Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/58c87b-9aa8-48ea-85c3-06b163d359e0/1/NoDc43xnHRtwV-rfjxfxpS6nfyE.roa
File: NoDc43xnHRtwV-rfjxfxpS6nfyE.roa (raw, json)
Hash identifier: Hk2TJNDttK2ExbVCKyFoW2x23dHhBe0THFyA1Xf3mSQ=
Subject key identifier: 36:80:DC:E3:7C:67:1D:1B:70:57:EA:DF:8F:17:F1:A5:2E:A7:7F:21
Certificate issuer: /CN=d77c869a86fec833793eeedaccd4b1f7ca4433e9
Certificate serial: 0445EFB9
Authority key identifier: D7:7C:86:9A:86:FE:C8:33:79:3E:EE:DA:CC:D4:B1:F7:CA:44:33:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/13yGmob-yDN5Pu7azNSx98pEM-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/58c87b-9aa8-48ea-85c3-06b163d359e0/1/NoDc43xnHRtwV-rfjxfxpS6nfyE.roa
Signing time: Sat 01 Jan 2022 09:00:46 +0000
ROA not before: Sat 01 Jan 2022 09:00:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58243
IP address blocks: 185.207.156.0/22 maxlen: 22
2a0b:25c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71692217 (0x445efb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d77c869a86fec833793eeedaccd4b1f7ca4433e9
Validity
Not Before: Jan 1 09:00:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3680dce37c671d1b7057eadf8f17f1a52ea77f21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d8:da:cd:ca:c1:c3:aa:bd:77:f1:45:17:06:
8d:06:dd:de:d9:67:13:51:8e:fe:07:1d:fb:b2:45:
28:a3:05:ad:68:c6:cd:70:a4:08:58:00:8f:aa:50:
a3:97:2d:a0:1f:72:7c:de:f6:d7:db:33:e5:7a:55:
de:53:a2:51:cd:f6:30:4d:f1:22:a8:0d:9b:56:5f:
45:6b:1f:10:5d:b1:dd:cc:ed:02:88:4a:00:4c:7a:
41:72:43:bf:55:0b:24:3a:1a:af:27:5b:b0:e3:ea:
90:40:dc:97:b0:bb:96:10:19:3c:02:52:ce:91:1d:
ee:0e:22:c8:98:a4:d8:1e:50:7a:aa:4c:33:8e:95:
9a:64:61:d1:c7:77:6f:0f:4d:77:b4:bc:41:66:f0:
e8:0e:0f:4d:4f:47:11:88:a1:15:aa:d8:8b:1f:68:
57:73:e6:18:86:98:64:26:c6:e7:b3:0c:a0:c3:2b:
6d:12:f1:a4:e1:a3:4c:06:15:63:6e:ac:e5:56:d9:
f8:75:bd:2d:ef:7e:91:e1:86:3b:b4:db:d8:a2:13:
07:05:ec:b2:88:12:a3:74:79:32:26:0c:3b:1e:e3:
d1:56:b1:78:7d:bd:0e:05:02:d5:68:97:b1:10:b7:
b4:9a:32:50:c9:b1:58:85:42:97:6f:51:1f:d6:63:
f3:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:80:DC:E3:7C:67:1D:1B:70:57:EA:DF:8F:17:F1:A5:2E:A7:7F:21
X509v3 Authority Key Identifier:
keyid:D7:7C:86:9A:86:FE:C8:33:79:3E:EE:DA:CC:D4:B1:F7:CA:44:33:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/13yGmob-yDN5Pu7azNSx98pEM-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/58c87b-9aa8-48ea-85c3-06b163d359e0/1/NoDc43xnHRtwV-rfjxfxpS6nfyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/58c87b-9aa8-48ea-85c3-06b163d359e0/1/13yGmob-yDN5Pu7azNSx98pEM-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.156.0/22
