Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/9d4203-2eee-41de-8d85-08bf22f64097/1/XF1RERhGAV0_2p2tVit0BBAZ5DA.roa
File: XF1RERhGAV0_2p2tVit0BBAZ5DA.roa (raw, json)
Hash identifier: RbvSXpIyocl4m3y9zZbyiGEw4HtbIqvtoEu4j3//h0g=
Subject key identifier: 5C:5D:51:11:18:46:01:5D:3F:DA:9D:AD:56:2B:74:04:10:19:E4:30
Certificate issuer: /CN=d9f9fa7b944f7e7c60d73ef10b776fc27995a4ed
Certificate serial: 0DDAA399
Authority key identifier: D9:F9:FA:7B:94:4F:7E:7C:60:D7:3E:F1:0B:77:6F:C2:79:95:A4:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fn6e5RPfnxg1z7xC3dvwnmVpO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/9d4203-2eee-41de-8d85-08bf22f64097/1/XF1RERhGAV0_2p2tVit0BBAZ5DA.roa
Signing time: Sat 01 Jan 2022 16:02:21 +0000
ROA not before: Sat 01 Jan 2022 16:02:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205471
IP address blocks: 185.69.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 232432537 (0xddaa399)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9f9fa7b944f7e7c60d73ef10b776fc27995a4ed
Validity
Not Before: Jan 1 16:02:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c5d51111846015d3fda9dad562b74041019e430
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:ac:be:13:5e:c0:11:e7:aa:95:0d:d7:8c:13:
6e:01:ca:b3:7f:76:40:29:26:43:34:51:38:18:37:
c7:0f:a1:24:92:f8:40:7a:c7:89:2e:1f:89:6d:73:
ce:b0:47:17:f3:4a:f6:a4:ef:44:cd:a4:a5:a0:e0:
47:8f:25:74:76:88:e1:bd:d6:6c:9b:13:60:24:7f:
e5:c5:2a:6a:e1:2f:11:9f:d2:19:b7:6b:f0:f6:91:
71:06:64:5a:cd:6c:00:b5:e8:11:b7:06:42:b7:f0:
5c:b0:11:74:74:e6:4a:57:33:4c:d4:a4:31:be:5d:
cb:b9:41:c0:f7:5d:ed:a0:cc:d7:bb:cc:a0:55:ad:
4c:42:b9:db:b9:3f:97:cd:6a:60:4e:95:eb:e9:cb:
66:43:a2:75:67:60:d0:1c:46:87:8e:0f:f7:06:da:
8b:dd:d5:32:bb:ad:73:17:63:47:14:4c:42:ac:38:
59:ad:0f:98:b4:eb:ae:7d:13:77:39:01:5e:c2:58:
ed:c3:88:65:64:3d:d4:65:fa:b2:3e:a2:81:2c:31:
13:00:df:cf:57:37:e6:2d:4e:a0:4e:5f:4f:76:18:
f4:f1:1f:b9:d9:c8:f3:e9:01:86:ea:04:41:b9:be:
30:85:11:bc:a8:e0:92:e8:46:d2:a5:58:a9:ad:5a:
90:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:5D:51:11:18:46:01:5D:3F:DA:9D:AD:56:2B:74:04:10:19:E4:30
X509v3 Authority Key Identifier:
keyid:D9:F9:FA:7B:94:4F:7E:7C:60:D7:3E:F1:0B:77:6F:C2:79:95:A4:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fn6e5RPfnxg1z7xC3dvwnmVpO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9d4203-2eee-41de-8d85-08bf22f64097/1/XF1RERhGAV0_2p2tVit0BBAZ5DA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9d4203-2eee-41de-8d85-08bf22f64097/1/2fn6e5RPfnxg1z7xC3dvwnmVpO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.69.185.0/24
