Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/OWmfxpZNDRsUtr-i1Qi7ZmWZWwA.roa
File: OWmfxpZNDRsUtr-i1Qi7ZmWZWwA.roa (raw, json)
Hash identifier: NYTbMaAPZTramjHTZy5xQw4vvZV07zNo53vHWeFDnUE=
Subject key identifier: 39:69:9F:C6:96:4D:0D:1B:14:B6:BF:A2:D5:08:BB:66:65:99:5B:00
Certificate issuer: /CN=d7219ec7383fa0610480ddfa62c3f82c400cd56f
Certificate serial: 018466492E729C9521461281D39158063AD4
Authority key identifier: D7:21:9E:C7:38:3F:A0:61:04:80:DD:FA:62:C3:F8:2C:40:0C:D5:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1yGexzg_oGEEgN36YsP4LEAM1W8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/OWmfxpZNDRsUtr-i1Qi7ZmWZWwA.roa
Signing time: Fri 11 Nov 2022 10:43:02 +0000
ROA not before: Fri 11 Nov 2022 10:43:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63023
IP address blocks: 185.103.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:66:49:2e:72:9c:95:21:46:12:81:d3:91:58:06:3a:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7219ec7383fa0610480ddfa62c3f82c400cd56f
Validity
Not Before: Nov 11 10:43:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39699fc6964d0d1b14b6bfa2d508bb6665995b00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:7c:e1:5a:83:47:c1:7f:95:ab:9f:e6:de:9b:
22:a6:3d:8b:86:b3:e2:21:6f:11:23:6f:39:be:52:
df:6a:10:93:59:54:3f:40:98:d0:ac:2d:87:15:3e:
15:c1:78:6d:8e:eb:43:62:78:f4:9c:dc:01:50:7d:
b9:b6:bc:9e:9e:9d:94:98:11:17:87:db:0f:fb:9e:
f4:26:d0:83:e2:44:f6:9c:d0:1e:5e:2d:4f:29:07:
c6:b2:18:d0:2e:65:33:49:71:ee:18:f8:a2:81:9a:
55:29:e9:83:8c:d4:f5:73:e1:fb:46:b2:79:8a:83:
2e:e5:6b:69:46:d1:30:64:0d:19:ae:27:b1:fd:66:
9a:a8:01:2b:94:c7:a2:ae:e9:1c:b4:e8:14:32:98:
8d:a8:80:17:69:2d:45:5e:fc:e9:3d:e2:3e:1f:b3:
08:b0:28:a1:b6:4b:bf:71:0a:c3:0c:de:b9:ca:6c:
8b:2c:35:22:01:c5:32:04:f7:7a:d4:3f:84:f2:2d:
b0:77:ff:66:e8:b0:be:9e:3f:20:7c:bf:3a:c4:c1:
42:49:9a:19:70:99:18:8b:49:1e:84:49:1e:6c:7c:
3e:8d:86:53:c3:14:12:97:f8:62:94:32:15:38:1f:
24:fc:0d:7e:1a:d5:9c:a9:52:18:46:6f:70:ae:89:
06:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:69:9F:C6:96:4D:0D:1B:14:B6:BF:A2:D5:08:BB:66:65:99:5B:00
X509v3 Authority Key Identifier:
keyid:D7:21:9E:C7:38:3F:A0:61:04:80:DD:FA:62:C3:F8:2C:40:0C:D5:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1yGexzg_oGEEgN36YsP4LEAM1W8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/OWmfxpZNDRsUtr-i1Qi7ZmWZWwA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/1yGexzg_oGEEgN36YsP4LEAM1W8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.4.0/24
Signature Algorithm: sha256WithRSAEncryption
