Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/beb97e-0957-4480-8b40-daa9f2a33baf/1/8RBdZvSEVcZQX97lUu3KujTt2kQ.roa
File: 8RBdZvSEVcZQX97lUu3KujTt2kQ.roa (raw, json)
Hash identifier: HdzAlsHsmX7SijLQAb4JerwT6tnoXGqNcJQm9vQPNRk=
Subject key identifier: F1:10:5D:66:F4:84:55:C6:50:5F:DE:E5:52:ED:CA:BA:34:ED:DA:44
Certificate issuer: /CN=4100e4b4a97882c1798c470e3abd805e325dd595
Certificate serial: 0183A73278455E9EF741361E5B0B2130329A
Authority key identifier: 41:00:E4:B4:A9:78:82:C1:79:8C:47:0E:3A:BD:80:5E:32:5D:D5:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QQDktKl4gsF5jEcOOr2AXjJd1ZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/beb97e-0957-4480-8b40-daa9f2a33baf/1/8RBdZvSEVcZQX97lUu3KujTt2kQ.roa
Signing time: Wed 05 Oct 2022 08:10:46 +0000
ROA not before: Wed 05 Oct 2022 08:10:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28878
IP address blocks: 185.72.132.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a7:32:78:45:5e:9e:f7:41:36:1e:5b:0b:21:30:32:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4100e4b4a97882c1798c470e3abd805e325dd595
Validity
Not Before: Oct 5 08:10:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f1105d66f48455c6505fdee552edcaba34edda44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f5:7e:f8:8e:d4:d4:40:2b:a5:61:dd:51:e6:
87:b7:7e:5d:97:ce:c8:b0:f9:03:14:09:71:43:c7:
d0:c5:4a:88:69:46:36:ca:4f:47:4e:1e:20:81:5d:
2f:ad:e1:fa:1b:e6:48:83:6b:ee:2e:18:e9:dc:4e:
62:63:6c:2f:9b:e1:4c:ea:1c:c2:b8:87:c9:17:f7:
1a:6c:15:71:cd:35:d5:dd:59:88:02:ec:da:1e:26:
6d:dc:15:d6:aa:76:57:1a:88:16:85:16:16:e3:fb:
a4:5f:80:31:96:5d:76:74:70:e3:a6:b5:24:42:f5:
58:1d:9f:b8:05:be:48:55:f2:de:d2:5a:05:ec:dd:
fe:71:69:75:78:57:cf:44:22:60:77:f1:d4:57:a8:
68:a8:4e:11:35:08:49:8a:81:3e:a1:eb:d7:2c:a7:
52:c2:95:fd:ac:c2:0a:a1:43:82:fe:31:8e:1f:61:
e1:32:b2:d7:15:9b:30:98:ba:17:43:4a:31:8e:2f:
78:61:a9:77:f3:8a:39:ae:bf:9f:19:a6:ba:69:74:
2d:32:cd:c8:99:e5:d0:c7:41:ec:f6:3f:f9:f5:d5:
2a:38:86:4a:5e:86:e3:f6:89:c9:80:b9:52:ce:9a:
0d:23:7f:9d:03:8c:71:7c:1b:9f:9a:43:61:97:0b:
f4:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:10:5D:66:F4:84:55:C6:50:5F:DE:E5:52:ED:CA:BA:34:ED:DA:44
X509v3 Authority Key Identifier:
keyid:41:00:E4:B4:A9:78:82:C1:79:8C:47:0E:3A:BD:80:5E:32:5D:D5:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QQDktKl4gsF5jEcOOr2AXjJd1ZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/beb97e-0957-4480-8b40-daa9f2a33baf/1/8RBdZvSEVcZQX97lUu3KujTt2kQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/beb97e-0957-4480-8b40-daa9f2a33baf/1/QQDktKl4gsF5jEcOOr2AXjJd1ZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.72.132.0/22
