Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/ac37c3-cc4f-4456-b958-e35909018a33/1/Iz4Shw9bda_32ZI6R5lTgQw40S8.roa
File: Iz4Shw9bda_32ZI6R5lTgQw40S8.roa (raw, json)
Hash identifier: SqBsT5VL9ZvtTztbDU+xsMx5DBnQQIl/mpzJxpR06b0=
Subject key identifier: 23:3E:12:87:0F:5B:75:AF:F7:D9:92:3A:47:99:53:81:0C:38:D1:2F
Certificate issuer: /CN=b3749ea1b9979bff2cd3066948f835dd54cedec0
Certificate serial: 0800C3AD
Authority key identifier: B3:74:9E:A1:B9:97:9B:FF:2C:D3:06:69:48:F8:35:DD:54:CE:DE:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s3SeobmXm_8s0wZpSPg13VTO3sA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/ac37c3-cc4f-4456-b958-e35909018a33/1/Iz4Shw9bda_32ZI6R5lTgQw40S8.roa
Signing time: Thu 05 May 2022 10:33:10 +0000
ROA not before: Thu 05 May 2022 10:33:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39591
IP address blocks: 185.181.140.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134267821 (0x800c3ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3749ea1b9979bff2cd3066948f835dd54cedec0
Validity
Not Before: May 5 10:33:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=233e12870f5b75aff7d9923a479953810c38d12f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ab:e2:1e:fc:22:38:4b:f9:e9:32:7b:10:19:
bc:34:a1:d1:fa:04:a2:cc:68:f5:3c:2a:4d:62:35:
b7:06:7b:ff:39:ec:53:cb:1c:29:b2:8b:d8:74:85:
7a:bd:13:78:7e:86:0e:8a:b7:1f:50:90:b3:ed:91:
26:27:63:31:de:b9:f2:d3:1c:a8:6a:55:7d:a1:6d:
b5:3d:ba:00:2d:1b:3e:6d:83:87:1d:39:6a:5e:99:
f0:f7:f7:d1:7c:87:b1:00:4f:c6:ad:74:f4:e4:f8:
fd:72:83:5d:cc:b8:df:93:6b:fb:23:06:c4:26:c3:
8e:ba:bf:32:8c:c0:ae:f3:54:af:83:01:49:47:e7:
f2:94:23:36:46:32:a2:03:48:52:f5:6c:39:66:db:
16:62:41:39:5e:05:45:27:55:60:37:e2:64:51:c1:
c2:06:69:a1:b0:dd:23:f1:6c:31:c7:79:0e:c8:18:
2e:f5:2d:31:e8:45:e7:7e:40:1b:52:29:89:c3:71:
b4:0d:57:4a:b9:7e:24:21:ab:c4:08:33:c3:80:aa:
f7:92:37:ba:15:e8:05:60:de:61:0d:0f:63:07:a8:
3d:f6:5c:1b:88:b1:58:4c:ee:6a:9b:17:8b:44:ce:
f6:3f:9a:ae:8a:07:44:36:a1:fd:9d:72:4d:6e:5d:
ce:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:3E:12:87:0F:5B:75:AF:F7:D9:92:3A:47:99:53:81:0C:38:D1:2F
X509v3 Authority Key Identifier:
keyid:B3:74:9E:A1:B9:97:9B:FF:2C:D3:06:69:48:F8:35:DD:54:CE:DE:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s3SeobmXm_8s0wZpSPg13VTO3sA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/ac37c3-cc4f-4456-b958-e35909018a33/1/Iz4Shw9bda_32ZI6R5lTgQw40S8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/ac37c3-cc4f-4456-b958-e35909018a33/1/s3SeobmXm_8s0wZpSPg13VTO3sA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.181.140.0/22
