Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/VI0aPgNuzgaddJXTV8ms-NHFB5g.roa
File: VI0aPgNuzgaddJXTV8ms-NHFB5g.roa (raw, json)
Hash identifier: j5BsQYCiHOBX51TM11MDcvBWu+G7bBKUQDHJh7P+qcE=
Subject key identifier: 54:8D:1A:3E:03:6E:CE:06:9D:74:95:D3:57:C9:AC:F8:D1:C5:07:98
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 018412C7450E5D3C56B1C3E83CCF00F83D44
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/VI0aPgNuzgaddJXTV8ms-NHFB5g.roa
Signing time: Wed 26 Oct 2022 05:32:40 +0000
ROA not before: Wed 26 Oct 2022 05:32:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203809
IP address blocks: 85.120.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:12:c7:45:0e:5d:3c:56:b1:c3:e8:3c:cf:00:f8:3d:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Oct 26 05:32:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=548d1a3e036ece069d7495d357c9acf8d1c50798
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f3:54:fb:55:57:09:82:fe:d6:31:22:c6:8f:
e9:8f:af:9d:cc:a3:cd:b6:c5:49:a5:1a:eb:35:04:
02:41:ad:bd:49:61:56:7a:8a:89:d2:0c:28:13:43:
5b:84:e6:6d:f2:82:18:ca:7b:8e:00:f5:4e:7b:0c:
4a:64:1f:70:1f:a8:b7:94:27:25:56:c5:98:e7:95:
5f:65:d4:4a:3e:16:36:11:1f:78:de:b9:1f:de:72:
c5:a2:78:32:50:77:fd:03:e2:4e:be:4e:dc:e2:9a:
c6:db:86:2e:5f:aa:ae:72:d8:b2:54:d3:e7:54:b2:
57:cd:ea:1e:ef:47:65:f5:19:e7:8d:51:d9:fd:a0:
be:5c:17:a6:0c:b9:c8:9a:23:cb:f0:0a:47:d6:b9:
a8:cb:33:c3:d8:69:38:53:42:aa:38:56:36:81:60:
f8:91:50:03:40:8c:58:9e:79:00:72:0b:86:14:db:
7d:01:39:b2:46:dd:a3:34:c5:3f:8d:4b:de:17:0e:
85:f0:0c:2d:47:fd:a5:d7:8c:95:d6:f7:f4:29:41:
db:ba:be:f8:3f:d4:a9:40:cf:cd:d9:1b:34:13:6e:
d7:e9:9d:76:98:ea:62:3f:52:b6:4a:69:c9:cc:a5:
dd:93:1d:c2:69:27:bd:f9:ec:3c:4e:ea:33:88:fd:
7b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:8D:1A:3E:03:6E:CE:06:9D:74:95:D3:57:C9:AC:F8:D1:C5:07:98
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/VI0aPgNuzgaddJXTV8ms-NHFB5g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.120.43.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:68:81:32:22:d0:c0:f7:84:e4:16:6c:4f:a9:2e:f9:cd:4b:
01:05:22:d6:17:06:fd:b7:fe:22:c9:e1:ea:65:59:4c:bb:23:
eb:4a:34:29:0b:8f:51:7a:77:c8:93:c7:1b:76:96:71:f4:f9:
d9:79:d8:ed:e3:67:f5:15:7c:af:e9:65:51:94:46:dd:d9:19:
49:f4:c8:6b:57:2f:ff:46:57:49:25:c6:27:54:76:7f:9c:f8:
86:b6:c4:3e:db:09:b3:5b:ab:14:1b:47:bb:a2:a4:a0:ec:0b:
15:41:d0:64:c9:41:a1:a7:4a:89:9c:8e:c2:af:17:73:fa:3e:
46:ea:ce:b8:81:e9:f6:d8:72:61:9a:2e:0f:1e:08:04:8b:77:
81:40:be:a8:e5:5c:64:61:06:06:c2:73:09:64:b4:54:00:3f:
d4:6f:76:55:98:a3:15:e9:68:3f:a3:a6:64:33:77:a1:df:65:
9b:b8:f0:6c:3b:7e:54:ca:42:fd:94:e1:85:c8:d7:5e:ff:4e:
68:07:e8:91:b1:81:f4:6e:37:1b:c2:eb:ca:d9:ff:d9:e7:22:
d3:17:97:be:b2:1d:e8:83:71:40:01:35:fc:a0:c5:9f:7d:36:
7f:9c:52:f4:15:25:69:07:e7:29:70:cf:b4:19:da:76:5c:1b:
9c:27:c8:b9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYQSx0UOXTxWscPoPM8A+D1EMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxODM3ODU5MTZjZDk4ZDdjNzcwZDY4NTE0NTQ5OWE4YTBh
MTU3MjIwHhcNMjIxMDI2MDUzMjQwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NDhkMWEzZTAzNmVjZTA2OWQ3NDk1ZDM1N2M5YWNmOGQxYzUwNzk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArvNU+1VXCYL+1jEixo/pj6+dzKPN
tsVJpRrrNQQCQa29SWFWeoqJ0gwoE0NbhOZt8oIYynuOAPVOewxKZB9wH6i3lCcl
VsWY55VfZdRKPhY2ER943rkf3nLFongyUHf9A+JOvk7c4prG24YuX6quctiyVNPn
VLJXzeoe70dl9RnnjVHZ/aC+XBemDLnImiPL8ApH1rmoyzPD2Gk4U0KqOFY2gWD4
kVADQIxYnnkAcguGFNt9ATmyRt2jNMU/jUveFw6F8AwtR/2l14yV1vf0KUHbur74
P9SpQM/N2Rs0E27X6Z12mOpiP1K2SmnJzKXdkx3CaSe9+ew8TuoziP17RwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFSNGj4Dbs4GnXSV01fJrPjRxQeYMB8GA1UdIwQY
MBaAFDGDeFkWzZjXx3DWhRRUmaigoVciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEt
ZjUyYzQ3YzIyNWRiLzEvVkkwYVBnTnV6Z2FkZEpYVFY4bXMtTkhGQjVnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEtZjUyYzQ3YzIyNWRi
LzEvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVXgrMA0G
CSqGSIb3DQEBCwUAA4IBAQCtaIEyItDA94TkFmxPqS75zUsBBSLWFwb9t/4iyeHq
ZVlMuyPrSjQpC49RenfIk8cbdpZx9PnZedjt42f1FXyv6WVRlEbd2RlJ9MhrVy//
RldJJcYnVHZ/nPiGtsQ+2wmzW6sUG0e7oqSg7AsVQdBkyUGhp0qJnI7Crxdz+j5G
6s64gen22HJhmi4PHggEi3eBQL6o5VxkYQYGwnMJZLRUAD/Ub3ZVmKMV6Wg/o6Zk
M3eh32WbuPBsO35UykL9lOGFyNde/05oB+iRsYH0bjcbwuvK2f/Z5yLTF5e+sh3o
g3FAATX8oMWffTZ/nFL0FSVpB+cpcM+0Gdp2XBucJ8i5
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:28 2023 by rpki-client on console-fra.rpki-client.org