Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/c27fa6-b2b0-4dcb-a899-1030cdbe6bd4/1/iPWDqY_V1kaC3cuI9gDUZH2HK-U.roa
File: iPWDqY_V1kaC3cuI9gDUZH2HK-U.roa (raw, json)
Hash identifier: ji4aUphhr6mcmPZLh1tJxwevqjFrGDqfwTzaM8y9i7o=
Subject key identifier: 88:F5:83:A9:8F:D5:D6:46:82:DD:CB:88:F6:00:D4:64:7D:87:2B:E5
Certificate issuer: /CN=43015654082578c4946cd27be1e89a3dd7562fa4
Certificate serial: 09ED8C90
Authority key identifier: 43:01:56:54:08:25:78:C4:94:6C:D2:7B:E1:E8:9A:3D:D7:56:2F:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwFWVAgleMSUbNJ74eiaPddWL6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/c27fa6-b2b0-4dcb-a899-1030cdbe6bd4/1/iPWDqY_V1kaC3cuI9gDUZH2HK-U.roa
Signing time: Thu 03 Mar 2022 16:18:15 +0000
ROA not before: Thu 03 Mar 2022 16:18:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 185.182.192.0/24 maxlen: 24
185.21.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166562960 (0x9ed8c90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43015654082578c4946cd27be1e89a3dd7562fa4
Validity
Not Before: Mar 3 16:18:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88f583a98fd5d64682ddcb88f600d4647d872be5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:43:70:94:4d:a9:07:1e:7b:ef:42:bd:77:bb:
69:c3:3d:66:4c:9f:fe:bc:32:39:ac:43:7f:71:43:
49:89:9d:45:62:9f:ec:37:f4:6b:1a:86:92:95:17:
6f:b1:1c:6c:f3:52:d0:31:34:b9:4b:ac:6d:7e:90:
f6:10:b1:ef:5d:ce:74:d0:b1:d4:e8:28:af:e0:17:
f6:8c:0d:37:82:c1:d5:26:18:1f:15:9f:29:53:d7:
d5:fa:80:0e:e1:19:63:b8:28:f2:2b:93:54:8f:1e:
91:95:20:a6:d1:5e:ce:3e:55:3d:55:e6:31:d4:e6:
16:be:19:f0:2e:a4:a3:bd:6f:84:bc:f7:41:e4:af:
ff:57:57:a6:77:60:ca:de:fa:54:6a:85:01:73:cb:
84:d8:79:a8:8c:93:56:29:e8:9c:39:47:80:50:73:
a9:d1:65:1f:06:80:4b:01:c6:76:32:db:8d:ec:1c:
21:1f:a1:fe:2c:ef:90:b1:f7:de:06:83:94:eb:d2:
07:cf:7a:6a:5c:96:f9:3e:9b:39:2b:eb:70:38:3c:
dd:b5:99:7c:7a:0b:27:b6:a3:2e:f1:73:8b:a1:ab:
53:4a:19:79:39:5f:92:25:9a:ca:4d:94:63:4c:df:
54:b0:e6:a3:aa:11:d7:ec:c8:b4:89:42:fe:51:67:
7d:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:F5:83:A9:8F:D5:D6:46:82:DD:CB:88:F6:00:D4:64:7D:87:2B:E5
X509v3 Authority Key Identifier:
keyid:43:01:56:54:08:25:78:C4:94:6C:D2:7B:E1:E8:9A:3D:D7:56:2F:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwFWVAgleMSUbNJ74eiaPddWL6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c27fa6-b2b0-4dcb-a899-1030cdbe6bd4/1/iPWDqY_V1kaC3cuI9gDUZH2HK-U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c27fa6-b2b0-4dcb-a899-1030cdbe6bd4/1/QwFWVAgleMSUbNJ74eiaPddWL6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.21.63.0/24
