Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/9ea68f-743d-47da-b71c-709fbe84cdfb/1/ArcP-7qqYsUeYL62z9Jn8PFzGng.roa
File: ArcP-7qqYsUeYL62z9Jn8PFzGng.roa (raw, json)
Hash identifier: GoQFvFz1MpRQW5a5vTAo4daINfUVVaRbs3bao8cqgHY=
Subject key identifier: 02:B7:0F:FB:BA:AA:62:C5:1E:60:BE:B6:CF:D2:67:F0:F1:73:1A:78
Certificate issuer: /CN=9c8a1876fddc2b63748b457b770b79a7e66e793c
Certificate serial: 0846E9B5
Authority key identifier: 9C:8A:18:76:FD:DC:2B:63:74:8B:45:7B:77:0B:79:A7:E6:6E:79:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nIoYdv3cK2N0i0V7dwt5p-ZueTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/9ea68f-743d-47da-b71c-709fbe84cdfb/1/ArcP-7qqYsUeYL62z9Jn8PFzGng.roa
Signing time: Sat 01 Jan 2022 13:01:41 +0000
ROA not before: Sat 01 Jan 2022 13:01:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204053
IP address blocks: 185.115.172.0/22 maxlen: 32
45.143.16.0/22 maxlen: 32
193.16.97.0/24 maxlen: 32
91.198.78.0/24 maxlen: 32
185.203.92.0/22 maxlen: 32
45.152.152.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138865077 (0x846e9b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c8a1876fddc2b63748b457b770b79a7e66e793c
Validity
Not Before: Jan 1 13:01:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02b70ffbbaaa62c51e60beb6cfd267f0f1731a78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:22:ea:24:06:03:58:c4:01:9b:6e:1b:23:09:
19:90:e0:57:e4:67:76:47:b5:2d:17:b6:a4:7e:6a:
80:ac:b8:19:1f:e2:21:18:5b:5c:26:04:2b:73:d3:
65:6d:56:25:02:bf:4a:14:5c:d2:20:ff:18:50:97:
ef:34:74:e9:a3:29:25:a1:6a:50:d6:0e:eb:ea:d0:
ac:b9:63:25:ef:82:d9:46:b8:f0:54:1d:8f:67:6b:
fd:8b:d9:25:15:e6:4b:db:8f:1d:97:02:bf:63:08:
52:87:2c:8f:b8:92:51:5b:3a:58:ea:e5:81:53:24:
81:ba:df:84:b3:bb:6c:85:73:99:aa:74:6c:10:d6:
4e:7b:29:f3:56:09:22:ae:a0:76:75:21:48:8b:bb:
a4:bd:10:59:9e:c7:aa:65:e0:14:f1:75:25:7b:80:
f6:91:e3:70:ed:f6:ce:a3:91:1c:f5:08:64:d5:72:
6a:5e:a8:cc:bd:36:d8:17:c1:5c:85:7f:d2:8c:6c:
de:c1:c1:ed:53:ce:26:1b:cf:84:ae:77:f8:cf:b7:
27:c8:0a:95:c7:3a:e9:d7:c6:1d:04:1e:3d:30:6d:
92:98:bf:2d:c1:78:b9:f7:a7:62:2d:13:40:65:3d:
2b:d4:be:7e:df:0c:e0:2b:2c:b6:32:63:7c:d9:ef:
cc:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:B7:0F:FB:BA:AA:62:C5:1E:60:BE:B6:CF:D2:67:F0:F1:73:1A:78
X509v3 Authority Key Identifier:
keyid:9C:8A:18:76:FD:DC:2B:63:74:8B:45:7B:77:0B:79:A7:E6:6E:79:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nIoYdv3cK2N0i0V7dwt5p-ZueTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/9ea68f-743d-47da-b71c-709fbe84cdfb/1/ArcP-7qqYsUeYL62z9Jn8PFzGng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/9ea68f-743d-47da-b71c-709fbe84cdfb/1/nIoYdv3cK2N0i0V7dwt5p-ZueTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.16.0/22
