Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/41b72a-0fc0-4a0f-acbf-efc31e08e7cd/1/hOCX9dqbxo6whyZzynwLs732XY0.roa
File: hOCX9dqbxo6whyZzynwLs732XY0.roa (raw, json)
Hash identifier: jpXMSlu9pu9//3uRElxV11xhU4pcgbwia9uy9wdz02k=
Subject key identifier: 84:E0:97:F5:DA:9B:C6:8E:B0:87:26:73:CA:7C:0B:B3:BD:F6:5D:8D
Certificate issuer: /CN=5a0ad4655aed07c47416e7a945604794eba897ac
Certificate serial: 032401D9
Authority key identifier: 5A:0A:D4:65:5A:ED:07:C4:74:16:E7:A9:45:60:47:94:EB:A8:97:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WgrUZVrtB8R0FuepRWBHlOuol6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/41b72a-0fc0-4a0f-acbf-efc31e08e7cd/1/hOCX9dqbxo6whyZzynwLs732XY0.roa
Signing time: Thu 31 Mar 2022 18:59:19 +0000
ROA not before: Thu 31 Mar 2022 18:59:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211541
IP address blocks: 185.244.226.0/24 maxlen: 24
2a10:c640:dead::/48 maxlen: 48
2a10:c640::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52691417 (0x32401d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a0ad4655aed07c47416e7a945604794eba897ac
Validity
Not Before: Mar 31 18:59:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=84e097f5da9bc68eb0872673ca7c0bb3bdf65d8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:7c:7c:42:75:3d:62:18:7c:0b:99:1b:81:95:
32:e2:ca:85:71:42:7b:7c:22:8f:c0:25:e3:4d:5d:
78:f8:14:c3:d8:f9:74:94:ec:55:67:82:b5:d5:32:
25:c4:8f:6a:b8:6a:80:10:8a:98:04:3c:84:10:04:
7e:eb:17:fb:40:54:cc:7f:e8:74:06:48:fc:63:3f:
7c:e3:e5:2d:78:6c:68:9b:34:1f:d8:fd:27:74:c5:
b4:d9:bb:27:04:79:56:73:e0:7e:f4:24:37:ed:ad:
9f:79:18:4a:23:d6:b8:52:f4:7e:ec:7a:8a:e7:a8:
0c:a9:a5:5d:a0:cc:66:1a:38:60:b1:f0:65:e9:a3:
9c:71:61:0c:48:73:fa:a1:1c:f1:a7:64:4e:7d:68:
77:44:34:a2:bd:0b:02:79:97:ba:97:6e:83:05:9b:
41:c9:91:17:bd:ad:36:11:7e:50:0d:6f:22:43:d7:
8c:3a:3d:0f:2e:b8:ac:fa:58:62:ab:69:d0:9b:e6:
79:0d:b7:4d:88:ca:0c:fe:bf:6f:01:92:a5:ed:c2:
d8:61:5d:68:3d:6d:81:b1:98:37:06:e8:05:ce:b6:
8a:8a:44:03:7a:ee:a2:6b:0d:93:ec:e9:b6:67:4e:
0f:10:3c:72:32:3d:17:5f:63:7f:73:dc:c0:c5:ef:
bd:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:E0:97:F5:DA:9B:C6:8E:B0:87:26:73:CA:7C:0B:B3:BD:F6:5D:8D
X509v3 Authority Key Identifier:
keyid:5A:0A:D4:65:5A:ED:07:C4:74:16:E7:A9:45:60:47:94:EB:A8:97:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WgrUZVrtB8R0FuepRWBHlOuol6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/41b72a-0fc0-4a0f-acbf-efc31e08e7cd/1/hOCX9dqbxo6whyZzynwLs732XY0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/41b72a-0fc0-4a0f-acbf-efc31e08e7cd/1/WgrUZVrtB8R0FuepRWBHlOuol6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.226.0/24
IPv6:
