Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/884356-7e2a-4c2a-8ff4-3568e1d29d4a/1/A7YQVu0VSKEKYGzRqN2xqOY0CO0.roa
File: A7YQVu0VSKEKYGzRqN2xqOY0CO0.roa (raw, json)
Hash identifier: h4ifim3aGICuwK2FA1jDZAWZsS3kv7hrAFrKNu+K140=
Subject key identifier: 03:B6:10:56:ED:15:48:A1:0A:60:6C:D1:A8:DD:B1:A8:E6:34:08:ED
Certificate issuer: /CN=767c1766fbbdcff68bbc34a3c6be69a0c8a03ab9
Certificate serial: 0F1052
Authority key identifier: 76:7C:17:66:FB:BD:CF:F6:8B:BC:34:A3:C6:BE:69:A0:C8:A0:3A:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dnwXZvu9z_aLvDSjxr5poMigOrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/884356-7e2a-4c2a-8ff4-3568e1d29d4a/1/A7YQVu0VSKEKYGzRqN2xqOY0CO0.roa
Signing time: Sun 30 Jan 2022 13:49:31 +0000
ROA not before: Sun 30 Jan 2022 13:49:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49110
IP address blocks: 185.143.43.0/24 maxlen: 24
185.143.41.0/24 maxlen: 24
185.143.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 987218 (0xf1052)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=767c1766fbbdcff68bbc34a3c6be69a0c8a03ab9
Validity
Not Before: Jan 30 13:49:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=03b61056ed1548a10a606cd1a8ddb1a8e63408ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:91:34:77:df:43:7f:0f:a7:0c:a1:85:bf:a3:
33:8b:2a:60:6f:63:49:45:73:03:ee:dd:2d:ab:fd:
76:87:e4:43:1e:20:26:97:e8:4b:41:51:96:6e:29:
2b:3b:1c:eb:9b:12:bf:f5:61:3e:be:a3:7d:c9:51:
4e:10:a4:3d:1e:29:7d:7f:de:25:74:cc:55:cf:d7:
c8:df:0a:6c:09:2d:fc:fb:05:78:41:89:6b:f8:94:
d5:03:fc:50:58:97:d5:78:ce:7f:c2:ea:45:0d:b3:
f4:6e:3a:1a:b0:71:3f:75:50:76:d7:a4:64:d9:73:
b9:be:e0:7b:50:92:14:fa:ee:34:26:b6:d6:c1:df:
5e:70:56:21:01:16:b1:9d:58:e9:a9:e5:80:ee:38:
3f:98:06:04:2f:6f:28:41:75:85:40:fd:59:8c:dd:
b3:24:63:bb:e8:44:da:1a:2c:a4:2d:a7:08:df:2c:
de:aa:d3:4f:7f:3f:13:2c:c8:35:08:37:a3:37:f6:
b7:01:73:84:44:f5:51:8c:25:5b:99:96:fc:08:0f:
c9:cb:cf:2b:4f:3d:fb:80:b5:c6:03:10:44:ca:8f:
3e:6a:52:c7:06:f0:44:9f:3e:f9:02:b0:ad:0e:fe:
96:be:67:6b:f9:dc:d9:1d:71:4c:b2:4e:69:49:c9:
80:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:B6:10:56:ED:15:48:A1:0A:60:6C:D1:A8:DD:B1:A8:E6:34:08:ED
X509v3 Authority Key Identifier:
keyid:76:7C:17:66:FB:BD:CF:F6:8B:BC:34:A3:C6:BE:69:A0:C8:A0:3A:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dnwXZvu9z_aLvDSjxr5poMigOrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/884356-7e2a-4c2a-8ff4-3568e1d29d4a/1/A7YQVu0VSKEKYGzRqN2xqOY0CO0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/884356-7e2a-4c2a-8ff4-3568e1d29d4a/1/dnwXZvu9z_aLvDSjxr5poMigOrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.40.0/23
