Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/54c1d1-363b-45ba-8927-9689fbf6f6ee/1/PY7ugw45vy4qTSArHzx4h8zQ6RI.roa
File: PY7ugw45vy4qTSArHzx4h8zQ6RI.roa (raw, json)
Hash identifier: f+hvVKNniW9t1z5b0S1zsN3KJVLvlBnqde6sryS1AeM=
Subject key identifier: 3D:8E:EE:83:0E:39:BF:2E:2A:4D:20:2B:1F:3C:78:87:CC:D0:E9:12
Certificate issuer: /CN=3ebc9e51baab3c3e6ab699fcb443f007f546c3fb
Certificate serial: 1266ACA0
Authority key identifier: 3E:BC:9E:51:BA:AB:3C:3E:6A:B6:99:FC:B4:43:F0:07:F5:46:C3:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PryeUbqrPD5qtpn8tEPwB_VGw_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/54c1d1-363b-45ba-8927-9689fbf6f6ee/1/PY7ugw45vy4qTSArHzx4h8zQ6RI.roa
Signing time: Sat 01 Jan 2022 15:04:10 +0000
ROA not before: Sat 01 Jan 2022 15:04:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1161
IP address blocks: 131.155.0.0/16 maxlen: 16
192.31.168.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 308718752 (0x1266aca0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ebc9e51baab3c3e6ab699fcb443f007f546c3fb
Validity
Not Before: Jan 1 15:04:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d8eee830e39bf2e2a4d202b1f3c7887ccd0e912
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b8:01:bb:a4:57:a6:5a:af:0f:7f:aa:fd:f5:
05:14:b7:c8:ac:7c:f4:e9:20:4b:b9:6f:63:42:2e:
d2:24:22:0d:8f:25:29:66:57:2e:e2:03:da:e4:ad:
94:04:da:b0:2c:08:c4:47:e8:2c:5c:ce:74:46:19:
94:5d:4c:c6:e3:8f:ff:a9:20:bc:2f:de:d5:41:fa:
8f:b3:74:0b:d1:36:02:52:65:88:fa:55:bb:3f:d3:
c5:86:db:e5:50:c1:84:37:5b:0a:fa:8f:ce:56:ce:
35:22:40:d0:44:a6:82:3e:2f:99:78:87:e5:5f:23:
8f:60:0b:84:7f:4a:ae:c0:fc:fc:19:16:79:99:cd:
84:2f:a0:02:9d:1b:af:77:84:2c:65:13:83:06:ef:
8f:23:44:28:26:e1:d1:31:f7:ae:29:3e:2a:c3:72:
a9:09:bb:cc:43:9d:cb:d2:eb:c4:7a:27:1e:5e:4d:
02:b4:8e:61:49:12:47:b8:75:be:cf:11:5b:4d:db:
2a:18:40:c1:c5:26:89:b8:93:43:a4:6a:66:08:33:
65:5d:9f:c8:f5:17:43:09:24:5d:f8:81:e9:81:00:
ef:09:3e:56:e9:0b:f7:32:16:b8:50:73:f9:a4:83:
6a:82:77:b1:11:81:34:1d:99:de:bd:70:6d:a5:c6:
c0:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:8E:EE:83:0E:39:BF:2E:2A:4D:20:2B:1F:3C:78:87:CC:D0:E9:12
X509v3 Authority Key Identifier:
keyid:3E:BC:9E:51:BA:AB:3C:3E:6A:B6:99:FC:B4:43:F0:07:F5:46:C3:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PryeUbqrPD5qtpn8tEPwB_VGw_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/54c1d1-363b-45ba-8927-9689fbf6f6ee/1/PY7ugw45vy4qTSArHzx4h8zQ6RI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/54c1d1-363b-45ba-8927-9689fbf6f6ee/1/PryeUbqrPD5qtpn8tEPwB_VGw_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.155.0.0/16
