Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/176f7d-6f0f-45e5-97f2-c9db981a2a2f/1/0JQcnffS9nRVEfY7nx4XuVk9lEI.roa
File: 0JQcnffS9nRVEfY7nx4XuVk9lEI.roa (raw, json)
Hash identifier: pB6Onj4yJu+GmMM0CJJSSzv+rRWmu3Tyuuhdvq28dnA=
Subject key identifier: D0:94:1C:9D:F7:D2:F6:74:55:11:F6:3B:9F:1E:17:B9:59:3D:94:42
Certificate issuer: /CN=a4338168cd9d5af0604013fc4274126fc581f3cb
Certificate serial: 0183C69D3ACF1E5E4165D1EF7FAAE93E6D38
Authority key identifier: A4:33:81:68:CD:9D:5A:F0:60:40:13:FC:42:74:12:6F:C5:81:F3:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pDOBaM2dWvBgQBP8QnQSb8WB88s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/176f7d-6f0f-45e5-97f2-c9db981a2a2f/1/0JQcnffS9nRVEfY7nx4XuVk9lEI.roa
Signing time: Tue 11 Oct 2022 10:35:36 +0000
ROA not before: Tue 11 Oct 2022 10:35:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59788
IP address blocks: 185.44.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c6:9d:3a:cf:1e:5e:41:65:d1:ef:7f:aa:e9:3e:6d:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4338168cd9d5af0604013fc4274126fc581f3cb
Validity
Not Before: Oct 11 10:35:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d0941c9df7d2f6745511f63b9f1e17b9593d9442
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:f8:db:67:e2:71:cc:07:80:54:04:7d:24:74:
f1:91:f3:17:37:44:26:68:4d:cd:b0:01:a3:ee:f9:
b5:55:7f:9a:ef:da:7e:6a:78:a8:44:70:6e:05:93:
80:ca:67:ff:c9:f8:a4:87:e8:23:4e:a3:92:45:44:
74:43:7e:2e:00:8c:9f:a5:fd:0e:d1:e2:56:c5:94:
ea:80:f1:ce:46:c4:76:3e:17:22:e3:40:df:f3:62:
98:a5:dd:e4:2a:0b:1e:27:ee:bb:36:30:85:fb:ee:
f1:d8:42:d2:79:90:96:a7:63:c6:7e:97:58:36:24:
01:f1:1c:00:fd:23:d2:81:4e:3d:69:33:b2:6f:a5:
d4:fe:04:9b:6f:2e:6f:0e:78:70:28:17:0b:ae:eb:
b6:74:ab:f7:7a:c6:08:50:75:1f:d0:99:ed:92:b7:
94:c1:98:d6:de:04:bd:cc:cb:ea:3f:c1:39:21:bc:
80:0c:44:7b:7a:38:ef:ae:29:6f:8b:46:1e:24:25:
f8:e4:c2:a1:0f:67:ac:01:7c:0b:5b:b4:39:2c:3d:
8e:e2:43:42:5e:83:00:27:41:d8:9b:6e:61:97:45:
42:0e:97:bd:bb:a2:ce:66:6f:56:ef:c4:31:b2:b0:
27:63:5c:1d:77:bb:b3:ad:ee:22:d2:12:8d:4d:96:
45:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:94:1C:9D:F7:D2:F6:74:55:11:F6:3B:9F:1E:17:B9:59:3D:94:42
X509v3 Authority Key Identifier:
keyid:A4:33:81:68:CD:9D:5A:F0:60:40:13:FC:42:74:12:6F:C5:81:F3:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pDOBaM2dWvBgQBP8QnQSb8WB88s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/176f7d-6f0f-45e5-97f2-c9db981a2a2f/1/0JQcnffS9nRVEfY7nx4XuVk9lEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/176f7d-6f0f-45e5-97f2-c9db981a2a2f/1/pDOBaM2dWvBgQBP8QnQSb8WB88s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.44.82.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:23:f0:78:2e:a4:ff:d5:95:c8:86:11:f3:8d:5a:ab:be:d9:
