Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/3dac73-d7c7-40bb-ab55-95135daf5147/1/dw85cqIZp26SQXBeP28QniVPRYg.roa
File: dw85cqIZp26SQXBeP28QniVPRYg.roa (raw, json)
Hash identifier: 7rCMgeBhJT5ZAW5a91xMsZWLq+0PsodaDz4dXxp9i60=
Subject key identifier: 77:0F:39:72:A2:19:A7:6E:92:41:70:5E:3F:6F:10:9E:25:4F:45:88
Certificate issuer: /CN=5cb90fd62bcc0fe929dae53036fc55e511c54b45
Certificate serial: 01827C8F020DC800B845FCB6745BD364A0B9
Authority key identifier: 5C:B9:0F:D6:2B:CC:0F:E9:29:DA:E5:30:36:FC:55:E5:11:C5:4B:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XLkP1ivMD-kp2uUwNvxV5RHFS0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/3dac73-d7c7-40bb-ab55-95135daf5147/1/dw85cqIZp26SQXBeP28QniVPRYg.roa
Signing time: Mon 08 Aug 2022 08:25:23 +0000
ROA not before: Mon 08 Aug 2022 08:25:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48563
IP address blocks: 89.39.174.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:7c:8f:02:0d:c8:00:b8:45:fc:b6:74:5b:d3:64:a0:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cb90fd62bcc0fe929dae53036fc55e511c54b45
Validity
Not Before: Aug 8 08:25:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=770f3972a219a76e9241705e3f6f109e254f4588
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:5a:ff:32:50:d7:03:3f:06:b4:ce:a2:fc:6c:
66:7f:dc:ba:79:da:1a:ae:ce:f3:c9:a2:54:4a:5d:
b7:2f:6f:43:c4:a2:33:19:2c:6e:89:52:79:ae:79:
7c:b6:4a:35:7b:88:39:c0:e5:1e:67:05:02:19:9e:
33:89:1d:5f:9e:e0:c7:9f:c6:c7:1e:f3:be:cf:e5:
6d:0b:61:ec:63:ad:db:0d:dd:53:1c:69:5d:34:77:
a2:72:1f:86:27:75:3e:6d:f8:57:ee:aa:ee:1a:43:
ac:6a:ae:5b:ba:b8:f1:2f:51:b7:0a:8e:cc:e2:09:
c3:43:15:22:e0:e4:61:c7:2f:7a:f7:28:4c:35:4c:
45:0c:64:b1:db:a4:bb:3f:e8:8e:93:15:08:84:69:
5f:c5:44:63:cb:a4:a4:46:26:ac:25:69:86:93:00:
50:80:14:f4:47:ee:4d:61:6e:50:75:05:fd:44:df:
28:23:08:46:53:27:de:a4:2e:d7:9f:ab:c6:b3:be:
7c:00:8c:49:2a:af:5b:d7:bc:8b:92:6e:b0:b3:24:
cc:dc:64:de:f2:c5:ec:d9:56:da:d8:1e:f0:8c:c6:
46:e7:b9:30:50:d7:85:5b:0f:de:2f:9a:dc:03:2b:
53:98:f5:99:c0:a5:c1:d3:d9:18:04:1c:10:7d:24:
a0:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:0F:39:72:A2:19:A7:6E:92:41:70:5E:3F:6F:10:9E:25:4F:45:88
X509v3 Authority Key Identifier:
keyid:5C:B9:0F:D6:2B:CC:0F:E9:29:DA:E5:30:36:FC:55:E5:11:C5:4B:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XLkP1ivMD-kp2uUwNvxV5RHFS0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/3dac73-d7c7-40bb-ab55-95135daf5147/1/dw85cqIZp26SQXBeP28QniVPRYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/3dac73-d7c7-40bb-ab55-95135daf5147/1/XLkP1ivMD-kp2uUwNvxV5RHFS0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.39.174.0/23
