Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/61d213-2a0f-4348-893c-e726374330ce/1/XxElqm_C9PajgbXhfhNUfaZ8O4c.roa
File: XxElqm_C9PajgbXhfhNUfaZ8O4c.roa (raw, json)
Hash identifier: 1rvGrYY6NVPHhjyYmdZyCfIhuSwJp8MdeNVMOqfIOFg=
Subject key identifier: 5F:11:25:AA:6F:C2:F4:F6:A3:81:B5:E1:7E:13:54:7D:A6:7C:3B:87
Certificate issuer: /CN=b61b7974e97ab93791240734a19fb9ae7445cbd9
Certificate serial: 01A4924F
Authority key identifier: B6:1B:79:74:E9:7A:B9:37:91:24:07:34:A1:9F:B9:AE:74:45:CB:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tht5dOl6uTeRJAc0oZ-5rnRFy9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/61d213-2a0f-4348-893c-e726374330ce/1/XxElqm_C9PajgbXhfhNUfaZ8O4c.roa
Signing time: Sat 01 Jan 2022 06:56:08 +0000
ROA not before: Sat 01 Jan 2022 06:56:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203041
IP address blocks: 185.147.2.0/24 maxlen: 24
185.147.3.0/24 maxlen: 24
185.147.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27562575 (0x1a4924f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b61b7974e97ab93791240734a19fb9ae7445cbd9
Validity
Not Before: Jan 1 06:56:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f1125aa6fc2f4f6a381b5e17e13547da67c3b87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:84:98:27:81:6f:26:54:88:21:2c:d4:fc:b4:
60:0e:a8:46:27:4b:46:14:62:23:c9:2e:3f:bc:16:
c8:03:18:1c:ca:d2:11:b2:55:20:39:1c:18:ac:ce:
36:1e:d8:a8:f5:86:db:0f:a6:ee:5d:d0:fc:ce:6e:
de:66:95:5b:8b:9f:4a:4f:e7:15:7a:50:e8:e2:a7:
45:76:d5:43:b9:2a:a3:67:82:db:eb:d6:1d:c7:12:
d1:9c:f9:09:37:e8:2a:e7:6d:91:12:e4:1e:1d:15:
7d:2c:45:92:ed:ec:d5:85:b6:28:6b:3f:61:61:0e:
40:c2:94:2e:38:57:56:60:18:b5:1a:9c:a3:7f:38:
8f:b8:88:cb:a6:5f:cb:59:f5:b1:dc:ef:78:53:fd:
1c:28:12:47:59:1d:33:69:8d:c3:13:a4:e5:3b:74:
9e:3c:f5:8e:db:bf:c2:57:5b:52:26:c2:d3:08:3c:
67:1e:e1:0e:b4:e1:70:7d:d7:4f:65:a1:86:ca:96:
f4:6a:a7:44:e3:77:7a:78:67:da:2b:1d:c3:60:60:
2c:03:c5:35:37:a1:4a:49:cb:56:2c:f4:f4:13:7e:
19:4a:9a:47:9e:90:74:52:39:81:13:21:2f:ce:7c:
39:2f:ae:5c:85:de:dd:b7:9c:ba:ac:4e:b7:c5:10:
df:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:11:25:AA:6F:C2:F4:F6:A3:81:B5:E1:7E:13:54:7D:A6:7C:3B:87
X509v3 Authority Key Identifier:
keyid:B6:1B:79:74:E9:7A:B9:37:91:24:07:34:A1:9F:B9:AE:74:45:CB:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tht5dOl6uTeRJAc0oZ-5rnRFy9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/61d213-2a0f-4348-893c-e726374330ce/1/XxElqm_C9PajgbXhfhNUfaZ8O4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/61d213-2a0f-4348-893c-e726374330ce/1/tht5dOl6uTeRJAc0oZ-5rnRFy9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.147.1.0-185.147.3.255
