Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/89460c-132f-4c91-bd81-cfc0fcba83a2/1/D7D43LlnXG-JWZ8BrYLhcY2toQk.roa
File: D7D43LlnXG-JWZ8BrYLhcY2toQk.roa (raw, json)
Hash identifier: LBySu+OOETthTM55kYtff/gHhVnF25JVXgVObAQFCYs=
Subject key identifier: 0F:B0:F8:DC:B9:67:5C:6F:89:59:9F:01:AD:82:E1:71:8D:AD:A1:09
Certificate issuer: /CN=4f4fe81f3231268f7ce3c314a496a82cc2277c3b
Certificate serial: 0400FA56
Authority key identifier: 4F:4F:E8:1F:32:31:26:8F:7C:E3:C3:14:A4:96:A8:2C:C2:27:7C:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T0_oHzIxJo9848MUpJaoLMInfDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/89460c-132f-4c91-bd81-cfc0fcba83a2/1/D7D43LlnXG-JWZ8BrYLhcY2toQk.roa
Signing time: Sat 01 Jan 2022 13:58:48 +0000
ROA not before: Sat 01 Jan 2022 13:58:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213004
IP address blocks: 185.216.64.0/22 maxlen: 22
185.216.64.0/24 maxlen: 24
185.216.65.0/24 maxlen: 24
185.216.66.0/24 maxlen: 24
185.216.67.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67172950 (0x400fa56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f4fe81f3231268f7ce3c314a496a82cc2277c3b
Validity
Not Before: Jan 1 13:58:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0fb0f8dcb9675c6f89599f01ad82e1718dada109
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:73:f1:c4:e4:5f:b2:ab:6d:e6:10:45:0d:54:
3e:5b:e3:57:98:2b:65:98:65:d9:18:d7:b3:0a:c6:
10:88:9c:63:44:34:4f:94:4e:ef:79:42:a8:aa:79:
a8:70:b9:e4:fe:94:a9:d2:4a:31:1b:9b:73:30:d8:
ac:ac:21:3d:ba:72:f1:a7:34:51:9a:3b:9c:d7:66:
25:26:4a:24:44:9f:70:cc:be:3a:fa:e8:42:0d:af:
42:be:c3:28:97:0f:e6:7c:27:2d:50:c5:ba:73:ec:
46:7b:f7:32:a3:f7:a2:40:56:e5:8d:5e:80:56:89:
a1:23:c1:62:41:b5:5b:0f:d7:72:52:51:f8:ee:cc:
1c:5b:f3:75:a6:10:9d:2d:84:83:50:52:02:a3:f2:
e1:69:03:d2:2b:0c:40:10:9d:ee:cf:69:b6:79:22:
7d:c5:3e:0b:e1:51:16:e6:d6:d0:22:fb:db:ac:c1:
80:e5:68:0d:fa:da:97:b2:5a:6e:af:28:b5:20:35:
eb:7a:94:5a:4c:6a:60:d9:c8:28:f2:13:6c:e5:8f:
e9:19:c8:24:ef:b0:e7:c8:fb:0f:c4:e3:35:60:45:
ce:14:92:55:02:08:10:4a:60:16:c0:7c:18:9f:a2:
21:4f:3d:2e:73:7b:48:00:0b:c3:4c:49:59:88:d5:
82:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:B0:F8:DC:B9:67:5C:6F:89:59:9F:01:AD:82:E1:71:8D:AD:A1:09
X509v3 Authority Key Identifier:
keyid:4F:4F:E8:1F:32:31:26:8F:7C:E3:C3:14:A4:96:A8:2C:C2:27:7C:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T0_oHzIxJo9848MUpJaoLMInfDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/89460c-132f-4c91-bd81-cfc0fcba83a2/1/D7D43LlnXG-JWZ8BrYLhcY2toQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/89460c-132f-4c91-bd81-cfc0fcba83a2/1/T0_oHzIxJo9848MUpJaoLMInfDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.64.0/22
