Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/d4b78f-8cbb-4846-866e-cf9e7164c07f/1/v4bQ-peN6Ijj4gb_mQzVgsGjPcM.roa
File: v4bQ-peN6Ijj4gb_mQzVgsGjPcM.roa (raw, json)
Hash identifier: /rGxDTT5GI8Ux7GyW+rdJ9WDuediE2WW5A54cRu1krc=
Subject key identifier: BF:86:D0:FA:97:8D:E8:88:E3:E2:06:FF:99:0C:D5:82:C1:A3:3D:C3
Certificate issuer: /CN=606560e03ee88332eefbfa6944ebd1038ae0eab8
Certificate serial: 8666
Authority key identifier: 60:65:60:E0:3E:E8:83:32:EE:FB:FA:69:44:EB:D1:03:8A:E0:EA:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGVg4D7ogzLu-_ppROvRA4rg6rg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/d4b78f-8cbb-4846-866e-cf9e7164c07f/1/v4bQ-peN6Ijj4gb_mQzVgsGjPcM.roa
Signing time: Thu 03 Feb 2022 11:06:51 +0000
ROA not before: Thu 03 Feb 2022 11:06:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210799
IP address blocks: 176.100.45.0/24 maxlen: 24
2a11:c780::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34406 (0x8666)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606560e03ee88332eefbfa6944ebd1038ae0eab8
Validity
Not Before: Feb 3 11:06:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf86d0fa978de888e3e206ff990cd582c1a33dc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ae:84:02:e2:7f:22:25:f9:36:b6:1c:d7:30:
97:e2:83:b0:9c:45:50:5a:f3:35:5e:23:f0:c6:0e:
ad:df:21:04:0d:b2:7d:b3:ff:c2:0a:28:b2:e4:d2:
af:51:8e:6a:74:55:c0:50:11:35:5d:50:57:85:b0:
0b:01:04:fa:e5:a6:73:36:80:3a:a2:b3:2d:7b:bb:
8c:58:3d:12:59:3c:82:a8:5d:54:08:df:21:82:0d:
84:f9:98:09:e0:44:32:e9:7d:25:4a:43:e6:48:2e:
eb:69:96:ca:96:70:d5:83:3b:ee:35:66:81:d6:03:
e0:61:49:a1:aa:3c:6f:9c:6a:2a:af:42:2b:c9:91:
6c:24:42:ce:2e:fe:bd:e4:5f:94:15:2c:c3:08:db:
2b:62:79:fa:e7:fd:71:6a:fe:2c:82:44:36:00:f2:
2a:e5:41:c7:66:3e:06:4b:7b:a3:62:09:7d:2b:a3:
1c:9f:07:18:7c:e1:bb:56:ce:4a:ad:ef:4e:8b:99:
1c:71:80:a3:b5:7d:e0:a2:f4:fc:be:19:8f:fb:b5:
f0:05:6c:1c:89:0d:eb:f5:bb:21:23:53:43:a4:1e:
ff:62:14:6f:3f:ca:26:56:eb:e9:1a:3b:e3:17:e7:
4e:d0:6f:00:1f:a9:79:a7:dd:68:5d:e5:ae:4d:25:
3f:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:86:D0:FA:97:8D:E8:88:E3:E2:06:FF:99:0C:D5:82:C1:A3:3D:C3
X509v3 Authority Key Identifier:
keyid:60:65:60:E0:3E:E8:83:32:EE:FB:FA:69:44:EB:D1:03:8A:E0:EA:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGVg4D7ogzLu-_ppROvRA4rg6rg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d4b78f-8cbb-4846-866e-cf9e7164c07f/1/v4bQ-peN6Ijj4gb_mQzVgsGjPcM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d4b78f-8cbb-4846-866e-cf9e7164c07f/1/YGVg4D7ogzLu-_ppROvRA4rg6rg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.100.45.0/24
IPv6:
2a11:c780::/29