45.152.152.0/22
91.198.78.0/24
185.115.172.0/22
185.203.92.0/22
193.16.97.0/24
Signature Algorithm: sha256WithRSAEncryption
36:c9:77:8c:4a:2a:3e:85:32:f7:2b:44:5f:5a:57:69:84:c2:
0a:e2:7d:b6:d5:2e:5e:6e:6d:f6:c3:8b:1c:8c:93:a3:8d:15:
66:90:b1:91:58:5f:81:c9:4b:c8:91:4a:35:f1:3b:00:d5:d6:
31:8a:d4:21:72:16:47:90:5e:97:fe:c9:76:a4:33:88:89:b3:
2a:f7:53:c7:5f:f5:d4:13:ed:9c:03:c0:c7:83:d8:bd:32:db:
7d:2a:7e:21:fe:96:7b:50:63:b9:13:57:32:3f:21:66:e8:80:
da:be:f0:79:f7:bd:d8:42:c6:a3:d2:2b:97:a4:25:83:aa:ae:
73:ee:ff:88:b7:43:84:89:cc:fc:ba:45:f7:a3:b9:04:00:fc:
b7:c5:72:cf:1f:c1:72:1d:93:82:e3:07:cb:8e:1c:32:2e:05:
30:ec:0d:fd:40:02:78:e9:e1:41:1c:3b:d8:7a:2a:04:e3:24:
11:81:05:ad:32:64:b0:68:21:62:4c:f0:b4:d8:23:cd:f7:ed:
44:17:b5:58:51:20:e0:92:c0:17:f7:b6:22:eb:12:fc:60:da:
be:18:2a:15:7c:68:55:99:a8:fa:d8:d5:dd:8b:83:71:3c:ad:
cd:29:d7:4a:66:9f:d3:7c:01:c2:f1:b1:1e:91:a1:e8:f2:7d:
bc:69:71:bc
-----BEGIN CERTIFICATE-----
MIIFDTCCA/WgAwIBAgIECEbptTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
YzhhMTg3NmZkZGMyYjYzNzQ4YjQ1N2I3NzBiNzlhN2U2NmU3OTNjMB4XDTIyMDEw
MTEzMDE0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDJiNzBmZmJiYWFh
NjJjNTFlNjBiZWI2Y2ZkMjY3ZjBmMTczMWE3ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANci6iQGA1jEAZtuGyMJGZDgV+Rndke1LRe2pH5qgKy4GR/i
IRhbXCYEK3PTZW1WJQK/ShRc0iD/GFCX7zR06aMpJaFqUNYO6+rQrLljJe+C2Ua4
8FQdj2dr/YvZJRXmS9uPHZcCv2MIUocsj7iSUVs6WOrlgVMkgbrfhLO7bIVzmap0
bBDWTnsp81YJIq6gdnUhSIu7pL0QWZ7HqmXgFPF1JXuA9pHjcO32zqORHPUIZNVy
al6ozL022BfBXIV/0oxs3sHB7VPOJhvPhK53+M+3J8gKlcc66dfGHQQePTBtkpi/
LcF4ufenYi0TQGU9K9S+ft8M4CsstjJjfNnvzBkCAwEAAaOCAicwggIjMB0GA1Ud
DgQWBBQCtw/7uqpixR5gvrbP0mfw8XMaeDAfBgNVHSMEGDAWgBScihh2/dwrY3SL
RXt3C3mn5m55PDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L25Jb1lkdjNjSzJOMGkwVjdkd3Q1cC1adWVUdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjMvOWVhNjhmLTc0M2QtNDdkYS1iNzFjLTcwOWZiZTg0Y2RmYi8x
L0FyY1AtN3FxWXNVZVlMNjJ6OUpuOFBGekduZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjMv
OWVhNjhmLTc0M2QtNDdkYS1iNzFjLTcwOWZiZTg0Y2RmYi8xL25Jb1lkdjNjSzJO
MGkwVjdkd3Q1cC1adWVUdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA9
BggrBgEFBQcBBwEB/wQuMCwwKgQCAAEwJAMEAi2PEAMEAi2YmAMEAFvGTgMEArlz
rAMEArnLXAMEAMEQYTANBgkqhkiG9w0BAQsFAAOCAQEANsl3jEoqPoUy9ytEX1pX
aYTCCuJ9ttUuXm5t9sOLHIyTo40VZpCxkVhfgclLyJFKNfE7ANXWMYrUIXIWR5Be
l/7JdqQziImzKvdTx1/11BPtnAPAx4PYvTLbfSp+If6We1BjuRNXMj8hZuiA2r7w
efe92ELGo9Irl6Qlg6quc+7/iLdDhInM/LpF96O5BAD8t8Vyzx/Bch2TguMHy44c
Mi4FMOwN/UACeOnhQRw72HoqBOMkEYEFrTJksGghYkzwtNgjzfftRBe1WFEg4JLA
F/e2IusS/GDavhgqFXxoVZmo+tjV3YuDcTytzSnXSmaf03wBwvGxHpGh6PJ9vGlx
vA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:32 2024 by rpki-client on console-fra.rpki-client.org