Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/M38KZSYpHaplQ53AcHax-5-voYo.roa
File: M38KZSYpHaplQ53AcHax-5-voYo.roa (raw, json)
Hash identifier: VrYtUkqQNGx9qFVj5QOg8TGK2C83DcrqBPLvF8D4ABw=
Subject key identifier: 33:7F:0A:65:26:29:1D:AA:65:43:9D:C0:70:76:B1:FB:9F:AF:A1:8A
Certificate issuer: /CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Certificate serial: 0184D81FBA0E8D752C0A8BD1999128C064FA
Authority key identifier: 6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/M38KZSYpHaplQ53AcHax-5-voYo.roa
Signing time: Sat 03 Dec 2022 13:14:28 +0000
ROA not before: Sat 03 Dec 2022 13:14:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 109.111.56.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d8:1f:ba:0e:8d:75:2c:0a:8b:d1:99:91:28:c0:64:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Validity
Not Before: Dec 3 13:14:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=337f0a6526291daa65439dc07076b1fb9fafa18a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:39:eb:44:b1:89:96:f5:9b:27:81:73:97:2c:
5b:5c:06:ca:12:13:fa:ce:f8:82:3b:22:58:20:52:
55:7b:9f:f2:e8:ea:ad:28:18:27:d7:bd:90:8e:0e:
e3:cb:33:6a:ef:8c:49:7c:bf:1a:14:88:cc:cd:2a:
01:42:ef:58:20:27:f4:a0:1d:d2:34:56:43:48:6a:
04:cd:84:4c:07:ef:9e:a0:b3:a0:76:2b:58:12:80:
c2:e0:97:8a:bb:f0:d5:f8:94:b5:78:f1:af:75:9c:
39:d4:52:a1:b6:6e:c2:97:f1:0b:30:c1:f6:2a:00:
39:41:f8:7b:5c:db:12:12:e0:95:ec:91:75:60:89:
08:a0:6c:df:b1:cf:9f:8b:ba:0f:65:c6:a2:bb:27:
46:4d:2f:5a:38:80:16:08:da:75:05:ce:05:47:82:
dd:0c:4d:47:af:aa:96:5a:8e:98:fe:b0:7b:f5:9d:
93:79:ce:8e:91:93:8a:23:7d:9f:73:4e:bd:b2:62:
9c:a3:3c:1f:0d:8b:b6:cb:7c:49:be:9a:c8:d4:f5:
03:00:7e:a4:b3:c7:18:4c:c7:ef:68:5b:7f:e7:ca:
5d:63:06:e9:9c:93:7a:2c:27:84:9c:d4:95:82:82:
0f:c9:ea:7b:01:fa:b7:26:ef:e6:8d:fb:84:a7:30:
6c:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:7F:0A:65:26:29:1D:AA:65:43:9D:C0:70:76:B1:FB:9F:AF:A1:8A
X509v3 Authority Key Identifier:
keyid:6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/M38KZSYpHaplQ53AcHax-5-voYo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/b3Xk6Utct0UXt7AVaAFdqebuzbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.111.56.0/22
Signature Algorithm: sha256WithRSAEncryption
63:5c:0a:74:2f:3d:95:dd:a6:90:f6:bd:98:3f:72:ed:60:7b:
1a:8c:2d:37:ea:60:9a:72:89:a0:14:e6:3f:f8:bd:52:1c:6a:
72:7e:49:c5:f8:23:d2:23:7f:a1:3c:9b:3f:d0:85:71:78:b7:
f2:60:39:2d:c5:93:51:2a:26:1d:ca:05:09:be:f6:d0:d2:b2:
f2:77:b5:23:6f:ab:16:1c:77:63:d0:67:9f:b6:ba:13:bb:0c:
a6:a4:50:b9:2c:7f:4e:97:57:ad:be:e9:9f:aa:19:f5:c7:a9:
df:f0:fb:81:f3:c7:ab:ee:ed:ce:54:38:df:14:8b:4a:ea:a0:
ff:98:94:7f:1a:15:e8:25:41:ba:6d:7d:22:6d:17:21:73:9b:
e7:20:c3:6d:90:36:cb:e7:d4:1f:8c:2d:61:37:cc:c2:7c:72:
0a:87:d3:06:b5:45:7e:b8:92:7a:77:37:17:32:68:0b:ee:f3:
6e:4e:98:1c:3d:9f:58:9e:93:5c:ee:24:f6:c6:74:7e:5e:ca:
42:9d:7a:4a:26:71:c7:77:34:4b:c0:7a:e9:28:ae:95:40:d2:
58:89:84:65:d5:e3:bf:57:97:e0:44:43:72:35:7b:bc:63:82:
69:41:05:8f:90:60:3a:a1:62:97:55:50:36:c4:f3:23:40:7d:
2b:d9:92:13
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYTYH7oOjXUsCovRmZEowGT6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmNzVlNGU5NGI1Y2I3NDUxN2I3YjAxNTY4MDE1ZGE5ZTZl
ZWNkYjYwHhcNMjIxMjAzMTMxNDI4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMzdmMGE2NTI2MjkxZGFhNjU0MzlkYzA3MDc2YjFmYjlmYWZhMThhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoznrRLGJlvWbJ4FzlyxbXAbKEhP6
zviCOyJYIFJVe5/y6OqtKBgn172Qjg7jyzNq74xJfL8aFIjMzSoBQu9YICf0oB3S
NFZDSGoEzYRMB++eoLOgditYEoDC4JeKu/DV+JS1ePGvdZw51FKhtm7Cl/ELMMH2
KgA5Qfh7XNsSEuCV7JF1YIkIoGzfsc+fi7oPZcaiuydGTS9aOIAWCNp1Bc4FR4Ld
DE1Hr6qWWo6Y/rB79Z2Tec6OkZOKI32fc069smKcozwfDYu2y3xJvprI1PUDAH6k
s8cYTMfvaFt/58pdYwbpnJN6LCeEnNSVgoIPyep7Afq3Ju/mjfuEpzBsgQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDN/CmUmKR2qZUOdwHB2sfufr6GKMB8GA1UdIwQY
MBaAFG915OlLXLdFF7ewFWgBXanm7s22MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYjNYazZVdGN0MFVYdDdBVmFBRmRxZWJ1emJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi81N2EzNGYtZTMzYi00ZTE3LWJjMzIt
NjY0NTc3MjRjMmQzLzEvTTM4S1pTWXBIYXBsUTUzQWNIYXgtNS12b1lvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi81N2EzNGYtZTMzYi00ZTE3LWJjMzItNjY0NTc3MjRjMmQz
LzEvYjNYazZVdGN0MFVYdDdBVmFBRmRxZWJ1emJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCbW84MA0G
CSqGSIb3DQEBCwUAA4IBAQBjXAp0Lz2V3aaQ9r2YP3LtYHsajC036mCacomgFOY/
+L1SHGpyfknF+CPSI3+hPJs/0IVxeLfyYDktxZNRKiYdygUJvvbQ0rLyd7Ujb6sW
HHdj0GeftroTuwympFC5LH9Ol1etvumfqhn1x6nf8PuB88er7u3OVDjfFItK6qD/
mJR/GhXoJUG6bX0ibRchc5vnIMNtkDbL59QfjC1hN8zCfHIKh9MGtUV+uJJ6dzcX
MmgL7vNuTpgcPZ9YnpNc7iT2xnR+XspCnXpKJnHHdzRLwHrpKK6VQNJYiYRl1eO/
V5fgRENyNXu8Y4JpQQWPkGA6oWKXVVA2xPMjQH0r2ZIT
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:50 2023 by rpki-client on console.sobornost.net