Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/c75642-172b-42c1-a1d1-d25466a1fa9f/1/sVJpzFCOgbdbMoAH-vMLGVxPSQk.roa
File: sVJpzFCOgbdbMoAH-vMLGVxPSQk.roa (raw, json)
Hash identifier: WWmsg3EQG1XrX1W+PNhKk4wb4tKPnp0cc3inO3SrCos=
Subject key identifier: B1:52:69:CC:50:8E:81:B7:5B:32:80:07:FA:F3:0B:19:5C:4F:49:09
Certificate issuer: /CN=782325321a302f0bac131bee11c9aea696e510ba
Certificate serial: 0182A55F3040207B9FAC795AAEC5ED70D386
Authority key identifier: 78:23:25:32:1A:30:2F:0B:AC:13:1B:EE:11:C9:AE:A6:96:E5:10:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eCMlMhowLwusExvuEcmuppblELo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/c75642-172b-42c1-a1d1-d25466a1fa9f/1/sVJpzFCOgbdbMoAH-vMLGVxPSQk.roa
Signing time: Tue 16 Aug 2022 06:37:34 +0000
ROA not before: Tue 16 Aug 2022 06:37:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8867
IP address blocks: 147.237.4.0/24 maxlen: 24
147.237.1.0/24 maxlen: 24
147.237.2.0/24 maxlen: 24
147.237.3.0/24 maxlen: 24
147.237.0.0/24 maxlen: 24
147.237.5.0/24 maxlen: 24
147.237.6.0/24 maxlen: 24
147.237.7.0/24 maxlen: 24
147.237.0.0/16 maxlen: 16
147.237.11.0/24 maxlen: 24
147.237.8.0/24 maxlen: 24
147.237.9.0/24 maxlen: 24
147.237.10.0/24 maxlen: 24
147.237.70.0/24 maxlen: 24
147.237.71.0/24 maxlen: 24
147.237.69.0/24 maxlen: 24
147.237.74.0/24 maxlen: 24
147.237.76.0/24 maxlen: 24
147.237.72.0/24 maxlen: 24
147.237.73.0/24 maxlen: 24
147.237.77.0/24 maxlen: 24
147.237.80.0/24 maxlen: 24
147.237.14.0/24 maxlen: 24
147.237.15.0/24 maxlen: 24
147.237.12.0/24 maxlen: 24
147.237.13.0/24 maxlen: 24
147.237.248.0/24 maxlen: 24
2001:678:a3c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:a5:5f:30:40:20:7b:9f:ac:79:5a:ae:c5:ed:70:d3:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=782325321a302f0bac131bee11c9aea696e510ba
Validity
Not Before: Aug 16 06:37:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b15269cc508e81b75b328007faf30b195c4f4909
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:7f:9a:41:7a:1e:75:0d:25:c5:a3:2d:87:49:
58:50:86:b8:04:b4:83:15:59:87:12:c2:02:d5:7c:
14:1b:c5:ec:cc:44:8d:69:e5:51:22:bd:52:53:36:
73:1e:39:28:53:b8:a9:ea:45:91:02:c3:51:d6:03:
20:1a:83:36:62:36:14:21:5d:21:a3:32:71:35:dd:
75:4b:03:4f:66:08:9d:20:40:bc:32:70:ec:5e:03:
3f:4c:1c:3f:6f:4f:78:8c:0d:8c:0f:0d:49:78:63:
76:e2:eb:85:bd:bc:3f:d4:51:1f:3e:3f:42:ac:f9:
d6:de:49:26:c7:10:46:9e:b4:d1:b7:29:11:2d:06:
14:db:97:6a:1a:e0:f7:c6:43:d8:29:65:f0:fe:5b:
95:6a:62:db:fb:4f:0b:0a:17:c1:f3:8a:08:e2:74:
b1:09:d1:50:7c:0a:91:60:ac:e4:0f:0c:8e:4e:5e:
c7:9e:8f:81:5f:ed:11:11:31:56:71:45:ec:1e:c1:
a2:52:3d:62:a0:32:cd:e8:0b:d6:7c:99:2c:a4:a4:
eb:d3:8d:7b:7a:25:00:11:58:61:65:4e:95:b7:da:
b8:b2:0c:55:86:3f:57:0d:f7:83:bc:b7:2c:ea:c5:
60:65:5e:f4:4b:90:d3:49:c8:3e:6b:7e:4f:dd:f1:
a8:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:52:69:CC:50:8E:81:B7:5B:32:80:07:FA:F3:0B:19:5C:4F:49:09
X509v3 Authority Key Identifier:
