Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/rYaXKA-SuW0rcir6BS_Ue3wzDro.roa
File: rYaXKA-SuW0rcir6BS_Ue3wzDro.roa (raw, json)
Hash identifier: pPdIboJOV9UmLkI80iGDX9IHQULX34pw8V8Aza5ghss=
Subject key identifier: AD:86:97:28:0F:92:B9:6D:2B:72:2A:FA:05:2F:D4:7B:7C:33:0E:BA
Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Certificate serial: 01846217470423F373D1C8D639D678EEEFA0
Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/rYaXKA-SuW0rcir6BS_Ue3wzDro.roa
Signing time: Thu 10 Nov 2022 15:10:03 +0000
ROA not before: Thu 10 Nov 2022 15:10:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207279
IP address blocks: 185.81.183.0/24 maxlen: 24
185.81.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:62:17:47:04:23:f3:73:d1:c8:d6:39:d6:78:ee:ef:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Validity
Not Before: Nov 10 15:10:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad8697280f92b96d2b722afa052fd47b7c330eba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:fa:45:32:32:cb:7f:f3:e9:fc:45:56:0d:b7:
df:04:0b:e9:95:0a:bd:14:01:e6:bd:63:95:87:be:
b2:de:78:49:f1:2f:b3:b8:1c:44:8d:72:54:0d:ca:
5d:ea:5a:a2:23:8c:5a:e0:ab:50:de:29:c2:a5:3f:
36:06:94:14:25:54:3d:84:95:28:94:c4:45:3e:73:
82:bd:3b:a1:01:b8:46:0e:78:24:3c:e1:d6:74:1f:
a4:b1:34:d0:a6:cb:56:74:44:0f:f5:ca:96:bb:f7:
80:7c:f2:49:30:18:9d:73:33:80:19:f2:dd:74:d9:
10:bb:45:ea:af:d9:a0:64:e2:3a:a5:b6:34:76:24:
11:d0:2e:8a:cc:2c:ad:d2:a6:f6:47:2b:b8:2d:37:
10:d4:38:6e:a6:13:b1:b8:e7:cb:97:65:0d:1a:eb:
d8:34:c7:70:38:8b:4e:76:3d:28:91:09:80:7b:78:
dc:fc:c6:b4:0e:a5:20:a7:28:12:70:8c:a1:00:47:
f4:04:04:26:a2:7d:a4:21:82:10:0d:1f:7a:50:33:
9b:16:ed:41:16:9f:1f:69:8b:2a:90:ee:00:cc:2c:
d0:0d:77:f4:85:a6:31:14:b6:ff:44:a8:35:2f:7a:
53:12:10:7a:e6:80:af:37:23:ad:41:25:2b:14:fc:
e5:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:86:97:28:0F:92:B9:6D:2B:72:2A:FA:05:2F:D4:7B:7C:33:0E:BA
X509v3 Authority Key Identifier:
keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/rYaXKA-SuW0rcir6BS_Ue3wzDro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.182.0/23
Signature Algorithm: sha256WithRSAEncryption
8f:9c:a8:11:b2:64:b9:75:99:05:d6:66:fc:0d:cf:1d:57:f5:
85:48:0d:ba:a6:a1:30:d5:11:06:31:fc:a2:56:84:3d:d2:f7:
11:30:4f:73:67:c8:40:05:fe:14:94:78:68:3a:5b:3d:45:2b:
5a:d2:b4:88:5a:a8:79:d8:b5:46:e3:e7:88:d0:80:0b:58:3d:
e8:bb:9e:b5:53:da:ad:2e:8e:ad:b0:51:9e:c6:38:71:e9:75:
00:ec:75:b7:d5:6f:8a:a5:d3:40:d5:c8:7d:fe:0b:2f:46:43:
41:65:d2:91:50:6a:e1:7a:4c:3b:20:a8:c7:53:f9:8b:ff:52:
fb:3f:55:6c:fb:d5:17:9e:24:e5:d0:ad:dd:2c:39:d6:4c:6e:
ba:85:64:3b:fb:70:73:e6:88:cb:33:32:0b:b9:85:24:bf:11:
72:d6:d4:98:ea:96:cf:86:13:87:01:33:ce:4a:b3:74:36:e7:
43:1d:ec:af:dd:1a:0c:5b:cd:18:df:ac:82:aa:c1:d8:b6:54:
8b:06:f9:04:bf:e1:10:e4:ef:42:13:bc:6c:80:dd:92:5f:e9:
33:ae:aa:7d:f3:37:af:cc:4b:7d:c8:9e:ae:1a:41:63:37:0b:
12:30:3c:fc:c2:6e:a1:12:e6:c8:37:fb:9a:1f:02:32:53:30:
c3:33:1d:da
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRiF0cEI/Nz0cjWOdZ47u+gMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwYWZmNmI0ZWZmZTdjMzYzZWYyMDBmNmYzZTU4ODhiOTE1
YmE2ODEwHhcNMjIxMTEwMTUxMDAzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZDg2OTcyODBmOTJiOTZkMmI3MjJhZmEwNTJmZDQ3YjdjMzMwZWJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0vpFMjLLf/Pp/EVWDbffBAvplQq9
FAHmvWOVh76y3nhJ8S+zuBxEjXJUDcpd6lqiI4xa4KtQ3inCpT82BpQUJVQ9hJUo
lMRFPnOCvTuhAbhGDngkPOHWdB+ksTTQpstWdEQP9cqWu/eAfPJJMBidczOAGfLd
dNkQu0Xqr9mgZOI6pbY0diQR0C6KzCyt0qb2Ryu4LTcQ1DhuphOxuOfLl2UNGuvY
NMdwOItOdj0okQmAe3jc/Ma0DqUgpygScIyhAEf0BAQmon2kIYIQDR96UDObFu1B
Fp8faYsqkO4AzCzQDXf0haYxFLb/RKg1L3pTEhB65oCvNyOtQSUrFPzlXQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK2GlygPkrltK3Iq+gUv1Ht8Mw66MB8GA1UdIwQY
MBaAFACv9rTv/nw2PvIA9vPliIuRW6aBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUtfMnRPXy1mRFktOGdEMjgtV0lpNUZicG9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8wOThkMTMtNmQ2ZC00Mjk0LTk3NTMt
YTg3NzNkZTc2OGY3LzEvcllhWEtBLVN1VzByY2lyNkJTX1VlM3d6RHJvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC8wOThkMTMtNmQ2ZC00Mjk0LTk3NTMtYTg3NzNkZTc2OGY3
LzEvQUtfMnRPXy1mRFktOGdEMjgtV0lpNUZicG9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuVG2MA0G
CSqGSIb3DQEBCwUAA4IBAQCPnKgRsmS5dZkF1mb8Dc8dV/WFSA26pqEw1REGMfyi
VoQ90vcRME9zZ8hABf4UlHhoOls9RSta0rSIWqh52LVG4+eI0IALWD3ou561U9qt
Lo6tsFGexjhx6XUA7HW31W+KpdNA1ch9/gsvRkNBZdKRUGrhekw7IKjHU/mL/1L7
P1Vs+9UXniTl0K3dLDnWTG66hWQ7+3Bz5ojLMzILuYUkvxFy1tSY6pbPhhOHATPO
SrN0NudDHeyv3RoMW80Y36yCqsHYtlSLBvkEv+EQ5O9CE7xsgN2SX+kzrqp98zev
zEt9yJ6uGkFjNwsSMDz8wm6hEubIN/uaHwIyUzDDMx3a
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:04 2023 by rpki-client on console-ams.rpki-client.org