Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/7474e1-4d65-43b4-8bb1-feef105f0a77/1/oQIAYZ0zV_5bTcFbm8dn5qXd2Ig.roa
File: oQIAYZ0zV_5bTcFbm8dn5qXd2Ig.roa (raw, json)
Hash identifier: ZTtaUhWID8r6Eud4wUr0XXN9AFJzRHullAIhgHkpBZ4=
Subject key identifier: A1:02:00:61:9D:33:57:FE:5B:4D:C1:5B:9B:C7:67:E6:A5:DD:D8:88
Certificate issuer: /CN=ee3be768d28668f490afb74e9aefe41e03495d7a
Certificate serial: 039D926C
Authority key identifier: EE:3B:E7:68:D2:86:68:F4:90:AF:B7:4E:9A:EF:E4:1E:03:49:5D:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7jvnaNKGaPSQr7dOmu_kHgNJXXo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/7474e1-4d65-43b4-8bb1-feef105f0a77/1/oQIAYZ0zV_5bTcFbm8dn5qXd2Ig.roa
Signing time: Sat 01 Jan 2022 13:56:12 +0000
ROA not before: Sat 01 Jan 2022 13:56:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212579
IP address blocks: 185.19.224.0/22 maxlen: 24
185.243.16.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60658284 (0x39d926c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee3be768d28668f490afb74e9aefe41e03495d7a
Validity
Not Before: Jan 1 13:56:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a10200619d3357fe5b4dc15b9bc767e6a5ddd888
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f0:c7:34:af:f6:c9:e5:26:ea:4f:eb:04:aa:
e5:9f:e8:e2:25:a9:da:43:b6:d7:6f:a0:0a:a3:07:
f8:27:b2:1e:fb:99:03:fb:49:85:bb:fb:10:2d:83:
37:03:33:b5:b8:ba:68:14:fe:95:2d:2e:a5:82:43:
fd:1e:fd:c9:16:8e:6e:33:e9:aa:38:e6:f0:20:90:
b4:5c:3c:a1:97:63:5c:ad:9b:b3:fa:96:63:39:58:
62:68:75:b4:2d:f8:fc:35:b0:d4:bd:e2:53:b6:5f:
d5:0a:05:47:07:94:8a:2e:9d:c9:47:fc:48:0a:60:
e2:85:cc:de:8e:14:55:36:79:f3:e8:e1:ff:41:9f:
78:91:7f:1b:0e:4f:6a:55:43:34:7c:28:f5:e7:76:
36:8a:65:7d:2c:f0:3e:f0:33:0e:60:49:30:28:0d:
a0:26:bb:fb:7d:6f:55:f1:47:65:c4:e8:96:7d:85:
02:23:2d:ab:3d:2a:9f:0c:ca:7b:0b:7f:d1:90:d7:
4d:db:ab:2c:f0:e0:b1:41:19:c7:95:5e:78:94:37:
e1:30:cd:f1:8c:17:61:24:e9:0d:7f:ad:a3:34:36:
f4:91:c4:36:ed:30:bd:1a:44:1d:ba:1e:2a:6f:51:
98:11:d0:b8:ee:e8:b6:42:a1:5e:5e:9e:f0:4b:a0:
df:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:02:00:61:9D:33:57:FE:5B:4D:C1:5B:9B:C7:67:E6:A5:DD:D8:88
X509v3 Authority Key Identifier:
keyid:EE:3B:E7:68:D2:86:68:F4:90:AF:B7:4E:9A:EF:E4:1E:03:49:5D:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7jvnaNKGaPSQr7dOmu_kHgNJXXo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/7474e1-4d65-43b4-8bb1-feef105f0a77/1/oQIAYZ0zV_5bTcFbm8dn5qXd2Ig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/7474e1-4d65-43b4-8bb1-feef105f0a77/1/7jvnaNKGaPSQr7dOmu_kHgNJXXo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.19.224.0/22
