Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/c44409-a65d-4b8a-bfea-4bedd3bd6ea1/1/VryK3rXilDwVcMNaL8N7M6kNrR0.roa
File: VryK3rXilDwVcMNaL8N7M6kNrR0.roa (raw, json)
Hash identifier: mRRnMwmd/kUQUQM8Rxp1Lx3vDhcD5FFuPIzEH8sta24=
Subject key identifier: 56:BC:8A:DE:B5:E2:94:3C:15:70:C3:5A:2F:C3:7B:33:A9:0D:AD:1D
Certificate issuer: /CN=133deed883c2a690ce54829b48f9d78cd7b25fd7
Certificate serial: 01843CE4AF6E86FDC1C4411B0A6551A97962
Authority key identifier: 13:3D:EE:D8:83:C2:A6:90:CE:54:82:9B:48:F9:D7:8C:D7:B2:5F:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ez3u2IPCppDOVIKbSPnXjNeyX9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/c44409-a65d-4b8a-bfea-4bedd3bd6ea1/1/VryK3rXilDwVcMNaL8N7M6kNrR0.roa
Signing time: Thu 03 Nov 2022 09:48:50 +0000
ROA not before: Thu 03 Nov 2022 09:48:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204645
IP address blocks: 185.94.220.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:3c:e4:af:6e:86:fd:c1:c4:41:1b:0a:65:51:a9:79:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=133deed883c2a690ce54829b48f9d78cd7b25fd7
Validity
Not Before: Nov 3 09:48:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=56bc8adeb5e2943c1570c35a2fc37b33a90dad1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:57:52:63:4a:54:5b:8e:21:aa:a6:3b:c7:cc:
bf:62:1f:e7:fd:10:25:9b:de:95:f5:c7:06:0b:b8:
74:25:01:48:fa:ad:c5:83:ea:c1:be:87:0d:c5:b3:
6e:7f:39:71:20:b9:20:80:dd:5c:1a:a1:24:0a:92:
fd:1b:16:41:8e:7a:6d:5b:74:33:8b:dc:63:67:59:
40:c2:c8:bc:3b:1e:fa:83:cd:9e:d8:fa:ec:ac:e8:
34:cd:58:e0:9d:12:ad:b5:aa:af:ff:cf:af:10:53:
33:72:a1:3c:a2:f4:c1:0d:b0:af:fb:9c:ed:72:4b:
6a:02:d1:04:71:65:18:38:2a:2c:d4:ab:d6:57:48:
88:5a:d3:cd:e8:00:5f:66:eb:d6:74:83:85:1e:a3:
08:45:fb:4c:85:24:d9:b6:30:ce:f8:51:b2:54:ea:
22:b6:d0:6f:5f:f3:59:bd:10:05:84:25:37:ae:f4:
cc:29:ce:05:f1:21:57:e9:9d:8e:65:53:12:5a:29:
7f:04:56:74:56:0f:14:0f:cd:7d:c3:c0:65:a0:b8:
51:91:4e:22:bb:47:aa:4f:5f:c2:fe:88:c6:14:04:
5e:46:54:55:7b:ee:6c:72:f2:e5:3a:92:d5:1d:45:
6a:3b:e5:b4:54:86:62:df:ee:08:22:2f:c6:dd:6b:
e1:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:BC:8A:DE:B5:E2:94:3C:15:70:C3:5A:2F:C3:7B:33:A9:0D:AD:1D
X509v3 Authority Key Identifier:
keyid:13:3D:EE:D8:83:C2:A6:90:CE:54:82:9B:48:F9:D7:8C:D7:B2:5F:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ez3u2IPCppDOVIKbSPnXjNeyX9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/c44409-a65d-4b8a-bfea-4bedd3bd6ea1/1/VryK3rXilDwVcMNaL8N7M6kNrR0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/c44409-a65d-4b8a-bfea-4bedd3bd6ea1/1/Ez3u2IPCppDOVIKbSPnXjNeyX9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.94.220.0/22
