Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/c36836-a2c8-4771-a958-974fcfef263b/1/tAEKngMdt_6C2L1tt0OxxF0pBwE.roa
File: tAEKngMdt_6C2L1tt0OxxF0pBwE.roa (raw, json)
Hash identifier: x2IecqOfOB0IptLoQ2sQ7bGCKpuFBWY0U3SoyCpiQJI=
Subject key identifier: B4:01:0A:9E:03:1D:B7:FE:82:D8:BD:6D:B7:43:B1:C4:5D:29:07:01
Certificate issuer: /CN=1b2646828a9ea7bf8d40b4f9f0ba44ccdcb2cedd
Certificate serial: 0183DB07FC5D61C699844ED8A3F6E17879DA
Authority key identifier: 1B:26:46:82:8A:9E:A7:BF:8D:40:B4:F9:F0:BA:44:CC:DC:B2:CE:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GyZGgoqep7-NQLT58LpEzNyyzt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/c36836-a2c8-4771-a958-974fcfef263b/1/tAEKngMdt_6C2L1tt0OxxF0pBwE.roa
Signing time: Sat 15 Oct 2022 09:44:37 +0000
ROA not before: Sat 15 Oct 2022 09:44:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212889
IP address blocks: 185.238.70.0/24 maxlen: 24
185.238.71.0/24 maxlen: 24
185.238.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:db:07:fc:5d:61:c6:99:84:4e:d8:a3:f6:e1:78:79:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b2646828a9ea7bf8d40b4f9f0ba44ccdcb2cedd
Validity
Not Before: Oct 15 09:44:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b4010a9e031db7fe82d8bd6db743b1c45d290701
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:97:75:5e:b4:d1:b6:ee:cb:94:bb:30:9f:62:
03:47:bf:50:04:f5:b9:b2:09:9d:5f:65:f0:72:ff:
fd:1f:a0:19:d2:a9:41:82:77:98:6d:c2:b9:ea:16:
94:31:43:64:45:ad:fb:44:04:fb:08:ee:ae:ad:36:
5a:5f:f9:8d:03:e0:10:25:7a:b1:f7:05:b2:dc:33:
96:17:d5:28:68:6f:ed:08:67:14:0e:51:51:9f:85:
35:33:ad:2f:79:0d:d0:e0:d9:d9:a1:36:a1:6f:67:
21:dc:56:cd:30:e7:be:e3:cb:76:51:f4:60:cb:3e:
05:85:c6:bf:5c:68:d9:ed:49:85:74:f1:3f:3c:de:
b6:62:0a:bf:a1:b0:f2:6b:ad:02:48:62:57:1c:ac:
d5:36:41:20:ad:87:4d:8d:c7:a7:c7:5f:b8:1c:48:
16:f4:00:b6:56:9e:64:c3:07:9f:bb:8d:83:4a:a9:
f1:e6:c0:23:7f:a4:92:5b:46:5c:a4:79:c4:7f:83:
31:a4:de:b7:b7:fa:6a:cf:f9:31:44:d7:27:68:b2:
a2:69:be:34:01:63:40:57:f4:e6:f7:37:ab:e5:7f:
3e:76:93:3c:ef:8e:d3:0f:41:e2:d4:1e:56:1f:ca:
11:af:39:a5:f8:d1:53:2f:df:f5:d5:a0:79:3e:50:
6d:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:01:0A:9E:03:1D:B7:FE:82:D8:BD:6D:B7:43:B1:C4:5D:29:07:01
X509v3 Authority Key Identifier:
keyid:1B:26:46:82:8A:9E:A7:BF:8D:40:B4:F9:F0:BA:44:CC:DC:B2:CE:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GyZGgoqep7-NQLT58LpEzNyyzt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/c36836-a2c8-4771-a958-974fcfef263b/1/tAEKngMdt_6C2L1tt0OxxF0pBwE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/c36836-a2c8-4771-a958-974fcfef263b/1/GyZGgoqep7-NQLT58LpEzNyyzt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.69.0-185.238.71.255
