Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/6kakvfNRptp2-LR2CVfKU5LRwJ0.roa
File: 6kakvfNRptp2-LR2CVfKU5LRwJ0.roa (raw, json)
Hash identifier: ZljwTj3hBUutrkZtwgLEcH5NcUGomL3oLFTXdPpVT3Q=
Subject key identifier: EA:46:A4:BD:F3:51:A6:DA:76:F8:B4:76:09:57:CA:53:92:D1:C0:9D
Certificate issuer: /CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Certificate serial: 01847C70019341C276468CF0239C30B85581
Authority key identifier: 59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/6kakvfNRptp2-LR2CVfKU5LRwJ0.roa
Signing time: Tue 15 Nov 2022 17:57:05 +0000
ROA not before: Tue 15 Nov 2022 17:57:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201486
IP address blocks: 84.47.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7c:70:01:93:41:c2:76:46:8c:f0:23:9c:30:b8:55:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Validity
Not Before: Nov 15 17:57:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea46a4bdf351a6da76f8b4760957ca5392d1c09d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:59:88:32:93:0e:15:b0:8d:11:c4:8d:a5:17:
5d:b6:ec:32:e6:1f:dc:83:4d:b8:84:37:0b:f3:77:
4e:39:47:68:fa:7f:9e:47:d3:28:dc:8f:e0:c5:ff:
79:e3:7c:01:be:fb:8b:50:bc:ed:d3:61:3e:f8:57:
b7:5f:cf:2e:7c:6f:2d:73:37:be:88:18:b9:62:fb:
86:0f:58:65:65:72:48:c6:7f:65:d4:be:67:36:7e:
85:22:11:6f:f7:19:69:8f:b6:8c:06:39:11:e1:56:
07:13:55:7c:3f:3b:43:c8:a5:cb:80:19:aa:65:3c:
e8:79:9d:08:b2:4b:bf:33:15:62:0b:fc:cc:6a:6a:
47:e8:d2:1c:31:9d:42:0a:68:37:1f:73:be:e0:c5:
0d:2a:c1:d1:92:0c:b6:b0:8e:2c:04:99:0f:63:f1:
e6:41:51:15:47:bc:a0:bb:a6:8c:9a:95:89:c7:a2:
06:f9:79:a8:3d:2a:ed:f5:32:4d:e3:e3:cb:83:99:
b4:e5:80:21:69:78:6b:1a:cc:81:73:1f:2e:4e:41:
a0:81:f2:6f:62:ee:23:a6:a7:0b:43:79:48:38:1f:
fe:29:09:8b:2a:09:99:64:73:12:3b:02:d1:33:8c:
12:fd:2f:4f:80:4d:8c:61:6d:dc:ef:b5:ab:68:c9:
18:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:46:A4:BD:F3:51:A6:DA:76:F8:B4:76:09:57:CA:53:92:D1:C0:9D
X509v3 Authority Key Identifier:
keyid:59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/6kakvfNRptp2-LR2CVfKU5LRwJ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.47.185.0/24
Signature Algorithm: sha256WithRSAEncryption
21:a1:0f:fe:c1:0e:38:83:4e:31:e5:e1:c6:c9:09:e3:a4:c9:
94:f9:f8:d1:55:28:f6:cd:b6:98:76:55:6b:e1:47:86:30:b4:
77:fe:f7:dc:f1:0d:75:7c:8a:7f:0e:47:10:8a:54:26:da:f5:
e1:68:e9:ab:60:82:f3:a4:38:80:4d:b4:e0:27:1f:67:be:59:
ef:66:5b:ea:32:84:fd:df:1c:f7:85:f9:b0:42:1e:d6:c6:6c:
e2:9b:7f:16:52:76:c5:80:31:23:22:9e:76:f1:3e:ec:34:4b:
b5:b2:46:e9:79:64:a1:ca:e9:bc:d0:d2:ea:dc:9b:6d:83:7e:
a5:81:bd:34:a1:8b:21:3f:6f:cc:9b:92:9b:f4:b7:78:7d:c1:
dd:77:08:94:17:3f:8c:a7:21:21:a1:d5:5e:6d:82:b8:03:e7:
ca:b6:d6:ad:f5:53:c3:09:6e:7e:ce:d6:db:7f:c2:ff:10:03:
b3:fe:8b:4e:24:e9:f6:2a:9c:c4:75:31:94:94:b2:5d:14:46:
3c:34:98:c5:3b:31:f2:ce:b4:49:2b:08:6c:4f:1b:5d:98:24:
95:ce:5d:0d:5c:01:f1:f9:cf:9f:4f:4e:be:a9:de:e5:f2:f9:
81:c6:d7:ee:57:3d:a9:e8:9b:88:8f:7c:ce:bc:51:38:d7:fd:
1e:94:8c:95
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYR8cAGTQcJ2RozwI5wwuFWBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU5ZGQ1NDI3ODE4NTFjMGJjZTVhM2VhNWNjMzg3NjUwZmZj
ODI3N2UwHhcNMjIxMTE1MTc1NzA1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYTQ2YTRiZGYzNTFhNmRhNzZmOGI0NzYwOTU3Y2E1MzkyZDFjMDlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy1mIMpMOFbCNEcSNpRddtuwy5h/c
g024hDcL83dOOUdo+n+eR9Mo3I/gxf9543wBvvuLULzt02E++Fe3X88ufG8tcze+
iBi5YvuGD1hlZXJIxn9l1L5nNn6FIhFv9xlpj7aMBjkR4VYHE1V8PztDyKXLgBmq
ZTzoeZ0Isku/MxViC/zMampH6NIcMZ1CCmg3H3O+4MUNKsHRkgy2sI4sBJkPY/Hm
QVEVR7ygu6aMmpWJx6IG+XmoPSrt9TJN4+PLg5m05YAhaXhrGsyBcx8uTkGggfJv
Yu4jpqcLQ3lIOB/+KQmLKgmZZHMSOwLRM4wS/S9PgE2MYW3c77WraMkY4QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOpGpL3zUabadvi0dglXylOS0cCdMB8GA1UdIwQY
MBaAFFndVCeBhRwLzlo+pcw4dlD/yCd+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV2QxVUo0R0ZIQXZPV2o2bHpEaDJVUF9JSjM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi83OWM0YmEtMzhlMi00ZjVhLTk1OWYt
NDdlMDkzNzk4OWE4LzEvNmtha3ZmTlJwdHAyLUxSMkNWZktVNUxSd0owLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi83OWM0YmEtMzhlMi00ZjVhLTk1OWYtNDdlMDkzNzk4OWE4
LzEvV2QxVUo0R0ZIQXZPV2o2bHpEaDJVUF9JSjM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVC+5MA0G
CSqGSIb3DQEBCwUAA4IBAQAhoQ/+wQ44g04x5eHGyQnjpMmU+fjRVSj2zbaYdlVr
4UeGMLR3/vfc8Q11fIp/DkcQilQm2vXhaOmrYILzpDiATbTgJx9nvlnvZlvqMoT9
3xz3hfmwQh7Wxmzim38WUnbFgDEjIp528T7sNEu1skbpeWShyum80NLq3Jttg36l
gb00oYshP2/Mm5Kb9Ld4fcHddwiUFz+MpyEhodVebYK4A+fKttat9VPDCW5+ztbb
f8L/EAOz/otOJOn2KpzEdTGUlLJdFEY8NJjFOzHyzrRJKwhsTxtdmCSVzl0NXAHx
+c+fT06+qd7l8vmBxtfuVz2p6JuIj3zOvFE41/0elIyV
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:20 2024 by rpki-client on console-ams.rpki-client.org