Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/xIy8hkwyDGH41cur6ErguHyNdTg.roa
File: xIy8hkwyDGH41cur6ErguHyNdTg.roa (raw, json)
Hash identifier: i0gUnxMc94quF5UyF8+6lQEOm2AG99UVcfVQmWGJMF8=
Subject key identifier: C4:8C:BC:86:4C:32:0C:61:F8:D5:CB:AB:E8:4A:E0:B8:7C:8D:75:38
Certificate issuer: /CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Certificate serial: 07419ADB
Authority key identifier: 73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/xIy8hkwyDGH41cur6ErguHyNdTg.roa
Signing time: Sat 15 Jan 2022 20:15:18 +0000
ROA not before: Sat 15 Jan 2022 20:15:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 185.144.56.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121739995 (0x7419adb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Validity
Not Before: Jan 15 20:15:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c48cbc864c320c61f8d5cbabe84ae0b87c8d7538
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b7:63:26:27:4c:72:04:81:eb:52:ca:40:cb:
03:28:74:26:0b:91:0c:b3:6a:02:11:4e:4f:f2:b8:
3b:f0:f2:c1:38:f0:d9:84:88:cd:6a:74:72:47:cf:
93:d4:f0:8c:ae:4c:54:7f:cb:45:26:b0:b5:70:5f:
c3:9b:fe:ed:74:e8:84:36:2f:15:72:28:0c:77:38:
92:1a:99:f0:e6:a8:74:1d:a5:ac:9e:79:40:f5:a3:
89:80:96:aa:8b:cc:0f:58:6d:39:6f:fc:96:57:ea:
41:eb:fe:a8:d5:cc:b5:ae:57:3c:47:b6:d5:66:5e:
b8:a5:0e:12:7c:4d:41:aa:3d:91:ba:ed:9e:ab:4b:
43:0c:68:8b:25:8b:83:bf:26:17:43:fc:32:7c:97:
27:c3:96:71:2a:f8:54:42:a6:32:c5:17:bc:96:81:
77:4e:bd:ef:f5:27:c4:15:2e:d8:93:69:85:00:04:
ec:30:59:e8:ef:e8:e3:3d:61:11:40:69:f2:85:f5:
eb:21:80:d7:61:12:92:6c:22:de:1b:2d:41:e1:d9:
c7:37:0a:e6:c9:79:25:ca:ae:0d:ae:ee:91:d5:c9:
89:5f:03:5f:c7:8b:02:ad:a1:c5:59:e0:51:b8:8b:
7b:3e:64:90:f6:84:97:c3:06:d1:2f:80:79:6c:1a:
9a:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:8C:BC:86:4C:32:0C:61:F8:D5:CB:AB:E8:4A:E0:B8:7C:8D:75:38
X509v3 Authority Key Identifier:
keyid:73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/xIy8hkwyDGH41cur6ErguHyNdTg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/c_IQ8SmaHgrucdwdeeX7EgktMKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.56.0/22
Signature Algorithm: sha256WithRSAEncryption
94:c0:9a:48:a4:ec:fc:80:12:89:78:8c:21:86:38:30:bf:81:
0a:2b:6f:ce:60:1c:70:c3:3f:71:d4:25:ba:30:f0:36:d6:5e:
bb:e6:4c:1d:4a:84:1b:02:6c:60:3e:3c:ce:61:1b:57:15:90:
28:b9:eb:72:13:c8:13:a7:db:3d:67:f2:08:37:c0:d1:91:67:
bc:d8:8e:0f:2f:a5:e0:f9:4a:f6:0e:e0:fe:78:73:85:48:00:
3f:d2:3b:18:f8:da:b8:9a:a1:15:41:8e:80:1d:4c:36:3a:d5:
a5:e8:19:b1:1b:f3:0c:65:99:7f:65:3d:fe:cb:34:1f:c6:f1:
2a:6e:80:13:31:59:19:01:61:a6:34:21:0a:9a:d9:37:46:97:
5a:36:4c:0a:b5:41:62:3a:e3:94:5d:ab:fe:11:b2:60:46:1f:
11:93:fe:f0:95:9b:20:b4:62:0a:e8:69:e5:14:24:05:1a:7d:
6f:8f:d3:c5:ec:9b:65:70:58:d5:8d:e8:a8:56:4e:61:61:14:
92:66:58:19:3d:b7:4c:07:1d:98:3b:1d:84:d4:74:b9:75:94:
6e:c2:a6:01:ba:20:8f:01:24:c1:91:ec:f3:66:90:c4:12:49:
ce:b1:8f:c9:12:19:8b:da:cc:7d:40:9d:30:8a:ab:42:2d:61:
d1:0a:d7:5f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB0Ga2zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
M2YyMTBmMTI5OWExZTBhZWU3MWRjMWQ3OWU1ZmIxMjA5MmQzMGE5MB4XDTIyMDEx
NTIwMTUxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzQ4Y2JjODY0YzMy
MGM2MWY4ZDVjYmFiZTg0YWUwYjg3YzhkNzUzODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKO3YyYnTHIEgetSykDLAyh0JguRDLNqAhFOT/K4O/DywTjw
2YSIzWp0ckfPk9TwjK5MVH/LRSawtXBfw5v+7XTohDYvFXIoDHc4khqZ8OaodB2l
rJ55QPWjiYCWqovMD1htOW/8llfqQev+qNXMta5XPEe21WZeuKUOEnxNQao9kbrt
nqtLQwxoiyWLg78mF0P8MnyXJ8OWcSr4VEKmMsUXvJaBd0697/UnxBUu2JNphQAE
7DBZ6O/o4z1hEUBp8oX16yGA12ESkmwi3hstQeHZxzcK5sl5JcquDa7ukdXJiV8D
X8eLAq2hxVngUbiLez5kkPaEl8MG0S+AeWwamg8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTEjLyGTDIMYfjVy6voSuC4fI11ODAfBgNVHSMEGDAWgBRz8hDxKZoeCu5x
3B155fsSCS0wqTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2NfSVE4U21hSGdydWNkd2RlZVg3RWdrdE1Lay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzQvZGIxYjQ4LTFjYzUtNDgzMy05M2Q5LWI5NDY0NzE4YmEzNy8x
L3hJeThoa3d5REdINDFjdXI2RXJndUh5TmRUZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzQv
ZGIxYjQ4LTFjYzUtNDgzMy05M2Q5LWI5NDY0NzE4YmEzNy8xL2NfSVE4U21hSGdy
dWNkd2RlZVg3RWdrdE1Lay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArmQODANBgkqhkiG9w0BAQsFAAOC
AQEAlMCaSKTs/IASiXiMIYY4ML+BCitvzmAccMM/cdQlujDwNtZeu+ZMHUqEGwJs
YD48zmEbVxWQKLnrchPIE6fbPWfyCDfA0ZFnvNiODy+l4PlK9g7g/nhzhUgAP9I7
GPjauJqhFUGOgB1MNjrVpegZsRvzDGWZf2U9/ss0H8bxKm6AEzFZGQFhpjQhCprZ
N0aXWjZMCrVBYjrjlF2r/hGyYEYfEZP+8JWbILRiCuhp5RQkBRp9b4/TxeybZXBY
1Y3oqFZOYWEUkmZYGT23TAcdmDsdhNR0uXWUbsKmAbogjwEkwZHs82aQxBJJzrGP
yRIZi9rMfUCdMIqrQi1h0QrXXw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:26 2024 by rpki-client on console-ams.rpki-client.org