Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/bb54d1-892d-4711-a9cf-76f135c4f311/1/aNSUboXMYqE9P7Zncx5dvQg1cig.roa
File: aNSUboXMYqE9P7Zncx5dvQg1cig.roa (raw, json)
Hash identifier: Lsza4Paf0wtoo6ow84hltShz/LWQsxKQPAs/w/nGN6s=
Subject key identifier: 68:D4:94:6E:85:CC:62:A1:3D:3F:B6:67:73:1E:5D:BD:08:35:72:28
Certificate issuer: /CN=368e35a05f2707b5a741c2a72f5e4bb34c9b09a8
Certificate serial: 32C9D689
Authority key identifier: 36:8E:35:A0:5F:27:07:B5:A7:41:C2:A7:2F:5E:4B:B3:4C:9B:09:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/No41oF8nB7WnQcKnL15Ls0ybCag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/bb54d1-892d-4711-a9cf-76f135c4f311/1/aNSUboXMYqE9P7Zncx5dvQg1cig.roa
Signing time: Sat 01 Jan 2022 07:01:06 +0000
ROA not before: Sat 01 Jan 2022 07:01:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8596
IP address blocks: 185.74.0.0/22 maxlen: 22
82.150.192.0/19 maxlen: 19
2a02:5d8::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 852088457 (0x32c9d689)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368e35a05f2707b5a741c2a72f5e4bb34c9b09a8
Validity
Not Before: Jan 1 07:01:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=68d4946e85cc62a13d3fb667731e5dbd08357228
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:95:a5:33:d0:b4:7a:43:28:9d:f4:91:dd:e9:
df:8c:f7:71:d6:45:c0:ae:b2:c3:d7:11:9b:7a:59:
72:ce:af:9c:ce:18:4f:bb:b5:d8:6d:74:d5:3a:5d:
55:b6:c4:fd:1d:dc:98:7f:70:c7:e8:14:f2:37:cd:
ec:9a:f9:9b:f5:59:ad:4f:0c:0c:a3:8f:88:a4:a0:
55:9d:d7:2b:3e:eb:8b:8c:40:b6:7c:7a:b9:87:76:
c9:56:33:f7:06:80:76:07:39:2c:96:4e:75:2e:84:
be:f1:bb:59:f3:db:e4:87:c0:4e:2c:63:b1:68:d1:
8e:ba:79:76:9b:c1:fe:28:45:85:55:f0:9f:46:87:
2f:a1:68:58:f4:0f:29:cf:0c:a2:d3:91:2f:b0:32:
77:2f:67:e1:a1:55:3b:f8:4e:87:aa:05:07:97:75:
61:a0:f1:e9:44:f4:91:6b:fc:5e:bc:01:2b:62:2a:
96:6f:a6:36:cc:b9:1f:f9:58:62:86:ab:72:4e:ef:
51:db:21:7f:88:48:f5:82:82:90:8a:65:c9:dd:c0:
99:aa:bf:21:15:43:e6:9f:51:f0:d9:6d:78:a3:67:
a4:8d:d3:27:64:e0:6e:91:2b:92:18:df:1c:ce:fa:
f6:63:34:e5:aa:29:f0:4f:f6:52:84:8a:b2:d7:ca:
20:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:D4:94:6E:85:CC:62:A1:3D:3F:B6:67:73:1E:5D:BD:08:35:72:28
X509v3 Authority Key Identifier:
keyid:36:8E:35:A0:5F:27:07:B5:A7:41:C2:A7:2F:5E:4B:B3:4C:9B:09:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/No41oF8nB7WnQcKnL15Ls0ybCag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/bb54d1-892d-4711-a9cf-76f135c4f311/1/aNSUboXMYqE9P7Zncx5dvQg1cig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/bb54d1-892d-4711-a9cf-76f135c4f311/1/No41oF8nB7WnQcKnL15Ls0ybCag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.150.192.0/19