IPv6:
2a0b:25c0::/29
Signature Algorithm: sha256WithRSAEncryption
64:2c:a5:ee:36:bf:93:42:c9:b5:5c:16:ad:06:e0:3c:a1:2c:
c0:4c:aa:74:9e:7a:fc:f2:06:cc:71:47:90:9d:a0:f1:33:9e:
3b:82:a2:78:e0:3a:bb:69:96:ff:80:7c:be:3b:87:fb:36:de:
9d:fc:1e:4e:db:33:f8:d8:3c:b0:52:e8:b1:d5:4b:ff:77:c5:
39:aa:2a:21:d4:65:d8:0e:0c:1a:04:55:f5:16:6c:48:78:d3:
1c:a7:2d:01:17:d0:77:b1:ac:a6:be:ad:85:9b:e8:75:3e:ae:
ee:61:15:bb:f3:77:ae:9c:7c:f6:46:b4:55:c8:cc:ec:4f:4c:
8a:ef:31:11:af:9e:1e:45:6f:16:7b:51:ab:5a:4e:71:b5:27:
36:26:be:f4:48:d4:15:9d:40:85:32:15:07:c9:db:bc:cf:3d:
4e:87:5a:46:5d:11:d1:58:13:17:65:7b:56:95:ea:fe:e8:20:
fb:2f:f7:8a:73:91:76:c5:49:dd:9b:cd:96:06:04:e9:4d:0d:
48:cb:21:44:47:37:33:5e:c8:23:2a:0e:16:fe:a0:4e:aa:3a:
3b:5c:f0:3e:99:99:44:76:f9:47:ae:e2:9e:b9:bb:47:5e:43:
ef:0d:b8:82:f5:89:76:cd:59:99:8c:75:34:d9:25:d2:d9:08:
7a:df:b8:73
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEBEXvuTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NzdjODY5YTg2ZmVjODMzNzkzZWVlZGFjY2Q0YjFmN2NhNDQzM2U5MB4XDTIyMDEw
MTA5MDA0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzY4MGRjZTM3YzY3
MWQxYjcwNTdlYWRmOGYxN2YxYTUyZWE3N2YyMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMLY2s3KwcOqvXfxRRcGjQbd3tlnE1GO/gcd+7JFKKMFrWjG
zXCkCFgAj6pQo5ctoB9yfN7219sz5XpV3lOiUc32ME3xIqgNm1ZfRWsfEF2x3czt
AohKAEx6QXJDv1ULJDoarydbsOPqkEDcl7C7lhAZPAJSzpEd7g4iyJik2B5QeqpM
M46VmmRh0cd3bw9Nd7S8QWbw6A4PTU9HEYihFarYix9oV3PmGIaYZCbG57MMoMMr
bRLxpOGjTAYVY26s5VbZ+HW9Le9+keGGO7Tb2KITBwXssogSo3R5MiYMOx7j0Vax
eH29DgUC1WiXsRC3tJoyUMmxWIVCl29RH9Zj8+sCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBQ2gNzjfGcdG3BX6t+PF/GlLqd/ITAfBgNVHSMEGDAWgBTXfIaahv7IM3k+
7trM1LH3ykQz6TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEzeUdtb2IteURONVB1N2F6TlN4OThwRU0tay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDMvNThjODdiLTlhYTgtNDhlYS04NWMzLTA2YjE2M2QzNTllMC8x
L05vRGM0M3huSFJ0d1YtcmZqeGZ4cFM2bmZ5RS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDMv
NThjODdiLTlhYTgtNDhlYS04NWMzLTA2YjE2M2QzNTllMC8xLzEzeUdtb2IteURO
NVB1N2F6TlN4OThwRU0tay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArnPnDANBAIAAjAHAwUDKgslwDAN
BgkqhkiG9w0BAQsFAAOCAQEAZCyl7ja/k0LJtVwWrQbgPKEswEyqdJ56/PIGzHFH
kJ2g8TOeO4KieOA6u2mW/4B8vjuH+zbenfweTtsz+Ng8sFLosdVL/3fFOaoqIdRl
2A4MGgRV9RZsSHjTHKctARfQd7Gspr6thZvodT6u7mEVu/N3rpx89ka0VcjM7E9M
iu8xEa+eHkVvFntRq1pOcbUnNia+9EjUFZ1AhTIVB8nbvM89TodaRl0R0VgTF2V7
VpXq/ugg+y/3inORdsVJ3ZvNlgYE6U0NSMshREc3M17IIyoOFv6gTqo6O1zwPpmZ
RHb5R67inrm7R15D7w24gvWJds1ZmYx1NNkl0tkIet+4cw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:20 2024 by rpki-client on console-ams.rpki-client.org