Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/978871-255b-443a-8e01-fc839bb6d173/1/rhhjH3O87Oa04UyNRaxQjPFNmd0.roa
File: rhhjH3O87Oa04UyNRaxQjPFNmd0.roa (raw, json)
Hash identifier: RgPk8nK8Uq45PxU9s9E8BUgAyTSvnSoX/kRdwMeu1Xo=
Subject key identifier: AE:18:63:1F:73:BC:EC:E6:B4:E1:4C:8D:45:AC:50:8C:F1:4D:99:DD
Certificate issuer: /CN=2681b7b4ae3e75dc4b36cff2937923ecdff7259b
Certificate serial: 19BAA40D
Authority key identifier: 26:81:B7:B4:AE:3E:75:DC:4B:36:CF:F2:93:79:23:EC:DF:F7:25:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JoG3tK4-ddxLNs_yk3kj7N_3JZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/978871-255b-443a-8e01-fc839bb6d173/1/rhhjH3O87Oa04UyNRaxQjPFNmd0.roa
Signing time: Thu 27 Jan 2022 14:29:32 +0000
ROA not before: Thu 27 Jan 2022 14:29:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60793
IP address blocks: 185.19.12.0/22 maxlen: 22
185.192.156.0/22 maxlen: 22
2a03:fe40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 431662093 (0x19baa40d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2681b7b4ae3e75dc4b36cff2937923ecdff7259b
Validity
Not Before: Jan 27 14:29:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae18631f73bcece6b4e14c8d45ac508cf14d99dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:bd:6b:8a:07:69:bf:eb:c7:b0:76:dd:d5:1e:
fa:b5:e8:ac:cf:f4:f1:fe:52:76:a0:8a:22:d5:e7:
ce:58:22:8f:39:b0:d0:e6:63:c2:f9:a4:7f:36:5a:
13:9c:0f:ca:fd:c1:cf:f3:3f:b1:3a:14:ae:14:32:
80:fe:8b:d9:93:c8:31:25:9e:3c:5c:54:4a:9c:8d:
c1:e7:41:d1:d7:5b:11:62:86:76:a6:ea:99:69:4c:
75:57:8a:0e:44:2e:53:e5:d6:ef:4a:ec:86:15:3f:
d9:7b:e9:52:1c:19:32:01:42:99:03:65:fc:da:17:
9e:db:c9:91:33:01:64:1b:3d:9e:e3:6b:7f:bc:41:
91:fe:e0:6d:a8:a5:03:9b:43:39:12:39:7a:85:ba:
2b:3b:bb:fc:bc:19:8a:79:2e:7e:a8:6a:1f:a5:18:
8b:af:62:1b:0b:70:3e:c5:42:95:b9:96:62:1f:cf:
07:7c:73:23:fd:95:54:34:3b:78:e6:ae:98:de:97:
84:eb:22:c3:7a:36:92:17:b1:09:e3:f1:ae:93:e8:
6a:56:93:28:ea:93:44:ea:02:ab:c1:fd:c6:6b:ac:
00:06:0b:15:43:26:c9:65:34:0e:a8:6e:3d:e4:e1:
a4:ec:db:8c:84:34:a8:bf:81:a7:a4:b6:4c:31:f0:
df:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:18:63:1F:73:BC:EC:E6:B4:E1:4C:8D:45:AC:50:8C:F1:4D:99:DD
X509v3 Authority Key Identifier:
keyid:26:81:B7:B4:AE:3E:75:DC:4B:36:CF:F2:93:79:23:EC:DF:F7:25:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JoG3tK4-ddxLNs_yk3kj7N_3JZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/978871-255b-443a-8e01-fc839bb6d173/1/rhhjH3O87Oa04UyNRaxQjPFNmd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/978871-255b-443a-8e01-fc839bb6d173/1/JoG3tK4-ddxLNs_yk3kj7N_3JZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.19.12.0/22