keyid:78:23:25:32:1A:30:2F:0B:AC:13:1B:EE:11:C9:AE:A6:96:E5:10:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eCMlMhowLwusExvuEcmuppblELo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c75642-172b-42c1-a1d1-d25466a1fa9f/1/sVJpzFCOgbdbMoAH-vMLGVxPSQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c75642-172b-42c1-a1d1-d25466a1fa9f/1/eCMlMhowLwusExvuEcmuppblELo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.237.0.0/16
IPv6:
2001:678:a3c::/48
Signature Algorithm: sha256WithRSAEncryption
87:a7:e6:18:f1:0b:ef:c9:ca:ef:9a:22:b4:8b:47:48:7d:31:
0c:0a:af:27:ac:97:37:46:15:29:10:c4:f2:e1:d4:3b:16:0a:
a3:24:40:0c:e2:b9:1c:79:fe:58:17:55:0f:45:d1:5b:01:81:
c8:29:eb:f7:fc:ef:51:8b:67:83:0d:f7:52:d3:2b:d3:e1:4b:
43:ba:6e:af:81:14:bb:6c:1d:18:4e:c4:1a:d8:f3:e7:0c:e5:
7d:86:f7:35:dd:06:79:c8:97:f0:58:d4:e5:e1:9b:e3:9d:e4:
88:6f:4f:4a:61:11:ab:fe:ab:dc:22:a4:39:9e:18:9c:df:ff:
9a:be:0d:4e:4b:dc:b9:0d:fa:8e:d1:21:9d:44:cd:ef:ba:08:
8b:40:83:a8:f3:57:1b:16:09:cf:5f:fa:a8:e2:82:79:23:ff:
41:3b:c6:83:4e:66:f1:e0:99:bb:65:69:08:3e:23:af:59:c3:
70:8f:d8:3f:dd:88:7a:8c:96:83:7f:bc:9c:48:bb:63:ce:86:
2b:88:a7:c0:47:cd:f6:74:fc:18:4c:82:87:8a:82:a0:af:e3:
d7:20:51:f0:af:9b:e3:d4:e5:fe:15:ff:83:a1:64:b0:56:0e:
ad:0d:1f:36:3f:a0:8e:d8:a3:33:b3:b7:22:67:ff:65:d5:50:
ac:27:b8:a0
-----BEGIN CERTIFICATE-----
MIIFDTCCA/WgAwIBAgISAYKlXzBAIHufrHlarsXtcNOGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc4MjMyNTMyMWEzMDJmMGJhYzEzMWJlZTExYzlhZWE2OTZl
NTEwYmEwHhcNMjIwODE2MDYzNzM0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMTUyNjljYzUwOGU4MWI3NWIzMjgwMDdmYWYzMGIxOTVjNGY0OTA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoH+aQXoedQ0lxaMth0lYUIa4BLSD
FVmHEsIC1XwUG8XszESNaeVRIr1SUzZzHjkoU7ip6kWRAsNR1gMgGoM2YjYUIV0h
ozJxNd11SwNPZgidIEC8MnDsXgM/TBw/b094jA2MDw1JeGN24uuFvbw/1FEfPj9C
rPnW3kkmxxBGnrTRtykRLQYU25dqGuD3xkPYKWXw/luVamLb+08LChfB84oI4nSx
CdFQfAqRYKzkDwyOTl7Hno+BX+0RETFWcUXsHsGiUj1ioDLN6AvWfJkspKTr0417
eiUAEVhhZU6Vt9q4sgxVhj9XDfeDvLcs6sVgZV70S5DTScg+a35P3fGoBwIDAQAB
o4ICGTCCAhUwHQYDVR0OBBYEFLFSacxQjoG3WzKAB/rzCxlcT0kJMB8GA1UdIwQY
MBaAFHgjJTIaMC8LrBMb7hHJrqaW5RC6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZUNNbE1ob3dMd3VzRXh2dUVjbXVwcGJsRUxvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9jNzU2NDItMTcyYi00MmMxLWExZDEt
ZDI1NDY2YTFmYTlmLzEvc1ZKcHpGQ09nYmRiTW9BSC12TUxHVnhQU1FrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS9jNzU2NDItMTcyYi00MmMxLWExZDEtZDI1NDY2YTFmYTlm
LzEvZUNNbE1ob3dMd3VzRXh2dUVjbXVwcGJsRUxvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjALBAIAATAFAwMAk+0wDwQC
AAIwCQMHACABBngKPDANBgkqhkiG9w0BAQsFAAOCAQEAh6fmGPEL78nK75oitItH
SH0xDAqvJ6yXN0YVKRDE8uHUOxYKoyRADOK5HHn+WBdVD0XRWwGByCnr9/zvUYtn
gw33UtMr0+FLQ7pur4EUu2wdGE7EGtjz5wzlfYb3Nd0GeciX8FjU5eGb453kiG9P
SmERq/6r3CKkOZ4YnN//mr4NTkvcuQ36jtEhnUTN77oIi0CDqPNXGxYJz1/6qOKC
eSP/QTvGg05m8eCZu2VpCD4jr1nDcI/YP92IeoyWg3+8nEi7Y86GK4inwEfN9nT8
GEyCh4qCoK/j1yBR8K+b49Tl/hX/g6FksFYOrQ0fNj+gjtijM7O3Imf/ZdVQrCe4
oA==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:38 2023 by rpki-client on console.sobornost.net