Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/2zNAkd9sgyRin6Vknis6waXa6fU.roa
File: 2zNAkd9sgyRin6Vknis6waXa6fU.roa (raw, json)
Hash identifier: LwiuWnkbxNdUxxyCGVASXW1VrGYbKP2+gz+NrAhc+gM=
Subject key identifier: DB:33:40:91:DF:6C:83:24:62:9F:A5:64:9E:2B:3A:C1:A5:DA:E9:F5
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 0AB87DA2
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/2zNAkd9sgyRin6Vknis6waXa6fU.roa
Signing time: Sat 01 Jan 2022 08:05:50 +0000
ROA not before: Sat 01 Jan 2022 08:05:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212953
IP address blocks: 185.148.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179862946 (0xab87da2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: Jan 1 08:05:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db334091df6c8324629fa5649e2b3ac1a5dae9f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:68:40:17:7d:01:ed:e0:c3:f3:61:e1:0e:fb:
ce:1a:03:9a:5f:97:6b:13:89:36:bb:54:71:98:69:
b0:f8:67:e8:1c:d6:50:dc:57:a4:bd:2f:d5:e8:66:
7e:36:a9:7f:ca:7c:72:ad:b3:51:b2:b0:3f:f4:e8:
b1:6b:07:4a:fc:da:a5:ba:6b:94:86:21:63:9f:66:
f7:7d:ac:99:ab:60:90:6d:69:e8:97:15:7e:de:0b:
3f:e1:6b:1c:d3:6c:d2:e9:ec:80:e3:a0:8f:93:95:
43:1f:af:a4:55:3d:16:c9:35:ca:a0:da:16:d7:fb:
53:e6:6a:13:61:99:fa:dd:c2:44:b6:06:17:12:03:
1e:4f:28:e8:d0:d3:57:2a:f7:e0:e4:45:30:b7:f8:
bd:5c:d3:20:fa:81:3a:fe:ed:2a:cd:05:4f:12:67:
eb:79:4d:8c:22:5b:20:b8:d4:74:75:53:0b:e3:b3:
d0:23:f7:e0:9b:8b:f8:22:b8:54:82:25:e5:94:a2:
8b:19:47:5a:28:70:a9:a4:ac:cd:9a:90:07:81:17:
57:20:08:69:77:4a:4f:87:0e:65:f9:26:30:ac:3a:
09:c3:09:0a:7c:b0:06:3a:59:c6:3f:75:e3:50:52:
3f:ed:69:b1:2f:ec:40:c1:4f:d8:09:c7:92:84:25:
14:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:33:40:91:DF:6C:83:24:62:9F:A5:64:9E:2B:3A:C1:A5:DA:E9:F5
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/2zNAkd9sgyRin6Vknis6waXa6fU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.148.240.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:a7:ec:8d:40:b0:a1:0a:48:02:be:cd:19:8b:cf:d2:3b:0a:
9b:32:5a:85:10:81:0e:de:79:de:1b:e3:01:a6:bd:27:3f:c3:
da:13:bb:30:ce:03:0e:9d:21:77:90:fd:7a:19:c9:30:39:34:
21:4c:7c:cb:19:d2:5e:3d:24:d9:24:f1:61:e8:ca:c2:d2:bc:
2c:5b:b2:8a:4d:8b:34:8a:d6:cc:a4:e8:7e:63:28:e3:78:b4:
d1:83:92:0c:50:f2:15:45:ca:23:a6:1e:46:2b:ff:d1:df:d1:
a4:90:5b:8a:0e:39:9a:a6:65:61:ac:c4:b4:5d:e7:22:d7:c7:
37:da:ea:f5:26:cd:48:86:8d:fc:ea:2f:b1:18:a1:a6:41:00:
26:67:fd:05:24:60:d7:be:78:f4:b4:a4:ce:e1:58:29:a4:6c:
5f:62:49:1b:ed:d1:0f:78:04:cd:70:a6:86:ca:f8:39:31:96:
73:a2:ad:c1:5f:51:91:c4:09:d5:e0:ca:56:29:b0:52:f7:8a:
93:3d:f2:51:f0:ce:d7:8d:ee:0c:a4:a9:55:52:f3:fd:51:1f:
00:c8:ef:c2:67:8a:e8:93:e3:99:5b:ac:3d:61:b0:7a:ff:e8:
97:65:fa:c2:85:59:3b:b2:a3:81:47:60:d9:9b:94:90:ae:bb:
0a:35:a2:0d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECrh9ojANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
ZDBkYTQzYjRhNWQzZGI3OGJhM2Y3NzRlNWIzMWI3NzAzNzIwMmQ1MB4XDTIyMDEw
MTA4MDU1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGIzMzQwOTFkZjZj
ODMyNDYyOWZhNTY0OWUyYjNhYzFhNWRhZTlmNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALVoQBd9Ae3gw/Nh4Q77zhoDml+XaxOJNrtUcZhpsPhn6BzW
UNxXpL0v1ehmfjapf8p8cq2zUbKwP/TosWsHSvzapbprlIYhY59m932smatgkG1p
6JcVft4LP+FrHNNs0unsgOOgj5OVQx+vpFU9Fsk1yqDaFtf7U+ZqE2GZ+t3CRLYG
FxIDHk8o6NDTVyr34ORFMLf4vVzTIPqBOv7tKs0FTxJn63lNjCJbILjUdHVTC+Oz
0CP34JuL+CK4VIIl5ZSiixlHWihwqaSszZqQB4EXVyAIaXdKT4cOZfkmMKw6CcMJ
CnywBjpZxj9141BSP+1psS/sQMFP2AnHkoQlFHsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTbM0CR32yDJGKfpWSeKzrBpdrp9TAfBgNVHSMEGDAWgBStDaQ7Sl09t4uj
93Tlsxt3A3IC1TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3JRMmtPMHBkUGJlTG9fZDA1Yk1iZHdOeUF0VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGQvZGQ4MDk2LTE0Y2MtNDg4ZC05MjU3LWM1MTVmMzU0Y2M1YS8x
LzJ6TkFrZDlzZ3lSaW42VmtuaXM2d2FYYTZmVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGQv
ZGQ4MDk2LTE0Y2MtNDg4ZC05MjU3LWM1MTVmMzU0Y2M1YS8xL3JRMmtPMHBkUGJl
TG9fZDA1Yk1iZHdOeUF0VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALmU8DANBgkqhkiG9w0BAQsFAAOC
AQEAsafsjUCwoQpIAr7NGYvP0jsKmzJahRCBDt553hvjAaa9Jz/D2hO7MM4DDp0h
d5D9ehnJMDk0IUx8yxnSXj0k2STxYejKwtK8LFuyik2LNIrWzKTofmMo43i00YOS
DFDyFUXKI6YeRiv/0d/RpJBbig45mqZlYazEtF3nItfHN9rq9SbNSIaN/OovsRih
pkEAJmf9BSRg17549LSkzuFYKaRsX2JJG+3RD3gEzXCmhsr4OTGWc6KtwV9RkcQJ
1eDKVimwUveKkz3yUfDO143uDKSpVVLz/VEfAMjvwmeK6JPjmVusPWGwev/ol2X6
woVZO7KjgUdg2ZuUkK67CjWiDQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:36 2023 by rpki-client on console-ams.rpki-client.org