Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/AnPlrs6kii-9aNCCBaMUkS_QLG4.roa
File: AnPlrs6kii-9aNCCBaMUkS_QLG4.roa (raw, json)
Hash identifier: 5/OK7Q5vdi3t66ndluHnPI4hJiSqBXtvRyklQaz3rgo=
Subject key identifier: 02:73:E5:AE:CE:A4:8A:2F:BD:68:D0:82:05:A3:14:91:2F:D0:2C:6E
Certificate issuer: /CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Certificate serial: 018444732F5A8C7C301922F0ED7903C2383C
Authority key identifier: 60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/AnPlrs6kii-9aNCCBaMUkS_QLG4.roa
Signing time: Fri 04 Nov 2022 21:01:50 +0000
ROA not before: Fri 04 Nov 2022 21:01:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 192.35.206.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:44:73:2f:5a:8c:7c:30:19:22:f0:ed:79:03:c2:38:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Validity
Not Before: Nov 4 21:01:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0273e5aecea48a2fbd68d08205a314912fd02c6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:01:fe:de:89:6b:cc:6a:c0:d7:18:60:03:9e:
6a:06:0e:10:cd:9f:4c:6a:a6:9c:1d:85:7d:8c:55:
db:1f:9b:dd:cd:1c:d3:13:05:94:b0:8e:84:13:6d:
50:2a:56:e0:10:ff:ec:be:6b:29:db:df:7b:9d:7b:
97:0e:36:0e:df:10:68:97:06:93:cc:9d:89:11:03:
5b:b4:bc:57:f2:e8:76:3c:65:f3:64:11:41:b2:f4:
7b:3f:e3:3c:91:ef:7b:dd:06:88:cf:e0:f9:62:c7:
2e:86:ed:e0:5b:08:18:8a:5f:22:81:34:ff:30:0d:
a5:f6:20:8e:04:8b:f7:1e:80:94:ae:7b:86:e4:ac:
35:a1:d7:cd:d1:82:b1:18:9d:10:0c:1a:55:99:bd:
cc:0e:51:98:88:17:94:b3:df:ca:72:f4:d4:18:10:
0d:1f:c0:9d:95:1d:0a:8d:3e:76:ff:80:29:a7:b3:
60:a2:8b:d2:3f:cd:ef:33:f1:6e:36:4c:b9:14:c5:
3c:89:e7:e3:d3:e1:ed:26:24:72:07:a2:ec:cd:d7:
3a:ba:f1:2d:39:e8:90:dc:df:95:68:ed:fb:3f:a4:
f5:72:b1:fe:17:78:b4:e5:c8:3a:d0:22:28:4e:14:
08:82:08:76:ad:5e:3c:4a:c7:99:4b:27:c6:1e:32:
c2:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:73:E5:AE:CE:A4:8A:2F:BD:68:D0:82:05:A3:14:91:2F:D0:2C:6E
X509v3 Authority Key Identifier:
keyid:60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/AnPlrs6kii-9aNCCBaMUkS_QLG4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.35.206.0/24
Signature Algorithm: sha256WithRSAEncryption
62:80:a2:a7:ac:ba:d1:11:86:a0:d1:67:58:27:11:10:70:01:
b1:d3:78:a8:93:34:1f:18:1e:a9:b4:9b:bd:68:00:d9:ab:8e:
0f:ef:ab:ce:ae:97:8f:5e:30:c9:af:56:fa:8d:19:55:6b:14:
e2:f9:1d:59:17:a6:5d:08:6d:af:37:a7:74:f6:34:2b:03:35:
4c:0e:30:8b:ef:33:eb:61:e5:ed:8e:70:23:df:44:77:71:f5:
47:87:2b:97:c8:b3:1f:d9:2d:9f:57:c5:7b:0e:ac:39:d7:0e:
fc:ff:f9:68:83:f5:a5:77:30:65:01:d4:c6:e5:ee:89:c8:e9:
d4:d8:1a:50:d5:54:fe:24:3f:18:12:a6:20:d7:d8:29:5b:d8:
8a:ac:a0:ff:5f:3d:8c:72:50:06:03:a9:78:f6:99:3a:e1:5b:
30:3d:a5:57:08:4c:c9:50:ac:04:a1:19:ae:d9:c1:da:c9:0c:
16:81:22:f6:80:ee:41:50:6d:ca:87:1b:72:ec:23:df:c1:e1:
96:e9:3f:29:47:e7:46:6c:7b:cd:1c:cc:12:03:e7:aa:0c:c8:
dd:f8:09:0b:14:e5:b1:8d:b2:5e:c7:9b:be:6b:b2:83:ea:90:
3b:b3:7b:25:73:a2:b2:c2:57:d7:af:19:14:fe:39:49:54:db:
84:85:0c:53
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYREcy9ajHwwGSLw7XkDwjg8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwOTk4ZDNjOWQ4YmRjOWMxZGZmOGUzMTk0MjQ0MTJiNmNk
YzFkZDMwHhcNMjIxMTA0MjEwMTUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMjczZTVhZWNlYTQ4YTJmYmQ2OGQwODIwNWEzMTQ5MTJmZDAyYzZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvQH+3olrzGrA1xhgA55qBg4QzZ9M
aqacHYV9jFXbH5vdzRzTEwWUsI6EE21QKlbgEP/svmsp2997nXuXDjYO3xBolwaT
zJ2JEQNbtLxX8uh2PGXzZBFBsvR7P+M8ke973QaIz+D5Yscuhu3gWwgYil8igTT/
MA2l9iCOBIv3HoCUrnuG5Kw1odfN0YKxGJ0QDBpVmb3MDlGYiBeUs9/KcvTUGBAN
H8CdlR0KjT52/4App7NgoovSP83vM/FuNky5FMU8iefj0+HtJiRyB6Lszdc6uvEt
OeiQ3N+VaO37P6T1crH+F3i05cg60CIoThQIggh2rV48SseZSyfGHjLCYwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAJz5a7OpIovvWjQggWjFJEv0CxuMB8GA1UdIwQY
MBaAFGCZjTydi9ycHf+OMZQkQSts3B3TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUptTlBKMkwzSndkXzQ0eGxDUkJLMnpjSGRNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy83NzlhZTktN2QyMi00MjUyLThjNWIt
MGVhNGQ1MzFiNzkzLzEvQW5QbHJzNmtpaS05YU5DQ0JhTVVrU19RTEc0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYy83NzlhZTktN2QyMi00MjUyLThjNWItMGVhNGQ1MzFiNzkz
LzEvWUptTlBKMkwzSndkXzQ0eGxDUkJLMnpjSGRNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwCPOMA0G
CSqGSIb3DQEBCwUAA4IBAQBigKKnrLrREYag0WdYJxEQcAGx03iokzQfGB6ptJu9
aADZq44P76vOrpePXjDJr1b6jRlVaxTi+R1ZF6ZdCG2vN6d09jQrAzVMDjCL7zPr
YeXtjnAj30R3cfVHhyuXyLMf2S2fV8V7Dqw51w78//log/WldzBlAdTG5e6JyOnU
2BpQ1VT+JD8YEqYg19gpW9iKrKD/Xz2MclAGA6l49pk64VswPaVXCEzJUKwEoRmu
2cHayQwWgSL2gO5BUG3Khxty7CPfweGW6T8pR+dGbHvNHMwSA+eqDMjd+AkLFOWx
jbJex5u+a7KD6pA7s3slc6KywlfXrxkU/jlJVNuEhQxT
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:37 2024 by rpki-client on console-fra.rpki-client.org