Signature Algorithm: sha256WithRSAEncryption
5d:db:39:35:f4:72:65:84:af:f9:a1:e8:f6:94:5d:00:48:c1:
16:87:cf:47:c1:3c:c7:3d:d1:25:ea:e1:0f:18:91:d8:6d:65:
e7:b9:ef:5e:d5:cc:a5:8a:45:fd:9c:03:9f:99:30:ce:84:fc:
22:fb:a8:8d:7c:9e:03:ed:ab:da:37:d8:f9:6e:5c:ad:b2:20:
0b:f9:50:68:d1:5a:d1:ce:4d:01:e0:b3:71:e2:cb:b1:6b:47:
5c:a4:4f:c5:19:cc:72:ec:dc:01:89:e9:a1:8e:da:ab:1e:4a:
1e:02:d9:f5:1b:33:38:a1:ba:f9:cb:5a:6c:6f:2d:df:70:5f:
b3:6e:5d:6e:cf:32:a6:1b:24:57:90:48:42:c5:1b:29:f2:b8:
3b:97:f6:3b:1e:ca:f6:09:70:88:f7:cc:95:0b:de:71:23:de:
a2:bd:0c:13:5c:18:f7:41:12:14:75:cc:5a:a2:85:a8:30:c7:
39:5d:07:2d:bb:39:39:91:11:f1:63:8d:bc:02:31:4b:5e:60:
80:f1:66:13:03:d8:3a:2f:9a:8c:33:02:93:eb:41:de:6e:f5:
c1:ab:67:37:bf:59:c2:88:35:32:ee:a2:62:cc:d4:ab:84:05:
83:7e:54:6c:21:38:4a:e8:1d:2e:07:dd:fb:2b:95:cd:33:3b:
62:b2:52:fb
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYPbB/xdYcaZhE7Yo/bheHnaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMjY0NjgyOGE5ZWE3YmY4ZDQwYjRmOWYwYmE0NGNjZGNi
MmNlZGQwHhcNMjIxMDE1MDk0NDM3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNDAxMGE5ZTAzMWRiN2ZlODJkOGJkNmRiNzQzYjFjNDVkMjkwNzAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl5d1XrTRtu7LlLswn2IDR79QBPW5
sgmdX2Xwcv/9H6AZ0qlBgneYbcK56haUMUNkRa37RAT7CO6urTZaX/mNA+AQJXqx
9wWy3DOWF9UoaG/tCGcUDlFRn4U1M60veQ3Q4NnZoTahb2ch3FbNMOe+48t2UfRg
yz4Fhca/XGjZ7UmFdPE/PN62Ygq/obDya60CSGJXHKzVNkEgrYdNjcenx1+4HEgW
9AC2Vp5kwwefu42DSqnx5sAjf6SSW0ZcpHnEf4MxpN63t/pqz/kxRNcnaLKiab40
AWNAV/Tm9zer5X8+dpM8747TD0Hi1B5WH8oRrzml+NFTL9/11aB5PlBtvQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFLQBCp4DHbf+gti9bbdDscRdKQcBMB8GA1UdIwQY
MBaAFBsmRoKKnqe/jUC0+fC6RMzcss7dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3laR2dvcWVwNy1OUUxUNThMcEV6Tnl5enQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS9jMzY4MzYtYTJjOC00NzcxLWE5NTgt
OTc0ZmNmZWYyNjNiLzEvdEFFS25nTWR0XzZDMkwxdHQwT3h4RjBwQndFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS9jMzY4MzYtYTJjOC00NzcxLWE5NTgtOTc0ZmNmZWYyNjNi
LzEvR3laR2dvcWVwNy1OUUxUNThMcEV6Tnl5enQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAC57kUD
BAO57kAwDQYJKoZIhvcNAQELBQADggEBAF3bOTX0cmWEr/mh6PaUXQBIwRaHz0fB
PMc90SXq4Q8YkdhtZee5717VzKWKRf2cA5+ZMM6E/CL7qI18ngPtq9o32PluXK2y
IAv5UGjRWtHOTQHgs3Hiy7FrR1ykT8UZzHLs3AGJ6aGO2qseSh4C2fUbMzihuvnL
WmxvLd9wX7NuXW7PMqYbJFeQSELFGynyuDuX9jseyvYJcIj3zJUL3nEj3qK9DBNc
GPdBEhR1zFqihagwxzldBy27OTmREfFjjbwCMUteYIDxZhMD2DovmowzApPrQd5u
9cGrZze/WcKINTLuomLM1KuEBYN+VGwhOEroHS4H3fsrlc0zO2KyUvs=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:19 2023 by rpki-client on console.sobornost.net