Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/_RylTgyY069AIm2Fd_0pxkyl1ck.roa
File: _RylTgyY069AIm2Fd_0pxkyl1ck.roa (raw, json)
Hash identifier: LymrnszmvDWh6UzY676giV7PWWJtv3g8lU1FmEcTS0E=
Subject key identifier: FD:1C:A5:4E:0C:98:D3:AF:40:22:6D:85:77:FD:29:C6:4C:A5:D5:C9
Certificate issuer: /CN=c84d61cd17ed92e54bb3397f1e5a6b3904ac6f05
Certificate serial: 09B5720B
Authority key identifier: C8:4D:61:CD:17:ED:92:E5:4B:B3:39:7F:1E:5A:6B:39:04:AC:6F:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yE1hzRftkuVLszl_HlprOQSsbwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/_RylTgyY069AIm2Fd_0pxkyl1ck.roa
Signing time: Sat 01 Jan 2022 13:55:43 +0000
ROA not before: Sat 01 Jan 2022 13:55:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51491
IP address blocks: 185.33.184.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 162886155 (0x9b5720b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c84d61cd17ed92e54bb3397f1e5a6b3904ac6f05
Validity
Not Before: Jan 1 13:55:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd1ca54e0c98d3af40226d8577fd29c64ca5d5c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:08:79:5b:b8:b7:d0:06:82:fe:01:b9:6e:d5:
7b:3f:8f:30:17:d9:d3:3f:27:f9:e8:39:dc:09:58:
3b:66:7e:f1:28:c9:5c:01:40:23:cc:c9:17:ef:ed:
d6:1d:46:c8:da:0c:80:65:63:fc:a6:48:fa:ce:7a:
a8:46:3a:7f:80:05:d7:2f:e3:0b:36:d1:04:cd:60:
64:13:4b:4b:f4:57:89:1a:24:58:43:3a:5c:ce:1a:
d0:e9:7f:21:e3:9b:82:b3:7d:9c:9c:d2:8e:d5:95:
b0:e3:b6:c3:6b:8b:4a:a0:83:72:39:9a:22:68:94:
9d:fc:88:8f:ca:e3:67:a2:63:2e:a7:7f:46:bc:97:
5c:cc:f3:7d:7f:cf:2e:1b:5c:18:d6:60:1e:39:05:
74:72:cd:2b:0d:f7:00:eb:78:4e:67:ee:d7:ae:67:
4b:d8:fa:16:e3:5e:1b:6d:60:a1:35:f5:14:f9:a7:
6f:62:aa:56:32:6f:6b:04:3a:e5:12:24:00:0b:1e:
c4:5c:29:7c:c1:07:23:4b:a3:2e:c4:c8:e0:6d:28:
66:d7:48:6f:2f:c7:95:dd:d2:f3:d6:ae:4a:38:e8:
77:be:eb:5e:e6:57:28:b1:34:f9:30:60:2a:ad:1b:
b2:da:79:81:3f:82:04:8f:ad:14:49:96:52:0b:68:
5e:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:1C:A5:4E:0C:98:D3:AF:40:22:6D:85:77:FD:29:C6:4C:A5:D5:C9
X509v3 Authority Key Identifier:
keyid:C8:4D:61:CD:17:ED:92:E5:4B:B3:39:7F:1E:5A:6B:39:04:AC:6F:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yE1hzRftkuVLszl_HlprOQSsbwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/_RylTgyY069AIm2Fd_0pxkyl1ck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/yE1hzRftkuVLszl_HlprOQSsbwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.33.184.0/22
Signature Algorithm: sha256WithRSAEncryption
