Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1y9DyuSjyp6esuuzmL0Q_UUfq-M.roa
File: 1y9DyuSjyp6esuuzmL0Q_UUfq-M.roa (raw, json)
Hash identifier: PWgIRQ2BRnevA7B/5/xplBpQJreY5dx47SqT6v73vSU=
Subject key identifier: D7:2F:43:CA:E4:A3:CA:9E:9E:B2:EB:B3:98:BD:10:FD:45:1F:AB:E3
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0181CEA5EBF1BDCBE95F95E4B4377224A5C4
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1y9DyuSjyp6esuuzmL0Q_UUfq-M.roa
Signing time: Tue 05 Jul 2022 13:56:29 +0000
ROA not before: Tue 05 Jul 2022 13:56:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 185.207.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ce:a5:eb:f1:bd:cb:e9:5f:95:e4:b4:37:72:24:a5:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jul 5 13:56:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d72f43cae4a3ca9e9eb2ebb398bd10fd451fabe3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:2c:50:58:53:10:1d:c4:87:66:45:06:f9:91:
c1:42:bb:03:04:b9:56:09:4d:c5:01:2c:e8:e7:73:
b1:63:6b:7c:6e:37:53:9a:79:ae:34:29:77:79:f9:
20:64:b1:09:55:f3:55:7c:08:fb:1e:d7:5c:5f:fb:
ed:7a:7f:dc:61:2b:b6:22:21:34:a3:6e:72:38:a6:
67:02:1e:40:19:9c:c5:a0:41:88:db:df:3c:7c:50:
47:02:ec:0b:b8:41:be:79:b4:b7:9b:a6:a5:ea:ab:
b6:64:ae:bf:7e:ed:ae:f3:33:fe:f1:35:0b:9a:4d:
11:75:d0:05:f7:1b:d8:3c:cc:cb:1f:1d:68:8f:39:
c1:95:0c:83:d2:14:79:ab:ad:b2:18:9d:a0:2b:18:
1f:fd:78:21:80:52:37:70:de:e1:c3:56:89:9c:97:
06:da:2f:cf:0e:f4:26:a2:49:f3:1b:55:3c:a7:3a:
a3:f2:4e:5b:e2:00:bc:07:7d:df:40:83:2e:7e:6d:
18:b4:35:2e:fb:45:a5:af:f7:f9:61:74:9f:50:0c:
b4:2c:22:e8:ef:b9:6a:35:ea:ab:09:4d:7b:27:e3:
5b:99:15:74:c8:53:b1:de:1c:63:8e:3b:0d:40:c5:
5c:82:6e:89:ad:de:17:78:24:fc:b9:28:4d:2e:3c:
da:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:2F:43:CA:E4:A3:CA:9E:9E:B2:EB:B3:98:BD:10:FD:45:1F:AB:E3
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1y9DyuSjyp6esuuzmL0Q_UUfq-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.12.0/24
Signature Algorithm: sha256WithRSAEncryption
21:4a:5b:d3:5d:7f:0f:22:62:12:a8:be:cb:f9:69:4f:fe:6c:
77:9f:cb:18:07:5c:a7:b4:d8:01:60:e8:19:4b:4d:bb:99:3c:
28:36:8f:0e:35:cf:51:8c:ec:84:e2:15:11:40:45:95:19:99:
c4:b6:0c:35:17:06:b1:5b:66:5c:ad:b9:6b:ab:bb:46:65:62:
c1:8b:68:64:03:06:5f:47:95:20:0e:bc:47:6a:ae:6c:39:11:
30:f6:16:f6:62:3d:67:7f:7a:2a:ff:7e:1d:43:c0:55:85:a1:
d2:e8:78:a0:75:cb:96:33:7b:0e:f9:fc:3f:2c:b2:79:99:fa:
71:da:66:69:bd:20:b3:c3:56:ad:db:82:10:31:63:ad:e9:5d:
d4:86:b4:23:69:40:1b:3d:95:70:62:c3:09:1c:39:ae:3a:9a:
91:db:6d:0b:3f:e7:2a:c5:8c:e3:9a:4f:0d:24:08:02:37:2e:
df:6e:84:ee:92:7e:1a:8d:6d:53:9c:4c:a3:9c:d1:5a:a1:99:
71:5e:80:59:eb:3c:50:de:b6:49:a5:84:66:74:fc:68:3b:f2:
40:62:f4:dc:b3:09:83:3e:d7:7a:fd:2a:c6:a0:f9:d2:6e:64:
b9:f9:28:8c:3a:b5:22:0d:8b:37:ac:bd:35:bf:9a:e9:91:34:
d9:75:57:71
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYHOpevxvcvpX5XktDdyJKXEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjIwNzA1MTM1NjI5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNzJmNDNjYWU0YTNjYTllOWViMmViYjM5OGJkMTBmZDQ1MWZhYmUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiyxQWFMQHcSHZkUG+ZHBQrsDBLlW
CU3FASzo53OxY2t8bjdTmnmuNCl3efkgZLEJVfNVfAj7HtdcX/vten/cYSu2IiE0
o25yOKZnAh5AGZzFoEGI2988fFBHAuwLuEG+ebS3m6al6qu2ZK6/fu2u8zP+8TUL
mk0RddAF9xvYPMzLHx1ojznBlQyD0hR5q62yGJ2gKxgf/XghgFI3cN7hw1aJnJcG
2i/PDvQmoknzG1U8pzqj8k5b4gC8B33fQIMufm0YtDUu+0Wlr/f5YXSfUAy0LCLo
77lqNeqrCU17J+NbmRV0yFOx3hxjjjsNQMVcgm6Jrd4XeCT8uShNLjzaewIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNcvQ8rko8qenrLrs5i9EP1FH6vjMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvMXk5RHl1U2p5cDZlc3V1em1MMFFfVVVmcS1NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuc8MMA0G
CSqGSIb3DQEBCwUAA4IBAQAhSlvTXX8PImISqL7L+WlP/mx3n8sYB1yntNgBYOgZ
S027mTwoNo8ONc9RjOyE4hURQEWVGZnEtgw1FwaxW2Zcrblrq7tGZWLBi2hkAwZf
R5UgDrxHaq5sOREw9hb2Yj1nf3oq/34dQ8BVhaHS6HigdcuWM3sO+fw/LLJ5mfpx
2mZpvSCzw1at24IQMWOt6V3UhrQjaUAbPZVwYsMJHDmuOpqR220LP+cqxYzjmk8N
JAgCNy7fboTukn4ajW1TnEyjnNFaoZlxXoBZ6zxQ3rZJpYRmdPxoO/JAYvTcswmD
Ptd6/SrGoPnSbmS5+SiMOrUiDYs3rL01v5rpkTTZdVdx
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:31 2023 by rpki-client on console-ams.rpki-client.org