Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/118413-b7aa-459c-99fa-4de1b520a594/1/_7sGvjtw_ZZy06d3290KBeTyWWc.roa
File: _7sGvjtw_ZZy06d3290KBeTyWWc.roa (raw, json)
Hash identifier: +oyiLnMKMR+O+LvGM8zO8UGk/mejaXNtDE8DDKwRxpY=
Subject key identifier: FF:BB:06:BE:3B:70:FD:96:72:D3:A7:77:DB:DD:0A:05:E4:F2:59:67
Certificate issuer: /CN=279669579b3ce61ee8ee7d6af7e314b0f726361f
Certificate serial: 0855B801
Authority key identifier: 27:96:69:57:9B:3C:E6:1E:E8:EE:7D:6A:F7:E3:14:B0:F7:26:36:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J5ZpV5s85h7o7n1q9-MUsPcmNh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/118413-b7aa-459c-99fa-4de1b520a594/1/_7sGvjtw_ZZy06d3290KBeTyWWc.roa
Signing time: Sat 01 Jan 2022 08:54:37 +0000
ROA not before: Sat 01 Jan 2022 08:54:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59253
IP address blocks: 185.129.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139835393 (0x855b801)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279669579b3ce61ee8ee7d6af7e314b0f726361f
Validity
Not Before: Jan 1 08:54:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ffbb06be3b70fd9672d3a777dbdd0a05e4f25967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:6c:4d:08:41:7a:46:07:4c:ff:8c:ad:f1:e3:
34:f5:40:c3:d8:cb:3f:21:19:77:53:9b:54:a8:b7:
6f:00:29:e9:1f:bd:cc:e1:0b:aa:c1:00:0e:b2:e9:
ae:53:07:83:14:51:cd:bf:47:a7:ad:d8:cc:29:e1:
1c:6a:f0:df:cf:e8:bf:d5:64:96:15:c6:c8:c6:e7:
a5:0e:13:d7:a5:71:7c:9d:a9:43:bc:2d:2f:50:af:
40:72:37:9f:fd:20:5e:71:11:4b:60:a3:38:6b:02:
90:e7:40:15:1f:fc:aa:e6:d7:7f:4d:52:bb:32:57:
4d:c0:9a:e4:29:fb:14:02:8e:76:98:00:1e:b0:05:
a0:7e:b3:04:27:25:48:68:16:7e:a7:26:cd:29:9b:
95:27:2c:1f:c1:0a:3e:2c:6b:c4:32:94:47:3e:54:
a2:24:17:cf:09:df:99:4b:c7:ec:af:2b:ff:54:9c:
4d:af:ad:df:cd:72:c1:d8:ce:59:b1:46:3c:b8:5e:
f2:73:db:4d:14:29:ee:ef:78:1e:72:d6:79:35:2b:
c6:d7:d6:21:4d:07:67:b3:4f:39:79:6b:74:1b:b6:
de:25:b6:d0:05:e9:a4:c5:2c:b7:72:0c:bc:50:7e:
40:7c:f1:4a:6d:ce:ee:79:68:48:e7:4f:71:63:2d:
8a:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:BB:06:BE:3B:70:FD:96:72:D3:A7:77:DB:DD:0A:05:E4:F2:59:67
X509v3 Authority Key Identifier:
keyid:27:96:69:57:9B:3C:E6:1E:E8:EE:7D:6A:F7:E3:14:B0:F7:26:36:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J5ZpV5s85h7o7n1q9-MUsPcmNh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/118413-b7aa-459c-99fa-4de1b520a594/1/_7sGvjtw_ZZy06d3290KBeTyWWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/118413-b7aa-459c-99fa-4de1b520a594/1/J5ZpV5s85h7o7n1q9-MUsPcmNh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.129.122.0/24