Signature Algorithm: sha256WithRSAEncryption
0f:5f:f3:1f:82:49:d0:a9:d3:d7:30:25:aa:0d:0c:63:7b:f7:
d9:83:b9:d9:5a:74:f6:a8:0c:3f:c2:c9:bf:d7:58:f7:15:20:
27:4a:1c:bf:4f:a7:39:e5:23:88:49:52:c3:b9:1e:2f:19:5a:
25:f7:dc:df:dd:df:ac:43:1f:27:da:91:aa:57:f4:d9:18:eb:
45:b8:e5:60:8a:bc:5f:49:4f:db:03:14:1d:80:f6:c2:79:89:
23:25:37:73:5b:8e:61:72:2c:38:6a:45:8a:49:d7:13:99:27:
b3:2c:3e:ab:82:64:56:b4:36:c0:0f:0e:ba:01:fb:16:2a:94:
2b:d3:6a:fa:93:f3:8e:2a:d3:a4:ac:6f:2d:3f:48:33:84:12:
e7:dd:9b:82:c7:80:3f:e6:01:a5:89:fd:55:6a:9b:0d:d0:9f:
a7:c8:62:02:71:c6:de:9b:f0:73:78:10:5c:a3:ad:7b:b5:51:
44:7f:0a:d4:58:c6:22:57:a7:1c:42:ad:fa:2c:63:a3:f2:c2:
fc:2f:89:08:58:bf:a0:80:e2:2b:72:a9:4e:74:04:73:68:55:
6d:b6:4e:67:02:06:bd:9b:a2:ad:40:52:4f:30:05:1a:66:8d:
d8:07:8d:c5:6d:90:3a:71:15:1a:a9:c0:0b:0b:c2:0b:d4:67:
59:8e:ea:1d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBAD6VjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
ZjRmZTgxZjMyMzEyNjhmN2NlM2MzMTRhNDk2YTgyY2MyMjc3YzNiMB4XDTIyMDEw
MTEzNTg0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGZiMGY4ZGNiOTY3
NWM2Zjg5NTk5ZjAxYWQ4MmUxNzE4ZGFkYTEwOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALpz8cTkX7KrbeYQRQ1UPlvjV5grZZhl2RjXswrGEIicY0Q0
T5RO73lCqKp5qHC55P6UqdJKMRubczDYrKwhPbpy8ac0UZo7nNdmJSZKJESfcMy+
OvroQg2vQr7DKJcP5nwnLVDFunPsRnv3MqP3okBW5Y1egFaJoSPBYkG1Ww/XclJR
+O7MHFvzdaYQnS2Eg1BSAqPy4WkD0isMQBCd7s9ptnkifcU+C+FRFubW0CL726zB
gOVoDfral7Jabq8otSA163qUWkxqYNnIKPITbOWP6RnIJO+w58j7D8TjNWBFzhSS
VQIIEEpgFsB8GJ+iIU89LnN7SAALw0xJWYjVgmUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQPsPjcuWdcb4lZnwGtguFxja2hCTAfBgNVHSMEGDAWgBRPT+gfMjEmj3zj
wxSklqgswid8OzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1QwX29Iekl4Sm85ODQ4TVVwSmFvTE1JbmZEcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTQvODk0NjBjLTEzMmYtNGM5MS1iZDgxLWNmYzBmY2JhODNhMi8x
L0Q3RDQzTGxuWEctSldaOEJyWUxoY1kydG9Ray5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTQv
ODk0NjBjLTEzMmYtNGM5MS1iZDgxLWNmYzBmY2JhODNhMi8xL1QwX29Iekl4Sm85
ODQ4TVVwSmFvTE1JbmZEcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArnYQDANBgkqhkiG9w0BAQsFAAOC
AQEAD1/zH4JJ0KnT1zAlqg0MY3v32YO52Vp09qgMP8LJv9dY9xUgJ0ocv0+nOeUj
iElSw7keLxlaJffc393frEMfJ9qRqlf02RjrRbjlYIq8X0lP2wMUHYD2wnmJIyU3
c1uOYXIsOGpFiknXE5knsyw+q4JkVrQ2wA8OugH7FiqUK9Nq+pPzjirTpKxvLT9I
M4QS592bgseAP+YBpYn9VWqbDdCfp8hiAnHG3pvwc3gQXKOte7VRRH8K1FjGIlen
HEKt+ixjo/LC/C+JCFi/oIDiK3KpTnQEc2hVbbZOZwIGvZuirUBSTzAFGmaN2AeN
xW2QOnEVGqnACwvCC9RnWY7qHQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:14 2023 by rpki-client on console-ams.rpki-client.org