Signature Algorithm: sha256WithRSAEncryption
50:70:6f:b1:55:a3:fb:b8:89:ad:c1:81:26:0c:52:57:22:f4:
08:49:74:54:dc:cf:b3:0f:e3:dd:98:7d:91:2e:af:e7:b8:c5:
e9:73:ba:7e:a4:55:84:40:f1:5f:d0:23:a2:25:90:85:a1:ca:
fd:bd:c4:9f:01:40:ef:1c:30:fe:c8:5f:fc:ad:63:ed:d8:05:
cd:2b:6c:e3:e3:b5:ad:5d:ec:97:27:01:26:b4:39:60:e7:53:
eb:b3:87:80:26:0d:39:2c:07:39:df:f1:b0:61:23:36:26:f9:
eb:21:34:dd:f0:14:58:61:63:4f:39:dc:2d:be:98:02:12:02:
24:0c:51:18:b2:07:c7:b4:53:6a:1b:f2:7f:19:29:62:44:b1:
45:bf:94:d7:ea:90:48:bb:c7:43:77:81:99:ca:e8:bd:d3:b0:
2b:d3:0a:21:f4:f8:29:30:34:66:b2:dc:ee:96:d0:01:d4:89:
24:73:eb:f8:11:56:5c:59:3a:a2:9b:10:a4:cc:62:75:5e:9c:
58:cb:6a:50:2e:b1:69:8e:6d:e1:40:17:16:66:87:4f:16:f2:
15:6d:4e:c4:c8:c4:b6:b2:5f:f6:8f:ac:4c:31:3e:52:67:95:
93:b6:f9:c5:24:73:dd:d7:4c:2f:34:dd:e1:4a:ed:bb:f9:eb:
19:04:45:64
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECADDrTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
Mzc0OWVhMWI5OTc5YmZmMmNkMzA2Njk0OGY4MzVkZDU0Y2VkZWMwMB4XDTIyMDUw
NTEwMzMxMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjMzZTEyODcwZjVi
NzVhZmY3ZDk5MjNhNDc5OTUzODEwYzM4ZDEyZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALur4h78IjhL+ekyexAZvDSh0foEosxo9TwqTWI1twZ7/zns
U8scKbKL2HSFer0TeH6GDoq3H1CQs+2RJidjMd658tMcqGpVfaFttT26AC0bPm2D
hx05al6Z8Pf30XyHsQBPxq109OT4/XKDXcy435Nr+yMGxCbDjrq/MozArvNUr4MB
SUfn8pQjNkYyogNIUvVsOWbbFmJBOV4FRSdVYDfiZFHBwgZpobDdI/FsMcd5DsgY
LvUtMehF535AG1IpicNxtA1XSrl+JCGrxAgzw4Cq95I3uhXoBWDeYQ0PYweoPfZc
G4ixWEzuapsXi0TO9j+arooHRDah/Z1yTW5dzrMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQjPhKHD1t1r/fZkjpHmVOBDDjRLzAfBgNVHSMEGDAWgBSzdJ6huZeb/yzT
BmlI+DXdVM7ewDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3MzU2VvYm1YbV84czB3WnBTUGcxM1ZUTzNzQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjcvYWMzN2MzLWNjNGYtNDQ1Ni1iOTU4LWUzNTkwOTAxOGEzMy8x
L0l6NFNodzliZGFfMzJaSTZSNWxUZ1F3NDBTOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjcv
YWMzN2MzLWNjNGYtNDQ1Ni1iOTU4LWUzNTkwOTAxOGEzMy8xL3MzU2VvYm1YbV84
czB3WnBTUGcxM1ZUTzNzQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArm1jDANBgkqhkiG9w0BAQsFAAOC
AQEAUHBvsVWj+7iJrcGBJgxSVyL0CEl0VNzPsw/j3Zh9kS6v57jF6XO6fqRVhEDx
X9AjoiWQhaHK/b3EnwFA7xww/shf/K1j7dgFzSts4+O1rV3slycBJrQ5YOdT67OH
gCYNOSwHOd/xsGEjNib56yE03fAUWGFjTzncLb6YAhICJAxRGLIHx7RTahvyfxkp
YkSxRb+U1+qQSLvHQ3eBmcrovdOwK9MKIfT4KTA0ZrLc7pbQAdSJJHPr+BFWXFk6
opsQpMxidV6cWMtqUC6xaY5t4UAXFmaHTxbyFW1OxMjEtrJf9o+sTDE+UmeVk7b5
xSRz3ddMLzTd4Urtu/nrGQRFZA==
-----END CERTIFICATE-----
Generated at Thu Apr 17 01:36:55 2025 by rpki-client