Signature Algorithm: sha256WithRSAEncryption
66:6d:bb:3a:fd:81:b8:fb:46:9b:cc:9e:a4:32:4f:76:cd:a9:
74:9b:29:2c:66:24:0f:1e:89:56:41:85:73:93:44:04:b6:15:
85:0a:55:70:05:9d:1b:c0:d0:99:a6:55:0d:32:54:f8:18:96:
10:37:a5:9b:21:43:56:08:e0:1b:92:ef:3c:3e:4f:bc:db:4f:
03:76:94:9e:a3:dc:61:2c:4d:7f:59:72:fc:5c:c3:03:5e:6c:
d1:da:66:b5:b8:36:60:af:be:58:48:ec:b6:05:c7:bc:3a:32:
82:36:06:39:0e:6a:2d:97:06:14:34:c2:22:15:4b:60:79:e3:
7d:aa:99:69:f7:c3:8f:d4:07:4c:be:b1:71:06:c2:a2:4d:da:
36:ca:78:d9:00:6a:6b:5b:90:04:d2:0f:95:71:f5:2c:2e:cc:
d0:ed:2e:e9:22:3a:f8:2c:89:ec:41:39:aa:ba:f1:12:3a:10:
a5:7a:69:7f:7c:49:44:65:65:d0:a5:2b:5e:cb:53:db:79:9b:
53:2b:43:69:4e:1a:45:c8:57:58:a8:bb:40:7d:0b:15:19:1c:
92:6d:44:fb:20:0b:9a:3b:ba:66:42:c5:34:47:e4:99:f3:77:
ee:03:47:1f:41:15:af:66:57:30:4a:be:87:56:c8:89:70:b5:
77:2d:3b:00
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDdqjmTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
OWY5ZmE3Yjk0NGY3ZTdjNjBkNzNlZjEwYjc3NmZjMjc5OTVhNGVkMB4XDTIyMDEw
MTE2MDIyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWM1ZDUxMTExODQ2
MDE1ZDNmZGE5ZGFkNTYyYjc0MDQxMDE5ZTQzMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANusvhNewBHnqpUN14wTbgHKs392QCkmQzRROBg3xw+hJJL4
QHrHiS4fiW1zzrBHF/NK9qTvRM2kpaDgR48ldHaI4b3WbJsTYCR/5cUqauEvEZ/S
Gbdr8PaRcQZkWs1sALXoEbcGQrfwXLARdHTmSlczTNSkMb5dy7lBwPdd7aDM17vM
oFWtTEK527k/l81qYE6V6+nLZkOidWdg0BxGh44P9wbai93VMrutcxdjRxRMQqw4
Wa0PmLTrrn0TdzkBXsJY7cOIZWQ91GX6sj6igSwxEwDfz1c35i1OoE5fT3YY9PEf
udnI8+kBhuoEQbm+MIURvKjgkuhG0qVYqa1akBMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRcXVERGEYBXT/ana1WK3QEEBnkMDAfBgNVHSMEGDAWgBTZ+fp7lE9+fGDX
PvELd2/CeZWk7TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzJmbjZlNVJQZm54ZzF6N3hDM2R2d25tVnBPMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDgvOWQ0MjAzLTJlZWUtNDFkZS04ZDg1LTA4YmYyMmY2NDA5Ny8x
L1hGMVJFUmhHQVYwXzJwMnRWaXQwQkJBWjVEQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDgv
OWQ0MjAzLTJlZWUtNDFkZS04ZDg1LTA4YmYyMmY2NDA5Ny8xLzJmbjZlNVJQZm54
ZzF6N3hDM2R2d25tVnBPMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALlFuTANBgkqhkiG9w0BAQsFAAOC
AQEAZm27Ov2BuPtGm8yepDJPds2pdJspLGYkDx6JVkGFc5NEBLYVhQpVcAWdG8DQ
maZVDTJU+BiWEDelmyFDVgjgG5LvPD5PvNtPA3aUnqPcYSxNf1ly/FzDA15s0dpm
tbg2YK++WEjstgXHvDoygjYGOQ5qLZcGFDTCIhVLYHnjfaqZaffDj9QHTL6xcQbC
ok3aNsp42QBqa1uQBNIPlXH1LC7M0O0u6SI6+CyJ7EE5qrrxEjoQpXppf3xJRGVl
0KUrXstT23mbUytDaU4aRchXWKi7QH0LFRkckm1E+yALmju6ZkLFNEfkmfN37gNH
H0EVr2ZXMEq+h1bIiXC1dy07AA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:06 2023 by rpki-client on console-ams.rpki-client.org