Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/551437-987f-48d4-aa0e-947ead9f14ed/1/C06PIltNa7sZeK2fj8c4FCI2-a8.roa
File: C06PIltNa7sZeK2fj8c4FCI2-a8.roa (raw, json)
Hash identifier: vbBUiRon+QhCyZidAhX7c+CdzxK2Tk9ibU++BbTCBcg=
Subject key identifier: 0B:4E:8F:22:5B:4D:6B:BB:19:78:AD:9F:8F:C7:38:14:22:36:F9:AF
Certificate issuer: /CN=6150ca1baf9f9f6fe13d89e2664470493fe65e65
Certificate serial: 377A2F53
Authority key identifier: 61:50:CA:1B:AF:9F:9F:6F:E1:3D:89:E2:66:44:70:49:3F:E6:5E:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YVDKG6-fn2_hPYniZkRwST_mXmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/551437-987f-48d4-aa0e-947ead9f14ed/1/C06PIltNa7sZeK2fj8c4FCI2-a8.roa
Signing time: Sat 01 Jan 2022 03:58:52 +0000
ROA not before: Sat 01 Jan 2022 03:58:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43542
IP address blocks: 78.156.128.0/19 maxlen: 19
185.85.92.0/22 maxlen: 22
2a00:d940::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 930754387 (0x377a2f53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6150ca1baf9f9f6fe13d89e2664470493fe65e65
Validity
Not Before: Jan 1 03:58:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b4e8f225b4d6bbb1978ad9f8fc738142236f9af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a6:81:5a:df:d6:6a:99:73:82:ce:6e:e4:11:
2d:15:54:e7:6c:b1:3e:86:d3:b7:12:87:9f:f4:bc:
52:36:5b:98:a4:1c:7b:15:96:f7:49:29:f4:85:50:
9d:44:72:23:b5:35:85:b4:1a:a7:c3:25:b5:0a:96:
85:e7:da:fc:f3:e8:2f:1c:ee:c2:d0:c1:dd:cf:36:
43:03:fe:4f:88:27:38:f4:cc:4e:26:f5:9c:73:59:
4b:7f:e3:23:f5:c4:73:56:60:b3:e8:33:ab:dc:18:
a8:3e:b3:3a:8e:b6:91:bd:90:c0:87:d1:a9:0c:0c:
de:19:33:ca:83:ba:b7:b6:02:69:fb:28:f0:22:b9:
70:6e:93:f9:27:eb:1d:83:3a:49:c6:21:ef:f0:bf:
75:c3:ea:c0:6a:aa:82:68:33:f0:e1:b2:62:a3:0f:
16:3d:a7:7a:b1:64:c0:57:a9:4f:91:a8:e8:b4:00:
9e:84:8b:ef:30:48:90:12:24:ce:09:57:a0:0c:de:
8a:96:10:fc:07:86:af:47:1d:fc:ed:a0:3c:22:e2:
f2:9c:8e:ca:34:f4:44:03:50:98:24:6e:16:90:5a:
6b:da:36:66:83:16:98:fe:08:c2:2c:24:4a:82:58:
fa:1b:24:47:fc:b4:89:5d:02:e3:fe:56:fc:14:c7:
c3:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:4E:8F:22:5B:4D:6B:BB:19:78:AD:9F:8F:C7:38:14:22:36:F9:AF
X509v3 Authority Key Identifier:
keyid:61:50:CA:1B:AF:9F:9F:6F:E1:3D:89:E2:66:44:70:49:3F:E6:5E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YVDKG6-fn2_hPYniZkRwST_mXmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/551437-987f-48d4-aa0e-947ead9f14ed/1/C06PIltNa7sZeK2fj8c4FCI2-a8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/551437-987f-48d4-aa0e-947ead9f14ed/1/YVDKG6-fn2_hPYniZkRwST_mXmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.156.128.0/19
