Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/0f0788-f1c4-4eae-b0c3-c5d4f0a00907/1/PQkkTRwTpY3wXV9u_lnkmk84Dqg.roa
File: PQkkTRwTpY3wXV9u_lnkmk84Dqg.roa (raw, json)
Hash identifier: lcp3RJUPJ4kZxsMuH+5cP5v6wQuCrkDO+q4Io0x+Ygc=
Subject key identifier: 3D:09:24:4D:1C:13:A5:8D:F0:5D:5F:6E:FE:59:E4:9A:4F:38:0E:A8
Certificate issuer: /CN=a9fc5630d57b1971f3a256ed6d983afad6b28d75
Certificate serial: 140E42DD
Authority key identifier: A9:FC:56:30:D5:7B:19:71:F3:A2:56:ED:6D:98:3A:FA:D6:B2:8D:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qfxWMNV7GXHzolbtbZg6-tayjXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/0f0788-f1c4-4eae-b0c3-c5d4f0a00907/1/PQkkTRwTpY3wXV9u_lnkmk84Dqg.roa
Signing time: Sat 01 Jan 2022 06:53:02 +0000
ROA not before: Sat 01 Jan 2022 06:53:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206583
IP address blocks: 185.80.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 336478941 (0x140e42dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9fc5630d57b1971f3a256ed6d983afad6b28d75
Validity
Not Before: Jan 1 06:53:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d09244d1c13a58df05d5f6efe59e49a4f380ea8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c6:d7:91:82:f9:22:5d:be:b6:f9:7c:a3:9a:
3f:d1:ff:3d:d1:e6:9b:94:00:a5:aa:dc:85:cc:94:
b5:1b:33:93:de:e0:02:f7:3a:2a:1a:02:37:11:77:
e2:ac:4f:67:f3:83:fd:d8:60:b6:df:1a:64:8d:71:
bd:a4:b5:55:72:72:a7:df:af:95:a8:37:61:ae:87:
22:21:3c:25:7d:b1:91:2c:35:69:0f:ca:07:37:4f:
89:11:e1:30:37:94:23:5a:c4:da:99:d2:28:2e:0e:
b4:d0:b2:54:73:40:de:58:01:bb:ce:1c:0b:a5:33:
0d:7f:58:5d:88:00:8f:b9:fc:87:6f:e9:bb:79:95:
56:b5:4d:9c:d5:43:7b:3e:97:60:c9:fa:0d:8f:19:
8e:37:74:4c:07:70:e7:1d:0f:20:0e:11:48:c7:9a:
a1:97:75:b3:e3:23:f1:ff:b6:db:1c:5c:eb:6f:f8:
9c:8b:fc:79:0e:70:69:6a:6c:dd:e7:54:67:20:ea:
bf:19:2d:fa:b2:20:3b:50:27:44:eb:f9:52:9d:cb:
b1:43:59:c5:ac:75:cf:4f:ca:b9:86:b5:51:ba:7a:
a0:e5:62:95:49:73:ac:c2:3a:a3:06:02:0a:d3:42:
7a:58:6e:77:2c:2d:7b:9d:4a:38:45:9a:c9:99:ea:
36:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:09:24:4D:1C:13:A5:8D:F0:5D:5F:6E:FE:59:E4:9A:4F:38:0E:A8
X509v3 Authority Key Identifier:
keyid:A9:FC:56:30:D5:7B:19:71:F3:A2:56:ED:6D:98:3A:FA:D6:B2:8D:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qfxWMNV7GXHzolbtbZg6-tayjXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/0f0788-f1c4-4eae-b0c3-c5d4f0a00907/1/PQkkTRwTpY3wXV9u_lnkmk84Dqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/0f0788-f1c4-4eae-b0c3-c5d4f0a00907/1/qfxWMNV7GXHzolbtbZg6-tayjXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.80.147.0/24