185.182.192.0/24
Signature Algorithm: sha256WithRSAEncryption
43:c3:eb:40:69:50:c7:03:ec:2a:d8:5e:ef:ed:db:5d:fe:d2:
b8:4b:02:10:65:b3:10:be:6f:18:f2:4e:de:46:5d:9b:03:0e:
bf:5d:f5:9c:0d:e9:34:ff:c1:82:ee:a6:9f:fc:80:1b:6a:65:
fb:3c:a4:69:66:5f:72:35:90:55:2e:1f:c5:f2:79:47:bc:8b:
65:08:5c:1e:a2:89:13:53:0d:93:b5:3e:71:68:3a:d9:a8:85:
e4:2b:1f:3e:21:eb:f5:38:57:ca:be:5b:c3:c9:bb:92:50:15:
a5:79:ac:9e:6b:49:1b:6c:21:24:48:7e:e0:14:11:19:4a:8c:
6c:33:2b:30:92:b0:84:46:8b:88:c7:13:af:88:70:ab:e0:85:
0d:a0:6a:67:d9:e9:37:05:52:3e:0d:1c:40:d1:cd:81:41:21:
da:2a:4d:26:44:ea:71:4c:e1:9c:70:20:9f:6e:46:ae:74:63:
c7:d4:ef:03:7d:b3:f3:ec:2d:c7:0e:4b:95:26:f1:5e:e2:8c:
7a:dd:d3:71:78:8b:64:78:41:a2:1f:a6:9e:19:70:33:b1:bb:
15:1b:c1:24:3d:f2:03:a1:85:d6:b1:85:8b:80:6a:24:61:2d:
b7:4a:87:fc:34:7f:31:5c:6f:20:38:cb:5d:dd:eb:e8:93:84:
99:ab:ee:5b
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIECe2MkDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
MzAxNTY1NDA4MjU3OGM0OTQ2Y2QyN2JlMWU4OWEzZGQ3NTYyZmE0MB4XDTIyMDMw
MzE2MTgxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODhmNTgzYTk4ZmQ1
ZDY0NjgyZGRjYjg4ZjYwMGQ0NjQ3ZDg3MmJlNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALNDcJRNqQcee+9CvXe7acM9Zkyf/rwyOaxDf3FDSYmdRWKf
7Df0axqGkpUXb7EcbPNS0DE0uUusbX6Q9hCx713OdNCx1Ogor+AX9owNN4LB1SYY
HxWfKVPX1fqADuEZY7go8iuTVI8ekZUgptFezj5VPVXmMdTmFr4Z8C6ko71vhLz3
QeSv/1dXpndgyt76VGqFAXPLhNh5qIyTVinonDlHgFBzqdFlHwaASwHGdjLbjewc
IR+h/izvkLH33gaDlOvSB896alyW+T6bOSvrcDg83bWZfHoLJ7ajLvFzi6GrU0oZ
eTlfkiWayk2UY0zfVLDmo6oR1+zItIlC/lFnfe8CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSI9YOpj9XWRoLdy4j2ANRkfYcr5TAfBgNVHSMEGDAWgBRDAVZUCCV4xJRs
0nvh6Jo911YvpDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1F3RldWQWdsZU1TVWJOSjc0ZWlhUGRkV0w2US5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTMvYzI3ZmE2LWIyYjAtNGRjYi1hODk5LTEwMzBjZGJlNmJkNC8x
L2lQV0RxWV9WMWthQzNjdUk5Z0RVWkgySEstVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTMv
YzI3ZmE2LWIyYjAtNGRjYi1hODk5LTEwMzBjZGJlNmJkNC8xL1F3RldWQWdsZU1T
VWJOSjc0ZWlhUGRkV0w2US5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEALkVPwMEALm2wDANBgkqhkiG9w0B
AQsFAAOCAQEAQ8PrQGlQxwPsKthe7+3bXf7SuEsCEGWzEL5vGPJO3kZdmwMOv131
nA3pNP/Bgu6mn/yAG2pl+zykaWZfcjWQVS4fxfJ5R7yLZQhcHqKJE1MNk7U+cWg6
2aiF5CsfPiHr9ThXyr5bw8m7klAVpXmsnmtJG2whJEh+4BQRGUqMbDMrMJKwhEaL
iMcTr4hwq+CFDaBqZ9npNwVSPg0cQNHNgUEh2ipNJkTqcUzhnHAgn25GrnRjx9Tv
A32z8+wtxw5LlSbxXuKMet3TcXiLZHhBoh+mnhlwM7G7FRvBJD3yA6GF1rGFi4Bq
JGEtt0qH/DR/MVxvIDjLXd3r6JOEmavuWw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:26 2024 by rpki-client on console-ams.rpki-client.org