Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/d02983-b11c-4bf7-b4b5-e8c9ad5f051a/1/5okp6JSBE_eQ-BmjgtPXCAVm-LI.roa
File: 5okp6JSBE_eQ-BmjgtPXCAVm-LI.roa (raw, json)
Hash identifier: AF0D/PjxgCaMDQY9NqKmtsLqqFHm338htyH3+/qOyP4=
Subject key identifier: E6:89:29:E8:94:81:13:F7:90:F8:19:A3:82:D3:D7:08:05:66:F8:B2
Certificate issuer: /CN=9b632edb635aa8f9c40a0495a7a63bb6539580bb
Certificate serial: 056EA191
Authority key identifier: 9B:63:2E:DB:63:5A:A8:F9:C4:0A:04:95:A7:A6:3B:B6:53:95:80:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m2Mu22NaqPnECgSVp6Y7tlOVgLs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/d02983-b11c-4bf7-b4b5-e8c9ad5f051a/1/5okp6JSBE_eQ-BmjgtPXCAVm-LI.roa
Signing time: Sat 01 Jan 2022 07:59:07 +0000
ROA not before: Sat 01 Jan 2022 07:59:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198949
IP address blocks: 81.89.246.0/24 maxlen: 24
212.62.67.0/24 maxlen: 24
212.62.72.0/24 maxlen: 24
84.201.65.0/24 maxlen: 24
84.201.66.0/24 maxlen: 24
84.201.98.0/24 maxlen: 24
2a00:1348:10::/48 maxlen: 64
2a00:1348:11::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91136401 (0x56ea191)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b632edb635aa8f9c40a0495a7a63bb6539580bb
Validity
Not Before: Jan 1 07:59:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e68929e8948113f790f819a382d3d7080566f8b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:da:42:69:53:b3:3e:f3:fb:2e:6a:09:e4:89:
46:93:99:2a:be:ab:28:5c:e5:2c:e0:b8:40:11:44:
01:ab:f1:66:76:01:9c:69:6d:67:ed:d8:1c:ad:ac:
b6:04:89:70:ab:2f:90:0d:86:d0:77:c4:5d:14:fe:
18:a8:94:1c:a0:40:bb:1a:b4:47:a3:10:75:e8:f0:
13:29:74:21:04:29:7c:8c:11:14:11:87:a8:a5:96:
95:bd:6b:1e:98:ae:03:ba:72:d0:10:09:a6:ea:e5:
30:6a:c4:1b:7c:e2:d0:64:56:3f:38:cd:e8:bc:96:
08:c9:2c:e4:87:e1:45:e5:7a:24:2f:63:ac:3c:7a:
c3:f5:32:53:1a:36:05:2e:88:6d:7f:b8:0d:33:cb:
cd:1a:e1:b5:3f:53:2f:e5:a5:88:dd:df:bb:3f:2e:
87:75:57:96:ea:e2:1b:83:dd:a2:d2:82:aa:ed:0d:
6a:b8:32:b6:77:76:40:4a:a5:c1:98:70:af:9b:a2:
86:3f:bd:88:1a:17:50:65:ff:67:74:d4:d9:6f:1b:
a2:f0:46:f8:ae:c6:ff:58:8a:4d:31:c4:3a:5f:34:
41:51:16:a3:9a:fc:04:6d:3b:c5:95:05:30:88:28:
ea:51:2f:37:e7:7f:a3:ac:db:03:32:1c:21:6c:32:
d9:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:89:29:E8:94:81:13:F7:90:F8:19:A3:82:D3:D7:08:05:66:F8:B2
X509v3 Authority Key Identifier:
keyid:9B:63:2E:DB:63:5A:A8:F9:C4:0A:04:95:A7:A6:3B:B6:53:95:80:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m2Mu22NaqPnECgSVp6Y7tlOVgLs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/d02983-b11c-4bf7-b4b5-e8c9ad5f051a/1/5okp6JSBE_eQ-BmjgtPXCAVm-LI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/d02983-b11c-4bf7-b4b5-e8c9ad5f051a/1/m2Mu22NaqPnECgSVp6Y7tlOVgLs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.89.246.0/24
