Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/RJrZwA26w9tjleN4K5SwiDXkFgU.roa
File: RJrZwA26w9tjleN4K5SwiDXkFgU.roa (raw, json)
Hash identifier: 165b+5m8dM8LrAESgdqj4l2m64UpBIRgBN0Zv2t05I8=
Subject key identifier: 44:9A:D9:C0:0D:BA:C3:DB:63:95:E3:78:2B:94:B0:88:35:E4:16:05
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1C90C8BA
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/RJrZwA26w9tjleN4K5SwiDXkFgU.roa
Signing time: Sat 01 Jan 2022 01:02:54 +0000
ROA not before: Sat 01 Jan 2022 01:02:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210624
IP address blocks: 85.217.189.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 479250618 (0x1c90c8ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 01:02:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=449ad9c00dbac3db6395e3782b94b08835e41605
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:b6:0e:00:35:3e:ad:9a:37:09:f7:6f:a2:f6:
32:95:ae:1d:96:ec:4e:0d:2c:0d:b6:75:9e:33:cc:
84:84:40:22:c2:f1:db:73:08:97:0a:82:a9:7f:76:
f3:69:b0:73:8c:6f:78:ee:05:b0:3d:ae:64:27:5a:
e4:99:5e:98:fd:75:0e:fc:df:3c:86:41:90:9d:95:
30:c1:44:79:d4:61:cc:ce:22:f7:16:c5:cf:93:56:
db:c7:e8:91:8b:6f:03:40:6e:45:86:62:71:ab:b8:
e3:f8:f3:bf:74:34:9a:8e:ad:f2:47:4e:55:cd:cf:
86:d7:d2:49:dd:bb:42:b0:5a:c6:00:42:71:4a:f4:
5e:31:f6:06:05:45:44:27:af:4b:1e:cf:79:22:9d:
d1:d4:b6:6d:09:f7:98:34:f7:04:d8:1e:f2:c3:2d:
fe:8c:2b:3b:80:ff:fc:fd:66:99:01:c3:f0:8a:e0:
d5:fd:f2:ee:af:b8:45:0d:3b:cb:b9:7e:e0:e5:b1:
cf:08:1e:45:fa:53:51:23:b9:37:f6:b4:be:5b:fd:
c1:58:d8:c7:90:d4:11:d7:9f:a6:ad:16:e4:a1:eb:
b6:d9:5f:03:e5:a6:7e:16:f4:1e:1e:07:ab:38:12:
87:c4:02:0b:64:e3:95:82:c0:73:44:dd:0a:04:bb:
08:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:9A:D9:C0:0D:BA:C3:DB:63:95:E3:78:2B:94:B0:88:35:E4:16:05
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/RJrZwA26w9tjleN4K5SwiDXkFgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.217.189.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:d7:87:3d:cc:7c:1f:27:bf:46:65:a1:69:c1:3d:26:54:ce:
5c:91:c6:ac:aa:f2:db:97:3e:d0:8a:6f:c3:dd:33:3a:30:9d:
95:08:29:f9:67:2a:a2:f5:38:a7:3a:98:9d:f6:de:c0:42:9d:
b5:fa:e3:0d:a8:12:0f:43:08:fa:5d:2a:c7:c8:80:ef:dc:4c:
0c:06:49:3e:ae:27:59:bc:ef:55:ed:ec:95:f1:92:27:dc:d0:
7f:4b:fc:53:ea:30:78:e5:f5:7f:9f:c9:03:16:c0:1c:14:91:
22:6e:09:70:86:95:3b:bf:4e:27:1b:8f:ce:87:33:30:3f:0c:
5f:b2:5d:ec:70:ea:66:fc:9b:2d:5b:8a:3e:86:a4:0e:80:9e:
aa:f3:c5:69:ee:d8:51:5e:db:24:98:fe:d9:b5:e0:8a:f0:58:
bf:e5:5f:6c:3f:75:6b:7f:10:1a:5e:fd:2f:3f:e5:cb:e8:0d:
bc:3a:26:ce:32:96:42:c4:f3:59:f5:b2:f0:81:35:57:34:e2:
76:1c:d0:25:2e:75:af:3d:48:9a:20:61:2f:f9:e8:45:ec:8d:
48:9d:e0:ae:1c:1d:0b:83:de:92:e2:7e:74:84:50:f0:70:a9:
b0:46:dc:13:01:05:70:67:1e:08:1c:6d:53:84:78:9c:28:7f:
e9:1c:e4:6d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEHJDIujANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MmM0YWMzZTNjNDNkNzBkMDUzNDljODE1YmFhZGQzOGFkNzc1ZTlkMB4XDTIyMDEw
MTAxMDI1NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDQ5YWQ5YzAwZGJh
YzNkYjYzOTVlMzc4MmI5NGIwODgzNWU0MTYwNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJi2DgA1Pq2aNwn3b6L2MpWuHZbsTg0sDbZ1njPMhIRAIsLx
23MIlwqCqX9282mwc4xveO4FsD2uZCda5JlemP11DvzfPIZBkJ2VMMFEedRhzM4i
9xbFz5NW28fokYtvA0BuRYZicau44/jzv3Q0mo6t8kdOVc3PhtfSSd27QrBaxgBC
cUr0XjH2BgVFRCevSx7PeSKd0dS2bQn3mDT3BNge8sMt/owrO4D//P1mmQHD8Irg
1f3y7q+4RQ07y7l+4OWxzwgeRfpTUSO5N/a0vlv9wVjYx5DUEdefpq0W5KHrttlf
A+Wmfhb0Hh4HqzgSh8QCC2TjlYLAc0TdCgS7CA8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBREmtnADbrD22OV43grlLCINeQWBTAfBgNVHSMEGDAWgBQixKw+PEPXDQU0
nIFbqt04rXdenTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0lzU3NQanhEMXcwRk5KeUJXNnJkT0sxM1hwMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDMvOTEzYTNhLWY1NTAtNDZmMC1hY2M3LWNkM2NhNTk3NTcxMi8x
L1JKclp3QTI2dzl0amxlTjRLNVN3aURYa0ZnVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDMv
OTEzYTNhLWY1NTAtNDZmMC1hY2M3LWNkM2NhNTk3NTcxMi8xL0lzU3NQanhEMXcw
Rk5KeUJXNnJkT0sxM1hwMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFXZvTANBgkqhkiG9w0BAQsFAAOC
AQEAHNeHPcx8Hye/RmWhacE9JlTOXJHGrKry25c+0Ipvw90zOjCdlQgp+WcqovU4
pzqYnfbewEKdtfrjDagSD0MI+l0qx8iA79xMDAZJPq4nWbzvVe3slfGSJ9zQf0v8
U+oweOX1f5/JAxbAHBSRIm4JcIaVO79OJxuPzoczMD8MX7Jd7HDqZvybLVuKPoak
DoCeqvPFae7YUV7bJJj+2bXgivBYv+VfbD91a38QGl79Lz/ly+gNvDomzjKWQsTz
WfWy8IE1VzTidhzQJS51rz1ImiBhL/noReyNSJ3grhwdC4PekuJ+dIRQ8HCpsEbc
EwEFcGceCBxtU4R4nCh/6RzkbQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:36 2023 by rpki-client on console-ams.rpki-client.org