Signature Algorithm: sha256WithRSAEncryption
13:42:e0:43:af:6a:43:6c:2c:d3:bd:dd:60:f3:b9:c2:08:51:
aa:d7:56:22:f9:c9:b6:17:b0:df:67:f6:a8:b5:88:ad:3d:ef:
57:f1:83:12:13:c0:66:d7:32:06:9d:39:f7:e3:f3:d5:0f:26:
95:d2:61:89:54:1e:92:8a:0c:f2:b4:01:f0:84:18:5d:dd:67:
c6:38:6b:f0:13:e2:e5:3f:f5:81:8c:89:93:62:39:c9:c2:7b:
7d:cb:83:cd:89:87:b6:73:58:df:77:12:fd:fa:86:3f:1a:53:
c9:ab:5f:d9:3a:24:0b:1e:b4:1e:bb:54:fa:2f:4c:44:c4:5d:
c6:64:e1:a6:85:0c:99:3f:68:29:cd:c4:6a:c0:5b:26:d9:95:
1e:b8:41:fb:c1:4d:bf:1a:89:da:44:b1:02:44:54:bb:a5:d4:
79:05:eb:d6:11:2a:0e:c9:e1:50:a8:45:d9:8a:61:56:9a:fd:
4e:38:87:b9:93:5f:e2:6b:fc:67:47:d8:1a:19:51:b6:fb:00:
58:ce:52:20:42:15:6c:b6:5f:cf:e2:09:52:20:82:4c:72:06:
29:b5:03:12:6c:62:03:23:ec:f6:d7:e2:6e:4a:d8:9a:9b:b5:
e9:bd:a7:c5:93:db:64:a9:33:65:cb:bc:55:46:a0:8a:e8:da:
68:9a:6e:0e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFA5C3TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
OWZjNTYzMGQ1N2IxOTcxZjNhMjU2ZWQ2ZDk4M2FmYWQ2YjI4ZDc1MB4XDTIyMDEw
MTA2NTMwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2QwOTI0NGQxYzEz
YTU4ZGYwNWQ1ZjZlZmU1OWU0OWE0ZjM4MGVhODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJjG15GC+SJdvrb5fKOaP9H/PdHmm5QAparchcyUtRszk97g
Avc6KhoCNxF34qxPZ/OD/dhgtt8aZI1xvaS1VXJyp9+vlag3Ya6HIiE8JX2xkSw1
aQ/KBzdPiRHhMDeUI1rE2pnSKC4OtNCyVHNA3lgBu84cC6UzDX9YXYgAj7n8h2/p
u3mVVrVNnNVDez6XYMn6DY8Zjjd0TAdw5x0PIA4RSMeaoZd1s+Mj8f+22xxc62/4
nIv8eQ5waWps3edUZyDqvxkt+rIgO1AnROv5Up3LsUNZxax1z0/KuYa1Ubp6oOVi
lUlzrMI6owYCCtNCelhudywte51KOEWayZnqNuUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ9CSRNHBOljfBdX27+WeSaTzgOqDAfBgNVHSMEGDAWgBSp/FYw1XsZcfOi
Vu1tmDr61rKNdTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3FmeFdNTlY3R1hIem9sYnRiWmc2LXRheWpYVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTUvMGYwNzg4LWYxYzQtNGVhZS1iMGMzLWM1ZDRmMGEwMDkwNy8x
L1BRa2tUUndUcFkzd1hWOXVfbG5rbWs4NERxZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTUv
MGYwNzg4LWYxYzQtNGVhZS1iMGMzLWM1ZDRmMGEwMDkwNy8xL3FmeFdNTlY3R1hI
em9sYnRiWmc2LXRheWpYVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALlQkzANBgkqhkiG9w0BAQsFAAOC
AQEAE0LgQ69qQ2ws073dYPO5wghRqtdWIvnJthew32f2qLWIrT3vV/GDEhPAZtcy
Bp059+Pz1Q8mldJhiVQekooM8rQB8IQYXd1nxjhr8BPi5T/1gYyJk2I5ycJ7fcuD
zYmHtnNY33cS/fqGPxpTyatf2TokCx60HrtU+i9MRMRdxmThpoUMmT9oKc3EasBb
JtmVHrhB+8FNvxqJ2kSxAkRUu6XUeQXr1hEqDsnhUKhF2YphVpr9TjiHuZNf4mv8
Z0fYGhlRtvsAWM5SIEIVbLZfz+IJUiCCTHIGKbUDEmxiAyPs9tfibkrYmpu16b2n
xZPbZKkzZcu8VUagiujaaJpuDg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:15 2023 by rpki-client on console-ams.rpki-client.org