185.143.43.0/24
Signature Algorithm: sha256WithRSAEncryption
28:dc:b5:20:34:a6:e2:b2:4f:7e:21:70:9e:c0:46:45:e2:c2:
58:9b:7c:8f:4d:d3:e4:87:01:d0:f8:0b:e2:48:25:89:26:08:
93:42:a0:01:c7:27:95:6c:b6:ff:14:a9:27:63:0e:49:55:53:
b4:41:fd:9e:d1:58:b6:34:f0:4a:4a:c2:39:5a:90:b6:63:b0:
21:96:1c:b6:79:20:20:10:eb:26:de:b7:cc:4a:32:01:24:3c:
1c:8c:50:01:6e:c2:15:87:9f:d6:35:63:cf:cf:69:ab:e1:bb:
6b:09:e9:06:f8:91:25:ec:b1:17:c7:b5:98:9f:1b:9f:05:86:
24:c8:56:f7:06:12:4e:9a:00:2a:14:7d:1d:a6:b2:af:f8:7e:
af:b0:9e:17:c8:12:74:da:d4:a3:94:16:db:24:52:71:3c:25:
fb:07:22:8b:a2:2c:01:f4:43:9a:2e:e2:ae:7e:58:90:d5:a9:
f8:3c:8d:4f:53:b9:86:69:0e:07:ea:42:37:72:e0:e4:a7:91:
39:33:bf:b6:2c:ec:32:99:c5:55:8b:9b:99:02:7e:9f:94:ce:
ea:27:f3:fd:54:47:9a:70:f5:77:69:1f:b9:6c:f1:36:f3:69:
cc:8c:be:ea:aa:c0:3a:ec:e9:74:39:fa:f3:f8:56:af:91:53:
ed:ea:84:c4
-----BEGIN CERTIFICATE-----
MIIE9DCCA9ygAwIBAgIDDxBSMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDc2
N2MxNzY2ZmJiZGNmZjY4YmJjMzRhM2M2YmU2OWEwYzhhMDNhYjkwHhcNMjIwMTMw
MTM0OTMxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygwM2I2MTA1NmVkMTU0
OGExMGE2MDZjZDFhOGRkYjFhOGU2MzQwOGVkMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA3pE0d99Dfw+nDKGFv6Mziypgb2NJRXMD7t0tq/12h+RDHiAm
l+hLQVGWbikrOxzrmxK/9WE+vqN9yVFOEKQ9Hil9f94ldMxVz9fI3wpsCS38+wV4
QYlr+JTVA/xQWJfVeM5/wupFDbP0bjoasHE/dVB216Rk2XO5vuB7UJIU+u40JrbW
wd9ecFYhARaxnVjpqeWA7jg/mAYEL28oQXWFQP1ZjN2zJGO76ETaGiykLacI3yze
qtNPfz8TLMg1CDejN/a3AXOERPVRjCVbmZb8CA/Jy88rTz37gLXGAxBEyo8+alLH
BvBEnz75ArCtDv6Wvmdr+dzZHXFMsk5pScmA+wIDAQABo4ICDzCCAgswHQYDVR0O
BBYEFAO2EFbtFUihCmBs0ajdsajmNAjtMB8GA1UdIwQYMBaAFHZ8F2b7vc/2i7w0
o8a+aaDIoDq5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
ZG53WFp2dTl6X2FMdkRTanhyNXBvTWlnT3JrLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC81OS84ODQzNTYtN2UyYS00YzJhLThmZjQtMzU2OGUxZDI5ZDRhLzEv
QTdZUVZ1MFZTS0VLWUd6UnFOMnhxT1kwQ08wLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS84
ODQzNTYtN2UyYS00YzJhLThmZjQtMzU2OGUxZDI5ZDRhLzEvZG53WFp2dTl6X2FM
dkRTanhyNXBvTWlnT3JrLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUG
CCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBuY8oAwQAuY8rMA0GCSqGSIb3DQEB
CwUAA4IBAQAo3LUgNKbisk9+IXCewEZF4sJYm3yPTdPkhwHQ+AviSCWJJgiTQqAB
xyeVbLb/FKknYw5JVVO0Qf2e0Vi2NPBKSsI5WpC2Y7Ahlhy2eSAgEOsm3rfMSjIB
JDwcjFABbsIVh5/WNWPPz2mr4btrCekG+JEl7LEXx7WYnxufBYYkyFb3BhJOmgAq
FH0dprKv+H6vsJ4XyBJ02tSjlBbbJFJxPCX7ByKLoiwB9EOaLuKufliQ1an4PI1P
U7mGaQ4H6kI3cuDkp5E5M7+2LOwymcVVi5uZAn6flM7qJ/P9VEeacPV3aR+5bPE2
82nMjL7qqsA67Ol0Ofrz+FavkVPt6oTE
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:47 2024 by rpki-client on console-fra.rpki-client.org