Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/vx3aYb1le20egDNll0pUKoQlxTQ.roa
File: vx3aYb1le20egDNll0pUKoQlxTQ.roa (raw, json)
Hash identifier: YfwADGi4TWNegQoJVum8uw8GTogTojiR+SCrDeF4KLc=
Subject key identifier: BF:1D:DA:61:BD:65:7B:6D:1E:80:33:65:97:4A:54:2A:84:25:C5:34
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 14BD93E0
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/vx3aYb1le20egDNll0pUKoQlxTQ.roa
Signing time: Wed 20 Apr 2022 09:55:21 +0000
ROA not before: Wed 20 Apr 2022 09:55:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204868
IP address blocks: 185.145.80.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 347968480 (0x14bd93e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Apr 20 09:55:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf1dda61bd657b6d1e803365974a542a8425c534
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ec:04:60:b9:07:92:d9:24:c2:9a:26:60:57:
a0:b5:c6:85:02:bf:d8:72:8f:8d:49:9a:bc:b9:33:
70:d2:3c:09:33:3d:11:24:a6:76:62:46:77:7a:27:
43:3a:96:f5:80:36:ad:f0:10:8d:04:bb:ba:fc:ed:
e5:6a:df:6d:cf:6b:3c:05:6c:2c:c2:49:83:37:ad:
f3:7e:98:12:60:45:65:ca:71:4a:22:6f:41:d0:66:
0a:b7:fe:0e:36:0a:3d:47:24:12:4b:5e:87:db:78:
f1:b8:3b:18:9d:c8:c5:b6:e0:62:6a:20:18:91:f0:
6a:27:f0:dc:ae:04:c2:55:0a:a4:1f:b8:ed:f5:de:
29:3a:c0:72:aa:cd:91:9e:2c:2d:f2:91:f5:29:9a:
13:10:e5:e4:11:be:fb:69:53:93:f2:bf:b1:61:8b:
ac:84:4a:c7:28:db:1a:9f:41:bf:55:ed:b6:5c:bd:
a7:42:03:d2:29:aa:9d:8d:90:a4:f5:7e:f1:06:ea:
54:a1:5c:a4:68:49:80:a5:6c:63:6c:ee:b1:85:1a:
96:41:1a:4f:24:b1:40:eb:30:52:3b:45:79:f2:19:
bc:5c:d0:91:59:76:b7:9c:08:53:e0:04:c3:8f:51:
da:72:5c:f6:1c:76:ef:81:6e:f2:16:5a:1c:bb:e3:
ee:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:1D:DA:61:BD:65:7B:6D:1E:80:33:65:97:4A:54:2A:84:25:C5:34
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/vx3aYb1le20egDNll0pUKoQlxTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.80.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:9c:04:b0:69:c8:ea:0e:4d:0b:2b:02:64:a8:a5:60:5a:80:
33:cf:2d:47:30:3a:64:5e:fd:eb:e5:93:df:e2:c5:c8:8a:8c:
89:94:1b:81:df:b8:d7:29:c1:02:5a:d9:b6:3a:64:ff:47:ce:
aa:11:81:36:5b:18:f9:58:54:de:a6:98:3b:3f:8c:34:d5:2b:
8b:39:b9:20:c3:bd:97:6a:b2:8e:1a:66:d0:d3:8f:13:18:f8:
7f:00:90:08:a8:3f:b2:0a:79:07:1a:68:a3:33:3c:ec:eb:87:
66:52:aa:88:46:17:ea:30:37:2c:3b:b5:a5:8e:ba:0e:9d:c2:
c6:af:ab:bf:8c:ab:3a:db:81:11:e4:3f:f9:fa:e6:0e:fc:de:
68:07:f6:49:d5:df:b3:3d:c0:67:e2:65:5e:e8:c5:f3:d0:eb:
16:be:f5:15:8b:85:96:a9:6b:4b:57:34:95:a6:f2:2e:9e:1f:
66:b7:88:d4:e3:9e:ed:26:0a:a2:0d:37:a8:36:39:9f:62:18:
48:16:af:1a:c7:e3:b1:f4:2e:99:7d:8f:ee:da:1d:27:f9:ea:
61:b0:e8:d0:57:01:e5:57:b5:2c:2b:7b:29:1a:16:28:e2:8f:
31:c8:e8:ce:a9:54:7b:13:ef:a4:31:95:69:de:3b:de:57:5d:
0b:c3:97:c9
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFL2T4DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
YmFiMzA2ODM4NTllYzdlMDIwNmZlOTI2NTM2M2U4ZTM5NzFhOWE4MB4XDTIyMDQy
MDA5NTUyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmYxZGRhNjFiZDY1
N2I2ZDFlODAzMzY1OTc0YTU0MmE4NDI1YzUzNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKzsBGC5B5LZJMKaJmBXoLXGhQK/2HKPjUmavLkzcNI8CTM9
ESSmdmJGd3onQzqW9YA2rfAQjQS7uvzt5Wrfbc9rPAVsLMJJgzet836YEmBFZcpx
SiJvQdBmCrf+DjYKPUckEkteh9t48bg7GJ3IxbbgYmogGJHwaifw3K4EwlUKpB+4
7fXeKTrAcqrNkZ4sLfKR9SmaExDl5BG++2lTk/K/sWGLrIRKxyjbGp9Bv1Xttly9
p0ID0imqnY2QpPV+8QbqVKFcpGhJgKVsY2zusYUalkEaTySxQOswUjtFefIZvFzQ
kVl2t5wIU+AEw49R2nJc9hx274Fu8hZaHLvj7tECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS/HdphvWV7bR6AM2WXSlQqhCXFNDAfBgNVHSMEGDAWgBSLqzBoOFnsfgIG
/pJlNj6OOXGpqDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2k2c3dhRGhaN0g0Q0J2NlNaVFktampseHFhZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmIvODFmZDFhLTQ3YTctNDVkOC1iZTc0LTNhYzllNTZjMzA4OS8x
L3Z4M2FZYjFsZTIwZWdETmxsMHBVS29RbHhUUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmIv
ODFmZDFhLTQ3YTctNDVkOC1iZTc0LTNhYzllNTZjMzA4OS8xL2k2c3dhRGhaN0g0
Q0J2NlNaVFktampseHFhZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArmRUDANBgkqhkiG9w0BAQsFAAOC
AQEAapwEsGnI6g5NCysCZKilYFqAM88tRzA6ZF796+WT3+LFyIqMiZQbgd+41ynB
AlrZtjpk/0fOqhGBNlsY+VhU3qaYOz+MNNUrizm5IMO9l2qyjhpm0NOPExj4fwCQ
CKg/sgp5BxpoozM87OuHZlKqiEYX6jA3LDu1pY66Dp3Cxq+rv4yrOtuBEeQ/+frm
DvzeaAf2SdXfsz3AZ+JlXujF89DrFr71FYuFlqlrS1c0labyLp4fZreI1OOe7SYK
og03qDY5n2IYSBavGsfjsfQumX2P7todJ/nqYbDo0FcB5Ve1LCt7KRoWKOKPMcjo
zqlUexPvpDGVad473lddC8OXyQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:27 2024 by rpki-client on console-ams.rpki-client.org