Signature Algorithm: sha256WithRSAEncryption
17:a2:bb:3b:cb:77:47:0e:a4:5a:9a:1c:7f:83:b9:ed:86:e9:
d8:68:b3:eb:43:f4:43:5b:32:56:b1:14:8e:b8:f0:bc:a5:e1:
4b:7d:b7:99:86:1b:c2:dc:dc:ff:ca:d8:a9:2e:32:e3:7f:d3:
cf:55:e6:8f:fb:c8:15:61:5c:e6:f8:dc:ab:b0:97:83:c8:26:
7a:2f:dd:e8:53:02:41:20:da:a0:37:f5:0d:18:7f:f7:69:8b:
d6:20:aa:9f:c5:e1:98:f5:67:18:5a:a3:33:5f:f2:09:96:ed:
33:b3:fb:ec:b9:af:f4:40:be:75:40:1e:64:d8:57:1c:74:3f:
85:9e:5c:aa:1f:3d:a2:7c:dc:3b:fd:28:22:e1:1a:72:d2:a5:
48:b8:d9:b1:b9:ae:1f:82:ee:0a:07:6a:97:0d:4f:09:92:55:
b2:d7:d8:eb:c9:3b:d5:0f:3b:3a:e6:d3:f9:43:1b:ef:27:b7:
de:84:f0:01:3c:9c:b3:fa:dd:0a:a6:3c:32:7d:b0:93:5c:4e:
2c:9f:e2:28:be:b5:97:6b:61:2b:e7:91:68:a6:d6:ec:59:ad:
d0:c3:91:5b:7e:30:ba:18:b8:69:aa:07:b8:e0:61:fd:e1:11:
fb:a5:83:70:b2:62:9f:ae:b0:1c:95:67:07:17:bb:39:dd:41:
b6:74:d9:4a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYJ8jwINyAC4Rfy2dFvTZKC5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjYjkwZmQ2MmJjYzBmZTkyOWRhZTUzMDM2ZmM1NWU1MTFj
NTRiNDUwHhcNMjIwODA4MDgyNTIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NzBmMzk3MmEyMTlhNzZlOTI0MTcwNWUzZjZmMTA5ZTI1NGY0NTg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlFr/MlDXAz8GtM6i/Gxmf9y6edoa
rs7zyaJUSl23L29DxKIzGSxuiVJ5rnl8tko1e4g5wOUeZwUCGZ4ziR1fnuDHn8bH
HvO+z+VtC2HsY63bDd1THGldNHeich+GJ3U+bfhX7qruGkOsaq5burjxL1G3Co7M
4gnDQxUi4ORhxy969yhMNUxFDGSx26S7P+iOkxUIhGlfxURjy6SkRiasJWmGkwBQ
gBT0R+5NYW5QdQX9RN8oIwhGUyfepC7Xn6vGs758AIxJKq9b17yLkm6wsyTM3GTe
8sXs2Vba2B7wjMZG57kwUNeFWw/eL5rcAytTmPWZwKXB09kYBBwQfSSgLwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHcPOXKiGadukkFwXj9vEJ4lT0WIMB8GA1UdIwQY
MBaAFFy5D9YrzA/pKdrlMDb8VeURxUtFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWExrUDFpdk1ELWtwMnVVd052eFY1UkhGUzBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi8zZGFjNzMtZDdjNy00MGJiLWFiNTUt
OTUxMzVkYWY1MTQ3LzEvZHc4NWNxSVpwMjZTUVhCZVAyOFFuaVZQUllnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Zi8zZGFjNzMtZDdjNy00MGJiLWFiNTUtOTUxMzVkYWY1MTQ3
LzEvWExrUDFpdk1ELWtwMnVVd052eFY1UkhGUzBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBWSeuMA0G
CSqGSIb3DQEBCwUAA4IBAQAXors7y3dHDqRamhx/g7nthunYaLPrQ/RDWzJWsRSO
uPC8peFLfbeZhhvC3Nz/ytipLjLjf9PPVeaP+8gVYVzm+NyrsJeDyCZ6L93oUwJB
INqgN/UNGH/3aYvWIKqfxeGY9WcYWqMzX/IJlu0zs/vsua/0QL51QB5k2FccdD+F
nlyqHz2ifNw7/Sgi4Rpy0qVIuNmxua4fgu4KB2qXDU8JklWy19jryTvVDzs65tP5
QxvvJ7fehPABPJyz+t0KpjwyfbCTXE4sn+IovrWXa2Er55FoptbsWa3Qw5FbfjC6
GLhpqge44GH94RH7pYNwsmKfrrAclWcHF7s53UG2dNlK
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:55 2023 by rpki-client on console.sobornost.net