Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/b3ae33-6d62-4093-92ec-5638526ff641/1/rUc_94Azor3oEF6HHq2IsHn6Onk.roa
File: rUc_94Azor3oEF6HHq2IsHn6Onk.roa (raw, json)
Hash identifier: y1WYXUBUKgiLgr72GF0nLG6SBY0bOfLfEJVIiqGaK0w=
Subject key identifier: AD:47:3F:F7:80:33:A2:BD:E8:10:5E:87:1E:AD:88:B0:79:FA:3A:79
Certificate issuer: /CN=1e234242957bb1be129681721f9c2cd08df07baa
Certificate serial: 18EBFF64
Authority key identifier: 1E:23:42:42:95:7B:B1:BE:12:96:81:72:1F:9C:2C:D0:8D:F0:7B:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HiNCQpV7sb4SloFyH5ws0I3we6o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/b3ae33-6d62-4093-92ec-5638526ff641/1/rUc_94Azor3oEF6HHq2IsHn6Onk.roa
Signing time: Sat 01 Jan 2022 13:00:47 +0000
ROA not before: Sat 01 Jan 2022 13:00:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42926
IP address blocks: 185.40.72.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 418119524 (0x18ebff64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e234242957bb1be129681721f9c2cd08df07baa
Validity
Not Before: Jan 1 13:00:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad473ff78033a2bde8105e871ead88b079fa3a79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:bc:22:2e:b3:85:5f:f1:50:c6:9d:41:fa:89:
31:0e:5b:d5:3f:3e:47:d4:7c:94:7a:4c:4a:cd:78:
d8:4f:74:a1:35:f9:6e:70:fe:8f:d5:d1:87:1f:00:
02:0c:09:af:9e:97:89:98:56:15:96:a6:7f:ca:5a:
ec:29:99:5e:a2:6d:44:31:44:59:5c:2f:5a:83:77:
c7:2b:0e:a5:d0:b3:d8:72:18:1f:df:1e:5a:39:15:
89:b1:5f:23:98:dc:5a:c5:57:64:2d:d0:e0:14:a7:
88:82:db:73:83:36:c4:84:5a:85:80:35:d7:ce:66:
31:b2:cb:fb:d6:e5:87:99:88:07:4e:5e:48:9d:69:
c4:01:9f:9d:be:a1:01:c9:5e:12:9b:32:c8:63:d3:
bf:03:9e:08:73:82:b8:f4:95:65:c3:8e:f8:39:aa:
f2:11:87:27:09:d2:c8:54:57:dd:69:b1:0a:3c:65:
1c:b7:ed:d2:ec:16:6f:2b:cd:f6:ba:65:b5:66:7c:
53:58:f8:51:13:95:1d:98:3b:5c:cb:c8:8c:25:da:
ea:b9:0f:b7:df:6f:0e:ac:7e:d3:ea:f2:e1:b4:d5:
82:d2:23:bb:2d:9b:f0:1a:a2:d1:64:23:b7:64:14:
83:7d:48:66:29:17:c1:ea:fe:51:93:b1:f7:7d:ed:
cb:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:47:3F:F7:80:33:A2:BD:E8:10:5E:87:1E:AD:88:B0:79:FA:3A:79
X509v3 Authority Key Identifier:
keyid:1E:23:42:42:95:7B:B1:BE:12:96:81:72:1F:9C:2C:D0:8D:F0:7B:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HiNCQpV7sb4SloFyH5ws0I3we6o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/b3ae33-6d62-4093-92ec-5638526ff641/1/rUc_94Azor3oEF6HHq2IsHn6Onk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/b3ae33-6d62-4093-92ec-5638526ff641/1/HiNCQpV7sb4SloFyH5ws0I3we6o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.40.72.0/22
