Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/tV2vVGdVyaet_2oqKg4Bdi8tPRg.roa
File: tV2vVGdVyaet_2oqKg4Bdi8tPRg.roa (raw, json)
Hash identifier: vnMRu2Xfv5vW9ozVtuaAxIJ/+0LCTnfG0cfwbSD45u0=
Subject key identifier: B5:5D:AF:54:67:55:C9:A7:AD:FF:6A:2A:2A:0E:01:76:2F:2D:3D:18
Certificate issuer: /CN=7df132df13e4be53d8250c8c48420264eef6c14c
Certificate serial: 1741062E
Authority key identifier: 7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/tV2vVGdVyaet_2oqKg4Bdi8tPRg.roa
Signing time: Sat 01 Jan 2022 16:03:44 +0000
ROA not before: Sat 01 Jan 2022 16:03:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31362
IP address blocks: 89.33.45.0/24 maxlen: 24
89.36.148.0/23 maxlen: 23
84.247.29.0/24 maxlen: 24
86.105.169.0/24 maxlen: 24
86.105.170.0/24 maxlen: 24
188.241.184.0/23 maxlen: 23
31.14.100.0/23 maxlen: 23
86.107.31.0/24 maxlen: 24
89.38.138.0/23 maxlen: 23
89.40.77.0/24 maxlen: 24
185.99.91.0/24 maxlen: 24
84.247.55.0/24 maxlen: 24
84.247.56.0/24 maxlen: 24
94.176.128.0/24 maxlen: 24
89.45.47.0/24 maxlen: 24
89.36.196.0/24 maxlen: 24
89.33.238.0/23 maxlen: 23
89.35.117.0/24 maxlen: 24
89.40.136.0/23 maxlen: 23
89.37.41.0/24 maxlen: 24
31.14.53.0/24 maxlen: 24
31.14.54.0/24 maxlen: 24
217.19.9.0/24 maxlen: 24
86.106.156.0/24 maxlen: 24
188.241.104.0/24 maxlen: 24
188.241.105.0/24 maxlen: 24
89.37.159.0/24 maxlen: 24
188.211.31.0/24 maxlen: 24
188.211.27.0/24 maxlen: 24
188.211.30.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 390137390 (0x1741062e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df132df13e4be53d8250c8c48420264eef6c14c
Validity
Not Before: Jan 1 16:03:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b55daf546755c9a7adff6a2a2a0e01762f2d3d18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:cc:74:40:f5:6a:a3:13:ac:78:2a:d6:9e:0d:
fa:2c:90:fb:69:35:8c:ed:f0:f4:0a:08:6e:a3:6f:
17:b5:ec:da:7b:d7:19:73:fd:5b:0f:ac:b3:f1:89:
5d:81:4f:70:1e:85:b3:8b:12:f6:3d:6c:8c:ea:ca:
5b:a2:e9:3c:f0:bc:38:66:f2:d1:fa:bd:62:9e:da:
db:fb:86:8d:72:57:cd:f3:9d:71:2e:fe:8a:af:34:
f9:78:2e:7f:f0:67:da:e7:a9:4c:4c:7b:d1:3b:64:
f0:20:69:a8:54:7d:17:d8:f6:07:dc:8b:89:a9:41:
32:c5:73:ba:14:43:57:8d:da:e4:40:74:2f:b6:74:
c6:59:a7:76:50:40:43:65:a8:d2:29:5a:61:01:de:
b4:a7:51:55:f5:65:f3:75:70:08:55:9d:b6:06:99:
5a:be:ed:82:12:03:a0:08:17:fa:64:7d:e3:2e:08:
55:6f:49:9f:94:ae:fe:be:96:4f:84:e2:1a:f4:ee:
d6:15:58:1b:24:29:43:11:1c:44:5d:2e:b4:3f:04:
e9:d8:f7:3b:32:ce:0e:bc:fe:36:71:50:f5:a2:02:
8d:f8:21:ad:0c:15:bd:35:13:45:17:ed:25:c0:8e:
2c:fd:1e:e8:a6:57:23:b0:bf:11:4c:78:ad:92:75:
8f:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:5D:AF:54:67:55:C9:A7:AD:FF:6A:2A:2A:0E:01:76:2F:2D:3D:18
X509v3 Authority Key Identifier:
keyid:7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/tV2vVGdVyaet_2oqKg4Bdi8tPRg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.53.0-31.14.54.255
31.14.100.0/23
84.247.29.0/24
84.247.55.0-84.247.56.255
86.105.169.0-86.105.170.255
86.106.156.0/24
86.107.31.0/24
89.33.45.0/24
89.33.238.0/23
89.35.117.0/24
89.36.148.0/23
