Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/c5bb63-30bf-48c8-a433-a2f67f2bf950/1/7GQ9rNB1I4h_4jmeaSDQXF4yRcI.roa
File: 7GQ9rNB1I4h_4jmeaSDQXF4yRcI.roa (raw, json)
Hash identifier: OJ/dCvPa8mmNx1xU+smQID0NJVA37YVDM1/NGzkKEdI=
Subject key identifier: EC:64:3D:AC:D0:75:23:88:7F:E2:39:9E:69:20:D0:5C:5E:32:45:C2
Certificate issuer: /CN=428e828829846f63465a37447ece3a746a48dd6c
Certificate serial: 0183370C81C5C73BD4E1D834945FB1577985
Authority key identifier: 42:8E:82:88:29:84:6F:63:46:5A:37:44:7E:CE:3A:74:6A:48:DD:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qo6CiCmEb2NGWjdEfs46dGpI3Ww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/c5bb63-30bf-48c8-a433-a2f67f2bf950/1/7GQ9rNB1I4h_4jmeaSDQXF4yRcI.roa
Signing time: Tue 13 Sep 2022 13:31:49 +0000
ROA not before: Tue 13 Sep 2022 13:31:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59962
IP address blocks: 185.64.178.0/23 maxlen: 23
185.64.176.0/23 maxlen: 23
2a04:fb40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:37:0c:81:c5:c7:3b:d4:e1:d8:34:94:5f:b1:57:79:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=428e828829846f63465a37447ece3a746a48dd6c
Validity
Not Before: Sep 13 13:31:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec643dacd07523887fe2399e6920d05c5e3245c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a3:7f:d7:d9:f9:29:28:df:00:aa:f2:c5:f9:
2a:54:43:08:a1:79:8e:72:73:6c:77:7b:4b:4c:40:
09:c9:49:e9:e1:ed:62:26:04:b5:d7:4b:5b:b0:af:
bb:72:fc:85:07:86:31:92:56:88:32:7b:49:5d:03:
b0:ea:f9:01:8e:0a:1e:5b:1b:ee:4f:63:16:53:d2:
b1:0b:3e:b1:76:95:35:63:c7:09:f6:fa:7c:3c:1d:
dd:cb:b6:13:a3:4a:6c:81:e1:99:b5:ab:f0:58:ff:
7d:4f:31:14:b1:65:3d:ac:97:ec:e4:47:eb:28:37:
26:9f:85:6a:9f:fc:7d:33:01:40:aa:75:91:2a:be:
53:9b:d3:f9:b6:ab:45:5b:b9:7d:d5:75:03:cc:b9:
d9:9f:20:42:11:5a:f8:92:4f:63:aa:ee:92:a3:a6:
07:59:d4:9b:83:9b:97:60:a9:55:3b:5b:6b:76:4c:
90:ce:73:cb:5e:0a:55:ef:cb:e7:68:0a:0e:ab:9d:
f1:ab:6c:97:a9:85:50:06:70:a0:ed:f5:dc:e0:a5:
49:04:b1:c0:57:3b:ff:82:91:b6:e9:35:99:49:06:
34:4e:6e:9e:4d:dd:98:5c:83:d0:01:d4:70:b3:ea:
c3:e0:9e:11:d5:cf:d8:84:fb:49:d9:b5:04:e9:6d:
79:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:64:3D:AC:D0:75:23:88:7F:E2:39:9E:69:20:D0:5C:5E:32:45:C2
X509v3 Authority Key Identifier:
keyid:42:8E:82:88:29:84:6F:63:46:5A:37:44:7E:CE:3A:74:6A:48:DD:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qo6CiCmEb2NGWjdEfs46dGpI3Ww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/c5bb63-30bf-48c8-a433-a2f67f2bf950/1/7GQ9rNB1I4h_4jmeaSDQXF4yRcI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/c5bb63-30bf-48c8-a433-a2f67f2bf950/1/Qo6CiCmEb2NGWjdEfs46dGpI3Ww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.64.176.0/22
