Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/01000b-aa96-4bc6-8cc1-af07a9e87fc0/1/cLx3fJvtgBk0Jooo2BJ2DLy3LWg.roa
File: cLx3fJvtgBk0Jooo2BJ2DLy3LWg.roa (raw, json)
Hash identifier: pwPOkwakCR0cz3G5mJi+TbMae6ZP9yw+AgxzWh/2Bho=
Subject key identifier: 70:BC:77:7C:9B:ED:80:19:34:26:8A:28:D8:12:76:0C:BC:B7:2D:68
Certificate issuer: /CN=e05a2dacf5dd4e9bfa2d2d9b2d3c3f9678745841
Certificate serial: 1C2AB4C9
Authority key identifier: E0:5A:2D:AC:F5:DD:4E:9B:FA:2D:2D:9B:2D:3C:3F:96:78:74:58:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4FotrPXdTpv6LS2bLTw_lnh0WEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/01000b-aa96-4bc6-8cc1-af07a9e87fc0/1/cLx3fJvtgBk0Jooo2BJ2DLy3LWg.roa
Signing time: Wed 08 Jun 2022 13:23:02 +0000
ROA not before: Wed 08 Jun 2022 13:23:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3303
IP address blocks: 185.31.180.0/22 maxlen: 23
2a00:bf60::/32 maxlen: 33
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 472560841 (0x1c2ab4c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e05a2dacf5dd4e9bfa2d2d9b2d3c3f9678745841
Validity
Not Before: Jun 8 13:23:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70bc777c9bed801934268a28d812760cbcb72d68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1e:4a:26:96:b3:77:90:86:1d:5b:6e:e8:df:
66:49:fe:3d:77:3c:02:f7:2a:8c:10:80:08:4b:3d:
20:70:b8:ec:06:71:d7:c0:a0:3c:ce:bf:cc:d1:ec:
29:bb:da:c0:d1:7b:8f:fd:82:65:7a:61:5e:5a:ba:
c2:4f:01:65:c2:31:bc:9d:57:24:97:54:9b:fd:35:
ee:6f:90:fd:1c:82:c6:81:96:99:9d:06:2f:6f:14:
dc:15:81:41:d7:2d:79:70:22:65:31:cb:fd:af:67:
b6:be:d6:2b:0e:2a:40:bf:72:2b:89:20:3f:75:ea:
14:98:5f:bb:26:7c:68:9e:52:8d:e9:4e:9f:d9:af:
a8:d7:21:54:05:fa:2b:d4:e5:f1:fa:df:41:df:80:
c7:32:b1:80:51:92:8a:33:a0:0e:fe:08:fb:66:fe:
9a:08:bb:5d:0f:97:d0:5a:bb:9a:7d:8e:e3:1b:bd:
c9:eb:97:f8:20:d2:c4:94:1e:5e:07:a8:12:dc:dc:
3e:88:c7:2f:c0:41:50:4f:41:77:08:8f:ab:37:38:
ec:92:d6:48:ff:a7:38:3a:f2:bd:39:aa:84:28:fc:
59:9e:65:55:86:c8:26:83:7a:36:d9:69:3c:aa:c0:
eb:b0:06:87:12:a9:4b:13:a2:4d:68:e8:5b:57:1a:
f7:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:BC:77:7C:9B:ED:80:19:34:26:8A:28:D8:12:76:0C:BC:B7:2D:68
X509v3 Authority Key Identifier:
keyid:E0:5A:2D:AC:F5:DD:4E:9B:FA:2D:2D:9B:2D:3C:3F:96:78:74:58:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4FotrPXdTpv6LS2bLTw_lnh0WEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/01000b-aa96-4bc6-8cc1-af07a9e87fc0/1/cLx3fJvtgBk0Jooo2BJ2DLy3LWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/01000b-aa96-4bc6-8cc1-af07a9e87fc0/1/4FotrPXdTpv6LS2bLTw_lnh0WEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.31.180.0/22
