Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e52b07-f2a4-47c1-9460-1e4e0400844b/1/aCQmieKGWfulrMe9KF-J6y2XgKI.roa
File: aCQmieKGWfulrMe9KF-J6y2XgKI.roa (raw, json)
Hash identifier: a2fZ1JxSGNQEYL8wPkaAuCfQGyu3oQLTLuMjUnbYf/M=
Subject key identifier: 68:24:26:89:E2:86:59:FB:A5:AC:C7:BD:28:5F:89:EB:2D:97:80:A2
Certificate issuer: /CN=21351865b767dd7b9c22314bfc8055bd57db0065
Certificate serial: 0A19913A
Authority key identifier: 21:35:18:65:B7:67:DD:7B:9C:22:31:4B:FC:80:55:BD:57:DB:00:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITUYZbdn3XucIjFL_IBVvVfbAGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e52b07-f2a4-47c1-9460-1e4e0400844b/1/aCQmieKGWfulrMe9KF-J6y2XgKI.roa
Signing time: Sat 01 Jan 2022 06:03:47 +0000
ROA not before: Sat 01 Jan 2022 06:03:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59447
IP address blocks: 185.220.57.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169447738 (0xa19913a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21351865b767dd7b9c22314bfc8055bd57db0065
Validity
Not Before: Jan 1 06:03:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=68242689e28659fba5acc7bd285f89eb2d9780a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:fc:dc:0d:e4:3b:81:71:e6:81:ff:16:0c:e5:
33:b0:50:38:c4:11:77:1e:9e:fe:db:15:43:a2:6a:
05:63:ec:b8:0d:a7:02:5e:f7:4f:1d:f1:e2:54:ea:
5a:d1:4b:46:6a:a9:08:b6:b2:a4:c7:df:80:da:d3:
e9:d8:85:28:bf:92:d9:8c:d0:ef:20:87:62:54:c9:
d2:c9:07:0c:8c:28:9e:84:02:35:e3:ab:11:05:00:
4b:bf:66:55:d7:cf:3f:42:a6:6e:92:35:c8:0a:eb:
23:d3:ca:63:21:01:91:a5:08:53:78:61:7b:b5:d0:
68:fa:45:bc:f1:0d:e0:be:c7:bb:b9:08:eb:0d:98:
9f:06:e9:d2:3b:33:47:2a:cb:90:74:57:a1:ea:6a:
e5:2d:15:88:32:3a:9c:04:44:31:6e:b3:0b:5a:e1:
1a:e1:db:e2:5d:2d:08:73:aa:ad:8f:8e:7d:d0:98:
b7:ca:b5:d6:31:c1:52:e3:f6:e3:d8:e4:05:5c:c4:
12:57:6e:c6:ce:f3:fc:46:4a:01:aa:e3:8d:b8:69:
e8:52:61:82:69:67:0a:61:32:23:bd:01:0f:25:90:
cd:1d:96:20:31:a8:4c:57:99:0f:0b:9a:ce:7b:de:
21:6e:41:af:fe:1d:33:41:01:1d:85:be:d2:a1:61:
cc:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:24:26:89:E2:86:59:FB:A5:AC:C7:BD:28:5F:89:EB:2D:97:80:A2
X509v3 Authority Key Identifier:
keyid:21:35:18:65:B7:67:DD:7B:9C:22:31:4B:FC:80:55:BD:57:DB:00:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITUYZbdn3XucIjFL_IBVvVfbAGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e52b07-f2a4-47c1-9460-1e4e0400844b/1/aCQmieKGWfulrMe9KF-J6y2XgKI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e52b07-f2a4-47c1-9460-1e4e0400844b/1/ITUYZbdn3XucIjFL_IBVvVfbAGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.57.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:d8:b9:f2:50:3d:f8:f4:c5:a7:a6:83:b0:eb:1b:a8:d1:23:
a3:35:2b:e4:c8:48:86:30:07:cd:b2:c1:ef:b3:a4:28:37:d7:
86:ed:a0:5a:44:ab:ec:32:2d:da:ab:6e:7f:20:04:23:8e:54:
5b:53:24:b5:c5:b2:cb:32:d9:83:50:08:5a:ca:98:c2:71:a2:
4e:f0:f0:47:a1:a3:ca:1c:47:79:35:b7:0c:34:4e:05:0e:60:
d2:5f:06:90:9d:39:2e:f6:aa:0a:c6:51:ff:65:71:49:e9:ae:
b7:42:7d:63:81:0e:92:70:6e:9d:6f:d2:3b:ec:cc:ff:2f:83:
1d:45:5e:18:a6:9b:86:75:83:b0:a8:3f:2b:2f:21:74:1f:9d:
51:09:09:7d:42:7e:63:40:40:f8:b9:02:fe:30:b5:e5:d3:28:
42:16:05:a7:30:a4:d9:dd:06:5b:e9:12:d4:03:f6:46:84:03:
f8:c3:a0:e8:d2:f3:37:d6:45:be:d4:72:c9:e7:53:dc:83:5b:
8e:b4:d2:40:ed:35:85:dd:45:41:b7:52:ff:e7:05:7b:60:f0:
fd:d1:6f:d3:da:2b:9c:ab:cb:19:00:09:bb:a2:49:75:fc:85:
4d:16:3b:ad:09:d6:ba:95:ed:2d:88:09:02:48:20:93:59:4e:
df:48:fc:62
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEChmROjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MTM1MTg2NWI3NjdkZDdiOWMyMjMxNGJmYzgwNTViZDU3ZGIwMDY1MB4XDTIyMDEw
MTA2MDM0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjgyNDI2ODllMjg2
NTlmYmE1YWNjN2JkMjg1Zjg5ZWIyZDk3ODBhMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK783A3kO4Fx5oH/FgzlM7BQOMQRdx6e/tsVQ6JqBWPsuA2n
Al73Tx3x4lTqWtFLRmqpCLaypMffgNrT6diFKL+S2YzQ7yCHYlTJ0skHDIwonoQC
NeOrEQUAS79mVdfPP0KmbpI1yArrI9PKYyEBkaUIU3hhe7XQaPpFvPEN4L7Hu7kI
6w2Ynwbp0jszRyrLkHRXoepq5S0ViDI6nAREMW6zC1rhGuHb4l0tCHOqrY+OfdCY
t8q11jHBUuP249jkBVzEElduxs7z/EZKAarjjbhp6FJhgmlnCmEyI70BDyWQzR2W
IDGoTFeZDwuaznveIW5Br/4dM0EBHYW+0qFhzKcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRoJCaJ4oZZ+6Wsx70oX4nrLZeAojAfBgNVHSMEGDAWgBQhNRhlt2fde5wi
MUv8gFW9V9sAZTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0lUVVlaYmRuM1h1Y0lqRkxfSUJWdlZmYkFHVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmQvZTUyYjA3LWYyYTQtNDdjMS05NDYwLTFlNGUwNDAwODQ0Yi8x
L2FDUW1pZUtHV2Z1bHJNZTlLRi1KNnkyWGdLSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmQv
ZTUyYjA3LWYyYTQtNDdjMS05NDYwLTFlNGUwNDAwODQ0Yi8xL0lUVVlaYmRuM1h1
Y0lqRkxfSUJWdlZmYkFHVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALncOTANBgkqhkiG9w0BAQsFAAOC
AQEArNi58lA9+PTFp6aDsOsbqNEjozUr5MhIhjAHzbLB77OkKDfXhu2gWkSr7DIt
2qtufyAEI45UW1MktcWyyzLZg1AIWsqYwnGiTvDwR6GjyhxHeTW3DDROBQ5g0l8G
kJ05LvaqCsZR/2VxSemut0J9Y4EOknBunW/SO+zM/y+DHUVeGKabhnWDsKg/Ky8h
dB+dUQkJfUJ+Y0BA+LkC/jC15dMoQhYFpzCk2d0GW+kS1AP2RoQD+MOg6NLzN9ZF
vtRyyedT3INbjrTSQO01hd1FQbdS/+cFe2Dw/dFv09ornKvLGQAJu6JJdfyFTRY7
rQnWupXtLYgJAkggk1lO30j8Yg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:57 2023 by rpki-client on console-fra.rpki-client.org