Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/a4c294-6b52-484e-8265-fc2f5fa77555/1/KrROmMHwew2hYVBjmAxcIn0AFEs.roa
File: KrROmMHwew2hYVBjmAxcIn0AFEs.roa (raw, json)
Hash identifier: 4athHVFQwiUjeaZd6sVwa8mQt2JxqRQhaQFUFUU81K0=
Subject key identifier: 2A:B4:4E:98:C1:F0:7B:0D:A1:61:50:63:98:0C:5C:22:7D:00:14:4B
Certificate issuer: /CN=8c7f325f9aaeb93a83c39e78145c41937d586b77
Certificate serial: 080CFA3B
Authority key identifier: 8C:7F:32:5F:9A:AE:B9:3A:83:C3:9E:78:14:5C:41:93:7D:58:6B:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jH8yX5quuTqDw554FFxBk31Ya3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/a4c294-6b52-484e-8265-fc2f5fa77555/1/KrROmMHwew2hYVBjmAxcIn0AFEs.roa
Signing time: Mon 03 Jan 2022 12:26:39 +0000
ROA not before: Mon 03 Jan 2022 12:26:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35699
IP address blocks: 82.199.40.0/24 maxlen: 24
82.199.43.0/24 maxlen: 24
193.42.28.0/22 maxlen: 22
82.199.57.0/24 maxlen: 24
82.199.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135068219 (0x80cfa3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c7f325f9aaeb93a83c39e78145c41937d586b77
Validity
Not Before: Jan 3 12:26:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ab44e98c1f07b0da1615063980c5c227d00144b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:47:1c:f5:0c:e4:ab:45:41:3c:de:88:3a:65:
c7:c2:51:95:e5:6b:cd:73:5b:e3:eb:18:76:46:64:
0f:f6:58:ea:02:2a:97:b0:1e:4e:29:89:a0:6f:7a:
30:75:23:e1:02:af:30:ab:7b:5a:13:31:ad:29:dc:
3c:7a:9b:88:ed:61:90:09:cc:0b:11:dc:32:bb:03:
f4:a2:9f:cd:96:43:74:01:fa:f5:3d:2e:88:8b:39:
0c:f1:69:2e:f3:03:7f:87:ad:c7:64:d5:12:e5:fa:
bc:21:24:d7:e7:b0:ce:7c:53:7f:cc:c8:d7:58:f3:
6f:79:36:3b:fb:11:a2:9e:48:1c:03:12:d2:60:75:
67:8d:9b:e0:88:c0:26:ca:2d:22:ec:d0:83:ef:3a:
9f:4b:57:b6:12:c5:e0:1b:84:36:85:02:e8:e1:fa:
f4:38:85:a9:2d:b2:b4:29:f1:17:80:71:a5:40:0d:
5a:bf:98:52:c1:8f:d8:bb:97:74:f8:83:de:c3:f7:
33:ff:4d:7a:3d:74:30:6f:a2:70:f5:1e:8e:34:a9:
d7:cc:5c:23:07:3e:89:60:4a:db:82:78:7b:47:18:
00:a0:3a:69:47:73:97:81:4a:34:da:f5:be:30:0a:
7c:00:61:42:e5:2f:ef:fb:c2:ac:76:8e:ce:c1:c4:
04:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:B4:4E:98:C1:F0:7B:0D:A1:61:50:63:98:0C:5C:22:7D:00:14:4B
X509v3 Authority Key Identifier:
keyid:8C:7F:32:5F:9A:AE:B9:3A:83:C3:9E:78:14:5C:41:93:7D:58:6B:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jH8yX5quuTqDw554FFxBk31Ya3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/a4c294-6b52-484e-8265-fc2f5fa77555/1/KrROmMHwew2hYVBjmAxcIn0AFEs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/a4c294-6b52-484e-8265-fc2f5fa77555/1/jH8yX5quuTqDw554FFxBk31Ya3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.199.40.0/24
