Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/d809b3-3675-4fd8-8821-b367ebdf302b/1/wOxGNHCq7F2Av0ZLVTpYVJzL7xQ.roa
File: wOxGNHCq7F2Av0ZLVTpYVJzL7xQ.roa (raw, json)
Hash identifier: mNRWu9BRcmoHozn0uwQ8sT64/HnUH0ACCCdeErXp2TA=
Subject key identifier: C0:EC:46:34:70:AA:EC:5D:80:BF:46:4B:55:3A:58:54:9C:CB:EF:14
Certificate issuer: /CN=a45002022b7a3e4790b8b4e2f6d5b7a3dabddce1
Certificate serial: 059AE6A3
Authority key identifier: A4:50:02:02:2B:7A:3E:47:90:B8:B4:E2:F6:D5:B7:A3:DA:BD:DC:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pFACAit6PkeQuLTi9tW3o9q93OE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/d809b3-3675-4fd8-8821-b367ebdf302b/1/wOxGNHCq7F2Av0ZLVTpYVJzL7xQ.roa
Signing time: Sat 01 Jan 2022 13:59:43 +0000
ROA not before: Sat 01 Jan 2022 13:59:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205816
IP address blocks: 185.245.20.0/24 maxlen: 24
2a0c:9b80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94037667 (0x59ae6a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a45002022b7a3e4790b8b4e2f6d5b7a3dabddce1
Validity
Not Before: Jan 1 13:59:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0ec463470aaec5d80bf464b553a58549ccbef14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:68:47:e1:d4:c7:65:09:f5:9f:51:00:24:94:
54:4f:4b:91:d8:d1:59:d9:09:59:6f:fb:9d:5e:77:
a3:3a:89:5d:0b:a4:1b:6c:52:0c:ee:66:79:ba:f0:
9f:48:7e:13:1d:b0:3d:07:d5:c1:85:b9:98:86:e4:
ce:cd:da:6f:cc:7b:22:fc:47:5f:1e:fa:e4:01:7d:
34:1c:b5:ab:c5:a7:dd:6f:c8:3f:9b:66:22:12:a6:
13:af:fa:fd:d6:be:4c:98:b7:ac:24:71:1f:b2:2d:
04:42:c0:97:08:a0:18:a4:6c:06:60:37:55:22:1b:
6b:f3:97:b3:ce:1c:f2:2c:a9:a4:73:7a:55:88:5e:
04:68:07:c9:14:14:34:47:45:6e:75:3b:2d:db:10:
17:d4:31:b1:a0:a0:aa:fe:be:fd:86:47:65:72:e3:
f7:19:b0:bf:15:b4:e2:d0:85:5d:98:0e:1b:d4:fa:
a6:2b:99:7b:3a:8d:e2:6a:ea:07:67:af:ef:14:8f:
45:fa:a5:7c:5a:0c:18:1e:5b:45:fd:ef:ff:43:f6:
a9:ad:b9:7f:a0:c0:ef:30:8f:dd:c0:ed:f0:6d:06:
e1:b3:13:b8:e4:d1:d4:54:64:64:55:00:db:f9:8a:
98:39:55:f1:16:f8:75:4d:2b:7a:50:b2:34:10:4d:
b3:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:EC:46:34:70:AA:EC:5D:80:BF:46:4B:55:3A:58:54:9C:CB:EF:14
X509v3 Authority Key Identifier:
keyid:A4:50:02:02:2B:7A:3E:47:90:B8:B4:E2:F6:D5:B7:A3:DA:BD:DC:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pFACAit6PkeQuLTi9tW3o9q93OE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/d809b3-3675-4fd8-8821-b367ebdf302b/1/wOxGNHCq7F2Av0ZLVTpYVJzL7xQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/d809b3-3675-4fd8-8821-b367ebdf302b/1/pFACAit6PkeQuLTi9tW3o9q93OE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.245.20.0/24
