Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/bDbB4OkjVB-YvDrM2VS4zUQvroY.roa
File: bDbB4OkjVB-YvDrM2VS4zUQvroY.roa (raw, json)
Hash identifier: 6kDI5lMzKdR4nTAbO86yQOvKzKbyydrI4yw0s5tE3Vs=
Subject key identifier: 6C:36:C1:E0:E9:23:54:1F:98:BC:3A:CC:D9:54:B8:CD:44:2F:AE:86
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 05E13A06
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/bDbB4OkjVB-YvDrM2VS4zUQvroY.roa
Signing time: Thu 10 Feb 2022 14:01:51 +0000
ROA not before: Thu 10 Feb 2022 14:01:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207249
IP address blocks: 78.159.130.0/24 maxlen: 24
93.152.233.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98646534 (0x5e13a06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Feb 10 14:01:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c36c1e0e923541f98bc3accd954b8cd442fae86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:cb:2d:6e:6f:e8:6b:9b:71:00:30:f3:cb:fb:
17:1e:46:41:cb:24:20:96:a5:b1:8f:d9:52:77:37:
1e:70:f8:32:a3:d3:87:2d:26:87:97:3a:f3:1b:07:
58:38:fa:46:7c:4c:cd:39:a6:5d:ed:fe:ac:24:ac:
5d:73:e9:bc:f3:0e:2c:d5:38:f9:f7:5c:39:78:6d:
c4:27:ad:53:9e:c5:af:7e:78:ce:ea:21:a2:00:27:
51:aa:ef:d6:d1:57:8b:46:bd:f6:35:13:22:1f:05:
26:fd:5a:dc:09:b1:82:3c:7b:9a:87:ed:91:66:e7:
14:21:23:3d:23:15:15:9e:58:e2:12:f2:93:47:2f:
d2:92:00:1a:f3:0c:10:e9:d2:ff:11:5f:61:ab:97:
fb:7a:b0:de:4b:96:02:ab:88:d7:b6:aa:4d:0b:2c:
7e:0b:f5:ef:78:e1:4a:9f:03:a5:b5:c2:22:48:af:
a4:e1:f9:44:8c:44:ec:ef:fa:ca:7f:6b:f9:5e:c8:
3f:8f:ff:a6:c9:d1:3e:f8:73:be:98:90:4e:00:03:
cf:39:0f:a3:2f:21:a4:41:cb:88:26:7d:9c:9a:cb:
c0:f3:00:db:6a:a8:65:9c:d9:db:41:a4:fc:b9:4d:
13:23:ab:1d:c8:d1:b1:37:27:68:2e:7e:d8:4f:61:
73:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:36:C1:E0:E9:23:54:1F:98:BC:3A:CC:D9:54:B8:CD:44:2F:AE:86
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/bDbB4OkjVB-YvDrM2VS4zUQvroY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.159.130.0/24
93.152.233.0/24
Signature Algorithm: sha256WithRSAEncryption
91:fc:9e:6b:27:93:2c:60:17:bf:0d:24:26:83:55:02:21:aa:
62:ae:fb:09:c6:6d:76:07:cb:07:dd:57:d0:da:c5:ff:5a:e2:
49:d5:1c:c1:25:ce:ea:6f:7f:39:70:96:56:ae:66:29:b8:c1:
2f:f3:b0:10:6e:00:3b:21:e7:a8:bd:f7:b5:dd:ed:5e:0f:de:
f5:3c:a6:2c:58:a1:62:5e:7f:70:ca:e4:f5:19:59:e6:d0:2a:
87:98:5a:f7:f2:ba:54:26:0c:c8:56:12:50:cc:09:cb:a5:3c:
1f:72:a0:7c:72:c5:87:a4:bf:f9:dc:d2:a9:da:4d:cc:7b:0d:
04:bd:f2:89:6d:9a:dd:27:33:ad:3c:c1:4a:3d:ff:30:bd:2d:
70:ab:ae:88:04:39:24:0e:f4:59:06:8d:dc:4c:0c:cc:26:88:
76:2b:40:49:c3:3b:25:c4:8e:bb:f3:e9:af:bd:51:19:24:18:
94:33:db:67:56:ca:7f:c6:83:52:ce:3b:0e:9f:46:cc:e5:f4:
a1:5a:9e:14:ec:2b:2e:47:6f:85:41:1d:5b:e0:26:c6:72:6f:
56:b0:94:4b:07:b1:77:92:4d:98:cc:55:95:42:bd:95:2a:90:
92:b8:ba:34:35:8f:61:85:ff:aa:ed:b6:78:ef:c3:78:74:61:
3d:ed:6f:8e
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBeE6BjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
ZDFjYWE2OTM1OGY4Yzk4ZjdhNzE5ZjI1OTdkNWRhZGRiZDAwMThjMB4XDTIyMDIx
MDE0MDE1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmMzNmMxZTBlOTIz
NTQxZjk4YmMzYWNjZDk1NGI4Y2Q0NDJmYWU4NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALTLLW5v6GubcQAw88v7Fx5GQcskIJalsY/ZUnc3HnD4MqPT
hy0mh5c68xsHWDj6RnxMzTmmXe3+rCSsXXPpvPMOLNU4+fdcOXhtxCetU57Fr354
zuohogAnUarv1tFXi0a99jUTIh8FJv1a3Amxgjx7moftkWbnFCEjPSMVFZ5Y4hLy
k0cv0pIAGvMMEOnS/xFfYauX+3qw3kuWAquI17aqTQssfgv173jhSp8DpbXCIkiv
pOH5RIxE7O/6yn9r+V7IP4//psnRPvhzvpiQTgADzzkPoy8hpEHLiCZ9nJrLwPMA
22qoZZzZ20Gk/LlNEyOrHcjRsTcnaC5+2E9hc/kCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRsNsHg6SNUH5i8OszZVLjNRC+uhjAfBgNVHSMEGDAWgBQtHKppNY+MmPen
GfJZfV2t29ABjDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0xSeXFhVFdQakpqM3B4bnlXWDFkcmR2UUFZdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGYvYTkzNjk5LTE4OGItNDcwYS05NmI3LTI5YjA4NWRkMjNhZC8x
L2JEYkI0T2tqVkItWXZEck0yVlM0elVRdnJvWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGYv
YTkzNjk5LTE4OGItNDcwYS05NmI3LTI5YjA4NWRkMjNhZC8xL0xSeXFhVFdQakpq
M3B4bnlXWDFkcmR2UUFZdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAE6fggMEAF2Y6TANBgkqhkiG9w0B
AQsFAAOCAQEAkfyeayeTLGAXvw0kJoNVAiGqYq77CcZtdgfLB91X0NrF/1riSdUc
wSXO6m9/OXCWVq5mKbjBL/OwEG4AOyHnqL33td3tXg/e9TymLFihYl5/cMrk9RlZ
5tAqh5ha9/K6VCYMyFYSUMwJy6U8H3KgfHLFh6S/+dzSqdpNzHsNBL3yiW2a3Scz
rTzBSj3/ML0tcKuuiAQ5JA70WQaN3EwMzCaIditAScM7JcSOu/Ppr71RGSQYlDPb
Z1bKf8aDUs47Dp9GzOX0oVqeFOwrLkdvhUEdW+AmxnJvVrCUSwexd5JNmMxVlUK9
lSqQkri6NDWPYYX/qu22eO/DeHRhPe1vjg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:58 2023 by rpki-client on console-ams.rpki-client.org