00:83:3f:fa:76:a7:89:0c:50:9c:a5:42:7e:dc:3e:0a:37:9b:
de:96:35:d8:08:99:43:80:73:78:b2:c9:c5:f7:92:1f:77:17:
f4:68:3b:8c:bc:0d:87:ec:54:57:fe:02:34:31:f2:aa:ac:fc:
2f:86:68:65:fa:28:57:ce:eb:de:22:31:a6:d6:a9:32:bb:ec:
bb:49:31:58:c3:b2:5e:f0:90:3b:51:36:fb:46:e0:8b:ab:1f:
72:9b:04:32:59:13:ec:68:38:df:94:22:47:f0:e7:2e:1f:77:
23:4f:d5:90:02:ac:d7:20:dd:ca:3e:49:1a:2d:3c:45:ff:3b:
7e:cd:63:72:65:92:7a:3d:f9:3a:a5:08:41:fd:07:c8:21:32:
d4:7f:48:5b:7a:0c:97:f3:6e:00:34:3d:89:46:cd:a1:1c:d7:
26:65:95:1f:f8:f0:b2:5f:f1:73:1c:91:92:91:04:48:c4:56:
fe:53:99:8d:bc:14:38:26:7b:5b:27:b2:6e:c5:89:ea:ca:99:
ee:57:79:23:04:9c:29:b3:07:53:c1:75:3b:c8:5d:59:19:25:
b5:21:11:a1:f1:96:6e:32:35:a8:e5:57:ae:c4:1d:da:2b:4a:
c7:c0:6e:9b:fe:dc:33:1a:54:49:28:93:e4:54:7b:5f:76:22:
2d:93:c6:89
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECbVyCzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
ODRkNjFjZDE3ZWQ5MmU1NGJiMzM5N2YxZTVhNmIzOTA0YWM2ZjA1MB4XDTIyMDEw
MTEzNTU0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmQxY2E1NGUwYzk4
ZDNhZjQwMjI2ZDg1NzdmZDI5YzY0Y2E1ZDVjOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPwIeVu4t9AGgv4BuW7Vez+PMBfZ0z8n+eg53AlYO2Z+8SjJ
XAFAI8zJF+/t1h1GyNoMgGVj/KZI+s56qEY6f4AF1y/jCzbRBM1gZBNLS/RXiRok
WEM6XM4a0Ol/IeObgrN9nJzSjtWVsOO2w2uLSqCDcjmaImiUnfyIj8rjZ6JjLqd/
RryXXMzzfX/PLhtcGNZgHjkFdHLNKw33AOt4Tmfu165nS9j6FuNeG21goTX1FPmn
b2KqVjJvawQ65RIkAAsexFwpfMEHI0ujLsTI4G0oZtdIby/Hld3S89auSjjod77r
XuZXKLE0+TBgKq0bstp5gT+CBI+tFEmWUgtoXjECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT9HKVODJjTr0AibYV3/SnGTKXVyTAfBgNVHSMEGDAWgBTITWHNF+2S5Uuz
OX8eWms5BKxvBTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3lFMWh6UmZ0a3VWTHN6bF9IbHByT1FTc2J3VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWEvODhlYWU4LTRiODYtNDM4OS1hYWRiLWMyNTc3OTJkYWRjNC8x
L19SeWxUZ3lZMDY5QUltMkZkXzBweGt5bDFjay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWEv
ODhlYWU4LTRiODYtNDM4OS1hYWRiLWMyNTc3OTJkYWRjNC8xL3lFMWh6UmZ0a3VW
THN6bF9IbHByT1FTc2J3VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArkhuDANBgkqhkiG9w0BAQsFAAOC
AQEAAIM/+naniQxQnKVCftw+Cjeb3pY12AiZQ4BzeLLJxfeSH3cX9Gg7jLwNh+xU
V/4CNDHyqqz8L4ZoZfooV87r3iIxptapMrvsu0kxWMOyXvCQO1E2+0bgi6sfcpsE
MlkT7Gg435QiR/DnLh93I0/VkAKs1yDdyj5JGi08Rf87fs1jcmWSej35OqUIQf0H
yCEy1H9IW3oMl/NuADQ9iUbNoRzXJmWVH/jwsl/xcxyRkpEESMRW/lOZjbwUOCZ7
WyeybsWJ6sqZ7ld5IwScKbMHU8F1O8hdWRkltSERofGWbjI1qOVXrsQd2itKx8Bu
m/7cMxpUSSiT5FR7X3YiLZPGiQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:52 2023 by rpki-client on console-fra.rpki-client.org