2a10:c640::/48
2a10:c640:dead::/48
Signature Algorithm: sha256WithRSAEncryption
1b:6c:26:0b:0d:3c:dc:b7:79:66:2d:81:d1:da:7e:0e:c2:ed:
fa:12:70:a1:aa:5a:f4:08:25:01:78:6b:cc:6c:81:ff:dd:88:
34:2c:67:5e:dc:77:49:ab:9b:9f:c6:f8:45:6f:10:d8:1b:cf:
c1:7e:39:95:53:c7:78:f3:62:4e:a0:fd:2b:90:c9:40:ce:75:
44:e4:78:c8:b7:b5:d6:cc:f6:85:82:90:0f:f3:16:1b:98:31:
f2:1c:5d:fa:24:00:72:7f:54:c6:59:7d:b2:57:35:15:38:6d:
05:c5:f6:ce:fc:41:b9:57:43:27:ff:60:34:b1:b6:92:a5:a0:
e8:8d:a7:cc:1b:16:fe:0e:46:a6:f4:1c:75:05:64:6f:d9:5e:
c2:6f:7d:58:f5:11:81:af:7f:30:a3:b1:40:aa:4e:38:48:c0:
e0:32:c7:81:05:83:64:9d:ca:6f:56:45:c6:c8:3b:80:01:a2:
7f:bf:c7:ee:cc:d0:54:57:0b:36:b7:0e:76:89:c5:00:9b:0e:
f5:af:0a:b7:dc:60:c0:12:ab:ff:33:08:0a:dd:d8:e1:42:8e:
8c:9b:99:75:e7:f1:c6:fc:40:e6:63:89:98:38:d7:b7:52:6e:
72:70:f9:54:80:61:5f:a9:22:a7:a1:03:02:9c:7e:1e:d7:09:
a7:dc:f3:39
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgIEAyQB2TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
YTBhZDQ2NTVhZWQwN2M0NzQxNmU3YTk0NTYwNDc5NGViYTg5N2FjMB4XDTIyMDMz
MTE4NTkxOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODRlMDk3ZjVkYTli
YzY4ZWIwODcyNjczY2E3YzBiYjNiZGY2NWQ4ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL98fEJ1PWIYfAuZG4GVMuLKhXFCe3wij8Al401dePgUw9j5
dJTsVWeCtdUyJcSParhqgBCKmAQ8hBAEfusX+0BUzH/odAZI/GM/fOPlLXhsaJs0
H9j9J3TFtNm7JwR5VnPgfvQkN+2tn3kYSiPWuFL0fux6iueoDKmlXaDMZho4YLHw
ZemjnHFhDEhz+qEc8adkTn1od0Q0or0LAnmXupdugwWbQcmRF72tNhF+UA1vIkPX
jDo9Dy64rPpYYqtp0JvmeQ23TYjKDP6/bwGSpe3C2GFdaD1tgbGYNwboBc62iopE
A3ruomsNk+zptmdODxA8cjI9F19jf3PcwMXvvSkCAwEAAaOCAiMwggIfMB0GA1Ud
DgQWBBSE4Jf12pvGjrCHJnPKfAuzvfZdjTAfBgNVHSMEGDAWgBRaCtRlWu0HxHQW
56lFYEeU66iXrDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1dnclVaVnJ0QjhSMEZ1ZXBSV0JIbE91b2w2dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTcvNDFiNzJhLTBmYzAtNGEwZi1hY2JmLWVmYzMxZTA4ZTdjZC8x
L2hPQ1g5ZHFieG82d2h5Wnp5bndMczczMlhZMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTcv
NDFiNzJhLTBmYzAtNGEwZi1hY2JmLWVmYzMxZTA4ZTdjZC8xL1dnclVaVnJ0QjhS
MEZ1ZXBSV0JIbE91b2w2dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA5
BggrBgEFBQcBBwEB/wQqMCgwDAQCAAEwBgMEALn04jAYBAIAAjASAwcAKhDGQAAA
AwcAKhDGQN6tMA0GCSqGSIb3DQEBCwUAA4IBAQAbbCYLDTzct3lmLYHR2n4Owu36
EnChqlr0CCUBeGvMbIH/3Yg0LGde3HdJq5ufxvhFbxDYG8/BfjmVU8d482JOoP0r
kMlAznVE5HjIt7XWzPaFgpAP8xYbmDHyHF36JAByf1TGWX2yVzUVOG0FxfbO/EG5
V0Mn/2A0sbaSpaDojafMGxb+Dkam9Bx1BWRv2V7Cb31Y9RGBr38wo7FAqk44SMDg
MseBBYNkncpvVkXGyDuAAaJ/v8fuzNBUVws2tw52icUAmw71rwq33GDAEqv/MwgK
3djhQo6Mm5l15/HG/EDmY4mYONe3Um5ycPlUgGFfqSKnoQMCnH4e1wmn3PM5
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:40 2024 by rpki-client on console-fra.rpki-client.org