Signature Algorithm: sha256WithRSAEncryption
a8:da:e9:2c:8e:62:df:69:e2:19:fe:ac:0d:25:e1:bb:ff:9c:
0f:70:00:29:cb:c5:c1:2f:92:66:10:a3:f3:db:19:cd:96:0d:
91:55:51:d0:35:b3:d0:ec:86:bb:41:fb:fb:06:1e:09:e6:bb:
73:a3:02:ec:ce:c0:ca:18:ac:5f:fb:d7:8f:c8:86:ff:5d:57:
1b:bd:d3:58:87:c1:ed:c4:dc:dd:bf:b0:0c:8d:4f:ec:a0:65:
d8:7a:e9:1d:70:9b:c2:fb:ab:0e:eb:b4:ae:e3:a2:39:f5:52:
20:d0:52:84:4c:07:1f:9f:2c:db:84:7a:51:3d:6c:31:1c:16:
98:55:fc:be:80:3f:46:c4:9f:e3:9b:0c:8e:77:a4:32:48:ee:
71:67:a9:95:90:8a:e8:32:90:c7:e0:10:bc:cc:52:8e:b6:93:
e8:03:a5:55:ee:28:b4:27:f7:70:7c:9e:79:f6:2f:2b:38:d2:
87:ff:dc:9e:fb:6f:b2:f8:d4:eb:ef:9e:25:f0:3f:37:e7:3f:
4b:9b:d4:4a:19:06:71:01:9a:d8:67:d2:9b:3d:96:06:ef:05:
af:69:6d:ca:2c:8f:df:e0:da:08:6b:a1:3b:d9:22:f6:4b:ac:
f1:e4:c4:2e:8b:8d:71:77:f8:6d:e8:ac:b9:1f:a5:4e:e3:bc:
24:7a:16:61
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGOv/ZDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZTIzNDI0Mjk1N2JiMWJlMTI5NjgxNzIxZjljMmNkMDhkZjA3YmFhMB4XDTIyMDEw
MTEzMDA0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWQ0NzNmZjc4MDMz
YTJiZGU4MTA1ZTg3MWVhZDg4YjA3OWZhM2E3OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALG8Ii6zhV/xUMadQfqJMQ5b1T8+R9R8lHpMSs142E90oTX5
bnD+j9XRhx8AAgwJr56XiZhWFZamf8pa7CmZXqJtRDFEWVwvWoN3xysOpdCz2HIY
H98eWjkVibFfI5jcWsVXZC3Q4BSniILbc4M2xIRahYA1185mMbLL+9blh5mIB05e
SJ1pxAGfnb6hAcleEpsyyGPTvwOeCHOCuPSVZcOO+Dmq8hGHJwnSyFRX3WmxCjxl
HLft0uwWbyvN9rpltWZ8U1j4UROVHZg7XMvIjCXa6rkPt99vDqx+0+ry4bTVgtIj
uy2b8Bqi0WQjt2QUg31IZikXwer+UZOx933tywMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBStRz/3gDOivegQXocerYiwefo6eTAfBgNVHSMEGDAWgBQeI0JClXuxvhKW
gXIfnCzQjfB7qjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0hpTkNRcFY3c2I0U2xvRnlINXdzMEkzd2U2by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDUvYjNhZTMzLTZkNjItNDA5My05MmVjLTU2Mzg1MjZmZjY0MS8x
L3JVY185NEF6b3Izb0VGNkhIcTJJc0huNk9uay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDUv
YjNhZTMzLTZkNjItNDA5My05MmVjLTU2Mzg1MjZmZjY0MS8xL0hpTkNRcFY3c2I0
U2xvRnlINXdzMEkzd2U2by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArkoSDANBgkqhkiG9w0BAQsFAAOC
AQEAqNrpLI5i32niGf6sDSXhu/+cD3AAKcvFwS+SZhCj89sZzZYNkVVR0DWz0OyG
u0H7+wYeCea7c6MC7M7AyhisX/vXj8iG/11XG73TWIfB7cTc3b+wDI1P7KBl2Hrp
HXCbwvurDuu0ruOiOfVSINBShEwHH58s24R6UT1sMRwWmFX8voA/RsSf45sMjnek
MkjucWeplZCK6DKQx+AQvMxSjraT6AOlVe4otCf3cHyeefYvKzjSh//cnvtvsvjU
6++eJfA/N+c/S5vUShkGcQGa2GfSmz2WBu8Fr2ltyiyP3+DaCGuhO9ki9kus8eTE
LouNcXf4beisuR+lTuO8JHoWYQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:53 2023 by rpki-client on console-ams.rpki-client.org