Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/dpiWlV0V9GNl1shmKiqP9qj2JHU.roa
File: dpiWlV0V9GNl1shmKiqP9qj2JHU.roa (raw, json)
Hash identifier: jkC/dJr9gQh5Ic/STU3hyHmFwRbSXJrkBhzFTMQwkZI=
Subject key identifier: 76:98:96:95:5D:15:F4:63:65:D6:C8:66:2A:2A:8F:F6:A8:F6:24:75
Certificate issuer: /CN=d8915609656f08f7a28d24b7c4ba9b639ca0b009
Certificate serial: 01999D2E
Authority key identifier: D8:91:56:09:65:6F:08:F7:A2:8D:24:B7:C4:BA:9B:63:9C:A0:B0:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2JFWCWVvCPeijSS3xLqbY5ygsAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/dpiWlV0V9GNl1shmKiqP9qj2JHU.roa
Signing time: Sat 01 Jan 2022 08:56:06 +0000
ROA not before: Sat 01 Jan 2022 08:56:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201011
IP address blocks: 185.205.132.0/23 maxlen: 23
185.205.134.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26844462 (0x1999d2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8915609656f08f7a28d24b7c4ba9b639ca0b009
Validity
Not Before: Jan 1 08:56:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=769896955d15f46365d6c8662a2a8ff6a8f62475
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:df:dd:44:e2:9b:a9:7f:aa:15:66:80:23:5f:
28:50:95:dc:cc:e4:f5:5d:72:13:b9:fe:7c:23:f2:
73:71:73:0d:dd:19:f9:e6:e5:18:b6:7a:35:f0:d0:
9b:54:50:60:15:21:d5:0e:ad:4e:dc:16:df:d8:d8:
8f:ef:de:54:c3:f5:8f:92:44:55:72:2f:e3:58:6c:
07:02:93:3a:35:72:bb:d7:99:03:15:0a:f8:e4:f8:
0e:08:06:6f:dc:e7:c1:96:53:b9:69:87:16:7f:be:
06:02:1b:57:82:c6:58:7e:d5:5b:e0:87:8c:bf:38:
d7:cc:42:d3:49:e8:02:17:67:ef:ba:3f:c0:5c:51:
95:ae:1c:40:f4:4d:c8:b2:46:53:ae:6b:7f:44:2c:
8c:7b:f0:11:59:6d:b4:0d:2e:0d:d3:6a:ec:87:4a:
94:87:da:18:0c:fc:0c:2e:bc:a3:03:21:27:14:c5:
17:89:57:18:f4:d9:ae:36:dc:d8:75:66:3f:79:00:
4b:ea:09:7f:dc:c9:ed:ae:8a:5b:fa:72:65:80:81:
0d:70:20:5f:31:04:df:79:a3:77:04:86:01:57:7d:
75:a0:c0:e1:93:47:a0:c2:4e:68:76:77:cd:86:a7:
64:d0:fe:4e:a0:9a:b6:13:35:d8:18:83:d5:81:bd:
02:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:98:96:95:5D:15:F4:63:65:D6:C8:66:2A:2A:8F:F6:A8:F6:24:75
X509v3 Authority Key Identifier:
keyid:D8:91:56:09:65:6F:08:F7:A2:8D:24:B7:C4:BA:9B:63:9C:A0:B0:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2JFWCWVvCPeijSS3xLqbY5ygsAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/dpiWlV0V9GNl1shmKiqP9qj2JHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.132.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:0e:a7:5f:e3:f7:4e:18:46:32:bc:32:cc:17:6b:25:45:d6:
3d:54:1e:01:cc:05:b8:fc:a8:dc:e1:d5:a8:2b:1e:8f:b0:a3:
e7:7b:d6:c8:84:a1:86:cc:2f:d4:80:c8:8e:e1:21:64:1f:17:
17:95:10:23:0f:ca:ee:87:b4:9c:5e:08:a5:32:f3:b9:28:b3:
08:67:41:af:71:02:26:77:44:57:3e:15:61:a1:58:55:a2:79:
d2:2a:fd:72:89:1c:f0:67:b1:d7:da:e8:cf:f3:39:68:c3:93:
19:13:21:58:db:ce:e2:b4:8b:bb:ca:b6:95:19:e3:31:df:a5:
e8:ae:10:a5:5d:0f:c1:36:f4:a5:60:05:d8:0b:81:cf:4a:96:
81:70:3a:df:52:68:7d:4c:cc:90:21:9c:89:e3:1a:6b:bc:45:
86:4a:3b:e2:48:76:82:3d:6d:c7:31:a6:0d:56:d1:22:d5:89:
c3:c6:66:ce:71:14:89:4d:12:ea:3c:78:4f:c8:bc:78:fc:31:
76:98:8e:47:6a:90:b0:01:21:cb:e8:de:b7:69:7e:4d:a6:34:
6f:a5:d7:c1:e5:73:97:da:b2:6f:07:fd:e5:9e:e4:38:38:05:
6e:18:a7:0d:b2:2f:7e:14:fc:d0:b1:3c:f4:71:1f:c8:d0:e3:
5d:34:44:48
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAZmdLjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
ODkxNTYwOTY1NmYwOGY3YTI4ZDI0YjdjNGJhOWI2MzljYTBiMDA5MB4XDTIyMDEw
MTA4NTYwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzY5ODk2OTU1ZDE1
ZjQ2MzY1ZDZjODY2MmEyYThmZjZhOGY2MjQ3NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALLf3UTim6l/qhVmgCNfKFCV3Mzk9V1yE7n+fCPyc3FzDd0Z
+eblGLZ6NfDQm1RQYBUh1Q6tTtwW39jYj+/eVMP1j5JEVXIv41hsBwKTOjVyu9eZ
AxUK+OT4DggGb9znwZZTuWmHFn++BgIbV4LGWH7VW+CHjL8418xC00noAhdn77o/
wFxRla4cQPRNyLJGU65rf0QsjHvwEVlttA0uDdNq7IdKlIfaGAz8DC68owMhJxTF
F4lXGPTZrjbc2HVmP3kAS+oJf9zJ7a6KW/pyZYCBDXAgXzEE33mjdwSGAVd9daDA
4ZNHoMJOaHZ3zYanZND+TqCathM12BiD1YG9AtECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR2mJaVXRX0Y2XWyGYqKo/2qPYkdTAfBgNVHSMEGDAWgBTYkVYJZW8I96KN
JLfEuptjnKCwCTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzJKRldDV1Z2Q1BlaWpTUzN4THFiWTV5Z3NBay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDMvMjBlOGUwLTY4ZDMtNDg5ZS1iY2YzLWZlNGI1ZTM0Njg0MC8x
L2RwaVdsVjBWOUdObDFzaG1LaXFQOXFqMkpIVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDMv
MjBlOGUwLTY4ZDMtNDg5ZS1iY2YzLWZlNGI1ZTM0Njg0MC8xLzJKRldDV1Z2Q1Bl
aWpTUzN4THFiWTV5Z3NBay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArnNhDANBgkqhkiG9w0BAQsFAAOC
AQEALA6nX+P3ThhGMrwyzBdrJUXWPVQeAcwFuPyo3OHVqCsej7Cj53vWyIShhswv
1IDIjuEhZB8XF5UQIw/K7oe0nF4IpTLzuSizCGdBr3ECJndEVz4VYaFYVaJ50ir9
cokc8Gex19roz/M5aMOTGRMhWNvO4rSLu8q2lRnjMd+l6K4QpV0PwTb0pWAF2AuB
z0qWgXA631JofUzMkCGcieMaa7xFhko74kh2gj1txzGmDVbRItWJw8ZmznEUiU0S
6jx4T8i8ePwxdpiOR2qQsAEhy+jet2l+TaY0b6XXweVzl9qybwf95Z7kODgFbhin
DbIvfhT80LE89HEfyNDjXTRESA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:52 2024 by rpki-client on console-fra.rpki-client.org