185.85.92.0/22
IPv6:
2a00:d940::/32
Signature Algorithm: sha256WithRSAEncryption
36:5f:11:cf:91:c7:ac:bf:af:71:ff:4b:2b:be:cb:3a:64:fe:
f8:6c:b0:dc:56:d1:de:2e:df:ec:3f:6d:b4:10:01:2a:f7:13:
f4:63:26:cc:49:19:e4:11:f6:42:7d:80:7b:29:1f:6c:6c:b0:
fb:dc:d4:4e:77:70:f1:ec:aa:fe:ba:16:92:5a:81:90:bc:58:
17:0b:8c:7c:6c:c4:bd:da:57:7e:12:ad:1c:c2:9a:bd:f5:70:
5a:29:4b:15:13:cd:25:67:11:de:70:ae:3b:b7:a5:00:35:4f:
d5:9c:f0:f3:ed:d6:dd:7b:3c:d5:a5:b0:ad:1f:28:8b:bb:b6:
af:eb:6a:de:87:d5:d7:f3:6f:04:40:f5:a4:c4:0a:38:6e:80:
ac:45:b5:ae:b8:d2:3f:88:4a:2e:85:9b:94:85:fc:e1:8c:11:
dd:12:8b:4c:86:71:f9:e6:eb:a3:61:e6:30:6a:ec:93:5f:38:
20:a2:c4:50:c1:86:46:c8:a0:7f:34:0f:f8:e0:d0:a1:cf:fe:
e9:92:88:33:0d:c0:6f:f8:9d:ca:95:ac:dc:bb:55:3d:c6:5c:
75:5b:7c:aa:66:e7:04:97:3e:ac:ec:01:3c:4b:5d:f7:58:35:
62:06:81:23:d0:dc:f5:4e:ee:09:a7:4b:80:74:2c:b9:fd:70:
38:81:8c:f8
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEN3ovUzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MTUwY2ExYmFmOWY5ZjZmZTEzZDg5ZTI2NjQ0NzA0OTNmZTY1ZTY1MB4XDTIyMDEw
MTAzNTg1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGI0ZThmMjI1YjRk
NmJiYjE5NzhhZDlmOGZjNzM4MTQyMjM2ZjlhZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALqmgVrf1mqZc4LObuQRLRVU52yxPobTtxKHn/S8UjZbmKQc
exWW90kp9IVQnURyI7U1hbQap8MltQqWhefa/PPoLxzuwtDB3c82QwP+T4gnOPTM
Tib1nHNZS3/jI/XEc1Zgs+gzq9wYqD6zOo62kb2QwIfRqQwM3hkzyoO6t7YCafso
8CK5cG6T+SfrHYM6ScYh7/C/dcPqwGqqgmgz8OGyYqMPFj2nerFkwFepT5Go6LQA
noSL7zBIkBIkzglXoAzeipYQ/AeGr0cd/O2gPCLi8pyOyjT0RANQmCRuFpBaa9o2
ZoMWmP4IwiwkSoJY+hskR/y0iV0C4/5W/BTHw/sCAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBQLTo8iW01ruxl4rZ+PxzgUIjb5rzAfBgNVHSMEGDAWgBRhUMobr5+fb+E9
ieJmRHBJP+ZeZTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1lWREtHNi1mbjJfaFBZbmlaa1J3U1RfbVhtVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTQvNTUxNDM3LTk4N2YtNDhkNC1hYTBlLTk0N2VhZDlmMTRlZC8x
L0MwNlBJbHROYTdzWmVLMmZqOGM0RkNJMi1hOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTQv
NTUxNDM3LTk4N2YtNDhkNC1hYTBlLTk0N2VhZDlmMTRlZC8xL1lWREtHNi1mbjJf
aFBZbmlaa1J3U1RfbVhtVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEBU6cgAMEArlVXDANBAIAAjAHAwUA
KgDZQDANBgkqhkiG9w0BAQsFAAOCAQEANl8Rz5HHrL+vcf9LK77LOmT++Gyw3FbR
3i7f7D9ttBABKvcT9GMmzEkZ5BH2Qn2AeykfbGyw+9zUTndw8eyq/roWklqBkLxY
FwuMfGzEvdpXfhKtHMKavfVwWilLFRPNJWcR3nCuO7elADVP1Zzw8+3W3Xs81aWw
rR8oi7u2r+tq3ofV1/NvBED1pMQKOG6ArEW1rrjSP4hKLoWblIX84YwR3RKLTIZx
+ebro2HmMGrsk184IKLEUMGGRsigfzQP+ODQoc/+6ZKIMw3Ab/idypWs3LtVPcZc
dVt8qmbnBJc+rOwBPEtd91g1YgaBI9Dc9U7uCadLgHQsuf1wOIGM+A==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:47 2023 by rpki-client on console.sobornost.net