Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/3riNBYZr1DW57nc-ht5KnEBl_g4.roa
File: 3riNBYZr1DW57nc-ht5KnEBl_g4.roa (raw, json)
Hash identifier: GDkXIKC6rE4NSkxAgbCyC4mQwEZ36ON5kRp11zH18oE=
Subject key identifier: DE:B8:8D:05:86:6B:D4:35:B9:EE:77:3E:86:DE:4A:9C:40:65:FE:0E
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 04A0317F
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/3riNBYZr1DW57nc-ht5KnEBl_g4.roa
Signing time: Fri 03 Jun 2022 04:51:20 +0000
ROA not before: Fri 03 Jun 2022 04:51:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 83.147.48.0/22 maxlen: 24
45.156.58.0/23 maxlen: 24
83.147.4.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77607295 (0x4a0317f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Jun 3 04:51:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=deb88d05866bd435b9ee773e86de4a9c4065fe0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1d:ed:76:eb:92:64:5b:26:f2:ba:80:fe:b7:
75:28:65:80:8e:76:17:a1:fd:0f:1b:3d:aa:bd:cc:
0e:38:91:86:01:43:3b:e1:e3:4c:67:7d:d8:18:f2:
14:28:82:54:ae:4a:54:6b:f0:11:70:6f:18:81:02:
6d:0f:18:67:13:d2:98:2c:59:d3:42:47:37:30:f4:
fa:cd:83:24:9b:80:ad:b5:ff:ec:f0:21:b4:68:97:
59:49:94:4c:fb:c2:c1:7d:94:c5:3f:f5:29:b0:51:
46:b4:d6:6d:0c:83:9a:c9:45:20:87:a2:c1:e4:d0:
dd:84:9e:c1:a3:a8:49:f8:ba:8d:42:92:77:82:8e:
21:df:13:ff:46:49:4b:fe:db:78:22:64:82:fa:f4:
d6:43:38:80:dd:df:d8:37:09:03:02:03:18:85:68:
79:f6:3c:0c:a8:68:7c:e7:e4:0d:1f:7f:8b:52:d8:
49:bc:46:27:96:94:26:c8:1d:81:0c:aa:d5:62:4d:
22:6e:c2:0b:4c:71:c3:fc:a5:31:43:53:ff:51:e7:
1b:15:1e:e0:42:35:7e:41:68:44:b8:78:17:26:db:
74:87:4d:a1:f7:00:d6:89:10:af:34:ef:96:70:a6:
74:7f:f4:48:1d:d7:3b:3c:17:b6:7d:4b:f2:89:07:
67:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:B8:8D:05:86:6B:D4:35:B9:EE:77:3E:86:DE:4A:9C:40:65:FE:0E
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/3riNBYZr1DW57nc-ht5KnEBl_g4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.58.0/23
83.147.4.0/22
83.147.48.0/22
Signature Algorithm: sha256WithRSAEncryption
c1:97:bf:6f:2a:c4:54:b3:17:c0:67:c3:0a:12:fd:1c:64:da:
7c:46:5e:e8:d3:a0:0c:09:fa:b6:86:64:fb:f6:31:3c:e0:59:
ca:26:65:76:11:6d:be:d9:47:fa:c1:c1:ad:8d:46:25:48:e4:
9e:30:32:5b:2b:11:a5:c9:21:71:46:e0:41:fc:df:67:a0:1f:
b1:d3:d2:9c:96:ae:a6:92:f8:7b:fd:ce:70:68:3e:0b:0a:ac:
f3:c0:33:00:fe:5b:41:b6:c8:51:cf:02:a4:9b:63:ab:d7:e8:
5c:17:4b:11:2e:f5:2d:94:73:41:a7:7a:f8:e7:43:57:6e:9d:
57:44:af:2b:da:ca:46:57:42:bb:3b:16:8f:87:ff:a1:91:a0:
d0:ea:29:9c:23:87:d1:96:b9:ed:03:53:9f:23:12:20:60:65:
cb:c1:54:e8:bd:14:42:fd:42:95:90:60:6b:1b:da:7f:60:ea:
52:fa:20:c8:3a:f5:70:ef:f7:b7:db:83:90:1b:74:e1:f4:e9:
40:e2:4b:72:16:f4:a6:21:8e:d4:79:10:55:d0:c4:e7:ca:c0:
1d:a7:59:97:8a:7b:0f:7f:26:c6:2e:71:18:6b:00:d9:66:d7:
70:44:2f:a6:2a:33:c2:50:57:bc:f8:79:41:f3:05:eb:a8:0c:
be:4a:b0:c5
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEBKAxfzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MTkzZmZlOWRiMzc2MjZiMTNmODVkN2NjNDU3YWFkNWMxZjMwYzlmMB4XDTIyMDYw
MzA0NTEyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGViODhkMDU4NjZi
ZDQzNWI5ZWU3NzNlODZkZTRhOWM0MDY1ZmUwZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMQd7XbrkmRbJvK6gP63dShlgI52F6H9Dxs9qr3MDjiRhgFD
O+HjTGd92BjyFCiCVK5KVGvwEXBvGIECbQ8YZxPSmCxZ00JHNzD0+s2DJJuArbX/
7PAhtGiXWUmUTPvCwX2UxT/1KbBRRrTWbQyDmslFIIeiweTQ3YSewaOoSfi6jUKS
d4KOId8T/0ZJS/7beCJkgvr01kM4gN3f2DcJAwIDGIVoefY8DKhofOfkDR9/i1LY
SbxGJ5aUJsgdgQyq1WJNIm7CC0xxw/ylMUNT/1HnGxUe4EI1fkFoRLh4FybbdIdN
ofcA1okQrzTvlnCmdH/0SB3XOzwXtn1L8okHZ6cCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBTeuI0FhmvUNbnudz6G3kqcQGX+DjAfBgNVHSMEGDAWgBSBk//p2zdiaxP4
XXzEV6rVwfMMnzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2daUF82ZHMzWW1zVC1GMTh4RmVxMWNIekRKOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTcvNzZiYzFlLWI2ZjQtNDA4YS1iYjg5LTA4ZDEyNzBjMmU3MS8x
LzNyaU5CWVpyMURXNTduYy1odDVLbkVCbF9nNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTcv
NzZiYzFlLWI2ZjQtNDA4YS1iYjg5LTA4ZDEyNzBjMmU3MS8xL2daUF82ZHMzWW1z
VC1GMTh4RmVxMWNIekRKOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAS2cOgMEAlOTBAMEAlOTMDANBgkq
hkiG9w0BAQsFAAOCAQEAwZe/byrEVLMXwGfDChL9HGTafEZe6NOgDAn6toZk+/Yx
POBZyiZldhFtvtlH+sHBrY1GJUjknjAyWysRpckhcUbgQfzfZ6AfsdPSnJauppL4
e/3OcGg+Cwqs88AzAP5bQbbIUc8CpJtjq9foXBdLES71LZRzQad6+OdDV26dV0Sv
K9rKRldCuzsWj4f/oZGg0OopnCOH0Za57QNTnyMSIGBly8FU6L0UQv1ClZBgaxva
f2DqUvogyDr1cO/3t9uDkBt04fTpQOJLchb0piGO1HkQVdDE58rAHadZl4p7D38m
xi5xGGsA2WbXcEQvpiozwlBXvPh5QfMF66gMvkqwxQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:50 2024 by rpki-client on console-fra.rpki-client.org