84.201.65.0-84.201.66.255
84.201.98.0/24
212.62.67.0/24
212.62.72.0/24
IPv6:
2a00:1348:10::/47
Signature Algorithm: sha256WithRSAEncryption
45:ee:49:9c:b0:5a:b9:e9:20:93:9f:c2:c9:f3:c6:b3:3f:8b:
83:64:41:f0:f0:30:7c:b5:0c:4b:4d:7b:88:1d:64:5a:2f:51:
07:a5:cb:ef:a1:03:c3:be:b6:67:e2:b9:5b:d9:4a:4e:78:19:
5e:7f:47:9a:2e:a9:49:04:4e:86:40:ea:76:27:fb:19:6d:18:
13:33:18:53:d9:eb:65:e5:8a:e7:9a:b1:d9:eb:72:61:a6:72:
82:53:a3:0f:9f:6f:a9:5e:ae:d1:c0:78:2b:ef:d9:72:cc:26:
e4:2e:9c:76:15:f3:33:e5:7b:65:17:60:52:e4:e1:ef:79:16:
5c:00:82:1a:88:7a:6f:dd:19:6b:fa:df:ee:e1:34:99:3c:54:
c5:4e:c8:ee:ed:99:84:cb:09:c9:65:0e:ea:4c:e8:d6:98:ee:
64:ea:6b:b9:c7:d2:58:5a:37:d6:70:4b:72:54:46:4b:0a:c8:
46:91:50:c0:a5:61:23:b7:cf:42:c1:30:dc:66:05:6b:2f:77:
c2:1b:44:1c:5c:2c:02:a2:37:aa:d4:28:03:4e:b4:ed:0d:a8:
81:b6:f2:ec:e7:b9:b4:80:9a:3d:5e:f3:eb:33:f5:4e:6d:60:
52:30:7a:6c:72:16:63:16:5e:1d:8f:60:d2:75:08:c9:6c:e0:
6c:06:52:4a
-----BEGIN CERTIFICATE-----
MIIFIDCCBAigAwIBAgIEBW6hkTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
YjYzMmVkYjYzNWFhOGY5YzQwYTA0OTVhN2E2M2JiNjUzOTU4MGJiMB4XDTIyMDEw
MTA3NTkwN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTY4OTI5ZTg5NDgx
MTNmNzkwZjgxOWEzODJkM2Q3MDgwNTY2ZjhiMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALLaQmlTsz7z+y5qCeSJRpOZKr6rKFzlLOC4QBFEAavxZnYB
nGltZ+3YHK2stgSJcKsvkA2G0HfEXRT+GKiUHKBAuxq0R6MQdejwEyl0IQQpfIwR
FBGHqKWWlb1rHpiuA7py0BAJpurlMGrEG3zi0GRWPzjN6LyWCMks5IfhReV6JC9j
rDx6w/UyUxo2BS6IbX+4DTPLzRrhtT9TL+WliN3fuz8uh3VXluriG4PdotKCqu0N
argytnd2QEqlwZhwr5uihj+9iBoXUGX/Z3TU2W8bovBG+K7G/1iKTTHEOl80QVEW
o5r8BG07xZUFMIgo6lEvN+d/o6zbAzIcIWwy2ZkCAwEAAaOCAjowggI2MB0GA1Ud
DgQWBBTmiSnolIET95D4GaOC09cIBWb4sjAfBgNVHSMEGDAWgBSbYy7bY1qo+cQK
BJWnpju2U5WAuzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L20yTXUyMk5hcVBuRUNnU1ZwNlk3dGxPVmdMcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGMvZDAyOTgzLWIxMWMtNGJmNy1iNGI1LWU4YzlhZDVmMDUxYS8x
LzVva3A2SlNCRV9lUS1CbWpndFBYQ0FWbS1MSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGMv
ZDAyOTgzLWIxMWMtNGJmNy1iNGI1LWU4YzlhZDVmMDUxYS8xL20yTXUyMk5hcVBu
RUNnU1ZwNlk3dGxPVmdMcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBQ
BggrBgEFBQcBBwEB/wRBMD8wLAQCAAEwJgMEAFFZ9jAMAwQAVMlBAwQAVMlCAwQA
VMliAwQA1D5DAwQA1D5IMA8EAgACMAkDBwEqABNIABAwDQYJKoZIhvcNAQELBQAD
ggEBAEXuSZywWrnpIJOfwsnzxrM/i4NkQfDwMHy1DEtNe4gdZFovUQely++hA8O+
tmfiuVvZSk54GV5/R5ouqUkEToZA6nYn+xltGBMzGFPZ62XliueasdnrcmGmcoJT
ow+fb6lertHAeCvv2XLMJuQunHYV8zPle2UXYFLk4e95FlwAghqIem/dGWv63+7h
NJk8VMVOyO7tmYTLCcllDupM6NaY7mTqa7nH0lhaN9ZwS3JURksKyEaRUMClYSO3
z0LBMNxmBWsvd8IbRBxcLAKiN6rUKANOtO0NqIG28uznubSAmj1e8+sz9U5tYFIw
emxyFmMWXh2PYNJ1CMls4GwGUko=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:49 2024 by rpki-client on console-ams.rpki-client.org