Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/af1f64-c35f-47e8-87c9-8a11b4719d82/1/B09peFV7w3i18LSnF_hrdzNFoc4.roa
File: B09peFV7w3i18LSnF_hrdzNFoc4.roa (raw, json)
Hash identifier: qRN9/qIC11SzFD2715+D9IGR8QALSo1qyMXMpsBd1sE=
Subject key identifier: 07:4F:69:78:55:7B:C3:78:B5:F0:B4:A7:17:F8:6B:77:33:45:A1:CE
Certificate issuer: /CN=f8ad543624f8d3281ec970458ee752f10a424529
Certificate serial: 09E88B70
Authority key identifier: F8:AD:54:36:24:F8:D3:28:1E:C9:70:45:8E:E7:52:F1:0A:42:45:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-K1UNiT40ygeyXBFjudS8QpCRSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/af1f64-c35f-47e8-87c9-8a11b4719d82/1/B09peFV7w3i18LSnF_hrdzNFoc4.roa
Signing time: Sat 01 Jan 2022 13:55:55 +0000
ROA not before: Sat 01 Jan 2022 13:55:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198668
IP address blocks: 185.243.172.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166234992 (0x9e88b70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8ad543624f8d3281ec970458ee752f10a424529
Validity
Not Before: Jan 1 13:55:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=074f6978557bc378b5f0b4a717f86b773345a1ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:08:f2:9b:07:d3:99:e2:f8:39:1e:55:44:b2:
e6:0d:95:be:33:54:98:8d:ca:5d:49:31:fa:7d:49:
8f:7a:c3:d0:22:f5:78:fa:eb:d3:dd:67:0a:f9:7b:
a8:66:19:64:cf:0f:b0:cd:8b:32:9e:4a:b0:a3:8b:
c9:e6:31:46:55:e3:5a:bd:e2:9a:0c:4f:c9:13:6a:
72:b2:81:5d:a9:b1:8c:2e:0b:ca:00:36:9f:48:c3:
f5:64:73:dd:25:c1:59:55:de:45:7e:88:74:7c:72:
30:20:2f:b0:52:48:41:e7:b1:43:2e:93:81:d2:50:
46:53:23:6e:e8:6e:5d:01:d7:d0:bb:7f:86:63:32:
d6:ef:bc:04:a0:b6:72:fc:25:3a:76:d7:1a:a4:1f:
b7:e3:a2:48:4c:2d:52:ab:92:9e:f5:fe:eb:58:6c:
18:dc:99:7d:38:91:be:06:4f:4e:e5:2f:b2:d6:5c:
a0:48:d3:6c:e7:f5:60:a1:d6:fe:7b:6f:c1:8a:32:
a8:58:f9:07:d8:0f:e8:d3:06:f8:c3:9a:5f:e3:1a:
fb:ea:2d:e9:61:72:e2:d2:f7:58:84:61:2b:6c:c5:
59:81:40:a6:62:94:7e:d5:81:12:79:ea:df:a5:11:
bb:55:f0:30:66:35:f8:aa:8f:4a:26:2b:84:8f:ed:
a4:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:4F:69:78:55:7B:C3:78:B5:F0:B4:A7:17:F8:6B:77:33:45:A1:CE
X509v3 Authority Key Identifier:
keyid:F8:AD:54:36:24:F8:D3:28:1E:C9:70:45:8E:E7:52:F1:0A:42:45:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-K1UNiT40ygeyXBFjudS8QpCRSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/af1f64-c35f-47e8-87c9-8a11b4719d82/1/B09peFV7w3i18LSnF_hrdzNFoc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/af1f64-c35f-47e8-87c9-8a11b4719d82/1/1-K1UNiT40ygeyXBFjudS8QpCRSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.172.0/22
