki-client on console-ams.rpki-client.org