Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/0e66e9-cf2d-40df-aaae-cf2d58d0e0ee/1/cg2l4bd7M9RRNY99jkbQKl4N9wM.roa
File: cg2l4bd7M9RRNY99jkbQKl4N9wM.roa (raw, json)
Hash identifier: 6F27h2vvIj5dwbpTiObVCY+2sO9PZBp0j8S7NfK5U2o=
Subject key identifier: 72:0D:A5:E1:B7:7B:33:D4:51:35:8F:7D:8E:46:D0:2A:5E:0D:F7:03
Certificate issuer: /CN=f58acd43c0033b13b88bb397415583aa51d9303a
Certificate serial: 0182E88C669DD1B36F978A43CABF0D1A4601
Authority key identifier: F5:8A:CD:43:C0:03:3B:13:B8:8B:B3:97:41:55:83:AA:51:D9:30:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9YrNQ8ADOxO4i7OXQVWDqlHZMDo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/0e66e9-cf2d-40df-aaae-cf2d58d0e0ee/1/cg2l4bd7M9RRNY99jkbQKl4N9wM.roa
Signing time: Mon 29 Aug 2022 07:41:31 +0000
ROA not before: Mon 29 Aug 2022 07:41:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198726
IP address blocks: 185.238.160.0/22 maxlen: 22
185.240.224.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:e8:8c:66:9d:d1:b3:6f:97:8a:43:ca:bf:0d:1a:46:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f58acd43c0033b13b88bb397415583aa51d9303a
Validity
Not Before: Aug 29 07:41:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=720da5e1b77b33d451358f7d8e46d02a5e0df703
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:b2:33:56:71:dd:a5:95:5a:33:80:ec:6f:99:
e6:76:c9:b9:3c:37:35:ea:a4:c2:3d:dc:63:b4:e3:
e7:16:83:55:14:9f:1f:38:b0:be:15:6d:cf:be:92:
b2:70:52:8f:4a:6b:1e:e4:79:87:bd:ce:09:47:f2:
94:55:37:ac:0d:b0:4e:6d:34:3f:69:b3:5b:e8:43:
49:ff:d3:0e:8f:d1:77:03:d0:ea:c0:6c:d3:af:e9:
07:e0:1a:12:b6:73:36:8a:6b:38:3d:ea:88:b5:92:
0d:c9:d7:0d:b8:fc:c8:6f:8a:82:0b:4e:a6:07:96:
c7:35:6a:0d:07:7f:00:31:3b:d9:2f:ec:8d:41:15:
41:91:3e:10:fe:cb:fc:49:21:e1:df:73:7d:f1:b9:
7b:ec:f9:29:2d:41:60:d3:0c:d0:5f:ac:f2:af:37:
ce:b3:4c:73:61:7e:d1:11:cf:31:fb:36:76:0c:a5:
98:13:c6:51:c1:a7:64:3e:66:ca:fa:85:2d:22:a8:
99:0a:95:2e:74:a9:91:e9:2d:df:2d:35:9a:06:99:
b1:ca:e3:05:0a:61:e3:2f:b4:47:7f:ff:36:4f:ac:
af:8a:4a:8d:9f:70:e0:04:81:da:c2:03:1e:70:57:
a8:eb:22:15:b4:e0:36:1a:aa:a8:d3:01:f4:4d:75:
4d:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:0D:A5:E1:B7:7B:33:D4:51:35:8F:7D:8E:46:D0:2A:5E:0D:F7:03
X509v3 Authority Key Identifier:
keyid:F5:8A:CD:43:C0:03:3B:13:B8:8B:B3:97:41:55:83:AA:51:D9:30:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9YrNQ8ADOxO4i7OXQVWDqlHZMDo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/0e66e9-cf2d-40df-aaae-cf2d58d0e0ee/1/cg2l4bd7M9RRNY99jkbQKl4N9wM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/0e66e9-cf2d-40df-aaae-cf2d58d0e0ee/1/9YrNQ8ADOxO4i7OXQVWDqlHZMDo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.160.0/22