192.31.168.0/22
Signature Algorithm: sha256WithRSAEncryption
69:d7:ff:3d:f6:d1:8a:a7:ac:72:4f:84:5b:e5:fc:e2:cf:a9:
91:7a:16:1a:17:cf:13:ef:39:e0:5c:dc:df:9a:7b:37:18:d9:
18:e4:f6:65:02:96:55:92:95:04:f8:9b:f1:96:b9:03:6e:f6:
57:12:c7:e8:9e:40:90:36:d8:cd:ec:05:cc:87:8d:07:fa:ed:
8b:30:01:52:9b:60:62:eb:22:cb:35:11:f6:c7:e9:b3:cb:80:
22:72:07:bf:cc:f7:b4:c5:eb:19:79:ed:f6:41:54:e4:dd:ba:
13:bb:0c:0f:3f:f0:9d:ab:45:e3:09:ca:f6:e7:48:47:ff:5f:
5e:3c:12:bb:8e:a8:b4:ef:ad:59:1d:f4:aa:1f:a6:b1:8e:78:
48:f5:4f:31:8f:50:3d:17:15:51:a7:de:dd:30:50:07:f9:31:
1a:26:a0:b2:a7:97:02:46:88:cf:47:4a:64:75:d9:86:26:1d:
38:78:c7:96:05:f7:af:87:5d:a4:cd:b0:aa:43:71:87:f1:9c:
83:d9:a6:4b:40:58:7c:bb:d1:e6:a2:3b:03:99:15:c9:37:b1:
c4:5f:d7:e8:f8:68:db:94:56:73:8a:aa:ba:5d:00:19:6d:e9:
eb:6e:95:16:b0:c3:03:bc:81:0b:a5:29:b1:57:c3:f6:17:fd:
c3:24:e5:9c
-----BEGIN CERTIFICATE-----
MIIE9DCCA9ygAwIBAgIEEmasoDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
ZWJjOWU1MWJhYWIzYzNlNmFiNjk5ZmNiNDQzZjAwN2Y1NDZjM2ZiMB4XDTIyMDEw
MTE1MDQxMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2Q4ZWVlODMwZTM5
YmYyZTJhNGQyMDJiMWYzYzc4ODdjY2QwZTkxMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ+4AbukV6Zarw9/qv31BRS3yKx89OkgS7lvY0Iu0iQiDY8l
KWZXLuID2uStlATasCwIxEfoLFzOdEYZlF1MxuOP/6kgvC/e1UH6j7N0C9E2AlJl
iPpVuz/TxYbb5VDBhDdbCvqPzlbONSJA0ESmgj4vmXiH5V8jj2ALhH9KrsD8/BkW
eZnNhC+gAp0br3eELGUTgwbvjyNEKCbh0TH3rik+KsNyqQm7zEOdy9LrxHonHl5N
ArSOYUkSR7h1vs8RW03bKhhAwcUmibiTQ6RqZggzZV2fyPUXQwkkXfiB6YEA7wk+
VukL9zIWuFBz+aSDaoJ3sRGBNB2Z3r1wbaXGwJ0CAwEAAaOCAg4wggIKMB0GA1Ud
DgQWBBQ9ju6DDjm/LipNICsfPHiHzNDpEjAfBgNVHSMEGDAWgBQ+vJ5Ruqs8Pmq2
mfy0Q/AH9UbD+zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ByeWVVYnFyUEQ1cXRwbjh0RVB3Ql9WR3dfcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTgvNTRjMWQxLTM2M2ItNDViYS04OTI3LTk2ODlmYmY2ZjZlZS8x
L1BZN3VndzQ1dnk0cVRTQXJIeng0aDh6UTZSSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTgv
NTRjMWQxLTM2M2ItNDViYS04OTI3LTk2ODlmYmY2ZjZlZS8xL1ByeWVVYnFyUEQ1
cXRwbjh0RVB3Ql9WR3dfcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAk
BggrBgEFBQcBBwEB/wQVMBMwEQQCAAEwCwMDAIObAwQCwB+oMA0GCSqGSIb3DQEB
CwUAA4IBAQBp1/899tGKp6xyT4Rb5fziz6mRehYaF88T7zngXNzfmns3GNkY5PZl
ApZVkpUE+JvxlrkDbvZXEsfonkCQNtjN7AXMh40H+u2LMAFSm2Bi6yLLNRH2x+mz
y4Aicge/zPe0xesZee32QVTk3boTuwwPP/Cdq0XjCcr250hH/19ePBK7jqi0761Z
HfSqH6axjnhI9U8xj1A9FxVRp97dMFAH+TEaJqCyp5cCRojPR0pkddmGJh04eMeW
Bfevh12kzbCqQ3GH8ZyD2aZLQFh8u9HmojsDmRXJN7HEX9fo+GjblFZziqq6XQAZ
benrbpUWsMMDvIELpSmxV8P2F/3DJOWc
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:22 2023 by rpki-client on console.sobornost.net