Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/e2e119-fd78-4b1a-b16a-987da4392056/1/TmJBn7d0w2kijg6M377jvjRO9oI.roa
File: TmJBn7d0w2kijg6M377jvjRO9oI.roa (raw, json)
Hash identifier: A99QSbIuYTjZ9CdNbplxGFHWDJ0YGBmKQeC2l111ThQ=
Subject key identifier: 4E:62:41:9F:B7:74:C3:69:22:8E:0E:8C:DF:BE:E3:BE:34:4E:F6:82
Certificate issuer: /CN=712f9cb3c298b150beb79080376f74bdeac438ac
Certificate serial: 1C692B23
Authority key identifier: 71:2F:9C:B3:C2:98:B1:50:BE:B7:90:80:37:6F:74:BD:EA:C4:38:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cS-cs8KYsVC-t5CAN290verEOKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/e2e119-fd78-4b1a-b16a-987da4392056/1/TmJBn7d0w2kijg6M377jvjRO9oI.roa
Signing time: Sat 01 Jan 2022 13:04:17 +0000
ROA not before: Sat 01 Jan 2022 13:04:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203433
IP address blocks: 185.22.131.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 476654371 (0x1c692b23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=712f9cb3c298b150beb79080376f74bdeac438ac
Validity
Not Before: Jan 1 13:04:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e62419fb774c369228e0e8cdfbee3be344ef682
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:71:38:0b:1f:2c:89:1f:ac:3f:49:8a:6e:87:
31:c8:8f:89:87:f4:0f:dc:d2:c4:90:5d:b5:0a:36:
c5:c2:c9:11:a1:d1:e7:df:3a:e0:19:05:5a:2e:68:
0c:fd:45:be:dc:61:09:07:8c:80:e2:37:37:ac:3d:
8c:02:ee:c9:a0:6f:53:4e:da:73:0c:4c:ed:1c:4c:
db:5d:81:54:3e:a4:73:bf:94:73:43:74:0e:07:19:
73:73:1b:db:37:00:14:ae:69:b1:86:99:bd:c9:34:
01:48:65:3d:df:38:7c:ce:90:40:93:70:aa:98:59:
84:c7:b4:69:ae:d5:f4:d8:d0:fa:4f:f8:dc:f2:99:
fd:0c:42:ab:9b:48:ff:68:12:83:c4:a6:c0:8d:9a:
05:1f:fb:10:23:57:85:bc:09:fc:bf:58:a2:8b:36:
3a:cb:9b:33:d2:cb:66:02:09:48:7f:8c:24:b5:00:
13:b3:fc:87:99:b3:04:86:90:17:d4:1c:44:82:ac:
7d:93:6d:09:44:f6:69:95:d5:ac:12:cc:d8:de:93:
cc:a6:03:2c:33:16:25:1c:6c:d7:7f:10:85:4c:8a:
d0:1a:bc:b7:dd:d6:75:13:51:39:eb:c2:56:d1:e5:
08:9b:4a:c2:1e:1f:71:42:53:9b:91:ab:63:57:af:
a6:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:62:41:9F:B7:74:C3:69:22:8E:0E:8C:DF:BE:E3:BE:34:4E:F6:82
X509v3 Authority Key Identifier:
keyid:71:2F:9C:B3:C2:98:B1:50:BE:B7:90:80:37:6F:74:BD:EA:C4:38:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cS-cs8KYsVC-t5CAN290verEOKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/e2e119-fd78-4b1a-b16a-987da4392056/1/TmJBn7d0w2kijg6M377jvjRO9oI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/e2e119-fd78-4b1a-b16a-987da4392056/1/cS-cs8KYsVC-t5CAN290verEOKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.22.131.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:b1:81:41:91:d5:55:83:8f:ae:76:09:63:80:ce:31:be:97:
88:b3:54:b6:07:07:bf:24:cf:b2:5c:00:30:03:ee:46:49:d7:
05:51:2a:a9:0c:ac:9f:b1:73:17:ac:4c:58:f0:30:4f:46:20:
47:b3:5b:ed:35:2d:96:32:6f:a4:16:c8:42:29:25:2f:10:1e:
9a:61:24:b2:1c:7e:73:c9:fb:f5:81:02:66:3c:5f:28:c4:29:
ef:80:9f:eb:7b:22:0e:99:d8:cc:0b:9e:ce:13:a9:0d:6d:68:
92:e0:e8:57:d5:9b:ca:86:18:c2:7b:d3:ce:bc:44:43:5a:10:
b6:de:ae:61:0d:10:c1:eb:bb:b5:00:4a:6e:ac:a4:74:4f:02:
c0:b4:6e:38:f4:7d:40:54:b4:a3:40:d0:bc:1a:cf:30:98:b4:
4a:60:5c:3d:0f:a5:ea:28:8e:20:f0:fc:b4:0b:b1:3c:03:e3:
09:f3:ca:bb:77:71:39:5a:17:06:89:7f:a9:4b:0b:39:92:de:
0c:a7:9a:22:66:fd:c7:c5:e2:32:5d:5d:f1:8f:0d:66:f1:fc:
43:51:d8:aa:b6:dd:c4:4a:a2:9b:16:e2:c9:f7:54:d3:64:05:
6e:f3:d4:51:50:74:01:da:1a:7d:f8:20:58:e3:c2:f4:ec:83:
f9:91:cd:14
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEHGkrIzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MTJmOWNiM2MyOThiMTUwYmViNzkwODAzNzZmNzRiZGVhYzQzOGFjMB4XDTIyMDEw
MTEzMDQxN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGU2MjQxOWZiNzc0
YzM2OTIyOGUwZThjZGZiZWUzYmUzNDRlZjY4MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMhxOAsfLIkfrD9Jim6HMciPiYf0D9zSxJBdtQo2xcLJEaHR
59864BkFWi5oDP1FvtxhCQeMgOI3N6w9jALuyaBvU07acwxM7RxM212BVD6kc7+U
c0N0DgcZc3Mb2zcAFK5psYaZvck0AUhlPd84fM6QQJNwqphZhMe0aa7V9NjQ+k/4
3PKZ/QxCq5tI/2gSg8SmwI2aBR/7ECNXhbwJ/L9Yoos2OsubM9LLZgIJSH+MJLUA
E7P8h5mzBIaQF9QcRIKsfZNtCUT2aZXVrBLM2N6TzKYDLDMWJRxs138QhUyK0Bq8
t93WdRNROevCVtHlCJtKwh4fcUJTm5GrY1evpuUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBROYkGft3TDaSKODozfvuO+NE72gjAfBgNVHSMEGDAWgBRxL5yzwpixUL63
kIA3b3S96sQ4rDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2NTLWNzOEtZc1ZDLXQ1Q0FOMjkwdmVyRU9Ldy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDkvZTJlMTE5LWZkNzgtNGIxYS1iMTZhLTk4N2RhNDM5MjA1Ni8x
L1RtSkJuN2QwdzJraWpnNk0zNzdqdmpSTzlvSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDkv
ZTJlMTE5LWZkNzgtNGIxYS1iMTZhLTk4N2RhNDM5MjA1Ni8xL2NTLWNzOEtZc1ZD
LXQ1Q0FOMjkwdmVyRU9Ldy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALkWgzANBgkqhkiG9w0BAQsFAAOC
AQEAfLGBQZHVVYOPrnYJY4DOMb6XiLNUtgcHvyTPslwAMAPuRknXBVEqqQysn7Fz
F6xMWPAwT0YgR7Nb7TUtljJvpBbIQiklLxAemmEkshx+c8n79YECZjxfKMQp74Cf
63siDpnYzAuezhOpDW1okuDoV9WbyoYYwnvTzrxEQ1oQtt6uYQ0Qweu7tQBKbqyk
dE8CwLRuOPR9QFS0o0DQvBrPMJi0SmBcPQ+l6iiOIPD8tAuxPAPjCfPKu3dxOVoX
Bol/qUsLOZLeDKeaImb9x8XiMl1d8Y8NZvH8Q1HYqrbdxEqimxbiyfdU02QFbvPU
UVB0AdoaffggWOPC9OyD+ZHNFA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:39:14 2025 by rpki-client