Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/bd4e5c-4147-4131-8750-33a82ab5f513/1/yBSt8vf0my-erKPesDLnuPaLGVY.roa
File: yBSt8vf0my-erKPesDLnuPaLGVY.roa (raw, json)
Hash identifier: gA2H2eX78avEl+5sKXgVbor1kYU4cuEGEYdgt6IFJgA=
Subject key identifier: C8:14:AD:F2:F7:F4:9B:2F:9E:AC:A3:DE:B0:32:E7:B8:F6:8B:19:56
Certificate issuer: /CN=d1c4913094a21268c73a67653a3738d73e5c59a7
Certificate serial: 05B7DBEF
Authority key identifier: D1:C4:91:30:94:A2:12:68:C7:3A:67:65:3A:37:38:D7:3E:5C:59:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0cSRMJSiEmjHOmdlOjc41z5cWac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/bd4e5c-4147-4131-8750-33a82ab5f513/1/yBSt8vf0my-erKPesDLnuPaLGVY.roa
Signing time: Wed 02 Mar 2022 10:00:17 +0000
ROA not before: Wed 02 Mar 2022 10:00:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204176
IP address blocks: 185.112.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95935471 (0x5b7dbef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1c4913094a21268c73a67653a3738d73e5c59a7
Validity
Not Before: Mar 2 10:00:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c814adf2f7f49b2f9eaca3deb032e7b8f68b1956
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:c6:3e:b6:af:c0:b9:ed:2b:ee:95:24:b4:20:
bd:7a:2d:b8:4f:b1:ea:26:d0:0d:be:61:13:fd:85:
ee:5c:07:ed:8b:2b:34:9d:dd:55:32:e2:9c:d6:da:
1e:50:f0:a3:aa:33:c5:db:a7:0a:66:52:c3:18:25:
63:ca:4d:75:e8:61:9d:09:3e:dd:ea:7f:69:c0:42:
6b:b2:ad:ab:7f:18:ee:70:cb:8b:20:13:29:dc:ef:
45:a6:28:04:d1:bd:7d:7f:28:e6:3f:51:cc:98:a3:
06:50:0b:53:be:04:42:7b:ed:99:f2:09:d4:58:b0:
2b:be:d8:2f:a4:28:4d:88:87:0f:5e:b0:29:b0:31:
ad:a3:15:e0:84:94:15:8a:25:55:d0:f9:82:a1:8f:
0c:06:50:4d:68:de:36:1d:1f:71:88:fb:91:d4:a7:
43:3e:2e:3a:46:9a:70:75:73:95:d4:6b:ef:30:96:
4c:79:ef:a1:0a:fb:03:52:62:9f:9b:27:0d:35:74:
31:fd:ea:40:9e:e8:bb:15:2e:30:a3:77:b5:66:f6:
b3:cc:77:eb:f9:23:82:7a:83:b0:e9:0a:c7:31:e5:
10:60:59:4c:2a:87:e0:69:9c:f6:dd:24:fd:fc:bd:
4a:82:89:93:85:0f:bd:54:5f:46:cf:07:6b:51:55:
15:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:14:AD:F2:F7:F4:9B:2F:9E:AC:A3:DE:B0:32:E7:B8:F6:8B:19:56
X509v3 Authority Key Identifier:
keyid:D1:C4:91:30:94:A2:12:68:C7:3A:67:65:3A:37:38:D7:3E:5C:59:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0cSRMJSiEmjHOmdlOjc41z5cWac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/bd4e5c-4147-4131-8750-33a82ab5f513/1/yBSt8vf0my-erKPesDLnuPaLGVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/bd4e5c-4147-4131-8750-33a82ab5f513/1/0cSRMJSiEmjHOmdlOjc41z5cWac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.63.0/24