17:4e:23:34:82:0c:a0:19:3b:f9:b7:25:ed:db:4e:8e:45:c4:
c9:54:d4:0b:c7:7b:0e:60:e3:28:ed:9e:ce:ec:1f:8a:50:15:
d3:b3:f4:53:80:66:68:17:7c:95:43:74:60:11:0e:ff:3c:50:
73:22:cf:84:9f:df:28:79:19:0c:1f:8b:8c:2b:34:76:b3:20:
8c:f2:44:b2:d5:dc:b3:ff:15:f3:5f:cd:a8:5d:e9:11:61:86:
df:d5:0a:17:6c:33:0e:c1:61:ce:16:ce:e2:eb:2a:78:79:20:
b2:32:99:b3:c4:06:d9:f5:35:80:cb:6a:c3:f1:ff:48:aa:7f:
77:c5:13:ef:5e:9b:ea:6a:14:60:9c:9e:13:7f:91:a8:67:80:
cd:d5:ef:63:83:a0:bb:ea:b8:4b:0d:8f:54:b6:db:d6:7e:83:
0f:13:5f:74:c8:cc:10:6f:15:62:ef:4d:7c:83:ad:5c:be:12:
35:39:61:9a:1b:af:76:32:bf:ca:b3:70:c7:22:cc:65:27:66:
2c:77:32:b5:20:5b:69:20:d7:1d:24:72:b8:3d:1c:43:be:58:
e3:e5:01:a5:98:d5:c2:58:a7:e7:c8:80:00:39:a2:d4:22:85:
3e:ce:50:d1:9f:a2:13:1d:47:67:74:01:5e:30:80:24:cd:9a:
4a:2f:79:64
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRmSS5ynJUhRhKB05FYBjrUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3MjE5ZWM3MzgzZmEwNjEwNDgwZGRmYTYyYzNmODJjNDAw
Y2Q1NmYwHhcNMjIxMTExMTA0MzAyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzOTY5OWZjNjk2NGQwZDFiMTRiNmJmYTJkNTA4YmI2NjY1OTk1YjAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnHzhWoNHwX+Vq5/m3psipj2LhrPi
IW8RI285vlLfahCTWVQ/QJjQrC2HFT4VwXhtjutDYnj0nNwBUH25tryenp2UmBEX
h9sP+570JtCD4kT2nNAeXi1PKQfGshjQLmUzSXHuGPiigZpVKemDjNT1c+H7RrJ5
ioMu5WtpRtEwZA0Zriex/WaaqAErlMeirukctOgUMpiNqIAXaS1FXvzpPeI+H7MI
sCihtku/cQrDDN65ymyLLDUiAcUyBPd61D+E8i2wd/9m6LC+nj8gfL86xMFCSZoZ
cJkYi0kehEkebHw+jYZTwxQSl/hilDIVOB8k/A1+GtWcqVIYRm9wrokGnwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDlpn8aWTQ0bFLa/otUIu2ZlmVsAMB8GA1UdIwQY
MBaAFNchnsc4P6BhBIDd+mLD+CxADNVvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMXlHZXh6Z19vR0VFZ04zNllzUDRMRUFNMVc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9mYmZmYmMtYWI4Mi00MDU4LWI4Yjct
ZDBjODJhM2NmNGI2LzEvT1dtZnhwWk5EUnNVdHItaTFRaTdabVdaV3dBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9mYmZmYmMtYWI4Mi00MDU4LWI4YjctZDBjODJhM2NmNGI2
LzEvMXlHZXh6Z19vR0VFZ04zNllzUDRMRUFNMVc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuWcEMA0G
CSqGSIb3DQEBCwUAA4IBAQAXTiM0ggygGTv5tyXt206ORcTJVNQLx3sOYOMo7Z7O
7B+KUBXTs/RTgGZoF3yVQ3RgEQ7/PFBzIs+En98oeRkMH4uMKzR2syCM8kSy1dyz
/xXzX82oXekRYYbf1QoXbDMOwWHOFs7i6yp4eSCyMpmzxAbZ9TWAy2rD8f9Iqn93
xRPvXpvqahRgnJ4Tf5GoZ4DN1e9jg6C76rhLDY9UttvWfoMPE190yMwQbxVi7018
g61cvhI1OWGaG692Mr/Ks3DHIsxlJ2YsdzK1IFtpINcdJHK4PRxDvljj5QGlmNXC
WKfnyIAAOaLUIoU+zlDRn6ITHUdndAFeMIAkzZpKL3lk
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:23 2023 by rpki-client on console-fra.rpki-client.org