Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/iAfXzPdHYyk_mSyKgUdoGmw1_Uw.roa
File: iAfXzPdHYyk_mSyKgUdoGmw1_Uw.roa (raw, json)
Hash identifier: XettzU/VPjNGj6BHNwzho9VrV+MhHxml1rD/bRBZYA0=
Subject key identifier: 88:07:D7:CC:F7:47:63:29:3F:99:2C:8A:81:47:68:1A:6C:35:FD:4C
Certificate issuer: /CN=91f5891a26cfa436a23e7e1ff976648bee79ef77
Certificate serial: 04CC23DC
Authority key identifier: 91:F5:89:1A:26:CF:A4:36:A2:3E:7E:1F:F9:76:64:8B:EE:79:EF:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kfWJGibPpDaiPn4f-XZki-5573c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/iAfXzPdHYyk_mSyKgUdoGmw1_Uw.roa
Signing time: Sat 01 Jan 2022 10:02:10 +0000
ROA not before: Sat 01 Jan 2022 10:02:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203108
IP address blocks: 185.144.220.0/22 maxlen: 24
2a07:5b00::/29 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80487388 (0x4cc23dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91f5891a26cfa436a23e7e1ff976648bee79ef77
Validity
Not Before: Jan 1 10:02:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8807d7ccf74763293f992c8a8147681a6c35fd4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:1f:fd:f2:cf:3b:14:ee:00:42:da:94:ea:5d:
dc:57:af:d2:fb:f1:8c:c7:73:68:49:c3:51:30:88:
55:ad:9b:49:86:f4:7f:9f:37:8c:5d:67:3e:9d:d3:
dc:98:c9:a7:e0:b1:27:68:44:56:4c:ff:16:cd:99:
b8:3b:05:29:90:d3:cc:41:fe:80:75:97:f2:fd:32:
9a:66:25:6d:12:d5:b2:24:98:cf:9a:9e:22:eb:d6:
76:be:81:40:72:c6:5a:31:5a:89:30:b4:57:11:11:
09:d9:1f:54:00:c2:ea:ab:4f:f5:8f:8e:f4:6c:50:
2a:e3:12:d2:e8:b0:ec:ea:39:0e:02:4d:4c:41:d1:
e1:65:c5:66:82:22:d0:fb:9f:df:c2:da:73:54:e2:
02:50:27:5c:f9:17:ab:51:12:3f:cc:42:39:e6:9b:
58:2f:01:c8:e0:60:bc:e4:35:58:51:0b:e6:0d:c1:
17:03:8b:fd:c2:0e:4a:0d:c5:04:e5:f4:15:47:cf:
e3:a7:3a:c5:d8:d2:a5:7b:13:6a:71:0d:f3:8d:9a:
d8:ac:a8:d0:6c:19:a5:e0:05:df:2f:50:33:69:70:
ce:bb:b5:03:85:28:7e:d1:15:a8:0f:52:90:3e:93:
16:21:fe:e7:82:d3:c0:af:1b:43:db:97:43:23:0c:
1d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:07:D7:CC:F7:47:63:29:3F:99:2C:8A:81:47:68:1A:6C:35:FD:4C
X509v3 Authority Key Identifier:
keyid:91:F5:89:1A:26:CF:A4:36:A2:3E:7E:1F:F9:76:64:8B:EE:79:EF:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kfWJGibPpDaiPn4f-XZki-5573c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/iAfXzPdHYyk_mSyKgUdoGmw1_Uw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.220.0/22
IPv6:
2a07:5b00::/29
Signature Algorithm: sha256WithRSAEncryption
0e:e5:4c:60:c4:37:91:67:ee:a5:b2:45:e2:fa:70:d8:33:b7:
94:b8:7c:25:f9:f9:f6:f8:55:72:a6:d6:b7:09:7a:e5:f5:62:
02:d9:ed:fb:61:86:67:8b:9b:a6:8b:3c:8a:9b:37:c6:47:98:
c6:96:a9:77:0c:b6:7d:fd:e1:55:b5:09:30:e0:6b:89:31:45:
db:52:e2:11:4a:27:ff:84:67:de:7a:de:39:8f:e9:09:27:21:
3b:f4:60:80:92:8f:cd:fc:ed:5a:25:94:c9:9b:e6:67:ef:35:
d8:ca:e7:8f:bf:72:d3:a7:af:5a:37:09:bd:8e:0e:2c:b6:dc:
25:fb:ed:66:0a:ec:b9:3a:07:07:1f:22:0f:e8:76:bd:e2:16:
ee:7c:c8:b5:c6:c4:b7:c7:50:bf:b8:13:f6:12:41:6c:cf:45:
e7:15:13:78:1a:73:2b:e4:d9:05:38:91:89:11:be:33:10:6b:
24:53:91:ed:32:93:db:68:99:4a:a3:dd:f5:43:e1:77:df:68:
1d:fc:f2:b9:c5:28:c0:af:17:cc:f5:fa:31:5e:01:83:d2:05:
63:ac:dd:04:dc:d1:bf:88:a9:68:ed:d8:40:e1:04:6d:08:b4:
bd:6e:21:81:11:3a:bf:b0:36:41:4b:44:c9:b1:dc:ac:b8:8c:
1a:23:44:a9
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEBMwj3DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MWY1ODkxYTI2Y2ZhNDM2YTIzZTdlMWZmOTc2NjQ4YmVlNzllZjc3MB4XDTIyMDEw
MTEwMDIxMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODgwN2Q3Y2NmNzQ3
NjMyOTNmOTkyYzhhODE0NzY4MWE2YzM1ZmQ0YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANUf/fLPOxTuAELalOpd3Fev0vvxjMdzaEnDUTCIVa2bSYb0
f583jF1nPp3T3JjJp+CxJ2hEVkz/Fs2ZuDsFKZDTzEH+gHWX8v0ymmYlbRLVsiSY
z5qeIuvWdr6BQHLGWjFaiTC0VxERCdkfVADC6qtP9Y+O9GxQKuMS0uiw7Oo5DgJN
TEHR4WXFZoIi0Puf38Lac1TiAlAnXPkXq1ESP8xCOeabWC8ByOBgvOQ1WFEL5g3B
FwOL/cIOSg3FBOX0FUfP46c6xdjSpXsTanEN842a2Kyo0GwZpeAF3y9QM2lwzru1
A4UoftEVqA9SkD6TFiH+54LTwK8bQ9uXQyMMHYsCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBSIB9fM90djKT+ZLIqBR2gabDX9TDAfBgNVHSMEGDAWgBSR9YkaJs+kNqI+
fh/5dmSL7nnvdzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2tmV0pHaWJQcERhaVBuNGYtWFpraS01NTczYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjMvN2YxYjc0LWM4ZDctNGEwZC04YTM5LWRhYTczOTBiNWJhNy8x
L2lBZlh6UGRIWXlrX21TeUtnVWRvR213MV9Vdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjMv
N2YxYjc0LWM4ZDctNGEwZC04YTM5LWRhYTczOTBiNWJhNy8xL2tmV0pHaWJQcERh
aVBuNGYtWFpraS01NTczYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArmQ3DANBAIAAjAHAwUDKgdbADAN
BgkqhkiG9w0BAQsFAAOCAQEADuVMYMQ3kWfupbJF4vpw2DO3lLh8Jfn59vhVcqbW
twl65fViAtnt+2GGZ4ubpos8ips3xkeYxpapdwy2ff3hVbUJMOBriTFF21LiEUon
/4Rn3nreOY/pCSchO/RggJKPzfztWiWUyZvmZ+812Mrnj79y06evWjcJvY4OLLbc
JfvtZgrsuToHBx8iD+h2veIW7nzItcbEt8dQv7gT9hJBbM9F5xUTeBpzK+TZBTiR
iRG+MxBrJFOR7TKT22iZSqPd9UPhd99oHfzyucUowK8XzPX6MV4Bg9IFY6zdBNzR
v4ipaO3YQOEEbQi0vW4hgRE6v7A2QUtEybHcrLiMGiNEqQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:13 2024 by rpki-client on console-ams.rpki-client.org