Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/rPLn4h32_8IGEiDMKu_DzTplp6s.roa
File: rPLn4h32_8IGEiDMKu_DzTplp6s.roa (raw, json)
Hash identifier: 3/j7uEEoDyiaUGhP+9FWosH2hCw3KdCzyP6AarjUPBg=
Subject key identifier: AC:F2:E7:E2:1D:F6:FF:C2:06:12:20:CC:2A:EF:C3:CD:3A:65:A7:AB
Certificate issuer: /CN=5324defbaade93e998e13a942029dd593b8b2ea3
Certificate serial: 1A27A58B
Authority key identifier: 53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/rPLn4h32_8IGEiDMKu_DzTplp6s.roa
Signing time: Sat 01 Jan 2022 12:55:13 +0000
ROA not before: Sat 01 Jan 2022 12:55:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 185.212.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 438805899 (0x1a27a58b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5324defbaade93e998e13a942029dd593b8b2ea3
Validity
Not Before: Jan 1 12:55:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=acf2e7e21df6ffc2061220cc2aefc3cd3a65a7ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e9:32:12:14:e4:cc:f2:11:13:07:dc:25:7b:
54:0c:22:b0:70:6b:cb:fd:a0:35:07:cc:67:f9:23:
2b:b5:0b:62:28:ca:ef:17:13:0e:af:09:33:b3:48:
c6:a5:3b:18:dd:cb:e3:ff:ba:bc:ba:25:33:af:c9:
d6:9e:11:c2:8b:96:d6:0c:10:4a:c1:47:aa:f4:6a:
d6:4b:5a:12:88:4c:98:f4:70:93:59:66:34:ef:1a:
fd:a0:3e:ac:bd:47:a0:1a:d1:4f:c8:a3:75:5d:5b:
68:e2:1a:9a:21:ff:38:8d:64:66:01:44:4f:6c:09:
ee:f6:de:7a:14:44:fe:c5:26:42:c3:5b:a4:6b:97:
8c:84:f6:a3:57:1b:7b:d0:b6:2c:e9:6d:eb:39:f8:
ff:73:e1:bb:96:29:ee:dc:5a:e9:69:53:22:86:c4:
2b:c6:32:0e:ed:cb:47:be:09:14:9c:3b:00:49:1a:
b3:4d:42:90:ca:dc:8a:fd:f8:29:aa:c7:ec:45:46:
a5:e0:03:cf:32:38:d7:d9:43:22:be:df:93:51:62:
6a:3a:23:68:07:af:af:65:00:ec:9b:3b:b6:f3:24:
81:29:54:fe:26:11:51:0f:26:d0:a5:8c:d2:51:95:
e9:bb:53:13:39:46:43:eb:86:b2:db:44:71:40:7b:
53:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:F2:E7:E2:1D:F6:FF:C2:06:12:20:CC:2A:EF:C3:CD:3A:65:A7:AB
X509v3 Authority Key Identifier:
keyid:53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/rPLn4h32_8IGEiDMKu_DzTplp6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/UyTe-6rek-mY4TqUICndWTuLLqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.175.0/24
Signature Algorithm: sha256WithRSAEncryption
08:28:c3:99:9d:bf:47:20:f4:d8:f2:35:a0:29:d5:38:2a:87:
18:7d:7c:69:9e:76:05:8f:34:a3:a8:ca:79:6a:3e:af:2f:be:
27:a1:59:a1:44:96:9a:db:54:c8:f9:4e:20:08:f8:ea:4a:a9:
5b:66:15:19:44:0a:6e:e6:2c:15:05:3b:b8:b8:56:a4:ad:e9:
fb:dc:a4:0d:5f:d0:0d:ce:71:e1:f4:bc:eb:0d:c3:95:e7:05:
c9:e0:f4:2f:ea:03:e1:03:2b:e4:b6:13:f6:25:56:e4:fd:59:
75:06:d5:6f:90:9a:25:89:62:6f:28:ad:47:af:0e:56:ca:9b:
8d:39:ec:7e:a2:7c:1e:73:ea:38:d8:17:f9:71:9a:63:dd:34:
4e:f5:21:31:5e:08:d9:51:79:8c:1b:57:09:50:0f:aa:8a:4f:
b7:d5:53:e3:f1:cd:c1:10:ab:d5:01:9c:4f:70:90:78:40:0e:
44:3c:ce:5f:b4:c5:81:76:05:a0:f4:5b:97:46:a2:8a:f6:17:
1f:53:41:67:47:24:ec:f0:48:54:61:00:e5:9f:4e:bd:ce:78:
e0:5f:59:dd:8d:8a:07:b3:59:8c:51:5c:7e:73:74:8e:df:67:
a9:bb:fb:e3:70:7d:eb:f2:32:df:52:ec:50:47:56:15:b3:5a:
49:7c:f2:95
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGielizANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MzI0ZGVmYmFhZGU5M2U5OThlMTNhOTQyMDI5ZGQ1OTNiOGIyZWEzMB4XDTIyMDEw
MTEyNTUxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWNmMmU3ZTIxZGY2
ZmZjMjA2MTIyMGNjMmFlZmMzY2QzYTY1YTdhYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALjpMhIU5MzyERMH3CV7VAwisHBry/2gNQfMZ/kjK7ULYijK
7xcTDq8JM7NIxqU7GN3L4/+6vLolM6/J1p4RwouW1gwQSsFHqvRq1ktaEohMmPRw
k1lmNO8a/aA+rL1HoBrRT8ijdV1baOIamiH/OI1kZgFET2wJ7vbeehRE/sUmQsNb
pGuXjIT2o1cbe9C2LOlt6zn4/3Phu5Yp7txa6WlTIobEK8YyDu3LR74JFJw7AEka
s01CkMrciv34KarH7EVGpeADzzI419lDIr7fk1FiajojaAevr2UA7Js7tvMkgSlU
/iYRUQ8m0KWM0lGV6btTEzlGQ+uGsttEcUB7UxcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSs8ufiHfb/wgYSIMwq78PNOmWnqzAfBgNVHSMEGDAWgBRTJN77qt6T6Zjh
OpQgKd1ZO4suozAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1V5VGUtNnJlay1tWTRUcVVJQ25kV1R1TExxTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGEvMjk0ZTg0LWNmYzUtNDVhNC1hNWNkLTMzYjc0NTk5NzVlMC8x
L3JQTG40aDMyXzhJR0VpRE1LdV9EelRwbHA2cy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGEv
Mjk0ZTg0LWNmYzUtNDVhNC1hNWNkLTMzYjc0NTk5NzVlMC8xL1V5VGUtNnJlay1t
WTRUcVVJQ25kV1R1TExxTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnUrzANBgkqhkiG9w0BAQsFAAOC
AQEACCjDmZ2/RyD02PI1oCnVOCqHGH18aZ52BY80o6jKeWo+ry++J6FZoUSWmttU
yPlOIAj46kqpW2YVGUQKbuYsFQU7uLhWpK3p+9ykDV/QDc5x4fS86w3DlecFyeD0
L+oD4QMr5LYT9iVW5P1ZdQbVb5CaJYlibyitR68OVsqbjTnsfqJ8HnPqONgX+XGa
Y900TvUhMV4I2VF5jBtXCVAPqopPt9VT4/HNwRCr1QGcT3CQeEAORDzOX7TFgXYF
oPRbl0aiivYXH1NBZ0ck7PBIVGEA5Z9Ovc544F9Z3Y2KB7NZjFFcfnN0jt9nqbv7
43B96/Iy31LsUEdWFbNaSXzylQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:19 2024 by rpki-client on console-fra.rpki-client.org