Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/lBs4fP_d1QH-V-4pPLP8YSxK5tM.roa
File: lBs4fP_d1QH-V-4pPLP8YSxK5tM.roa (raw, json)
Hash identifier: 8zcGlrMB/3YDyl7EMv4nUB+D5vhfk8WntD2w87R4Dig=
Subject key identifier: 94:1B:38:7C:FF:DD:D5:01:FE:57:EE:29:3C:B3:FC:61:2C:4A:E6:D3
Certificate issuer: /CN=cd4065967dec092b5fc90152e4a95339ba1d2289
Certificate serial: 0EDB0D
Authority key identifier: CD:40:65:96:7D:EC:09:2B:5F:C9:01:52:E4:A9:53:39:BA:1D:22:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zUBlln3sCStfyQFS5KlTObodIok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/lBs4fP_d1QH-V-4pPLP8YSxK5tM.roa
Signing time: Wed 22 Jun 2022 08:26:44 +0000
ROA not before: Wed 22 Jun 2022 08:26:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211105
IP address blocks: 185.144.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 973581 (0xedb0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd4065967dec092b5fc90152e4a95339ba1d2289
Validity
Not Before: Jun 22 08:26:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=941b387cffddd501fe57ee293cb3fc612c4ae6d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:69:c3:cb:12:47:73:93:6e:94:f8:7e:65:3c:
02:fb:1c:94:45:28:49:b2:45:59:b7:35:28:4b:f9:
db:43:21:d4:8d:e3:d9:29:ac:b6:e9:cc:a2:7b:72:
a4:a6:10:d8:90:34:4d:3e:be:82:8e:a3:4c:07:ed:
f9:ce:b2:e1:ad:89:71:93:2f:6e:38:4e:15:96:94:
88:45:46:43:4c:11:f4:94:ba:d9:0d:36:3b:87:93:
86:c0:6b:3b:85:a5:ba:4a:10:fd:49:4b:2f:a8:fe:
e1:42:98:a0:b7:d3:94:e0:3c:53:5d:f0:ad:52:a3:
8a:d6:11:f2:4b:95:e4:bf:a9:7e:88:f6:19:68:46:
eb:0f:d9:1d:20:9b:9c:27:9a:49:f7:c8:1e:f9:aa:
ca:ab:c3:88:e0:ed:e6:b6:01:c5:5b:c9:0f:6e:51:
b5:23:f2:3a:39:15:d6:78:52:9d:57:d1:ff:6c:f5:
3f:21:a1:33:56:d3:02:41:01:b7:be:72:32:ca:51:
89:73:72:5c:27:b2:42:e1:33:7b:de:f4:9e:b4:82:
32:3e:2c:45:4c:df:6e:6c:0a:02:a2:59:a8:4d:89:
5e:20:0b:f5:99:a3:ec:5a:63:22:f5:09:2f:a2:3a:
48:67:99:91:ce:45:26:07:2a:59:e9:65:eb:48:6d:
18:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:1B:38:7C:FF:DD:D5:01:FE:57:EE:29:3C:B3:FC:61:2C:4A:E6:D3
X509v3 Authority Key Identifier:
keyid:CD:40:65:96:7D:EC:09:2B:5F:C9:01:52:E4:A9:53:39:BA:1D:22:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zUBlln3sCStfyQFS5KlTObodIok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/lBs4fP_d1QH-V-4pPLP8YSxK5tM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.12.0/24
Signature Algorithm: sha256WithRSAEncryption
76:c1:8b:5c:9b:9b:aa:1b:d7:7d:ae:e1:43:de:97:52:0e:e6:
3a:e1:d5:e5:b1:26:ed:91:74:50:f5:80:76:68:44:73:a0:77:
d6:26:e3:9b:60:72:cf:1f:5b:a6:be:06:00:e2:03:4c:02:14:
c1:b8:e1:27:f7:e7:75:4c:09:c8:80:4b:9b:9e:95:30:1a:4f:
c4:e9:1e:77:06:80:08:bd:a3:95:d2:cb:a6:b7:0b:4b:60:78:
4e:28:a6:4a:a7:ad:88:3c:3e:bb:a3:57:48:de:51:ca:6c:3a:
04:4b:78:2a:0c:c4:a5:0d:1f:4b:74:15:12:93:fd:d1:6f:3f:
f6:5f:1b:ba:eb:e1:26:f9:81:60:ab:ab:65:2f:a3:e3:51:4b:
04:9a:f7:7b:16:a9:45:17:17:14:85:e2:6d:31:d3:9f:43:05:
ed:ca:98:96:30:b2:cc:6f:e6:64:14:12:43:89:4e:86:44:ef:
8c:9f:46:ff:0d:c0:64:03:1b:52:c2:ff:e4:ba:7a:86:e2:11:
7c:bf:05:87:2c:e4:c4:a9:29:4b:b4:ce:8e:6a:15:fc:a5:a5:
5c:a2:c2:c6:9d:48:90:18:dd:c4:02:2a:b2:9b:50:11:20:43:
b2:a8:0b:27:db:95:51:c8:f5:8b:ef:0a:f7:d2:cb:80:cd:b8:
ca:a0:6f:b1
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDDtsNMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGNk
NDA2NTk2N2RlYzA5MmI1ZmM5MDE1MmU0YTk1MzM5YmExZDIyODkwHhcNMjIwNjIy
MDgyNjQ0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg5NDFiMzg3Y2ZmZGRk
NTAxZmU1N2VlMjkzY2IzZmM2MTJjNGFlNmQzMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA1WnDyxJHc5NulPh+ZTwC+xyURShJskVZtzUoS/nbQyHUjePZ
Kay26cyie3KkphDYkDRNPr6CjqNMB+35zrLhrYlxky9uOE4VlpSIRUZDTBH0lLrZ
DTY7h5OGwGs7haW6ShD9SUsvqP7hQpigt9OU4DxTXfCtUqOK1hHyS5Xkv6l+iPYZ
aEbrD9kdIJucJ5pJ98ge+arKq8OI4O3mtgHFW8kPblG1I/I6ORXWeFKdV9H/bPU/
IaEzVtMCQQG3vnIyylGJc3JcJ7JC4TN73vSetIIyPixFTN9ubAoColmoTYleIAv1
maPsWmMi9QkvojpIZ5mRzkUmBypZ6WXrSG0YCwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFJQbOHz/3dUB/lfuKTyz/GEsSubTMB8GA1UdIwQYMBaAFM1AZZZ97AkrX8kB
UuSpUzm6HSKJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
elVCbGxuM3NDU3RmeVFGUzVLbFRPYm9kSW9rLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jNS85NDRmMmEtZjY3My00MmJmLTllM2QtZWRjZWY3NDUxZWY0LzEv
bEJzNGZQX2QxUUgtVi00cFBMUDhZU3hLNXRNLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS85
NDRmMmEtZjY3My00MmJmLTllM2QtZWRjZWY3NDUxZWY0LzEvelVCbGxuM3NDU3Rm
eVFGUzVLbFRPYm9kSW9rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZAMMA0GCSqGSIb3DQEBCwUAA4IB
AQB2wYtcm5uqG9d9ruFD3pdSDuY64dXlsSbtkXRQ9YB2aERzoHfWJuObYHLPH1um
vgYA4gNMAhTBuOEn9+d1TAnIgEubnpUwGk/E6R53BoAIvaOV0sumtwtLYHhOKKZK
p62IPD67o1dI3lHKbDoES3gqDMSlDR9LdBUSk/3Rbz/2Xxu66+Em+YFgq6tlL6Pj
UUsEmvd7FqlFFxcUheJtMdOfQwXtypiWMLLMb+ZkFBJDiU6GRO+Mn0b/DcBkAxtS
wv/kunqG4hF8vwWHLOTEqSlLtM6OahX8paVcosLGnUiQGN3EAiqym1ARIEOyqAsn
25VRyPWL7wr30suAzbjKoG+x
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:09 2024 by rpki-client on console-fra.rpki-client.org