Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/5eaaa7-3107-4268-aad6-6fd9789205ba/1/IDwAYw3voiUtDtww3OlolwsuaXw.roa
File: IDwAYw3voiUtDtww3OlolwsuaXw.roa (raw, json)
Hash identifier: +2A6TiHKVN5cVyI/Q6LQrGa9tMSZXLwUAg7Cl2ixELM=
Subject key identifier: 20:3C:00:63:0D:EF:A2:25:2D:0E:DC:30:DC:E9:68:97:0B:2E:69:7C
Certificate issuer: /CN=ab54fe831b6a719f42e6c8486fd03b550be761fb
Certificate serial: 10EBA1C8
Authority key identifier: AB:54:FE:83:1B:6A:71:9F:42:E6:C8:48:6F:D0:3B:55:0B:E7:61:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q1T-gxtqcZ9C5shIb9A7VQvnYfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/5eaaa7-3107-4268-aad6-6fd9789205ba/1/IDwAYw3voiUtDtww3OlolwsuaXw.roa
Signing time: Sat 01 Jan 2022 09:01:59 +0000
ROA not before: Sat 01 Jan 2022 09:01:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212462
IP address blocks: 109.234.80.0/24 maxlen: 24
185.33.67.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 283877832 (0x10eba1c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab54fe831b6a719f42e6c8486fd03b550be761fb
Validity
Not Before: Jan 1 09:01:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=203c00630defa2252d0edc30dce968970b2e697c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:34:9a:09:76:50:3e:50:4e:4c:6a:da:45:d7:
ae:e2:ee:7d:3c:ce:c6:75:3f:e8:a2:12:ee:0f:70:
bd:ae:ca:9c:45:c2:6c:1d:cd:3b:b7:f4:aa:0b:bd:
72:0f:9a:72:84:de:04:2f:a3:36:a1:5b:f8:92:94:
cd:82:b7:4d:bb:e0:19:3f:45:a5:d4:b7:0c:5b:c7:
d4:c5:89:ff:f4:2f:dc:0b:a1:f3:6a:2d:f9:cf:49:
29:90:d0:17:3c:1a:bc:68:f4:5b:44:ca:3e:e8:97:
c9:aa:5c:c6:03:e7:c7:42:56:1e:fd:e0:3d:db:3b:
7a:62:22:d2:3d:63:6a:ea:26:9f:85:eb:da:52:91:
91:d4:9f:6d:f2:91:5b:1f:15:e2:30:65:0f:64:41:
b4:bc:24:18:71:69:d1:d4:f3:93:42:12:e4:84:57:
78:71:98:ed:73:06:09:29:95:3b:d9:c1:f6:26:4e:
b1:4b:07:97:55:74:f1:68:c2:40:2f:f8:82:8e:c4:
2a:23:c9:13:03:e5:b8:2f:c1:b2:df:db:87:e5:f4:
e7:04:1e:2b:64:74:3a:e8:17:8d:59:20:b5:4e:39:
88:23:2e:e6:9f:f9:c1:27:68:41:76:00:69:a1:a3:
d3:83:bb:f1:9c:45:b8:a4:c6:81:00:44:d7:5c:13:
9b:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:3C:00:63:0D:EF:A2:25:2D:0E:DC:30:DC:E9:68:97:0B:2E:69:7C
X509v3 Authority Key Identifier:
keyid:AB:54:FE:83:1B:6A:71:9F:42:E6:C8:48:6F:D0:3B:55:0B:E7:61:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q1T-gxtqcZ9C5shIb9A7VQvnYfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/5eaaa7-3107-4268-aad6-6fd9789205ba/1/IDwAYw3voiUtDtww3OlolwsuaXw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/5eaaa7-3107-4268-aad6-6fd9789205ba/1/q1T-gxtqcZ9C5shIb9A7VQvnYfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.234.80.0/24