Signature Algorithm: sha256WithRSAEncryption
34:fb:f7:7d:e7:d2:7a:3a:a8:16:a0:5a:79:a4:f4:ff:eb:cb:
ad:16:bd:b5:df:b8:50:71:3a:64:17:d7:40:a2:62:c1:09:42:
67:05:c5:a1:dd:af:e0:be:92:ad:54:a5:f1:85:99:80:5d:0e:
25:2f:e3:45:64:bf:9f:0c:a7:30:ce:33:3b:9b:ab:34:9b:86:
38:dd:75:76:0e:63:53:42:04:01:96:8d:0d:69:cd:58:ac:c5:
52:0b:6c:30:7c:6b:ad:88:6f:eb:18:7f:df:24:6d:46:c8:56:
3c:b7:9b:f8:22:46:29:32:3c:3e:c2:0d:9e:30:d1:9e:89:ec:
3e:56:33:a1:96:32:3f:98:86:de:a3:5f:e6:66:08:25:fc:29:
31:09:ad:74:79:cf:a2:2f:f5:fc:04:20:d7:8d:a7:45:86:53:
a8:e8:c7:ed:b6:2b:45:c8:31:d4:8b:66:af:d8:c4:d5:3a:d2:
38:42:1d:e3:40:e1:18:ba:91:f8:34:fa:80:cf:78:3b:56:ab:
08:5b:3b:fe:a2:89:4f:4a:a9:6f:b0:1f:3d:07:cf:31:66:4e:
d9:e0:d3:ee:cf:37:12:a7:7c:bd:86:3c:0c:8c:61:8b:e0:42:
7c:91:42:99:c9:76:3a:4f:9b:c9:77:67:a1:69:9b:f1:0f:e3:
7c:29:62:94
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBbfb7zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
MWM0OTEzMDk0YTIxMjY4YzczYTY3NjUzYTM3MzhkNzNlNWM1OWE3MB4XDTIyMDMw
MjEwMDAxN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzgxNGFkZjJmN2Y0
OWIyZjllYWNhM2RlYjAzMmU3YjhmNjhiMTk1NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANjGPravwLntK+6VJLQgvXotuE+x6ibQDb5hE/2F7lwH7Ysr
NJ3dVTLinNbaHlDwo6ozxdunCmZSwxglY8pNdehhnQk+3ep/acBCa7Ktq38Y7nDL
iyATKdzvRaYoBNG9fX8o5j9RzJijBlALU74EQnvtmfIJ1FiwK77YL6QoTYiHD16w
KbAxraMV4ISUFYolVdD5gqGPDAZQTWjeNh0fcYj7kdSnQz4uOkaacHVzldRr7zCW
THnvoQr7A1Jin5snDTV0Mf3qQJ7ouxUuMKN3tWb2s8x36/kjgnqDsOkKxzHlEGBZ
TCqH4Gmc9t0k/fy9SoKJk4UPvVRfRs8Ha1FVFTECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTIFK3y9/SbL56so96wMue49osZVjAfBgNVHSMEGDAWgBTRxJEwlKISaMc6
Z2U6NzjXPlxZpzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzBjU1JNSlNpRW1qSE9tZGxPamM0MXo1Y1dhYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDUvYmQ0ZTVjLTQxNDctNDEzMS04NzUwLTMzYTgyYWI1ZjUxMy8x
L3lCU3Q4dmYwbXktZXJLUGVzRExudVBhTEdWWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDUv
YmQ0ZTVjLTQxNDctNDEzMS04NzUwLTMzYTgyYWI1ZjUxMy8xLzBjU1JNSlNpRW1q
SE9tZGxPamM0MXo1Y1dhYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALlwPzANBgkqhkiG9w0BAQsFAAOC
AQEANPv3fefSejqoFqBaeaT0/+vLrRa9td+4UHE6ZBfXQKJiwQlCZwXFod2v4L6S
rVSl8YWZgF0OJS/jRWS/nwynMM4zO5urNJuGON11dg5jU0IEAZaNDWnNWKzFUgts
MHxrrYhv6xh/3yRtRshWPLeb+CJGKTI8PsINnjDRnonsPlYzoZYyP5iG3qNf5mYI
JfwpMQmtdHnPoi/1/AQg142nRYZTqOjH7bYrRcgx1Itmr9jE1TrSOEId40DhGLqR
+DT6gM94O1arCFs7/qKJT0qpb7AfPQfPMWZO2eDT7s83Eqd8vYY8DIxhi+BCfJFC
mcl2Ok+byXdnoWmb8Q/jfClilA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:01 2023 by rpki-client on console-fra.rpki-client.org