Signature Algorithm: sha256WithRSAEncryption
9d:c2:0e:37:2b:78:13:89:21:93:29:55:c5:ea:d4:47:3b:03:
a3:d9:76:fc:17:22:c9:16:09:e1:2b:5f:04:62:37:ac:ea:1b:
6e:9b:91:c9:f8:b4:d9:87:9c:bb:11:ca:27:ed:a3:c6:bc:9c:
3a:ad:a5:15:cc:a4:bf:cd:df:80:f3:b1:9a:0f:44:ed:74:f8:
72:17:65:8b:0a:64:c4:c8:c8:e7:3a:e0:91:f7:95:2c:53:ba:
95:5d:45:8c:a9:bc:cd:c7:34:42:83:ca:85:c5:50:17:28:12:
1f:78:b3:9c:4a:6d:0a:a4:c8:70:48:14:13:2b:d6:36:3e:38:
43:77:5d:c2:38:18:6d:eb:32:a0:8b:fc:64:fd:78:9c:e2:c5:
dd:b4:55:4b:8b:d1:3d:6d:cd:20:34:0c:e1:da:bc:c7:b7:6d:
02:26:1c:fc:7b:52:1f:1b:9a:8f:5c:e9:3c:3a:3b:ea:70:9d:
76:41:64:90:1d:86:bd:8d:e5:34:f2:92:fa:03:0e:92:eb:b7:
79:d4:7f:2d:65:cb:78:f4:42:bc:c0:b2:d8:46:a5:53:3a:4e:
5c:04:77:9e:86:0c:5d:e3:be:ee:bd:f0:f3:37:dd:0a:fe:21:
bf:ac:2c:40:60:8e:11:c5:d7:3c:5b:d9:fc:ac:ab:cf:4c:93:
72:8e:33:0a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgIDAIZmMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDYw
NjU2MGUwM2VlODgzMzJlZWZiZmE2OTQ0ZWJkMTAzOGFlMGVhYjgwHhcNMjIwMjAz
MTEwNjUxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhiZjg2ZDBmYTk3OGRl
ODg4ZTNlMjA2ZmY5OTBjZDU4MmMxYTMzZGMzMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA066EAuJ/IiX5NrYc1zCX4oOwnEVQWvM1XiPwxg6t3yEEDbJ9
s//CCiiy5NKvUY5qdFXAUBE1XVBXhbALAQT65aZzNoA6orMte7uMWD0SWTyCqF1U
CN8hgg2E+ZgJ4EQy6X0lSkPmSC7raZbKlnDVgzvuNWaB1gPgYUmhqjxvnGoqr0Ir
yZFsJELOLv695F+UFSzDCNsrYnn65/1xav4sgkQ2APIq5UHHZj4GS3ujYgl9K6Mc
nwcYfOG7Vs5Kre9Oi5kccYCjtX3govT8vhmP+7XwBWwciQ3r9bshI1NDpB7/YhRv
P8omVuvpGjvjF+dO0G8AH6l5p91oXeWuTSU/9wIDAQABo4ICGDCCAhQwHQYDVR0O
BBYEFL+G0PqXjeiI4+IG/5kM1YLBoz3DMB8GA1UdIwQYMBaAFGBlYOA+6IMy7vv6
aUTr0QOK4Oq4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
WUdWZzREN29nekx1LV9wcFJPdlJBNHJnNnJnLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC84ZC9kNGI3OGYtOGNiYi00ODQ2LTg2NmUtY2Y5ZTcxNjRjMDdmLzEv
djRiUS1wZU42SWpqNGdiX21RelZnc0dqUGNNLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC9k
NGI3OGYtOGNiYi00ODQ2LTg2NmUtY2Y5ZTcxNjRjMDdmLzEvWUdWZzREN29nekx1
LV9wcFJPdlJBNHJnNnJnLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4G
CCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAsGQtMA0EAgACMAcDBQMqEceAMA0G
CSqGSIb3DQEBCwUAA4IBAQCdwg43K3gTiSGTKVXF6tRHOwOj2Xb8FyLJFgnhK18E
Yjes6htum5HJ+LTZh5y7Econ7aPGvJw6raUVzKS/zd+A87GaD0TtdPhyF2WLCmTE
yMjnOuCR95UsU7qVXUWMqbzNxzRCg8qFxVAXKBIfeLOcSm0KpMhwSBQTK9Y2PjhD
d13COBht6zKgi/xk/Xic4sXdtFVLi9E9bc0gNAzh2rzHt20CJhz8e1IfG5qPXOk8
OjvqcJ12QWSQHYa9jeU08pL6Aw6S67d51H8tZct49EK8wLLYRqVTOk5cBHeehgxd
477uvfDzN90K/iG/rCxAYI4Rxdc8W9n8rKvPTJNyjjMK
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:53 2023 by rpki-client on console.sobornost.net