Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/bf73f5-f414-4a13-b716-9cb7fc154425/1/gjW6W9t4ddM9zjZQog8JKkg8_tY.roa
File: gjW6W9t4ddM9zjZQog8JKkg8_tY.roa (raw, json)
Hash identifier: l7fYGfPcN779G+RvJc3u41W8ezDk4ODlbSuX63CnhFA=
Subject key identifier: 82:35:BA:5B:DB:78:75:D3:3D:CE:36:50:A2:0F:09:2A:48:3C:FE:D6
Certificate issuer: /CN=5a21f185b4b3866755dba0010bcf10b94a8aa66c
Certificate serial: 05C8FE29
Authority key identifier: 5A:21:F1:85:B4:B3:86:67:55:DB:A0:01:0B:CF:10:B9:4A:8A:A6:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WiHxhbSzhmdV26ABC88QuUqKpmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/bf73f5-f414-4a13-b716-9cb7fc154425/1/gjW6W9t4ddM9zjZQog8JKkg8_tY.roa
Signing time: Sat 01 Jan 2022 06:01:21 +0000
ROA not before: Sat 01 Jan 2022 06:01:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205805
IP address blocks: 185.246.224.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97058345 (0x5c8fe29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a21f185b4b3866755dba0010bcf10b94a8aa66c
Validity
Not Before: Jan 1 06:01:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8235ba5bdb7875d33dce3650a20f092a483cfed6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:7a:ca:ce:dd:ea:43:8c:ac:fd:92:36:c6:3f:
4c:fd:17:29:97:18:79:dd:d3:39:38:ab:de:86:3f:
ce:f1:59:cb:31:47:6d:ef:37:0a:8d:46:24:d7:eb:
d0:b2:20:bf:e4:f6:18:0a:d8:8f:eb:3d:d0:d9:d6:
a8:b9:ce:96:b7:01:54:7c:5f:38:c2:97:b5:15:ec:
f9:35:a1:31:7f:f5:7e:f2:30:27:87:6f:f7:06:56:
ea:a6:7c:4b:2f:14:ba:79:21:fb:be:f4:b7:7f:5f:
45:f5:7d:5a:f9:4a:c3:47:c4:fd:a9:53:21:be:0f:
ac:5b:4d:34:6b:e4:1d:65:c7:a7:15:2f:14:0c:ff:
1b:2c:7b:f7:d2:4c:19:78:63:96:b8:90:e1:9a:2c:
04:61:f5:da:2c:2b:24:3c:5e:b8:8f:f6:a4:c1:3a:
c7:d8:ef:37:d7:b5:25:24:74:01:cc:22:12:68:79:
34:e7:43:75:08:e9:91:b0:9d:2b:77:62:a5:66:01:
e5:6f:8d:58:aa:0f:ba:d4:86:8e:f3:28:26:33:d3:
8b:69:e8:42:12:66:13:51:98:1e:e6:02:bf:d4:cc:
e6:63:b6:b6:6f:4d:74:71:2b:6e:05:84:81:d8:10:
f5:cb:c0:7e:89:a3:fe:44:3e:17:7a:f6:fa:d2:e5:
a1:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:35:BA:5B:DB:78:75:D3:3D:CE:36:50:A2:0F:09:2A:48:3C:FE:D6
X509v3 Authority Key Identifier:
keyid:5A:21:F1:85:B4:B3:86:67:55:DB:A0:01:0B:CF:10:B9:4A:8A:A6:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WiHxhbSzhmdV26ABC88QuUqKpmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/bf73f5-f414-4a13-b716-9cb7fc154425/1/gjW6W9t4ddM9zjZQog8JKkg8_tY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/bf73f5-f414-4a13-b716-9cb7fc154425/1/WiHxhbSzhmdV26ABC88QuUqKpmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.246.224.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:30:e8:53:06:1c:3c:20:a3:1f:4f:b6:e9:17:3e:52:24:ff:
d5:be:8f:d5:4e:96:17:82:91:03:ff:6a:9b:ae:d6:a1:ef:3b:
7d:9a:83:4a:f2:2e:95:e3:c1:3e:e4:f5:d5:70:ff:55:1d:99:
25:14:f7:d4:cd:f2:54:18:1c:0c:84:f0:85:72:e2:ef:f7:57:
fa:af:1c:40:7c:02:37:ba:3d:bc:f8:5b:25:c9:aa:f4:7f:c8:
16:91:d2:48:54:53:5e:f7:f8:8c:ea:b8:19:8d:bb:f5:a7:42:
d0:31:f0:b3:39:52:47:89:89:61:65:cf:b5:78:06:ca:be:f6:
3f:d2:62:f7:6a:f9:34:9e:5c:90:38:10:9a:91:25:7c:d4:a9:
70:54:8e:f4:0f:b9:7b:e4:f3:23:c2:d7:ae:52:07:09:82:ba:
a0:8f:1e:35:c7:d7:c9:84:38:9c:05:71:72:c4:88:14:e2:bc:
c5:b5:4f:da:e9:a1:a8:2b:54:1d:79:ed:f8:aa:73:82:55:24:
94:8d:43:d0:85:91:8b:24:e9:40:5f:eb:6b:2f:84:bf:de:22:
a6:89:f6:b2:a3:42:44:b6:a6:2e:24:c7:34:62:e9:f3:ef:f8:
57:ff:2f:b4:e2:5f:d8:09:38:01:6a:96:86:ed:34:3b:ca:48:
32:85:6c:4f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBcj+KTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
YTIxZjE4NWI0YjM4NjY3NTVkYmEwMDEwYmNmMTBiOTRhOGFhNjZjMB4XDTIyMDEw
MTA2MDEyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODIzNWJhNWJkYjc4
NzVkMzNkY2UzNjUwYTIwZjA5MmE0ODNjZmVkNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI96ys7d6kOMrP2SNsY/TP0XKZcYed3TOTir3oY/zvFZyzFH
be83Co1GJNfr0LIgv+T2GArYj+s90NnWqLnOlrcBVHxfOMKXtRXs+TWhMX/1fvIw
J4dv9wZW6qZ8Sy8Uunkh+770t39fRfV9WvlKw0fE/alTIb4PrFtNNGvkHWXHpxUv
FAz/Gyx799JMGXhjlriQ4ZosBGH12iwrJDxeuI/2pME6x9jvN9e1JSR0AcwiEmh5
NOdDdQjpkbCdK3dipWYB5W+NWKoPutSGjvMoJjPTi2noQhJmE1GYHuYCv9TM5mO2
tm9NdHErbgWEgdgQ9cvAfomj/kQ+F3r2+tLloTcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSCNbpb23h10z3ONlCiDwkqSDz+1jAfBgNVHSMEGDAWgBRaIfGFtLOGZ1Xb
oAELzxC5SoqmbDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1dpSHhoYlN6aG1kVjI2QUJDODhRdVVxS3Btdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjAvYmY3M2Y1LWY0MTQtNGExMy1iNzE2LTljYjdmYzE1NDQyNS8x
L2dqVzZXOXQ0ZGRNOXpqWlFvZzhKS2tnOF90WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjAv
YmY3M2Y1LWY0MTQtNGExMy1iNzE2LTljYjdmYzE1NDQyNS8xL1dpSHhoYlN6aG1k
VjI2QUJDODhRdVVxS3Btdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArn24DANBgkqhkiG9w0BAQsFAAOC
AQEAnjDoUwYcPCCjH0+26Rc+UiT/1b6P1U6WF4KRA/9qm67Woe87fZqDSvIulePB
PuT11XD/VR2ZJRT31M3yVBgcDITwhXLi7/dX+q8cQHwCN7o9vPhbJcmq9H/IFpHS
SFRTXvf4jOq4GY279adC0DHwszlSR4mJYWXPtXgGyr72P9Ji92r5NJ5ckDgQmpEl
fNSpcFSO9A+5e+TzI8LXrlIHCYK6oI8eNcfXyYQ4nAVxcsSIFOK8xbVP2umhqCtU
HXnt+KpzglUklI1D0IWRiyTpQF/ray+Ev94ipon2sqNCRLamLiTHNGLp8+/4V/8v
tOJf2Ak4AWqWhu00O8pIMoVsTw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:58 2024 by rpki-client on console-ams.rpki-client.org