Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/192bba-1a74-4ba4-90d6-72c4c4b804a7/1/C63kqxoffCe-6hnNIphDMSEuX_I.roa
File: C63kqxoffCe-6hnNIphDMSEuX_I.roa (raw, json)
Hash identifier: em21hnL52IbuvVuBNoYlNK9mm7zdIMHWvyF8fMjDx8k=
Subject key identifier: 0B:AD:E4:AB:1A:1F:7C:27:BE:EA:19:CD:22:98:43:31:21:2E:5F:F2
Certificate issuer: /CN=83375b43ae8a53d48c888671e67fc17bf27f2b7e
Certificate serial: 06D4F90A
Authority key identifier: 83:37:5B:43:AE:8A:53:D4:8C:88:86:71:E6:7F:C1:7B:F2:7F:2B:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzdbQ66KU9SMiIZx5n_Be_J_K34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/192bba-1a74-4ba4-90d6-72c4c4b804a7/1/C63kqxoffCe-6hnNIphDMSEuX_I.roa
Signing time: Sat 01 Jan 2022 08:02:26 +0000
ROA not before: Sat 01 Jan 2022 08:02:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49702
IP address blocks: 185.109.112.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114620682 (0x6d4f90a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83375b43ae8a53d48c888671e67fc17bf27f2b7e
Validity
Not Before: Jan 1 08:02:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0bade4ab1a1f7c27beea19cd22984331212e5ff2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:9f:6d:5d:6f:0e:79:a3:8e:69:21:34:3f:fc:
70:9e:95:ec:38:23:3f:25:bc:b4:63:bd:15:11:62:
9a:be:93:36:d3:5d:00:00:69:08:a0:43:f5:a4:74:
05:c9:a5:a0:8d:3a:8a:c3:27:76:ce:d1:b8:78:18:
38:c6:be:ce:27:57:53:43:35:f7:24:6a:5c:d5:de:
bf:92:61:5c:8f:2d:b7:29:99:3f:9f:75:53:85:1d:
34:bd:9d:80:bd:c1:d9:4f:69:76:f2:da:f7:be:32:
56:66:ec:6e:07:83:9a:07:98:2e:67:05:3e:34:a0:
6f:44:c8:1e:94:c6:aa:35:70:38:f6:2e:d6:6b:86:
c1:28:f9:0d:16:4c:54:1f:ca:4e:42:1d:29:44:93:
cf:70:23:c8:0b:f4:5e:e0:4f:b1:31:63:35:94:db:
a9:44:a7:b0:34:f0:9c:23:0d:8b:2a:ac:39:3c:1a:
5a:fe:8c:4d:7a:6f:86:1a:37:21:36:94:8f:3a:d2:
0d:0d:59:07:3a:e0:36:cf:78:28:99:03:1b:ea:ac:
99:12:16:c3:d6:d3:14:b0:94:bf:e0:e1:6d:2a:4a:
75:97:d6:64:95:6d:ee:ca:a5:e4:67:06:80:e5:a5:
c8:11:7c:47:02:1b:65:60:43:c9:f9:37:9d:b3:86:
39:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:AD:E4:AB:1A:1F:7C:27:BE:EA:19:CD:22:98:43:31:21:2E:5F:F2
X509v3 Authority Key Identifier:
keyid:83:37:5B:43:AE:8A:53:D4:8C:88:86:71:E6:7F:C1:7B:F2:7F:2B:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzdbQ66KU9SMiIZx5n_Be_J_K34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/192bba-1a74-4ba4-90d6-72c4c4b804a7/1/C63kqxoffCe-6hnNIphDMSEuX_I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/192bba-1a74-4ba4-90d6-72c4c4b804a7/1/gzdbQ66KU9SMiIZx5n_Be_J_K34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.109.112.0/22