185.74.0.0/22
IPv6:
2a02:5d8::/32
Signature Algorithm: sha256WithRSAEncryption
a5:50:b3:7d:07:de:58:4b:86:fa:45:0d:51:c8:ff:d3:33:d2:
fa:ac:c2:47:04:30:bd:6a:73:20:54:be:32:54:76:2d:b2:de:
3f:a5:d4:54:e4:5f:6a:cf:42:7c:1b:d5:a1:9c:2e:a9:b6:6d:
61:e8:d3:64:fc:3f:4b:19:f0:8e:14:88:45:e3:78:18:cb:17:
de:bc:d9:72:6c:26:0d:07:74:05:fd:bb:33:be:53:66:73:04:
01:50:55:fd:0a:5d:3f:a1:9d:a3:2b:1b:29:0f:e8:91:44:fb:
00:46:4c:47:f0:8e:8b:25:7c:cf:86:9d:45:31:ef:41:60:4a:
e1:05:b1:33:4b:28:bb:c6:75:19:00:ea:a4:29:c3:5e:7f:3b:
2f:b1:54:28:9b:ef:4d:15:af:7c:f9:af:c0:96:99:e5:f0:fc:
f6:37:fa:80:c5:7a:a3:06:38:f2:86:0b:ea:1f:fe:07:aa:f8:
d5:7f:9e:56:d3:ed:d7:81:e2:77:65:2b:a4:7a:49:97:09:96:
a9:f0:04:7b:7b:2c:09:d0:89:76:f8:81:cb:db:e1:9f:a7:cb:
b3:e6:e9:8f:61:1b:78:ea:cf:aa:20:7b:19:4c:b7:19:e4:ad:
ff:e9:ad:a8:9f:2b:df:b9:d6:ac:aa:cc:a9:91:38:a7:20:59:
3a:b2:e7:13
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEMsnWiTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NjhlMzVhMDVmMjcwN2I1YTc0MWMyYTcyZjVlNGJiMzRjOWIwOWE4MB4XDTIyMDEw
MTA3MDEwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjhkNDk0NmU4NWNj
NjJhMTNkM2ZiNjY3NzMxZTVkYmQwODM1NzIyODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKuVpTPQtHpDKJ30kd3p34z3cdZFwK6yw9cRm3pZcs6vnM4Y
T7u12G101TpdVbbE/R3cmH9wx+gU8jfN7Jr5m/VZrU8MDKOPiKSgVZ3XKz7ri4xA
tnx6uYd2yVYz9waAdgc5LJZOdS6EvvG7WfPb5IfATixjsWjRjrp5dpvB/ihFhVXw
n0aHL6FoWPQPKc8MotORL7Aydy9n4aFVO/hOh6oFB5d1YaDx6UT0kWv8XrwBK2Iq
lm+mNsy5H/lYYoarck7vUdshf4hI9YKCkIplyd3Amaq/IRVD5p9R8NlteKNnpI3T
J2TgbpErkhjfHM769mM05aop8E/2UoSKstfKIGECAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBRo1JRuhcxioT0/tmdzHl29CDVyKDAfBgNVHSMEGDAWgBQ2jjWgXycHtadB
wqcvXkuzTJsJqDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05vNDFvRjhuQjdXblFjS25MMTVMczB5YkNhZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTUvYmI1NGQxLTg5MmQtNDcxMS1hOWNmLTc2ZjEzNWM0ZjMxMS8x
L2FOU1Vib1hNWXFFOVA3Wm5jeDVkdlFnMWNpZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTUv
YmI1NGQxLTg5MmQtNDcxMS1hOWNmLTc2ZjEzNWM0ZjMxMS8xL05vNDFvRjhuQjdX
blFjS25MMTVMczB5YkNhZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEBVKWwAMEArlKADANBAIAAjAHAwUA
KgIF2DANBgkqhkiG9w0BAQsFAAOCAQEApVCzfQfeWEuG+kUNUcj/0zPS+qzCRwQw
vWpzIFS+MlR2LbLeP6XUVORfas9CfBvVoZwuqbZtYejTZPw/SxnwjhSIReN4GMsX
3rzZcmwmDQd0Bf27M75TZnMEAVBV/QpdP6GdoysbKQ/okUT7AEZMR/COiyV8z4ad
RTHvQWBK4QWxM0sou8Z1GQDqpCnDXn87L7FUKJvvTRWvfPmvwJaZ5fD89jf6gMV6
owY48oYL6h/+B6r41X+eVtPt14Hid2UrpHpJlwmWqfAEe3ssCdCJdviBy9vhn6fL
s+bpj2EbeOrPqiB7GUy3GeSt/+mtqJ8r37nWrKrMqZE4pyBZOrLnEw==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:27 2023 by rpki-client on console.sobornost.net