IPv6:
2a04:fb40::/29
Signature Algorithm: sha256WithRSAEncryption
93:8c:47:b3:5c:c7:ef:46:49:bf:0e:44:80:da:ac:d8:5b:03:
84:f3:13:c4:6e:87:20:e8:79:27:9f:cd:66:ef:7c:40:0e:f7:
cc:e5:5e:92:06:d3:95:7c:7e:55:1c:09:e0:78:f4:f2:59:dd:
66:df:6d:5d:6a:53:d0:1f:61:0c:dc:3d:79:fc:89:6e:76:c4:
ae:14:08:29:00:69:83:c3:5b:d5:1a:36:1e:55:be:54:11:8c:
51:84:5e:ae:7d:c7:de:45:70:f0:57:b7:be:4f:89:d5:6b:29:
32:8f:43:b7:03:7a:8e:89:cf:35:4e:f6:22:b7:06:95:39:d2:
bf:fc:72:c8:28:d1:ef:60:73:c0:0c:48:9a:54:ea:f6:d6:13:
d1:17:30:ed:6b:83:f7:fc:ce:28:a5:4c:3d:f2:2a:5f:0e:ba:
c2:d9:91:69:ef:7f:6b:3a:08:2b:59:de:4e:30:11:bb:8a:e3:
9b:f7:0d:2d:77:e6:da:38:82:19:14:77:a2:78:0c:9d:8c:1a:
26:c5:b8:8f:e3:12:00:94:b9:19:ad:11:61:be:8c:6d:bb:0c:
bd:ae:d0:a1:53:6c:a8:bf:70:bb:19:2d:89:c1:a3:53:22:78:
a8:bb:f1:16:f4:56:82:5b:c0:91:ef:94:f1:1a:59:47:43:d8:
62:ce:88:a1
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYM3DIHFxzvU4dg0lF+xV3mFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyOGU4Mjg4Mjk4NDZmNjM0NjVhMzc0NDdlY2UzYTc0NmE0
OGRkNmMwHhcNMjIwOTEzMTMzMTQ5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYzY0M2RhY2QwNzUyMzg4N2ZlMjM5OWU2OTIwZDA1YzVlMzI0NWMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoaN/19n5KSjfAKryxfkqVEMIoXmO
cnNsd3tLTEAJyUnp4e1iJgS110tbsK+7cvyFB4YxklaIMntJXQOw6vkBjgoeWxvu
T2MWU9KxCz6xdpU1Y8cJ9vp8PB3dy7YTo0psgeGZtavwWP99TzEUsWU9rJfs5Efr
KDcmn4Vqn/x9MwFAqnWRKr5Tm9P5tqtFW7l91XUDzLnZnyBCEVr4kk9jqu6So6YH
WdSbg5uXYKlVO1trdkyQznPLXgpV78vnaAoOq53xq2yXqYVQBnCg7fXc4KVJBLHA
Vzv/gpG26TWZSQY0Tm6eTd2YXIPQAdRws+rD4J4R1c/YhPtJ2bUE6W152QIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFOxkPazQdSOIf+I5nmkg0FxeMkXCMB8GA1UdIwQY
MBaAFEKOgogphG9jRlo3RH7OOnRqSN1sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUW82Q2lDbUViMk5HV2pkRWZzNDZkR3BJM1d3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy9jNWJiNjMtMzBiZi00OGM4LWE0MzMt
YTJmNjdmMmJmOTUwLzEvN0dROXJOQjFJNGhfNGptZWFTRFFYRjR5UmNJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yy9jNWJiNjMtMzBiZi00OGM4LWE0MzMtYTJmNjdmMmJmOTUw
LzEvUW82Q2lDbUViMk5HV2pkRWZzNDZkR3BJM1d3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuUCwMA0E
AgACMAcDBQMqBPtAMA0GCSqGSIb3DQEBCwUAA4IBAQCTjEezXMfvRkm/DkSA2qzY
WwOE8xPEbocg6Hknn81m73xADvfM5V6SBtOVfH5VHAngePTyWd1m321dalPQH2EM
3D15/IludsSuFAgpAGmDw1vVGjYeVb5UEYxRhF6ufcfeRXDwV7e+T4nVaykyj0O3
A3qOic81TvYitwaVOdK//HLIKNHvYHPADEiaVOr21hPRFzDta4P3/M4opUw98ipf
DrrC2ZFp739rOggrWd5OMBG7iuOb9w0td+baOIIZFHeieAydjBomxbiP4xIAlLkZ
rRFhvoxtuwy9rtChU2yov3C7GS2JwaNTIniou/EW9FaCW8CR75TxGllHQ9hizoih
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:09 2024 by rpki-client on console-ams.rpki-client.org