Signature Algorithm: sha256WithRSAEncryption
34:c6:a4:4a:3b:82:be:b3:d7:93:a0:f4:a6:a0:c5:7e:b9:bf:
ff:ad:ae:b5:92:1e:14:4e:06:cf:98:6f:e2:e6:33:d6:f8:74:
32:fa:63:9d:c9:d9:a2:50:d7:ae:63:c0:41:8b:27:a5:5c:10:
e7:19:73:e6:d1:6a:aa:16:86:60:83:33:8e:d0:ee:34:b5:ff:
03:4e:ae:40:85:c4:ac:e7:3a:98:19:d9:12:f1:3a:93:14:28:
ea:41:e0:de:a3:4b:97:42:ca:cd:b1:64:cc:2f:bd:f9:7f:69:
27:74:01:48:81:7d:eb:7e:01:45:7b:80:99:86:a0:17:8e:c8:
1f:36:b2:b8:f1:9d:e6:a4:8d:84:1d:08:67:00:e8:d3:d8:06:
63:7c:6d:88:0e:d1:ff:57:0a:ce:1c:d0:f4:bc:03:1b:60:fb:
8b:9c:92:ae:d7:07:26:ac:fc:48:9d:ae:8c:1d:84:2c:4a:42:
3e:ca:b0:ba:0f:23:bd:7a:b9:86:c6:c7:1e:87:83:68:47:98:
e9:9d:43:f4:84:0f:ff:42:be:40:ee:05:45:39:6e:13:aa:70:
9a:b6:8e:e5:2d:68:e0:75:b5:2b:5a:49:cb:d3:45:64:2a:e7:
d6:b4:b2:27:a2:1b:a8:70:90:bc:3a:be:ea:2f:51:2b:63:db:
5b:2b:fc:cc
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBtT5CjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MzM3NWI0M2FlOGE1M2Q0OGM4ODg2NzFlNjdmYzE3YmYyN2YyYjdlMB4XDTIyMDEw
MTA4MDIyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGJhZGU0YWIxYTFm
N2MyN2JlZWExOWNkMjI5ODQzMzEyMTJlNWZmMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL+fbV1vDnmjjmkhND/8cJ6V7DgjPyW8tGO9FRFimr6TNtNd
AABpCKBD9aR0BcmloI06isMnds7RuHgYOMa+zidXU0M19yRqXNXev5JhXI8ttymZ
P591U4UdNL2dgL3B2U9pdvLa974yVmbsbgeDmgeYLmcFPjSgb0TIHpTGqjVwOPYu
1muGwSj5DRZMVB/KTkIdKUSTz3AjyAv0XuBPsTFjNZTbqUSnsDTwnCMNiyqsOTwa
Wv6MTXpvhho3ITaUjzrSDQ1ZBzrgNs94KJkDG+qsmRIWw9bTFLCUv+DhbSpKdZfW
ZJVt7sql5GcGgOWlyBF8RwIbZWBDyfk3nbOGOZUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQLreSrGh98J77qGc0imEMxIS5f8jAfBgNVHSMEGDAWgBSDN1tDropT1IyI
hnHmf8F78n8rfjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2d6ZGJRNjZLVTlTTWlJWng1bl9CZV9KX0szNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjQvMTkyYmJhLTFhNzQtNGJhNC05MGQ2LTcyYzRjNGI4MDRhNy8x
L0M2M2txeG9mZkNlLTZobk5JcGhETVNFdVhfSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjQv
MTkyYmJhLTFhNzQtNGJhNC05MGQ2LTcyYzRjNGI4MDRhNy8xL2d6ZGJRNjZLVTlT
TWlJWng1bl9CZV9KX0szNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArltcDANBgkqhkiG9w0BAQsFAAOC
AQEANMakSjuCvrPXk6D0pqDFfrm//62utZIeFE4Gz5hv4uYz1vh0MvpjncnZolDX
rmPAQYsnpVwQ5xlz5tFqqhaGYIMzjtDuNLX/A06uQIXErOc6mBnZEvE6kxQo6kHg
3qNLl0LKzbFkzC+9+X9pJ3QBSIF9634BRXuAmYagF47IHzayuPGd5qSNhB0IZwDo
09gGY3xtiA7R/1cKzhzQ9LwDG2D7i5ySrtcHJqz8SJ2ujB2ELEpCPsqwug8jvXq5
hsbHHoeDaEeY6Z1D9IQP/0K+QO4FRTluE6pwmraO5S1o4HW1K1pJy9NFZCrn1rSy
J6IbqHCQvDq+6i9RK2PbWyv8zA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:44 2024 by rpki-client on console-ams.rpki-client.org