Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/DaIRov5VKy4D1Jh7baF7jDkEQrg.roa
File: DaIRov5VKy4D1Jh7baF7jDkEQrg.roa (raw, json)
Hash identifier: L2NVHEYqV8FIP8/+eLnAgYf2MQcz9IoNyuwdMurO34c=
Subject key identifier: 0D:A2:11:A2:FE:55:2B:2E:03:D4:98:7B:6D:A1:7B:8C:39:04:42:B8
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 0960682F
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/DaIRov5VKy4D1Jh7baF7jDkEQrg.roa
Signing time: Sun 01 May 2022 18:36:16 +0000
ROA not before: Sun 01 May 2022 18:36:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211301
IP address blocks: 185.65.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157313071 (0x960682f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: May 1 18:36:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0da211a2fe552b2e03d4987b6da17b8c390442b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:50:19:2e:de:6f:ee:d3:a0:53:e4:fa:52:ea:
40:3c:f3:bb:7c:0c:df:54:22:bc:ee:24:9f:9c:2e:
41:4d:ce:32:fc:69:e6:40:2c:87:c5:60:1f:b6:ca:
7f:54:20:2b:f9:a0:00:cc:71:97:2a:85:e9:dd:94:
0d:33:53:bd:27:4c:ea:24:35:45:cd:0a:d1:c7:45:
12:33:08:1b:54:28:a1:dd:9b:dd:c2:bf:30:52:f5:
f4:5c:e6:6e:5f:6f:18:4c:a7:ff:73:6f:e6:f6:4f:
a1:88:e7:56:40:24:ba:73:43:3c:3c:04:c8:06:fa:
ea:8b:ef:2c:2e:d5:93:c1:82:56:f1:e8:0e:58:47:
36:25:2f:cd:1c:b5:d8:2a:8c:f6:de:27:7e:fd:4e:
d3:5e:be:c0:09:e7:58:7c:e2:c8:24:15:ff:1a:5d:
7a:1b:de:18:5b:2a:d7:3e:85:d2:56:0b:07:65:f8:
0c:3a:c9:60:be:11:c2:53:67:8a:d7:75:de:1c:9d:
39:be:31:d9:30:1d:6b:6b:19:24:0b:e3:87:f5:48:
c7:66:bf:75:19:f4:de:21:e1:23:7c:d0:c8:f7:74:
c9:2a:87:89:43:e6:a7:b1:54:2f:60:e8:19:3a:1a:
10:c5:cc:19:75:5f:75:99:f1:52:cd:0a:db:69:5f:
11:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:A2:11:A2:FE:55:2B:2E:03:D4:98:7B:6D:A1:7B:8C:39:04:42:B8
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/DaIRov5VKy4D1Jh7baF7jDkEQrg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.201.0/24
Signature Algorithm: sha256WithRSAEncryption
68:96:9d:5d:18:ce:64:d1:91:d2:1b:55:c1:88:3c:f7:2f:86:
5f:40:bd:d0:78:95:50:c6:75:a7:0e:37:99:44:fb:9e:57:d0:
f7:88:01:b5:40:99:af:c8:8e:75:7c:c6:e5:7a:86:36:68:39:
b5:ee:b3:10:6b:03:52:2a:89:a5:1d:c9:4f:59:2b:7f:f6:e0:
9f:05:42:d6:cf:9d:75:bb:a2:10:55:d4:1b:18:2f:ee:91:bf:
1e:e0:62:9a:8b:1b:4b:3d:86:be:b2:fb:38:00:a3:b6:84:e3:
0a:a4:aa:a5:a9:43:3b:80:dc:5e:72:04:92:3c:1b:74:32:02:
7d:f5:02:9f:ac:44:f7:f4:c6:7d:64:02:10:61:53:8a:52:bc:
34:61:a6:f9:ef:71:07:0f:49:e0:63:8a:a6:ed:f3:3a:a4:58:
ed:77:e7:92:0d:28:73:c1:e6:51:29:0b:be:37:59:92:30:8c:
ee:dd:28:03:ae:d7:21:a4:c4:8d:d1:94:99:96:88:8f:a3:45:
87:46:f4:8d:ab:7f:b3:8a:a5:7f:f9:3b:fa:34:a2:a6:06:e9:
4a:aa:85:37:97:9b:fd:3f:7e:17:35:89:85:a3:bd:08:9e:95:
b1:b0:b1:ae:e4:02:0e:4d:10:22:d5:5a:0d:41:02:fe:0b:fd:
65:66:94:93
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECWBoLzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDYzNjUzNTViNjY1NTY0YTIxMGMzNThjNjhhMDExN2I3ZmJlYjlhMB4XDTIyMDUw
MTE4MzYxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGRhMjExYTJmZTU1
MmIyZTAzZDQ5ODdiNmRhMTdiOGMzOTA0NDJiODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM9QGS7eb+7ToFPk+lLqQDzzu3wM31QivO4kn5wuQU3OMvxp
5kAsh8VgH7bKf1QgK/mgAMxxlyqF6d2UDTNTvSdM6iQ1Rc0K0cdFEjMIG1Qood2b
3cK/MFL19Fzmbl9vGEyn/3Nv5vZPoYjnVkAkunNDPDwEyAb66ovvLC7Vk8GCVvHo
DlhHNiUvzRy12CqM9t4nfv1O016+wAnnWHziyCQV/xpdehveGFsq1z6F0lYLB2X4
DDrJYL4RwlNnitd13hydOb4x2TAda2sZJAvjh/VIx2a/dRn03iHhI3zQyPd0ySqH
iUPmp7FUL2DoGToaEMXMGXVfdZnxUs0K22lfEfcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQNohGi/lUrLgPUmHttoXuMOQRCuDAfBgNVHSMEGDAWgBR0Y2U1W2ZVZKIQ
w1jGigEXt/vrmjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RHTmxOVnRtVldTaUVNTll4b29CRjdmNzY1by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjIvYWVhMzZkLWJhYmYtNDQ3NC1hNzhiLTZhNGVjYWY4YjNiMS8x
L0RhSVJvdjVWS3k0RDFKaDdiYUY3akRrRVFyZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjIv
YWVhMzZkLWJhYmYtNDQ3NC1hNzhiLTZhNGVjYWY4YjNiMS8xL2RHTmxOVnRtVldT
aUVNTll4b29CRjdmNzY1by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALlByTANBgkqhkiG9w0BAQsFAAOC
AQEAaJadXRjOZNGR0htVwYg89y+GX0C90HiVUMZ1pw43mUT7nlfQ94gBtUCZr8iO
dXzG5XqGNmg5te6zEGsDUiqJpR3JT1krf/bgnwVC1s+ddbuiEFXUGxgv7pG/HuBi
mosbSz2GvrL7OACjtoTjCqSqpalDO4DcXnIEkjwbdDICffUCn6xE9/TGfWQCEGFT
ilK8NGGm+e9xBw9J4GOKpu3zOqRY7Xfnkg0oc8HmUSkLvjdZkjCM7t0oA67XIaTE
jdGUmZaIj6NFh0b0jat/s4qlf/k7+jSipgbpSqqFN5eb/T9+FzWJhaO9CJ6VsbCx
ruQCDk0QItVaDUEC/gv9ZWaUkw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:02 2023 by rpki-client on console-fra.rpki-client.org