IPv6:
2a00:bf60::/32
Signature Algorithm: sha256WithRSAEncryption
35:c1:44:90:bb:5b:29:cc:eb:d8:85:fb:a6:41:e2:25:90:93:
bc:b7:a9:64:0a:1d:af:a6:cc:1e:f1:e4:59:e8:01:22:63:6b:
45:be:33:01:da:8b:55:92:00:5f:83:c8:a8:14:20:05:fa:f5:
38:d7:54:64:67:1e:f2:26:b1:8b:78:6e:37:43:af:b3:71:05:
23:35:61:f9:56:03:9d:40:1c:ce:86:0b:8e:aa:e4:63:75:0e:
de:a3:97:71:7a:40:68:04:3b:ee:c8:4e:d5:25:ba:87:bd:7b:
5e:5e:76:da:95:31:82:09:cc:b7:a1:10:97:4a:16:2f:f4:62:
52:14:e8:c2:e9:84:55:ba:ab:53:2b:62:97:e0:21:f7:87:7f:
79:12:bd:c2:29:be:47:2c:d7:87:4f:7f:b3:9d:f9:41:86:7a:
2b:c1:10:c3:03:1a:25:27:bc:cc:48:f9:a6:43:d6:2f:47:d9:
c8:41:e5:82:0b:32:06:c3:92:9d:ed:dd:df:52:b8:45:e1:25:
5c:86:54:30:c6:82:3f:54:8b:04:f4:6b:01:bc:03:87:76:fd:
5c:83:c0:31:96:80:0e:c4:af:7e:6c:17:d0:17:05:9e:cc:07:
8d:e8:d9:10:9f:5d:f4:46:51:59:b1:04:46:7f:9b:84:b1:bc:
5e:c4:63:59
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEHCq0yTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MDVhMmRhY2Y1ZGQ0ZTliZmEyZDJkOWIyZDNjM2Y5Njc4NzQ1ODQxMB4XDTIyMDYw
ODEzMjMwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzBiYzc3N2M5YmVk
ODAxOTM0MjY4YTI4ZDgxMjc2MGNiY2I3MmQ2ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKseSiaWs3eQhh1bbujfZkn+PXc8AvcqjBCACEs9IHC47AZx
18CgPM6/zNHsKbvawNF7j/2CZXphXlq6wk8BZcIxvJ1XJJdUm/017m+Q/RyCxoGW
mZ0GL28U3BWBQdcteXAiZTHL/a9ntr7WKw4qQL9yK4kgP3XqFJhfuyZ8aJ5SjelO
n9mvqNchVAX6K9Tl8frfQd+AxzKxgFGSijOgDv4I+2b+mgi7XQ+X0Fq7mn2O4xu9
yeuX+CDSxJQeXgeoEtzcPojHL8BBUE9BdwiPqzc47JLWSP+nODryvTmqhCj8WZ5l
VYbIJoN6NtlpPKrA67AGhxKpSxOiTWjoW1ca9ycCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBRwvHd8m+2AGTQmiijYEnYMvLctaDAfBgNVHSMEGDAWgBTgWi2s9d1Om/ot
LZstPD+WeHRYQTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzRGb3RyUFhkVHB2NkxTMmJMVHdfbG5oMFdFRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDkvMDEwMDBiLWFhOTYtNGJjNi04Y2MxLWFmMDdhOWU4N2ZjMC8x
L2NMeDNmSnZ0Z0JrMEpvb28yQkoyREx5M0xXZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDkv
MDEwMDBiLWFhOTYtNGJjNi04Y2MxLWFmMDdhOWU4N2ZjMC8xLzRGb3RyUFhkVHB2
NkxTMmJMVHdfbG5oMFdFRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArkftDANBAIAAjAHAwUAKgC/YDAN
BgkqhkiG9w0BAQsFAAOCAQEANcFEkLtbKczr2IX7pkHiJZCTvLepZAodr6bMHvHk
WegBImNrRb4zAdqLVZIAX4PIqBQgBfr1ONdUZGce8iaxi3huN0Ovs3EFIzVh+VYD
nUAczoYLjqrkY3UO3qOXcXpAaAQ77shO1SW6h717Xl522pUxggnMt6EQl0oWL/Ri
UhTowumEVbqrUytil+Ah94d/eRK9wim+RyzXh09/s535QYZ6K8EQwwMaJSe8zEj5
pkPWL0fZyEHlggsyBsOSne3d31K4ReElXIZUMMaCP1SLBPRrAbwDh3b9XIPAMZaA
DsSvfmwX0BcFnswHjejZEJ9d9EZRWbEERn+bhLG8XsRjWQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:16 2023 by rpki-client on console-fra.rpki-client.org