IPv6:
2a0c:9b80::/29
Signature Algorithm: sha256WithRSAEncryption
05:1e:5f:2c:a4:9a:e0:9a:c8:c4:9b:17:5a:84:46:60:7f:b5:
65:c9:12:e9:cb:59:79:5e:90:a9:d1:a7:07:58:ab:00:11:d6:
ae:77:0f:ac:80:68:85:63:4a:07:69:e7:da:0d:6f:1f:54:dc:
e4:dd:61:b4:96:b0:54:cd:81:99:b7:ca:02:3f:47:a8:ab:87:
c2:41:55:d8:66:a8:3d:6f:b6:ab:ba:7a:26:ef:d9:29:17:57:
3d:78:30:ce:1e:bc:8e:02:2f:f2:5b:dd:b5:b2:1e:de:ea:5f:
92:60:f7:c4:14:ef:ab:86:c2:7f:ae:21:98:01:c4:52:f8:e4:
c6:48:e7:8c:40:ab:a6:42:85:5d:5e:b9:dd:16:5a:11:f4:2f:
7a:11:d5:01:2d:14:6d:58:60:31:9e:69:cf:65:58:0b:09:92:
2e:09:25:02:3a:4c:bb:6f:73:d6:25:75:1e:cb:ad:05:84:70:
17:33:b2:22:8e:22:a6:ba:4f:08:e5:be:2a:95:e1:2a:16:e7:
27:d6:ae:38:f6:f9:3c:77:f6:cd:c8:50:7e:6d:6c:a7:c5:9d:
1b:16:d3:9d:63:b6:b1:86:f8:d8:e5:84:bd:0d:63:e9:43:56:
a9:98:eb:30:b9:28:61:c8:ac:2b:3c:d7:1e:1d:58:1e:c7:64:
bf:13:5c:09
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEBZrmozANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NDUwMDIwMjJiN2EzZTQ3OTBiOGI0ZTJmNmQ1YjdhM2RhYmRkY2UxMB4XDTIyMDEw
MTEzNTk0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzBlYzQ2MzQ3MGFh
ZWM1ZDgwYmY0NjRiNTUzYTU4NTQ5Y2NiZWYxNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOdoR+HUx2UJ9Z9RACSUVE9LkdjRWdkJWW/7nV53ozqJXQuk
G2xSDO5mebrwn0h+Ex2wPQfVwYW5mIbkzs3ab8x7IvxHXx765AF9NBy1q8Wn3W/I
P5tmIhKmE6/6/da+TJi3rCRxH7ItBELAlwigGKRsBmA3VSIba/OXs84c8iyppHN6
VYheBGgHyRQUNEdFbnU7LdsQF9QxsaCgqv6+/YZHZXLj9xmwvxW04tCFXZgOG9T6
piuZezqN4mrqB2ev7xSPRfqlfFoMGB5bRf3v/0P2qa25f6DA7zCP3cDt8G0G4bMT
uOTR1FRkZFUA2/mKmDlV8Rb4dU0relCyNBBNswECAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBTA7EY0cKrsXYC/RktVOlhUnMvvFDAfBgNVHSMEGDAWgBSkUAICK3o+R5C4
tOL21bej2r3c4TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3BGQUNBaXQ2UGtlUXVMVGk5dFczbzlxOTNPRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjUvZDgwOWIzLTM2NzUtNGZkOC04ODIxLWIzNjdlYmRmMzAyYi8x
L3dPeEdOSENxN0YyQXYwWkxWVHBZVkp6TDd4US5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjUv
ZDgwOWIzLTM2NzUtNGZkOC04ODIxLWIzNjdlYmRmMzAyYi8xL3BGQUNBaXQ2UGtl
UXVMVGk5dFczbzlxOTNPRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEALn1FDANBAIAAjAHAwUDKgybgDAN
BgkqhkiG9w0BAQsFAAOCAQEABR5fLKSa4JrIxJsXWoRGYH+1ZckS6ctZeV6QqdGn
B1irABHWrncPrIBohWNKB2nn2g1vH1Tc5N1htJawVM2BmbfKAj9HqKuHwkFV2Gao
PW+2q7p6Ju/ZKRdXPXgwzh68jgIv8lvdtbIe3upfkmD3xBTvq4bCf64hmAHEUvjk
xkjnjECrpkKFXV653RZaEfQvehHVAS0UbVhgMZ5pz2VYCwmSLgklAjpMu29z1iV1
HsutBYRwFzOyIo4iprpPCOW+KpXhKhbnJ9auOPb5PHf2zchQfm1sp8WdGxbTnWO2
sYb42OWEvQ1j6UNWqZjrMLkoYcisKzzXHh1YHsdkvxNcCQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:44 2024 by rpki-client on console-fra.rpki-client.org