Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/B08RI9LOdL9X9GtWqfMBTgTRj0M.roa
File: B08RI9LOdL9X9GtWqfMBTgTRj0M.roa (raw, json)
Hash identifier: dowVzYYpMLUmXsbY+NVuz5kr6+E+d5TNeuCtqyeufS0=
Subject key identifier: 07:4F:11:23:D2:CE:74:BF:57:F4:6B:56:A9:F3:01:4E:04:D1:8F:43
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0184513889B8485CD5301AFDDF3EF715D8A1
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/B08RI9LOdL9X9GtWqfMBTgTRj0M.roa
Signing time: Mon 07 Nov 2022 08:32:50 +0000
ROA not before: Mon 07 Nov 2022 08:32:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 185.147.100.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:51:38:89:b8:48:5c:d5:30:1a:fd:df:3e:f7:15:d8:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Nov 7 08:32:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=074f1123d2ce74bf57f46b56a9f3014e04d18f43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:22:ef:28:2d:bf:fa:43:8a:ee:3a:3f:11:eb:
37:81:69:74:bb:cc:2d:17:4e:24:2c:b3:b3:d8:43:
ff:14:cb:60:54:68:1c:67:7a:1d:e2:d0:54:d3:46:
12:90:ff:91:bd:a4:8c:5d:c8:6d:0d:bc:ae:a3:75:
f9:36:e9:0b:ad:02:8f:99:35:8d:f8:87:36:fc:88:
09:87:88:8f:eb:3b:40:2f:ee:46:4b:e7:08:d5:c9:
8b:55:95:10:45:94:56:d5:cd:52:0c:75:e9:70:7f:
b6:a2:e6:49:b0:ff:36:fb:8f:30:1c:67:d4:28:4e:
d2:1d:1d:99:fd:14:1e:33:1e:d4:4b:cf:d6:87:9f:
4f:c8:e8:6d:65:f2:c8:af:f3:79:6d:20:87:25:3d:
4b:df:cf:9b:d2:54:4d:4d:36:fd:1f:85:78:2c:40:
3c:38:28:06:8f:f2:a7:3d:03:2f:68:85:10:ea:72:
a5:2a:ef:9b:a6:e5:f6:14:b8:61:c1:4b:d7:75:38:
e4:cd:b5:fe:96:1f:67:3b:05:ff:35:0d:a5:57:19:
89:44:e3:b7:d0:93:f3:d3:cf:cb:f1:30:7b:93:87:
42:ad:f8:8b:e1:7d:a7:0b:8c:63:0d:55:14:f0:f0:
29:be:0d:69:0f:d7:a9:4c:d5:84:83:f8:a3:97:e4:
e8:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:4F:11:23:D2:CE:74:BF:57:F4:6B:56:A9:F3:01:4E:04:D1:8F:43
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/B08RI9LOdL9X9GtWqfMBTgTRj0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.147.100.0/22
Signature Algorithm: sha256WithRSAEncryption
44:31:34:dc:68:27:90:36:db:23:5c:6e:31:bc:6f:c7:08:cc:
a0:21:a4:b6:cc:d0:18:40:cb:32:6e:5a:22:80:13:bd:40:d2:
e9:3f:0e:7a:fc:97:69:be:3a:77:fe:2d:2a:6b:74:00:a0:01:
30:ce:79:60:43:ab:a8:93:d5:d2:d8:28:28:06:64:55:b9:dc:
c5:b3:12:44:51:8c:cc:3e:fc:d1:cc:b4:1d:dd:75:db:ae:a2:
c2:70:ae:29:1b:93:a5:3b:8f:6c:ee:a6:84:fe:f2:84:00:3c:
fc:22:ed:b4:26:ec:31:2d:3a:1a:9f:b3:18:3a:5b:c1:79:0a:
04:12:3d:62:d7:eb:78:a2:cc:8a:68:3b:49:31:1f:8b:0a:79:
06:67:1f:ca:e6:5e:71:29:d0:41:31:00:00:13:05:86:74:b0:
0e:58:e1:b9:87:14:d6:a1:42:7a:04:6b:56:64:86:79:02:ab:
b9:56:3f:47:ca:64:29:47:ac:3c:5a:82:e7:44:d2:76:03:33:
c1:dd:a6:44:86:d9:a3:ca:a2:5f:61:b7:b8:73:5b:90:a0:fc:
e4:57:40:ba:94:ce:1f:75:d7:95:9f:be:2b:1c:ec:79:1d:0b:
99:4c:3c:54:54:55:34:ae:76:29:0d:af:3a:ac:dd:8d:80:83:
f6:83:9e:fb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRROIm4SFzVMBr93z73FdihMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjIxMTA3MDgzMjUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNzRmMTEyM2QyY2U3NGJmNTdmNDZiNTZhOWYzMDE0ZTA0ZDE4ZjQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkSLvKC2/+kOK7jo/Ees3gWl0u8wt
F04kLLOz2EP/FMtgVGgcZ3od4tBU00YSkP+RvaSMXchtDbyuo3X5NukLrQKPmTWN
+Ic2/IgJh4iP6ztAL+5GS+cI1cmLVZUQRZRW1c1SDHXpcH+2ouZJsP82+48wHGfU
KE7SHR2Z/RQeMx7US8/Wh59PyOhtZfLIr/N5bSCHJT1L38+b0lRNTTb9H4V4LEA8
OCgGj/KnPQMvaIUQ6nKlKu+bpuX2FLhhwUvXdTjkzbX+lh9nOwX/NQ2lVxmJROO3
0JPz08/L8TB7k4dCrfiL4X2nC4xjDVUU8PApvg1pD9epTNWEg/ijl+To3QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAdPESPSznS/V/RrVqnzAU4E0Y9DMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvQjA4Ukk5TE9kTDlYOUd0V3FmTUJUZ1RSajBNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuZNkMA0G
CSqGSIb3DQEBCwUAA4IBAQBEMTTcaCeQNtsjXG4xvG/HCMygIaS2zNAYQMsybloi
gBO9QNLpPw56/Jdpvjp3/i0qa3QAoAEwznlgQ6uok9XS2CgoBmRVudzFsxJEUYzM
PvzRzLQd3XXbrqLCcK4pG5OlO49s7qaE/vKEADz8Iu20JuwxLToan7MYOlvBeQoE
Ej1i1+t4osyKaDtJMR+LCnkGZx/K5l5xKdBBMQAAEwWGdLAOWOG5hxTWoUJ6BGtW
ZIZ5Aqu5Vj9HymQpR6w8WoLnRNJ2AzPB3aZEhtmjyqJfYbe4c1uQoPzkV0C6lM4f
ddeVn74rHOx5HQuZTDxUVFU0rnYpDa86rN2NgIP2g577
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:33 2023 by rpki-client on console-ams.rpki-client.org