185.192.156.0/22
IPv6:
2a03:fe40::/32
Signature Algorithm: sha256WithRSAEncryption
17:f2:dc:97:eb:f4:97:db:cc:34:76:cc:78:ca:3b:80:e7:df:
af:e5:d0:de:73:36:fd:84:5f:43:55:e0:65:b9:64:06:ce:d4:
bc:41:6d:11:18:23:a8:59:bd:5e:87:88:6b:0e:05:05:1a:12:
ad:06:08:89:b4:5b:29:35:06:ee:8f:d9:b4:8e:12:0d:e2:01:
0d:e3:79:97:05:a6:81:73:95:32:42:c1:1f:f9:38:c4:c1:c3:
b0:05:16:ac:7e:57:6c:d0:e8:27:5a:3f:b1:f8:f6:fd:2c:ae:
b3:6c:4f:4f:25:a3:c5:ad:a9:0b:54:ac:b3:62:7d:37:05:a4:
c8:4e:27:a0:ba:ff:df:00:b7:ef:4a:38:12:09:59:6e:6c:d0:
e8:31:13:e8:2d:35:a6:f9:79:da:e5:d3:dd:8d:9c:17:b1:00:
db:e2:ba:90:ac:f2:eb:a9:22:d2:07:db:27:c2:5f:a5:54:d7:
ef:37:22:5c:11:3e:e6:37:60:0b:3c:a0:db:fa:a5:53:92:c0:
79:ab:06:39:a0:a3:38:4c:ef:74:86:78:27:d6:b8:4c:12:04:
37:a8:e5:72:0c:2b:26:1f:74:24:51:44:92:ea:64:22:b3:c1:
b0:d6:ba:bd:0c:e1:9a:28:12:26:7b:ac:90:55:63:c9:b1:d3:
8c:b4:a9:c4
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEGbqkDTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
NjgxYjdiNGFlM2U3NWRjNGIzNmNmZjI5Mzc5MjNlY2RmZjcyNTliMB4XDTIyMDEy
NzE0MjkzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWUxODYzMWY3M2Jj
ZWNlNmI0ZTE0YzhkNDVhYzUwOGNmMTRkOTlkZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJG9a4oHab/rx7B23dUe+rXorM/08f5SdqCKItXnzlgijzmw
0OZjwvmkfzZaE5wPyv3Bz/M/sToUrhQygP6L2ZPIMSWePFxUSpyNwedB0ddbEWKG
dqbqmWlMdVeKDkQuU+XW70rshhU/2XvpUhwZMgFCmQNl/NoXntvJkTMBZBs9nuNr
f7xBkf7gbailA5tDORI5eoW6Kzu7/LwZinkufqhqH6UYi69iGwtwPsVClbmWYh/P
B3xzI/2VVDQ7eOaumN6XhOsiw3o2khexCePxrpPoalaTKOqTROoCq8H9xmusAAYL
FUMmyWU0DqhuPeThpOzbjIQ0qL+Bp6S2TDHw3zMCAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBSuGGMfc7zs5rThTI1FrFCM8U2Z3TAfBgNVHSMEGDAWgBQmgbe0rj513Es2
z/KTeSPs3/clmzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0pvRzN0SzQtZGR4TE5zX3lrM2tqN05fM0pacy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDAvOTc4ODcxLTI1NWItNDQzYS04ZTAxLWZjODM5YmI2ZDE3My8x
L3JoaGpIM084N09hMDRVeU5SYXhRalBGTm1kMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDAv
OTc4ODcxLTI1NWItNDQzYS04ZTAxLWZjODM5YmI2ZDE3My8xL0pvRzN0SzQtZGR4
TE5zX3lrM2tqN05fM0pacy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEArkTDAMEArnAnDANBAIAAjAHAwUA
KgP+QDANBgkqhkiG9w0BAQsFAAOCAQEAF/Lcl+v0l9vMNHbMeMo7gOffr+XQ3nM2
/YRfQ1XgZblkBs7UvEFtERgjqFm9XoeIaw4FBRoSrQYIibRbKTUG7o/ZtI4SDeIB
DeN5lwWmgXOVMkLBH/k4xMHDsAUWrH5XbNDoJ1o/sfj2/Syus2xPTyWjxa2pC1Ss
s2J9NwWkyE4noLr/3wC370o4EglZbmzQ6DET6C01pvl52uXT3Y2cF7EA2+K6kKzy
66ki0gfbJ8JfpVTX7zciXBE+5jdgCzyg2/qlU5LAeasGOaCjOEzvdIZ4J9a4TBIE
N6jlcgwrJh90JFFEkupkIrPBsNa6vQzhmigSJnuskFVjybHTjLSpxA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:52 2023 by rpki-client on console-fra.rpki-client.org