89.36.196.0/24
89.37.41.0/24
89.37.159.0/24
89.38.138.0/23
89.40.77.0/24
89.40.136.0/23
89.45.47.0/24
94.176.128.0/24
185.99.91.0/24
188.211.27.0/24
188.211.30.0/23
188.241.104.0/23
188.241.184.0/23
217.19.9.0/24
Signature Algorithm: sha256WithRSAEncryption
69:5b:f0:07:dc:a9:09:b8:69:54:45:64:d6:5d:00:55:08:7d:
67:8b:5f:00:76:3e:67:ad:19:3a:59:8c:4b:81:dc:04:70:16:
24:2e:23:9f:3e:99:ef:2d:a7:93:c4:ac:25:d8:5d:23:1c:2f:
19:84:1f:58:ab:4d:37:6f:9f:b5:1e:14:67:71:b5:91:58:17:
8a:c1:27:4f:5e:75:1c:bd:d6:06:d0:71:a8:e2:61:c0:14:6e:
2a:7a:0f:e5:c0:31:a3:ea:3e:95:2e:4a:8c:8c:54:36:56:1a:
5a:34:22:61:3a:c8:7f:2b:91:d3:f3:15:0e:72:28:c1:a0:0c:
f1:8c:da:b4:c0:59:94:aa:b3:01:a1:9b:a1:02:39:1d:b3:1e:
d0:bf:5a:66:d1:ba:ee:6b:45:c0:92:d7:2a:43:f8:e6:01:9f:
98:06:d3:fa:91:15:38:7a:22:26:49:e9:f7:e6:85:a3:f1:9c:
e7:35:84:99:6e:55:fe:d7:68:f1:f0:59:04:00:e6:7e:a0:63:
6c:a6:a3:4f:3f:d5:34:81:64:d3:07:59:f3:61:b9:45:3a:1c:
87:cb:53:12:fa:8c:17:a6:9e:14:87:24:5c:02:3b:ba:d8:82:
51:27:ba:cb:5f:7e:3b:f1:de:2c:75:be:3b:c2:60:d8:74:cf:
d1:4b:5d:d8
-----BEGIN CERTIFICATE-----
MIIFnDCCBISgAwIBAgIEF0EGLjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
ZGYxMzJkZjEzZTRiZTUzZDgyNTBjOGM0ODQyMDI2NGVlZjZjMTRjMB4XDTIyMDEw
MTE2MDM0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjU1ZGFmNTQ2NzU1
YzlhN2FkZmY2YTJhMmEwZTAxNzYyZjJkM2QxODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPXMdED1aqMTrHgq1p4N+iyQ+2k1jO3w9AoIbqNvF7Xs2nvX
GXP9Ww+ss/GJXYFPcB6Fs4sS9j1sjOrKW6LpPPC8OGby0fq9Yp7a2/uGjXJXzfOd
cS7+iq80+Xguf/Bn2uepTEx70Ttk8CBpqFR9F9j2B9yLialBMsVzuhRDV43a5EB0
L7Z0xlmndlBAQ2Wo0ilaYQHetKdRVfVl83VwCFWdtgaZWr7tghIDoAgX+mR94y4I
VW9Jn5Su/r6WT4TiGvTu1hVYGyQpQxEcRF0utD8E6dj3OzLODrz+NnFQ9aICjfgh
rQwVvTUTRRftJcCOLP0e6KZXI7C/EUx4rZJ1j9sCAwEAAaOCArYwggKyMB0GA1Ud
DgQWBBS1Xa9UZ1XJp63/aioqDgF2Ly09GDAfBgNVHSMEGDAWgBR98TLfE+S+U9gl
DIxIQgJk7vbBTDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ZmRXkzeFBrdmxQWUpReU1TRUlDWk83MndVdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmUvYzM3NDk3LTYzNzYtNDYxZS05M2M2LTk3Nzg2NzRlZGM5Ny8x
L3RWMnZWR2RWeWFldF8yb3FLZzRCZGk4dFBSZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmUv
YzM3NDk3LTYzNzYtNDYxZS05M2M2LTk3Nzg2NzRlZGM5Ny8xL2ZmRXkzeFBrdmxQ
WUpReU1TRUlDWk83MndVdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
ywYIKwYBBQUHAQcBAf8EgbswgbgwgbUEAgABMIGuMAwDBAAfDjUDBAAfDjYDBAEf
DmQDBABU9x0wDAMEAFT3NwMEAFT3ODAMAwQAVmmpAwQAVmmqAwQAVmqcAwQAVmsf
AwQAWSEtAwQBWSHuAwQAWSN1AwQBWSSUAwQAWSTEAwQAWSUpAwQAWSWfAwQBWSaK
AwQAWShNAwQBWSiIAwQAWS0vAwQAXrCAAwQAuWNbAwQAvNMbAwQBvNMeAwQBvPFo
AwQBvPG4AwQA2RMJMA0GCSqGSIb3DQEBCwUAA4IBAQBpW/AH3KkJuGlURWTWXQBV
CH1ni18Adj5nrRk6WYxLgdwEcBYkLiOfPpnvLaeTxKwl2F0jHC8ZhB9Yq003b5+1
HhRncbWRWBeKwSdPXnUcvdYG0HGo4mHAFG4qeg/lwDGj6j6VLkqMjFQ2VhpaNCJh
Osh/K5HT8xUOcijBoAzxjNq0wFmUqrMBoZuhAjkdsx7Qv1pm0brua0XAktcqQ/jm
AZ+YBtP6kRU4eiImSen35oWj8ZznNYSZblX+12jx8FkEAOZ+oGNspqNPP9U0gWTT
B1nzYblFOhyHy1MS+owXpp4UhyRcAju62IJRJ7rLX3478d4sdb47wmDYdM/RS13Y
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:04 2023 by rpki-client on console.sobornost.net