Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/1-CV_mH673XWjwWKyymRN5rDJ4Wg.roa
File: 1-CV_mH673XWjwWKyymRN5rDJ4Wg.roa (raw, json)
Hash identifier: ef7qRCI8aVieZWxQIoJ4psB2HmGQQ5qH4/ZOKuLwkb4=
Subject key identifier: F8:25:7F:98:7E:BB:DD:75:A3:C1:62:B2:CA:64:4D:E6:B0:C9:E1:68
Certificate issuer: /CN=2c3963ba2aae5abd38a6eed09da985611f1b5021
Certificate serial: 01849F7C5938077CD6253DB1A536C0085C85
Authority key identifier: 2C:39:63:BA:2A:AE:5A:BD:38:A6:EE:D0:9D:A9:85:61:1F:1B:50:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LDljuiquWr04pu7QnamFYR8bUCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/1-CV_mH673XWjwWKyymRN5rDJ4Wg.roa
Signing time: Tue 22 Nov 2022 13:17:17 +0000
ROA not before: Tue 22 Nov 2022 13:17:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203828
IP address blocks: 78.159.91.0/24 maxlen: 24
78.159.89.0/24 maxlen: 24
78.159.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9f:7c:59:38:07:7c:d6:25:3d:b1:a5:36:c0:08:5c:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c3963ba2aae5abd38a6eed09da985611f1b5021
Validity
Not Before: Nov 22 13:17:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f8257f987ebbdd75a3c162b2ca644de6b0c9e168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:cc:9e:db:95:c5:a7:96:ed:9a:23:95:4a:9f:
cd:7a:7c:39:7a:fc:9c:8c:ec:3b:31:c4:1d:dc:b1:
f6:3d:52:b8:19:7a:66:da:30:2a:19:56:04:16:28:
15:ca:cd:96:48:d3:07:ac:68:13:30:49:ce:64:31:
f3:c5:57:a0:d6:79:a2:33:18:20:4d:b5:bd:5a:38:
6a:3a:72:d1:61:cd:74:1b:44:54:b8:98:86:44:a5:
69:b6:2c:a8:4a:0e:ad:ba:ca:a9:2b:85:f8:a5:fc:
c8:27:8e:55:d6:7f:04:de:9e:50:25:39:b1:d0:d2:
a2:86:68:12:3b:ae:85:87:32:61:d8:34:01:c8:7b:
34:c8:ee:80:6e:7a:83:02:c4:f9:d3:bb:51:b2:09:
3e:d1:f7:2c:40:61:4f:24:8d:7a:a7:1f:2c:ae:33:
f9:a4:40:73:dc:6a:64:c9:4e:3b:0f:14:2d:f7:9c:
a0:50:71:3a:3d:7a:a5:c1:86:23:a6:75:70:44:6e:
96:28:6a:e8:67:21:61:be:5d:0e:62:61:c2:09:49:
34:a1:7c:7c:41:ab:b0:ec:5e:38:11:7b:78:b0:4f:
5d:b7:2a:b9:f1:19:bb:a2:4b:52:09:1b:ff:9d:e5:
26:1a:28:0e:d8:54:14:0d:62:07:1f:5f:e6:57:14:
ca:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:25:7F:98:7E:BB:DD:75:A3:C1:62:B2:CA:64:4D:E6:B0:C9:E1:68
X509v3 Authority Key Identifier:
keyid:2C:39:63:BA:2A:AE:5A:BD:38:A6:EE:D0:9D:A9:85:61:1F:1B:50:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LDljuiquWr04pu7QnamFYR8bUCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/1-CV_mH673XWjwWKyymRN5rDJ4Wg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/LDljuiquWr04pu7QnamFYR8bUCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.159.89.0-78.159.91.255
Signature Algorithm: sha256WithRSAEncryption