Signature Algorithm: sha256WithRSAEncryption
52:72:70:6c:95:e4:10:8f:5f:81:60:53:9f:0e:e4:c2:b4:eb:
3e:da:58:13:88:8f:dc:0c:29:6d:e8:a2:f5:d4:d6:61:2a:08:
b3:53:16:80:6f:20:78:97:8a:42:6a:2d:af:29:ab:74:fa:0d:
ae:8c:1d:7c:60:83:ec:30:a8:b1:04:be:e0:ec:f6:42:1b:f1:
08:b0:89:9d:17:d6:a9:46:63:0e:4a:6e:45:41:36:dc:6b:d1:
b0:7a:91:67:6c:5b:b3:41:d8:6f:8f:a9:6c:0f:0b:ad:77:c3:
27:36:b1:06:41:b6:0d:03:ba:bc:d0:df:0c:c2:b1:53:0f:5c:
a9:ab:7f:75:7c:38:ee:81:0e:1d:90:2d:73:b7:60:bf:6d:20:
8b:68:71:8d:12:91:34:8a:57:be:a6:44:e6:95:4f:99:93:1b:
5f:af:71:c6:d9:c4:9a:0f:b0:7c:1e:ab:ee:84:88:0d:43:68:
93:80:7b:fd:d1:60:80:7f:85:89:dd:8a:9f:f6:0e:d4:4a:52:
b9:59:f8:44:75:4e:b8:e1:9f:56:21:ab:99:bd:fe:28:3a:a6:
64:ee:dd:df:c2:86:8b:12:d0:42:22:4b:09:c5:c8:ea:6c:a8:
5c:0c:b2:d7:f4:89:0b:30:6e:a0:75:0e:7b:11:b0:27:e1:4b:
c1:c4:95:30
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYOnMnhFXp73QTYeWwshMDKaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxMDBlNGI0YTk3ODgyYzE3OThjNDcwZTNhYmQ4MDVlMzI1
ZGQ1OTUwHhcNMjIxMDA1MDgxMDQ2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMTEwNWQ2NmY0ODQ1NWM2NTA1ZmRlZTU1MmVkY2FiYTM0ZWRkYTQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAufV++I7U1EArpWHdUeaHt35dl87I
sPkDFAlxQ8fQxUqIaUY2yk9HTh4ggV0vreH6G+ZIg2vuLhjp3E5iY2wvm+FM6hzC
uIfJF/cabBVxzTXV3VmIAuzaHiZt3BXWqnZXGogWhRYW4/ukX4Axll12dHDjprUk
QvVYHZ+4Bb5IVfLe0loF7N3+cWl1eFfPRCJgd/HUV6hoqE4RNQhJioE+oevXLKdS
wpX9rMIKoUOC/jGOH2HhMrLXFZswmLoXQ0oxji94Yal384o5rr+fGaa6aXQtMs3I
meXQx0Hs9j/59dUqOIZKXobj9onJgLlSzpoNI3+dA4xxfBufmkNhlwv0hQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPEQXWb0hFXGUF/e5VLtyro07dpEMB8GA1UdIwQY
MBaAFEEA5LSpeILBeYxHDjq9gF4yXdWVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVFEa3RLbDRnc0Y1akVjT09yMkFYakpkMVpVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS9iZWI5N2UtMDk1Ny00NDgwLThiNDAt
ZGFhOWYyYTMzYmFmLzEvOFJCZFp2U0VWY1pRWDk3bFV1M0t1alR0MmtRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS9iZWI5N2UtMDk1Ny00NDgwLThiNDAtZGFhOWYyYTMzYmFm
LzEvUVFEa3RLbDRnc0Y1akVjT09yMkFYakpkMVpVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuUiEMA0G
CSqGSIb3DQEBCwUAA4IBAQBScnBsleQQj1+BYFOfDuTCtOs+2lgTiI/cDClt6KL1
1NZhKgizUxaAbyB4l4pCai2vKat0+g2ujB18YIPsMKixBL7g7PZCG/EIsImdF9ap
RmMOSm5FQTbca9GwepFnbFuzQdhvj6lsDwutd8MnNrEGQbYNA7q80N8MwrFTD1yp
q391fDjugQ4dkC1zt2C/bSCLaHGNEpE0ile+pkTmlU+Zkxtfr3HG2cSaD7B8Hqvu
hIgNQ2iTgHv90WCAf4WJ3Yqf9g7USlK5WfhEdU644Z9WIauZvf4oOqZk7t3fwoaL
EtBCIksJxcjqbKhcDLLX9IkLMG6gdQ57EbAn4UvBxJUw
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:13 2024 by rpki-client on console-ams.rpki-client.org