Signature Algorithm: sha256WithRSAEncryption
12:22:f0:e8:a1:a8:67:da:82:3a:75:38:00:25:70:29:a3:38:
ec:fc:dc:2f:49:d3:4c:fc:f9:b1:bf:8a:28:ff:1f:75:c4:96:
a6:43:4a:c9:bb:43:e7:6a:84:02:32:05:42:c2:43:c6:0b:0f:
09:20:8e:36:cf:a0:51:77:10:d6:8c:5f:48:1f:9f:91:b0:c5:
ca:2a:1d:51:41:3a:33:46:b9:8b:3c:97:a5:7d:e1:b9:40:51:
57:94:08:b9:89:44:c0:cb:85:a6:5d:69:49:25:e5:ef:c5:77:
c8:09:2e:44:f8:b4:07:71:6e:71:ba:ac:ef:df:b0:2e:84:ef:
b3:83:79:e8:f9:6e:72:95:bd:40:6f:2f:67:9b:22:58:4e:aa:
b0:c0:bf:7f:82:7e:7e:77:41:63:17:f8:b7:bd:75:99:01:d2:
5f:eb:eb:69:77:9e:1c:73:5b:fc:3d:d7:c2:a6:d1:6c:33:4d:
aa:c5:8d:10:37:d0:1a:ac:03:93:16:cc:74:85:16:57:80:93:
bb:6b:a0:f9:f7:da:74:72:e6:60:c4:f0:36:47:7c:da:91:e6:
af:77:4d:a6:b8:ba:b1:2a:26:cd:b5:7b:e3:3c:21:79:43:8f:
c2:ca:25:c7:06:58:1d:37:46:b6:a4:b1:fa:3e:b7:bc:55:81:
5b:28:e8:99
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECFW4ATANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
Nzk2Njk1NzliM2NlNjFlZThlZTdkNmFmN2UzMTRiMGY3MjYzNjFmMB4XDTIyMDEw
MTA4NTQzN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmZiYjA2YmUzYjcw
ZmQ5NjcyZDNhNzc3ZGJkZDBhMDVlNGYyNTk2NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALtsTQhBekYHTP+MrfHjNPVAw9jLPyEZd1ObVKi3bwAp6R+9
zOELqsEADrLprlMHgxRRzb9Hp63YzCnhHGrw38/ov9VklhXGyMbnpQ4T16VxfJ2p
Q7wtL1CvQHI3n/0gXnERS2CjOGsCkOdAFR/8qubXf01SuzJXTcCa5Cn7FAKOdpgA
HrAFoH6zBCclSGgWfqcmzSmblScsH8EKPixrxDKURz5UoiQXzwnfmUvH7K8r/1Sc
Ta+t381ywdjOWbFGPLhe8nPbTRQp7u94HnLWeTUrxtfWIU0HZ7NPOXlrdBu23iW2
0AXppMUst3IMvFB+QHzxSm3O7nloSOdPcWMtitUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT/uwa+O3D9lnLTp3fb3QoF5PJZZzAfBgNVHSMEGDAWgBQnlmlXmzzmHuju
fWr34xSw9yY2HzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0o1WnBWNXM4NWg3bzduMXE5LU1Vc1BjbU5oOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGEvMTE4NDEzLWI3YWEtNDU5Yy05OWZhLTRkZTFiNTIwYTU5NC8x
L183c0d2anR3X1paeTA2ZDMyOTBLQmVUeVdXYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGEv
MTE4NDEzLWI3YWEtNDU5Yy05OWZhLTRkZTFiNTIwYTU5NC8xL0o1WnBWNXM4NWg3
bzduMXE5LU1Vc1BjbU5oOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALmBejANBgkqhkiG9w0BAQsFAAOC
AQEAEiLw6KGoZ9qCOnU4ACVwKaM47PzcL0nTTPz5sb+KKP8fdcSWpkNKybtD52qE
AjIFQsJDxgsPCSCONs+gUXcQ1oxfSB+fkbDFyiodUUE6M0a5izyXpX3huUBRV5QI
uYlEwMuFpl1pSSXl78V3yAkuRPi0B3Fucbqs79+wLoTvs4N56PlucpW9QG8vZ5si
WE6qsMC/f4J+fndBYxf4t711mQHSX+vraXeeHHNb/D3XwqbRbDNNqsWNEDfQGqwD
kxbMdIUWV4CTu2ug+ffadHLmYMTwNkd82pHmr3dNpri6sSomzbV74zwheUOPwsol
xwZYHTdGtqSx+j63vFWBWyjomQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:46 2023 by rpki-client on console-ams.rpki-client.org