4c:99:a8:28:de:0d:8d:ee:ee:2a:eb:7c:ca:c0:de:1e:c8:68:
e0:d3:09:1c:51:a3:07:fe:47:78:4b:90:fa:8c:a8:b1:e6:3b:
81:06:6d:c7:30:5d:65:38:54:d7:3b:50:5e:5e:0e:32:45:b9:
52:9e:c1:d2:a3:15:39:3f:a0:ef:6a:0b:91:40:d6:c0:52:39:
8d:f0:85:9e:2d:94:a3:4c:a5:37:04:41:a0:8c:a1:2a:c4:ce:
d4:cb:93:77:5d:c2:98:0e:e0:d7:f8:0c:d0:63:71:1f:c1:a8:
f8:cd:b0:a9:54:bd:55:e6:a5:0c:18:d4:e2:dc:a2:99:14:43:
19:2b:f7:f0:fd:c0:e5:8c:ea:b8:7e:fb:a3:e2:b8:6d:e0:db:
52:6e:0f:34:2b:e1:81:dc:93:90:0d:c3:bd:7f:54:60:98:75:
29:1e:85:c2:2e:d9:1c:3f:41:67:cd:ac:72:af:d3:23:9b:3b:
0f:4b:83:0c:84:cb:48:e5:a3:72:11:4b:f8:d8:99:78:6f:01:
ff:72:d7:ea:b6:f7:25:45:1a:76:f0:9c:d3:22:d3:19:86:b2:
35:1e:6e:b4:4d:a2:59:50:73:54:cf:51:19:bf:1d:28:4c:ae:
12:3f:63:c7:1b:b7:5b:c7:d7:2e:4e:e1:ec:92:bd:ba:1f:6d:
69:65:de:db
-----BEGIN CERTIFICATE-----
MIIFBjCCA+6gAwIBAgISAYSffFk4B3zWJT2xpTbACFyFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJjMzk2M2JhMmFhZTVhYmQzOGE2ZWVkMDlkYTk4NTYxMWYx
YjUwMjEwHhcNMjIxMTIyMTMxNzE3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmODI1N2Y5ODdlYmJkZDc1YTNjMTYyYjJjYTY0NGRlNmIwYzllMTY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhMye25XFp5btmiOVSp/Nenw5evyc
jOw7McQd3LH2PVK4GXpm2jAqGVYEFigVys2WSNMHrGgTMEnOZDHzxVeg1nmiMxgg
TbW9WjhqOnLRYc10G0RUuJiGRKVptiyoSg6tusqpK4X4pfzIJ45V1n8E3p5QJTmx
0NKihmgSO66FhzJh2DQByHs0yO6AbnqDAsT507tRsgk+0fcsQGFPJI16px8srjP5
pEBz3GpkyU47DxQt95ygUHE6PXqlwYYjpnVwRG6WKGroZyFhvl0OYmHCCUk0oXx8
Qauw7F44EXt4sE9dtyq58Rm7oktSCRv/neUmGigO2FQUDWIHH1/mVxTKOQIDAQAB
o4ICEjCCAg4wHQYDVR0OBBYEFPglf5h+u911o8FisspkTeawyeFoMB8GA1UdIwQY
MBaAFCw5Y7oqrlq9OKbu0J2phWEfG1AhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTERsanVpcXVXcjA0cHU3UW5hbUZZUjhiVUNFLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy8zODFlY2MtOWQ3NS00MWJhLTg1ZjYt
MTc2OTNlN2VhNjdhLzEvMS1DVl9tSDY3M1hXandXS3l5bVJONXJESjRXZy5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvZGMvMzgxZWNjLTlkNzUtNDFiYS04NWY2LTE3NjkzZTdlYTY3
YS8xL0xEbGp1aXF1V3IwNHB1N1FuYW1GWVI4YlVDRS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAnBggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQATp9Z
AwQCTp9YMA0GCSqGSIb3DQEBCwUAA4IBAQBMmago3g2N7u4q63zKwN4eyGjg0wkc
UaMH/kd4S5D6jKix5juBBm3HMF1lOFTXO1BeXg4yRblSnsHSoxU5P6DvaguRQNbA
UjmN8IWeLZSjTKU3BEGgjKEqxM7Uy5N3XcKYDuDX+AzQY3Efwaj4zbCpVL1V5qUM
GNTi3KKZFEMZK/fw/cDljOq4fvuj4rht4NtSbg80K+GB3JOQDcO9f1RgmHUpHoXC
LtkcP0Fnzaxyr9MjmzsPS4MMhMtI5aNyEUv42Jl4bwH/ctfqtvclRRp28JzTItMZ
hrI1Hm60TaJZUHNUz1EZvx0oTK4SP2PHG7dbx9cuTuHskr26H21pZd7b
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:29 2023 by rpki-client on console.sobornost.net