Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/668E6zKIEzT6kySyqWTjjIra0Go.roa
File: 668E6zKIEzT6kySyqWTjjIra0Go.roa (raw, json)
Hash identifier: 9e7wPxvMlfYoTmHSdkzjRZkR9GGYZAm0MjzmOufxnFA=
Subject key identifier: EB:AF:04:EB:32:88:13:34:FA:93:24:B2:A9:64:E3:8C:8A:DA:D0:6A
Certificate issuer: /CN=4b72066d7e6ca8ad2ffa62a69b067923a42df96f
Certificate serial: 0354CA7B
Authority key identifier: 4B:72:06:6D:7E:6C:A8:AD:2F:FA:62:A6:9B:06:79:23:A4:2D:F9:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/668E6zKIEzT6kySyqWTjjIra0Go.roa
Signing time: Sat 01 Jan 2022 11:03:30 +0000
ROA not before: Sat 01 Jan 2022 11:03:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212138
IP address blocks: 192.145.104.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55888507 (0x354ca7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b72066d7e6ca8ad2ffa62a69b067923a42df96f
Validity
Not Before: Jan 1 11:03:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ebaf04eb32881334fa9324b2a964e38c8adad06a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:70:c2:df:d7:97:52:93:f8:0b:95:b0:1a:ed:
77:1b:d4:42:a2:84:df:96:9c:1f:22:58:e0:dc:aa:
e6:f3:b4:32:91:d0:1f:b4:5c:7a:fc:58:45:24:85:
0f:e1:70:8b:95:fe:3c:2d:fa:dd:c9:8e:de:95:1f:
af:45:0d:b0:4d:cc:7e:af:42:80:73:c8:97:ac:75:
de:df:09:f9:f7:86:07:24:bc:a2:2c:e8:8c:c1:cb:
40:5e:0f:08:c1:60:00:e3:ba:0c:8f:8c:8d:59:f1:
10:2b:cb:8e:7a:e8:93:6c:39:ce:24:7b:8a:c7:34:
a2:eb:02:f4:4b:db:83:9c:be:87:59:a4:38:b6:21:
9a:23:7e:af:51:a4:9f:5d:53:be:4e:31:98:e2:dd:
9a:09:42:29:73:61:aa:52:7f:7b:c1:e8:73:7c:8f:
13:dd:bb:7e:e8:60:bd:fc:2e:65:93:66:f4:ea:d6:
83:69:54:4e:d4:60:36:ad:ca:65:ac:64:fe:a0:e3:
17:02:e2:ba:73:07:43:94:c1:c0:f6:90:66:06:f7:
bb:08:d7:10:f7:2b:8f:de:53:5d:2a:16:88:a3:e2:
16:01:97:44:13:10:16:9d:fd:53:86:1c:4b:e1:6b:
bb:21:f1:e9:17:d3:af:c2:98:0a:42:aa:7b:cc:95:
d9:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:AF:04:EB:32:88:13:34:FA:93:24:B2:A9:64:E3:8C:8A:DA:D0:6A
X509v3 Authority Key Identifier:
keyid:4B:72:06:6D:7E:6C:A8:AD:2F:FA:62:A6:9B:06:79:23:A4:2D:F9:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/668E6zKIEzT6kySyqWTjjIra0Go.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.145.104.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:05:ca:b1:98:fc:5a:46:82:9f:3b:ef:82:7d:49:0c:40:8e:
eb:9d:99:e8:c6:26:6b:6a:51:0c:35:57:ac:0d:52:3e:60:d4:
ae:97:c4:91:0c:a0:98:b9:ac:a7:eb:d0:6c:be:c1:fd:b2:b3:
1c:1a:2d:ec:3d:9c:f5:43:99:6d:9b:04:73:54:6c:22:af:0b:
5e:14:2b:20:6d:4b:c9:a5:4d:3e:be:66:f7:86:13:1a:87:b6:
c1:af:3e:94:69:b9:e6:55:33:ed:1d:49:d1:01:37:c2:20:3c:
c3:34:3e:22:4d:89:c5:c1:69:e5:02:da:a1:3e:02:27:9d:81:
24:03:4f:2e:3a:e8:9b:8c:72:a7:9f:97:2d:53:9d:cb:1c:0c:
a0:67:f1:26:fa:11:4a:71:bb:32:8b:5f:06:93:42:e9:21:f3:
65:33:70:85:f9:1e:21:2c:9e:cb:65:43:2e:de:91:b3:57:ab:
85:51:00:b9:01:95:b3:31:c0:81:1d:6b:2f:6b:bc:08:a1:6f:
38:00:94:47:f7:76:76:d4:bb:b1:0d:80:f3:9b:f4:25:c8:63:
07:7a:85:8a:6e:81:95:72:04:53:d6:ef:cc:82:38:f0:35:80:
0e:16:3b:e3:f2:4f:c3:c8:da:ee:4e:dc:42:7b:46:53:48:58:
b9:14:6e:d7
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA1TKezANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
YjcyMDY2ZDdlNmNhOGFkMmZmYTYyYTY5YjA2NzkyM2E0MmRmOTZmMB4XDTIyMDEw
MTExMDMzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWJhZjA0ZWIzMjg4
MTMzNGZhOTMyNGIyYTk2NGUzOGM4YWRhZDA2YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMNwwt/Xl1KT+AuVsBrtdxvUQqKE35acHyJY4Nyq5vO0MpHQ
H7RcevxYRSSFD+Fwi5X+PC363cmO3pUfr0UNsE3Mfq9CgHPIl6x13t8J+feGByS8
oizojMHLQF4PCMFgAOO6DI+MjVnxECvLjnrok2w5ziR7isc0ousC9Evbg5y+h1mk
OLYhmiN+r1Gkn11Tvk4xmOLdmglCKXNhqlJ/e8Hoc3yPE927fuhgvfwuZZNm9OrW
g2lUTtRgNq3KZaxk/qDjFwLiunMHQ5TBwPaQZgb3uwjXEPcrj95TXSoWiKPiFgGX
RBMQFp39U4YcS+FruyHx6RfTr8KYCkKqe8yV2VECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTrrwTrMogTNPqTJLKpZOOMitrQajAfBgNVHSMEGDAWgBRLcgZtfmyorS/6
YqabBnkjpC35bzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1MzSUdiWDVzcUswdi1tS21td1o1STZRdC1XOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDUvYTY0YjA5LTY0ZGYtNDcwYy1hNjRkLTFmNjk5MTg3N2IyNi8x
LzY2OEU2ektJRXpUNmt5U3lxV1RqaklyYTBHby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDUv
YTY0YjA5LTY0ZGYtNDcwYy1hNjRkLTFmNjk5MTg3N2IyNi8xL1MzSUdiWDVzcUsw
di1tS21td1o1STZRdC1XOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsCRaDANBgkqhkiG9w0BAQsFAAOC
AQEALQXKsZj8WkaCnzvvgn1JDECO652Z6MYma2pRDDVXrA1SPmDUrpfEkQygmLms
p+vQbL7B/bKzHBot7D2c9UOZbZsEc1RsIq8LXhQrIG1LyaVNPr5m94YTGoe2wa8+
lGm55lUz7R1J0QE3wiA8wzQ+Ik2JxcFp5QLaoT4CJ52BJANPLjrom4xyp5+XLVOd
yxwMoGfxJvoRSnG7MotfBpNC6SHzZTNwhfkeISyey2VDLt6Rs1erhVEAuQGVszHA
gR1rL2u8CKFvOACUR/d2dtS7sQ2A85v0JchjB3qFim6BlXIEU9bvzII48DWADhY7
4/JPw8ja7k7cQntGU0hYuRRu1w==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:07 2023 by rpki-client on console.sobornost.net