185.33.67.0/24
Signature Algorithm: sha256WithRSAEncryption
52:90:bd:3c:cf:fb:d0:84:f5:c4:78:86:f0:87:9a:b0:db:eb:
67:03:f7:53:e6:a9:d9:5f:2c:af:58:2b:54:b8:27:27:a0:5e:
96:98:da:80:e5:0d:67:10:84:56:04:fe:62:9b:8e:c5:8c:30:
30:d7:68:35:8a:02:0f:86:b5:99:99:7e:47:45:cf:33:12:d4:
c1:e3:b4:41:55:6e:1f:03:60:82:e1:a1:9c:b3:f9:52:48:7e:
77:94:e8:82:be:cf:36:f7:ec:06:32:8e:9f:d9:37:9a:e9:70:
82:0e:f2:35:dc:b1:af:60:71:e9:19:f0:63:73:b5:f3:16:36:
30:7a:b7:29:25:64:5f:cf:c7:e2:0c:43:3b:2d:2c:5b:6f:20:
a7:12:5c:51:a5:75:5a:cb:2c:ad:69:e8:0c:18:b4:07:4f:35:
35:2d:fb:a0:ba:70:d9:d1:f4:03:94:33:d0:a6:9e:07:07:8d:
a8:76:f7:73:26:5e:bf:a8:99:40:ca:79:85:20:ec:7a:03:87:
da:b5:95:35:da:35:db:56:7f:3a:f2:e1:c7:8e:0d:ad:0e:3e:
f2:05:f3:42:03:b6:ba:14:e1:0e:22:c0:8f:a1:03:33:de:cd:
ba:34:4f:e8:66:a6:23:59:15:13:1e:70:0c:cc:35:ed:c1:b3:
a3:21:05:25
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEEOuhyDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
YjU0ZmU4MzFiNmE3MTlmNDJlNmM4NDg2ZmQwM2I1NTBiZTc2MWZiMB4XDTIyMDEw
MTA5MDE1OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjAzYzAwNjMwZGVm
YTIyNTJkMGVkYzMwZGNlOTY4OTcwYjJlNjk3YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALs0mgl2UD5QTkxq2kXXruLufTzOxnU/6KIS7g9wva7KnEXC
bB3NO7f0qgu9cg+acoTeBC+jNqFb+JKUzYK3TbvgGT9FpdS3DFvH1MWJ//Qv3Auh
82ot+c9JKZDQFzwavGj0W0TKPuiXyapcxgPnx0JWHv3gPds7emIi0j1jauomn4Xr
2lKRkdSfbfKRWx8V4jBlD2RBtLwkGHFp0dTzk0IS5IRXeHGY7XMGCSmVO9nB9iZO
sUsHl1V08WjCQC/4go7EKiPJEwPluC/Bst/bh+X05wQeK2R0OugXjVkgtU45iCMu
5p/5wSdoQXYAaaGj04O78ZxFuKTGgQBE11wTmyECAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQgPABjDe+iJS0O3DDc6WiXCy5pfDAfBgNVHSMEGDAWgBSrVP6DG2pxn0Lm
yEhv0DtVC+dh+zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ExVC1neHRxY1o5QzVzaEliOUE3VlF2bllmcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGEvNWVhYWE3LTMxMDctNDI2OC1hYWQ2LTZmZDk3ODkyMDViYS8x
L0lEd0FZdzN2b2lVdER0d3czT2xvbHdzdWFYdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGEv
NWVhYWE3LTMxMDctNDI2OC1hYWQ2LTZmZDk3ODkyMDViYS8xL3ExVC1neHRxY1o5
QzVzaEliOUE3VlF2bllmcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAG3qUAMEALkhQzANBgkqhkiG9w0B
AQsFAAOCAQEAUpC9PM/70IT1xHiG8IeasNvrZwP3U+ap2V8sr1grVLgnJ6Belpja
gOUNZxCEVgT+YpuOxYwwMNdoNYoCD4a1mZl+R0XPMxLUweO0QVVuHwNgguGhnLP5
Ukh+d5Togr7PNvfsBjKOn9k3mulwgg7yNdyxr2Bx6RnwY3O18xY2MHq3KSVkX8/H
4gxDOy0sW28gpxJcUaV1WsssrWnoDBi0B081NS37oLpw2dH0A5Qz0KaeBweNqHb3
cyZev6iZQMp5hSDsegOH2rWVNdo121Z/OvLhx44NrQ4+8gXzQgO2uhThDiLAj6ED
M97NujRP6GamI1kVEx5wDMw17cGzoyEFJQ==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:35 2023 by rpki-client on console.sobornost.net