82.199.43.0/24
82.199.57.0/24
82.199.63.0/24
193.42.28.0/22
Signature Algorithm: sha256WithRSAEncryption
74:48:b2:be:8d:89:be:c3:3d:ba:de:9b:07:98:8b:93:69:4b:
3e:31:95:da:3d:83:4b:4a:ca:6e:97:2e:b9:dc:6f:b5:bb:60:
4c:3d:f0:be:b4:8a:8f:72:8a:68:4a:5a:00:e0:1d:87:e1:50:
48:78:06:cb:9f:a6:01:15:59:38:7c:82:02:21:aa:37:73:1a:
89:db:3d:ec:dd:d3:a5:b3:63:a6:41:6f:1d:bd:33:2a:12:91:
71:02:a8:59:a0:8b:43:71:cf:5c:91:0d:9a:5f:4d:11:32:84:
22:f9:2e:e1:43:f0:3b:c2:22:01:46:9e:11:d1:c2:4b:6e:a8:
56:10:cf:89:c7:db:7b:e5:29:4e:8d:7e:11:05:02:07:ac:64:
ed:21:97:31:da:e8:06:16:b9:13:cf:df:d5:0c:64:b7:b4:67:
96:68:7c:6e:08:bd:df:15:1d:9f:4b:2c:46:42:91:bf:7c:b4:
3a:90:9b:2e:4f:81:30:22:09:da:f4:ed:73:b0:e3:4c:02:9f:
11:76:3b:ef:a8:fc:d5:b2:10:e5:f9:b2:ac:20:6b:69:26:86:
58:ca:08:5a:f8:1c:78:ed:37:9a:28:86:8c:82:86:e3:a9:86:
18:de:17:4d:97:1f:f0:30:23:4c:43:57:4f:f1:70:73:46:8e:
5d:11:c7:c6
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIECAz6OzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
YzdmMzI1ZjlhYWViOTNhODNjMzllNzgxNDVjNDE5MzdkNTg2Yjc3MB4XDTIyMDEw
MzEyMjYzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmFiNDRlOThjMWYw
N2IwZGExNjE1MDYzOTgwYzVjMjI3ZDAwMTQ0YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL1HHPUM5KtFQTzeiDplx8JRleVrzXNb4+sYdkZkD/ZY6gIq
l7AeTimJoG96MHUj4QKvMKt7WhMxrSncPHqbiO1hkAnMCxHcMrsD9KKfzZZDdAH6
9T0uiIs5DPFpLvMDf4etx2TVEuX6vCEk1+ewznxTf8zI11jzb3k2O/sRop5IHAMS
0mB1Z42b4IjAJsotIuzQg+86n0tXthLF4BuENoUC6OH69DiFqS2ytCnxF4BxpUAN
Wr+YUsGP2LuXdPiD3sP3M/9Nej10MG+icPUejjSp18xcIwc+iWBK24J4e0cYAKA6
aUdzl4FKNNr1vjAKfABhQuUv7/vCrHaOzsHEBK0CAwEAAaOCAiEwggIdMB0GA1Ud
DgQWBBQqtE6YwfB7DaFhUGOYDFwifQAUSzAfBgNVHSMEGDAWgBSMfzJfmq65OoPD
nngUXEGTfVhrdzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2pIOHlYNXF1dVRxRHc1NTRGRnhCazMxWWEzYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmQvYTRjMjk0LTZiNTItNDg0ZS04MjY1LWZjMmY1ZmE3NzU1NS8x
L0tyUk9tTUh3ZXcyaFlWQmptQXhjSW4wQUZFcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmQv
YTRjMjk0LTZiNTItNDg0ZS04MjY1LWZjMmY1ZmE3NzU1NS8xL2pIOHlYNXF1dVRx
RHc1NTRGRnhCazMxWWEzYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA3
BggrBgEFBQcBBwEB/wQoMCYwJAQCAAEwHgMEAFLHKAMEAFLHKwMEAFLHOQMEAFLH
PwMEAsEqHDANBgkqhkiG9w0BAQsFAAOCAQEAdEiyvo2JvsM9ut6bB5iLk2lLPjGV
2j2DS0rKbpcuudxvtbtgTD3wvrSKj3KKaEpaAOAdh+FQSHgGy5+mARVZOHyCAiGq
N3Maids97N3TpbNjpkFvHb0zKhKRcQKoWaCLQ3HPXJENml9NETKEIvku4UPwO8Ii
AUaeEdHCS26oVhDPicfbe+UpTo1+EQUCB6xk7SGXMdroBha5E8/f1Qxkt7Rnlmh8
bgi93xUdn0ssRkKRv3y0OpCbLk+BMCIJ2vTtc7DjTAKfEXY776j81bIQ5fmyrCBr
aSaGWMoIWvgceO03miiGjIKG46mGGN4XTZcf8DAjTENXT/Fwc0aOXRHHxg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:57 2024 by rpki-client on console-fra.rpki-client.org