Signature Algorithm: sha256WithRSAEncryption
17:b7:05:3a:b9:77:59:54:10:3c:88:46:1a:40:cf:e4:32:bd:
a4:3c:94:a0:c8:cd:b3:ea:75:44:bb:16:43:60:83:2d:69:f6:
1c:af:cd:7b:45:65:80:05:38:1c:c1:c1:35:08:3f:bb:e0:f5:
67:69:fc:0f:e4:71:63:8a:d8:aa:1f:cc:77:7d:56:f3:6f:d0:
d4:22:e7:90:66:94:7f:cf:dc:4a:54:8b:91:40:ba:81:c4:e4:
1e:16:6c:31:8f:b4:ef:e7:12:87:f4:7c:78:e5:b9:ee:81:52:
ac:bb:c3:64:d7:a2:87:ef:94:80:a8:2b:a3:2b:fa:92:4b:3c:
d4:c2:01:5f:2d:78:fd:49:96:a4:cb:ca:45:6e:74:24:45:15:
62:b7:43:da:a9:90:eb:99:87:35:ba:9f:93:53:24:e8:34:f6:
56:2f:61:23:78:d7:c5:3b:dd:e8:c9:5d:30:b4:03:42:66:62:
b2:9a:dd:1a:57:ff:62:6c:e0:ec:17:ad:a6:ce:33:74:e5:7a:
ab:6f:f1:05:20:1b:7f:39:24:a2:57:79:f2:d3:ea:92:8e:99:
44:78:23:8a:a4:5b:13:b8:00:54:bc:5a:cf:6a:b7:49:e0:20:
62:8f:7f:21:f4:a8:3e:d8:bb:63:30:3e:30:51:7d:58:83:14:
25:ee:a8:ec
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEAaSSTzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NjFiNzk3NGU5N2FiOTM3OTEyNDA3MzRhMTlmYjlhZTc0NDVjYmQ5MB4XDTIyMDEw
MTA2NTYwOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWYxMTI1YWE2ZmMy
ZjRmNmEzODFiNWUxN2UxMzU0N2RhNjdjM2I4NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALuEmCeBbyZUiCEs1Py0YA6oRidLRhRiI8kuP7wWyAMYHMrS
EbJVIDkcGKzONh7YqPWG2w+m7l3Q/M5u3maVW4ufSk/nFXpQ6OKnRXbVQ7kqo2eC
2+vWHccS0Zz5CTfoKudtkRLkHh0VfSxFku3s1YW2KGs/YWEOQMKULjhXVmAYtRqc
o384j7iIy6Zfy1n1sdzveFP9HCgSR1kdM2mNwxOk5Tt0njz1jtu/wldbUibC0wg8
Zx7hDrThcH3XT2WhhsqW9GqnRON3enhn2isdw2BgLAPFNTehSknLViz09BN+GUqa
R56QdFI5gRMhL858OS+uXIXe3becuqxOt8UQ30sCAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBRfESWqb8L09qOBteF+E1R9pnw7hzAfBgNVHSMEGDAWgBS2G3l06Xq5N5Ek
BzShn7mudEXL2TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3RodDVkT2w2dVRlUkpBYzBvWi01cm5SRnk5ay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGYvNjFkMjEzLTJhMGYtNDM0OC04OTNjLWU3MjYzNzQzMzBjZS8x
L1h4RWxxbV9DOVBhamdiWGhmaE5VZmFaOE80Yy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGYv
NjFkMjEzLTJhMGYtNDM0OC04OTNjLWU3MjYzNzQzMzBjZS8xL3RodDVkT2w2dVRl
UkpBYzBvWi01cm5SRnk5ay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQAuZMBAwQCuZMAMA0GCSqGSIb3
DQEBCwUAA4IBAQAXtwU6uXdZVBA8iEYaQM/kMr2kPJSgyM2z6nVEuxZDYIMtafYc
r817RWWABTgcwcE1CD+74PVnafwP5HFjitiqH8x3fVbzb9DUIueQZpR/z9xKVIuR
QLqBxOQeFmwxj7Tv5xKH9Hx45bnugVKsu8Nk16KH75SAqCujK/qSSzzUwgFfLXj9
SZaky8pFbnQkRRVit0PaqZDrmYc1up+TUyToNPZWL2EjeNfFO93oyV0wtANCZmKy
mt0aV/9ibODsF62mzjN05Xqrb/EFIBt/OSSiV3ny0+qSjplEeCOKpFsTuABUvFrP
ardJ4CBij38h9Kg+2LtjMD4wUX1YgxQl7qjs
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:16 2024 by rpki-client on console-ams.rpki-client.org