Signature Algorithm: sha256WithRSAEncryption
26:b0:be:6a:88:e4:8e:6c:73:32:c6:fd:11:6a:bc:c5:b5:5b:
1d:35:dc:f7:bc:8b:5a:3f:1d:66:25:cc:8b:a3:6b:4f:61:b6:
ae:e3:d2:b9:07:b1:a2:52:a6:f1:c0:ff:90:f6:99:65:f3:9b:
a6:d3:3a:4f:09:df:9e:43:8d:c9:0b:a5:50:39:24:f2:1c:73:
18:f0:f0:53:ab:3c:d2:08:06:d8:c3:ea:01:74:05:19:78:0c:
f2:cd:34:c4:12:90:04:33:09:f0:50:2d:0e:a3:6d:50:02:49:
d5:58:77:3c:98:35:0e:f5:57:c5:00:c5:76:02:32:00:40:40:
bd:02:28:c2:bc:c1:72:5f:80:40:ff:93:3e:fa:9e:a6:30:e3:
a6:ef:08:cd:b9:94:7c:13:76:f4:69:45:d3:22:7f:f9:ed:78:
2f:24:23:50:16:b8:0f:37:94:34:b0:cc:6b:9d:cc:19:0b:2a:
5d:b8:09:a3:08:98:70:91:5f:6f:9a:dd:9f:84:2e:06:ee:4b:
89:bf:f1:a6:fc:7f:85:5b:34:22:78:82:66:3a:a6:84:38:47:
52:31:11:4e:58:b1:12:42:bf:d7:83:e3:b0:92:de:ad:b0:81:
27:18:43:46:e3:a5:11:1d:e7:24:f8:fa:cc:96:64:9f:f2:a1:
da:07:88:99
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIECeiLcDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
OGFkNTQzNjI0ZjhkMzI4MWVjOTcwNDU4ZWU3NTJmMTBhNDI0NTI5MB4XDTIyMDEw
MTEzNTU1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDc0ZjY5Nzg1NTdi
YzM3OGI1ZjBiNGE3MTdmODZiNzczMzQ1YTFjZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL8I8psH05ni+DkeVUSy5g2VvjNUmI3KXUkx+n1Jj3rD0CL1
ePrr091nCvl7qGYZZM8PsM2LMp5KsKOLyeYxRlXjWr3imgxPyRNqcrKBXamxjC4L
ygA2n0jD9WRz3SXBWVXeRX6IdHxyMCAvsFJIQeexQy6TgdJQRlMjbuhuXQHX0Lt/
hmMy1u+8BKC2cvwlOnbXGqQft+OiSEwtUquSnvX+61hsGNyZfTiRvgZPTuUvstZc
oEjTbOf1YKHW/ntvwYoyqFj5B9gP6NMG+MOaX+Ma++ot6WFy4tL3WIRhK2zFWYFA
pmKUftWBEnnq36URu1XwMGY1+KqPSiYrhI/tpMcCAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBQHT2l4VXvDeLXwtKcX+Gt3M0WhzjAfBgNVHSMEGDAWgBT4rVQ2JPjTKB7J
cEWO51LxCkJFKTAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtSzFVTmlUNDB5Z2V5WEJGanVkUzhRcENSU2suY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzIwL2FmMWY2NC1jMzVmLTQ3ZTgtODdjOS04YTExYjQ3MTlkODIv
MS9CMDlwZUZWN3czaTE4TFNuRl9ocmR6TkZvYzQucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzIw
L2FmMWY2NC1jMzVmLTQ3ZTgtODdjOS04YTExYjQ3MTlkODIvMS8xLUsxVU5pVDQw
eWdleVhCRmp1ZFM4UXBDUlNrLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCufOsMA0GCSqGSIb3DQEBCwUA
A4IBAQAmsL5qiOSObHMyxv0RarzFtVsdNdz3vItaPx1mJcyLo2tPYbau49K5B7Gi
UqbxwP+Q9pll85um0zpPCd+eQ43JC6VQOSTyHHMY8PBTqzzSCAbYw+oBdAUZeAzy
zTTEEpAEMwnwUC0Oo21QAknVWHc8mDUO9VfFAMV2AjIAQEC9AijCvMFyX4BA/5M+
+p6mMOOm7wjNuZR8E3b0aUXTIn/57XgvJCNQFrgPN5Q0sMxrncwZCypduAmjCJhw
kV9vmt2fhC4G7kuJv/Gm/H+FWzQieIJmOqaEOEdSMRFOWLESQr/Xg+Owkt6tsIEn
GENG46URHeck+PrMlmSf8qHaB4iZ
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:56 2023 by rpki-client on console-ams.rpki-client.org