a5:be:a3:5f:60:66:cc:2f:d3:3f:f5:e2:d2:55:3e:52:cb:5b:
1d:4b:64:38:da:d9:01:f4:79:05:54:51:d3:fe:af:be:f5:fb:
eb:2b:50:b2:bc:ed:6e:3d:ae:52:2b:d1:c2:5d:38:3c:ea:1f:
21:a3:f0:30:69:8d:7b:2d:52:3c:f4:cf:18:d2:ab:1f:04:0f:
27:08:00:c7:63:2a:17:a5:07:63:83:ef:15:a5:50:f3:12:46:
02:92:e7:48:ea:43:89:b5:09:e9:95:c1:7c:40:19:76:cc:19:
4f:e6:eb:ea:f0:57:da:85:ac:49:df:dc:7e:28:dc:5b:f1:7e:
0b:dd:fa:60:0e:07:a8:d1:bb:4e:24:79:9d:34:be:e4:8a:0f:
7d:4e:06:78:e6:f4:ae:8c:c6:f4:7d:54:04:69:f9:ae:45:e7:
d2:09:46:c0:3d:1d:f1:d0:47:2a:32:a4:72:ba:42:2b:5b:1b:
3a:e1:3a:91:d2:2b:78:4f:b8:84:ca:7e:04:02:91:c1:5b:a5:
e7:98:7a:dd:74:5a:39:81:5a:26:75:77:0c:9c:08:ae:aa:e1:
e2:0e:fc:ae:6e:79:20:f0:4b:64:23:f2:3c:03:12:78:9f:26:
5e:64:ec:1e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYPGnTrPHl5BZdHvf6rpPm04MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE0MzM4MTY4Y2Q5ZDVhZjA2MDQwMTNmYzQyNzQxMjZmYzU4
MWYzY2IwHhcNMjIxMDExMTAzNTM2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMDk0MWM5ZGY3ZDJmNjc0NTUxMWY2M2I5ZjFlMTdiOTU5M2Q5NDQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjvjbZ+JxzAeAVAR9JHTxkfMXN0Qm
aE3NsAGj7vm1VX+a79p+anioRHBuBZOAymf/yfikh+gjTqOSRUR0Q34uAIyfpf0O
0eJWxZTqgPHORsR2Phci40Df82KYpd3kKgseJ+67NjCF++7x2ELSeZCWp2PGfpdY
NiQB8RwA/SPSgU49aTOyb6XU/gSbby5vDnhwKBcLruu2dKv3esYIUHUf0JntkreU
wZjW3gS9zMvqP8E5IbyADER7ejjvrilvi0YeJCX45MKhD2esAXwLW7Q5LD2O4kNC
XoMAJ0HYm25hl0VCDpe9u6LOZm9W78QxsrAnY1wdd7uzre4i0hKNTZZFnQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNCUHJ330vZ0VRH2O58eF7lZPZRCMB8GA1UdIwQY
MBaAFKQzgWjNnVrwYEAT/EJ0Em/FgfPLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcERPQmFNMmRXdkJnUUJQOFFuUVNiOFdCODhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC8xNzZmN2QtNmYwZi00NWU1LTk3ZjIt
YzlkYjk4MWEyYTJmLzEvMEpRY25mZlM5blJWRWZZN254NFh1Vms5bEVJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOC8xNzZmN2QtNmYwZi00NWU1LTk3ZjItYzlkYjk4MWEyYTJm
LzEvcERPQmFNMmRXdkJnUUJQOFFuUVNiOFdCODhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSxSMA0G
CSqGSIb3DQEBCwUAA4IBAQDCI/B4LqT/1ZXIhhHzjVqrvtmlvqNfYGbML9M/9eLS
VT5Sy1sdS2Q42tkB9HkFVFHT/q++9fvrK1CyvO1uPa5SK9HCXTg86h8ho/AwaY17
LVI89M8Y0qsfBA8nCADHYyoXpQdjg+8VpVDzEkYCkudI6kOJtQnplcF8QBl2zBlP
5uvq8FfahaxJ39x+KNxb8X4L3fpgDgeo0btOJHmdNL7kig99TgZ45vSujMb0fVQE
afmuRefSCUbAPR3x0EcqMqRyukIrWxs64TqR0it4T7iEyn4EApHBW6XnmHrddFo5
gVomdXcMnAiuquHiDvyubnkg8EtkI/I8AxJ4nyZeZOwe
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:35 2024 by rpki-client on console-ams.rpki-client.org