185.243.16.0/22
Signature Algorithm: sha256WithRSAEncryption
35:d8:45:f3:7f:b1:7d:7a:ba:55:f0:0e:3f:85:95:18:ca:82:
af:69:1c:3b:3f:19:8c:e8:0a:34:de:83:00:e9:a0:a4:44:be:
d0:a5:88:40:6f:55:16:e5:8a:fc:3b:33:fd:36:23:b2:2b:2a:
15:95:8b:c9:69:32:22:53:a2:42:aa:f6:a7:b9:3f:6f:71:f4:
08:44:d8:4f:0a:9d:62:e7:29:65:3b:c1:a5:b9:56:bb:c0:05:
b6:51:14:c2:0d:e3:a5:0e:14:ef:5e:51:f9:be:14:68:4c:74:
90:20:a3:4e:9e:ee:c2:7f:e4:af:97:e9:ad:5c:34:91:7d:93:
84:2b:54:a2:51:5e:72:54:7c:87:57:54:99:0a:58:d5:75:30:
d1:84:c8:c3:c3:62:a2:71:e3:2e:19:77:2f:aa:40:e4:21:75:
bb:78:9d:18:32:9b:d1:49:29:74:63:f3:95:fe:d9:a8:e6:eb:
c3:43:28:67:d5:a4:55:e5:65:09:65:64:81:15:87:57:f1:c1:
4f:0d:72:69:0b:5a:8f:5b:b0:85:44:09:6e:4e:ad:45:53:86:
35:75:15:8a:6d:1c:82:ed:19:74:35:ce:08:d1:8b:d6:aa:95:
90:6d:b1:fa:94:38:d0:38:91:16:07:2a:79:91:11:14:0a:9d:
04:ee:16:eb
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEA52SbDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
ZTNiZTc2OGQyODY2OGY0OTBhZmI3NGU5YWVmZTQxZTAzNDk1ZDdhMB4XDTIyMDEw
MTEzNTYxMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTEwMjAwNjE5ZDMz
NTdmZTViNGRjMTViOWJjNzY3ZTZhNWRkZDg4ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKPwxzSv9snlJupP6wSq5Z/o4iWp2kO212+gCqMH+CeyHvuZ
A/tJhbv7EC2DNwMztbi6aBT+lS0upYJD/R79yRaObjPpqjjm8CCQtFw8oZdjXK2b
s/qWYzlYYmh1tC34/DWw1L3iU7Zf1QoFRweUii6dyUf8SApg4oXM3o4UVTZ58+jh
/0GfeJF/Gw5PalVDNHwo9ed2NoplfSzwPvAzDmBJMCgNoCa7+31vVfFHZcToln2F
AiMtqz0qnwzKewt/0ZDXTdurLPDgsUEZx5VeeJQ34TDN8YwXYSTpDX+tozQ29JHE
Nu0wvRpEHboeKm9RmBHQuO7otkKhXl6e8Eug37cCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBShAgBhnTNX/ltNwVubx2fmpd3YiDAfBgNVHSMEGDAWgBTuO+do0oZo9JCv
t06a7+QeA0ldejAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
Lzdqdm5hTktHYVBTUXI3ZE9tdV9rSGdOSlhYby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2UvNzQ3NGUxLTRkNjUtNDNiNC04YmIxLWZlZWYxMDVmMGE3Ny8x
L29RSUFZWjB6Vl81YlRjRmJtOGRuNXFYZDJJZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Uv
NzQ3NGUxLTRkNjUtNDNiNC04YmIxLWZlZWYxMDVmMGE3Ny8xLzdqdm5hTktHYVBT
UXI3ZE9tdV9rSGdOSlhYby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEArkT4AMEArnzEDANBgkqhkiG9w0B
AQsFAAOCAQEANdhF83+xfXq6VfAOP4WVGMqCr2kcOz8ZjOgKNN6DAOmgpES+0KWI
QG9VFuWK/Dsz/TYjsisqFZWLyWkyIlOiQqr2p7k/b3H0CETYTwqdYucpZTvBpblW
u8AFtlEUwg3jpQ4U715R+b4UaEx0kCCjTp7uwn/kr5fprVw0kX2ThCtUolFeclR8
h1dUmQpY1XUw0YTIw8NionHjLhl3L6pA5CF1u3idGDKb0UkpdGPzlf7ZqObrw0Mo
Z9WkVeVlCWVkgRWHV/HBTw1yaQtaj1uwhUQJbk6tRVOGNXUVim0cgu0ZdDXOCNGL
1qqVkG2x+pQ40DiRFgcqeZERFAqdBO4W6w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:00 2024 by rpki-client on console-ams.rpki-client.org