Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/c54e32-705a-4e7a-9513-b978bfc752ab/1/oAAzayRVY_KnEBNJ6fcyF2IM2Xs.roa
File: oAAzayRVY_KnEBNJ6fcyF2IM2Xs.roa (raw, json)
Hash identifier: aB9rCyeSwaDOgA1+oYzWQ+KCT4ARCS04/RlJt7oSd34=
Subject key identifier: A0:00:33:6B:24:55:63:F2:A7:10:13:49:E9:F7:32:17:62:0C:D9:7B
Certificate issuer: /CN=843d8aa1269d1a3f3321335860c67c7e08677dc5
Certificate serial: 01D931B8
Authority key identifier: 84:3D:8A:A1:26:9D:1A:3F:33:21:33:58:60:C6:7C:7E:08:67:7D:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hD2KoSadGj8zITNYYMZ8fghnfcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/c54e32-705a-4e7a-9513-b978bfc752ab/1/oAAzayRVY_KnEBNJ6fcyF2IM2Xs.roa
Signing time: Sat 01 Jan 2022 14:06:28 +0000
ROA not before: Sat 01 Jan 2022 14:06:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207058
IP address blocks: 185.173.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31011256 (0x1d931b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843d8aa1269d1a3f3321335860c67c7e08677dc5
Validity
Not Before: Jan 1 14:06:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a000336b245563f2a7101349e9f73217620cd97b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:03:64:b7:85:79:df:9f:02:45:cd:50:c5:b8:
3f:0f:3c:8c:87:9b:6d:63:c7:69:14:fd:de:a7:68:
01:85:cb:56:9c:12:a7:bf:59:f3:d3:2a:fe:a5:88:
8e:82:e9:71:31:43:7f:d0:89:69:f3:24:ac:ea:fa:
12:09:ab:a9:8d:92:8f:f1:7f:67:25:c4:57:3a:aa:
34:22:5e:37:85:6f:e1:18:24:77:45:1c:cc:9f:90:
30:0c:47:27:00:70:48:26:63:33:5c:21:f9:74:58:
af:e6:f6:57:61:4f:db:14:e9:57:d2:d7:f9:09:f7:
d7:20:2d:20:77:2d:99:d9:7b:b5:28:61:cd:f0:76:
2c:33:de:d4:91:99:64:88:8c:2e:48:3e:90:b8:e1:
c7:62:08:bc:ef:6e:78:4d:e8:ca:ac:4d:ad:45:cd:
40:ad:66:e1:3c:f3:76:77:ec:4d:47:ff:32:a2:22:
ce:04:c9:a6:5f:ab:87:b7:2f:35:13:bd:90:d6:88:
89:a6:5e:8c:97:df:6f:cb:2a:5a:21:8a:56:f4:bb:
3c:12:93:6d:43:6c:ff:5b:d8:bd:ac:b4:ed:94:fb:
32:cd:a3:16:10:46:47:6b:e4:73:af:8e:44:9e:05:
b0:00:86:1f:26:54:ad:ec:24:b7:6a:1b:59:5d:c6:
d6:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:00:33:6B:24:55:63:F2:A7:10:13:49:E9:F7:32:17:62:0C:D9:7B
X509v3 Authority Key Identifier:
keyid:84:3D:8A:A1:26:9D:1A:3F:33:21:33:58:60:C6:7C:7E:08:67:7D:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hD2KoSadGj8zITNYYMZ8fghnfcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c54e32-705a-4e7a-9513-b978bfc752ab/1/oAAzayRVY_KnEBNJ6fcyF2IM2Xs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c54e32-705a-4e7a-9513-b978bfc752ab/1/hD2KoSadGj8zITNYYMZ8fghnfcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.173.45.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:d0:75:e1:38:cd:1a:8c:81:17:6b:59:c1:19:f3:f2:db:a6:
cf:14:80:55:79:b6:a4:f2:4e:81:16:f1:a5:c2:12:fe:91:8d:
3c:a9:82:46:02:4c:c4:20:ea:47:6d:c4:3e:2f:51:9f:73:bf:
2d:53:96:2d:b6:e9:1c:01:e4:ae:81:43:09:5a:47:b6:6a:bc:
b0:ef:3d:42:3a:bd:9e:aa:ef:35:87:0d:43:5d:22:c9:34:bb:
54:65:7a:d1:84:06:aa:44:4a:e2:e7:c3:10:23:d4:b7:f5:f6:
d5:bb:d4:32:75:1e:3d:f1:6c:8a:a0:48:2f:b7:ad:05:9a:ea:
6c:51:05:50:6b:4a:ee:82:7f:42:4d:21:99:7b:a3:d5:e8:36:
76:42:58:96:d1:5a:e5:5c:90:8b:ad:dc:8b:99:44:99:60:44:
68:bd:4e:3e:74:4f:9a:8a:8d:f6:2e:48:1e:15:15:b5:9c:43:
77:d6:b4:33:2b:d3:4d:00:b2:24:49:a3:9e:89:a6:05:54:4d:
9b:eb:b8:c7:e3:03:25:65:8f:31:7f:7c:2d:6c:ab:1e:86:1c:
cf:1a:44:f5:49:cd:3e:e2:9e:c2:17:0b:b1:55:7d:4c:16:8f:
75:71:49:36:f9:08:8a:b1:b5:2f:a3:94:95:d4:9a:15:01:e6:
e2:db:53:1a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAdkxuDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NDNkOGFhMTI2OWQxYTNmMzMyMTMzNTg2MGM2N2M3ZTA4Njc3ZGM1MB4XDTIyMDEw
MTE0MDYyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTAwMDMzNmIyNDU1
NjNmMmE3MTAxMzQ5ZTlmNzMyMTc2MjBjZDk3YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALkDZLeFed+fAkXNUMW4Pw88jIebbWPHaRT93qdoAYXLVpwS
p79Z89Mq/qWIjoLpcTFDf9CJafMkrOr6EgmrqY2Sj/F/ZyXEVzqqNCJeN4Vv4Rgk
d0UczJ+QMAxHJwBwSCZjM1wh+XRYr+b2V2FP2xTpV9LX+Qn31yAtIHctmdl7tShh
zfB2LDPe1JGZZIiMLkg+kLjhx2IIvO9ueE3oyqxNrUXNQK1m4TzzdnfsTUf/MqIi
zgTJpl+rh7cvNRO9kNaIiaZejJffb8sqWiGKVvS7PBKTbUNs/1vYvay07ZT7Ms2j
FhBGR2vkc6+ORJ4FsACGHyZUrewkt2obWV3G1qsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSgADNrJFVj8qcQE0np9zIXYgzZezAfBgNVHSMEGDAWgBSEPYqhJp0aPzMh
M1hgxnx+CGd9xTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2hEMktvU2FkR2o4eklUTllZTVo4ZmdobmZjVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODkvYzU0ZTMyLTcwNWEtNGU3YS05NTEzLWI5NzhiZmM3NTJhYi8x
L29BQXpheVJWWV9LbkVCTko2ZmN5RjJJTTJYcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODkv
YzU0ZTMyLTcwNWEtNGU3YS05NTEzLWI5NzhiZmM3NTJhYi8xL2hEMktvU2FkR2o4
eklUTllZTVo4ZmdobmZjVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALmtLTANBgkqhkiG9w0BAQsFAAOC
AQEAyNB14TjNGoyBF2tZwRnz8tumzxSAVXm2pPJOgRbxpcIS/pGNPKmCRgJMxCDq
R23EPi9Rn3O/LVOWLbbpHAHkroFDCVpHtmq8sO89Qjq9nqrvNYcNQ10iyTS7VGV6
0YQGqkRK4ufDECPUt/X21bvUMnUePfFsiqBIL7etBZrqbFEFUGtK7oJ/Qk0hmXuj
1eg2dkJYltFa5VyQi63ci5lEmWBEaL1OPnRPmoqN9i5IHhUVtZxDd9a0MyvTTQCy
JEmjnommBVRNm+u4x+MDJWWPMX98LWyrHoYczxpE9UnNPuKewhcLsVV9TBaPdXFJ
NvkIirG1L6OUldSaFQHm4ttTGg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:03 2024 by rpki-client on console-fra.rpki-client.org