185.240.224.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:38:4e:04:f3:d3:51:d3:95:3a:4f:a4:0c:2e:86:24:82:fd:
1b:e2:10:2b:05:ae:99:74:d6:ba:f9:3a:33:3e:0d:8c:f2:2e:
0c:5a:64:f6:4a:81:1d:18:ce:5e:74:51:24:8e:bb:8a:0e:82:
ee:29:f9:d9:a1:c6:7e:8a:90:0d:3b:fe:f6:d8:8c:a0:5e:9b:
77:4d:33:7a:d9:82:b9:c9:88:76:15:38:79:34:9a:8e:d4:60:
79:60:47:8b:47:f4:b0:74:f7:01:a1:c9:e1:35:02:61:46:a3:
e0:a2:55:b9:d9:82:04:20:9b:32:b3:7b:82:83:4a:00:e8:07:
f1:a1:f5:05:06:03:74:4a:70:b5:a1:c4:08:ba:f4:e5:7a:fb:
7d:36:c3:b9:34:bc:5b:f4:a1:9f:b9:48:7a:51:62:de:86:17:
54:18:37:42:4f:1b:47:36:de:97:80:7f:ab:7c:bf:2c:69:a1:
dd:46:3d:a7:02:c7:a2:71:cb:ac:24:64:ef:27:0a:55:0b:ab:
d5:18:aa:74:41:ac:70:0d:55:66:ea:30:aa:62:bb:4c:32:09:
4d:b8:2c:96:01:bf:2c:04:41:d1:04:a9:e7:90:bb:8b:6f:bf:
f8:cb:02:bb:d7:19:cd:b7:60:54:6b:db:6f:fd:d5:58:4d:3c:
c4:a9:99:95
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYLojGad0bNvl4pDyr8NGkYBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY1OGFjZDQzYzAwMzNiMTNiODhiYjM5NzQxNTU4M2FhNTFk
OTMwM2EwHhcNMjIwODI5MDc0MTMxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MjBkYTVlMWI3N2IzM2Q0NTEzNThmN2Q4ZTQ2ZDAyYTVlMGRmNzAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgbIzVnHdpZVaM4Dsb5nmdsm5PDc1
6qTCPdxjtOPnFoNVFJ8fOLC+FW3PvpKycFKPSmse5HmHvc4JR/KUVTesDbBObTQ/
abNb6ENJ/9MOj9F3A9DqwGzTr+kH4BoStnM2ims4PeqItZINydcNuPzIb4qCC06m
B5bHNWoNB38AMTvZL+yNQRVBkT4Q/sv8SSHh33N98bl77PkpLUFg0wzQX6zyrzfO
s0xzYX7REc8x+zZ2DKWYE8ZRwadkPmbK+oUtIqiZCpUudKmR6S3fLTWaBpmxyuMF
CmHjL7RHf/82T6yvikqNn3DgBIHawgMecFeo6yIVtOA2Gqqo0wH0TXVNOQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFHINpeG3ezPUUTWPfY5G0CpeDfcDMB8GA1UdIwQY
MBaAFPWKzUPAAzsTuIuzl0FVg6pR2TA6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOVlyTlE4QURPeE80aTdPWFFWV0RxbEhaTURvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS8wZTY2ZTktY2YyZC00MGRmLWFhYWUt
Y2YyZDU4ZDBlMGVlLzEvY2cybDRiZDdNOVJSTlk5OWprYlFLbDROOXdNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS8wZTY2ZTktY2YyZC00MGRmLWFhYWUtY2YyZDU4ZDBlMGVl
LzEvOVlyTlE4QURPeE80aTdPWFFWV0RxbEhaTURvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCue6gAwQC
ufDgMA0GCSqGSIb3DQEBCwUAA4IBAQCfOE4E89NR05U6T6QMLoYkgv0b4hArBa6Z
dNa6+TozPg2M8i4MWmT2SoEdGM5edFEkjruKDoLuKfnZocZ+ipANO/722IygXpt3
TTN62YK5yYh2FTh5NJqO1GB5YEeLR/SwdPcBocnhNQJhRqPgolW52YIEIJsys3uC
g0oA6AfxofUFBgN0SnC1ocQIuvTlevt9NsO5NLxb9KGfuUh6UWLehhdUGDdCTxtH
Nt6XgH+rfL8saaHdRj2nAseiccusJGTvJwpVC6vVGKp0QaxwDVVm6jCqYrtMMglN
uCyWAb8sBEHRBKnnkLuLb7/4ywK71xnNt2BUa9tv/dVYTTzEqZmV
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:26 2023 by rpki-client on console-fra.rpki-client.org