Signature Algorithm: sha256WithRSAEncryption
47:bc:18:eb:53:c2:fd:bc:f8:c3:88:34:a9:0e:76:ba:f8:d2:
0a:36:f0:a1:14:2d:81:38:87:8e:f5:99:87:90:9f:f1:90:73:
b0:16:b1:8f:17:fd:b0:c3:f3:c7:08:a8:9f:5f:e0:22:84:7d:
fb:92:4c:e3:53:ae:14:53:60:2e:05:e4:5a:ca:c0:e6:48:f9:
56:7f:bb:7b:35:e2:b8:e2:55:2b:5f:c3:cd:04:60:96:7f:89:
09:49:69:bb:8c:5d:8f:87:97:a5:60:d9:56:ab:6c:30:a2:7d:
4d:f8:3c:79:19:b8:88:a8:52:b5:22:97:31:17:3d:0e:c4:a6:
75:8d:24:1d:a0:c7:25:ae:fc:9d:8f:0d:e0:e2:aa:18:23:64:
9e:3c:46:ee:11:3d:03:0b:c3:7d:1c:a7:94:16:14:2a:0a:42:
13:4b:8b:2d:ac:5f:60:f3:d7:95:bd:56:52:71:7f:fb:76:be:
70:cb:ff:96:bc:38:8d:4c:f8:4a:d2:22:37:29:12:5f:92:1f:
0d:47:ee:f3:8a:e1:73:e9:c3:1f:b4:5f:fd:b3:eb:4b:29:a8:
4b:49:40:22:59:15:53:bb:5a:55:40:43:65:8d:31:f3:a2:af:
1c:f2:d4:c6:68:69:7f:b8:98:37:d3:bd:a2:4f:e7:9c:c4:72:
8b:ea:05:07
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYQ85K9uhv3BxEEbCmVRqXliMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEzM2RlZWQ4ODNjMmE2OTBjZTU0ODI5YjQ4ZjlkNzhjZDdi
MjVmZDcwHhcNMjIxMTAzMDk0ODUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NmJjOGFkZWI1ZTI5NDNjMTU3MGMzNWEyZmMzN2IzM2E5MGRhZDFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyVdSY0pUW44hqqY7x8y/Yh/n/RAl
m96V9ccGC7h0JQFI+q3Fg+rBvocNxbNufzlxILkggN1cGqEkCpL9GxZBjnptW3Qz
i9xjZ1lAwsi8Ox76g82e2PrsrOg0zVjgnRKttaqv/8+vEFMzcqE8ovTBDbCv+5zt
cktqAtEEcWUYOCos1KvWV0iIWtPN6ABfZuvWdIOFHqMIRftMhSTZtjDO+FGyVOoi
ttBvX/NZvRAFhCU3rvTMKc4F8SFX6Z2OZVMSWil/BFZ0Vg8UD819w8BloLhRkU4i
u0eqT1/C/ojGFAReRlRVe+5scvLlOpLVHUVqO+W0VIZi3+4IIi/G3Wvh7wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFa8it614pQ8FXDDWi/DezOpDa0dMB8GA1UdIwQY
MBaAFBM97tiDwqaQzlSCm0j514zXsl/XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRXozdTJJUENwcERPVklLYlNQblhqTmV5WDljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC9jNDQ0MDktYTY1ZC00YjhhLWJmZWEt
NGJlZGQzYmQ2ZWExLzEvVnJ5SzNyWGlsRHdWY01OYUw4TjdNNmtOclIwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC9jNDQ0MDktYTY1ZC00YjhhLWJmZWEtNGJlZGQzYmQ2ZWEx
LzEvRXozdTJJUENwcERPVklLYlNQblhqTmV5WDljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuV7cMA0G
CSqGSIb3DQEBCwUAA4IBAQBHvBjrU8L9vPjDiDSpDna6+NIKNvChFC2BOIeO9ZmH
kJ/xkHOwFrGPF/2ww/PHCKifX+AihH37kkzjU64UU2AuBeRaysDmSPlWf7t7NeK4
4lUrX8PNBGCWf4kJSWm7jF2Ph5elYNlWq2wwon1N+Dx5GbiIqFK1IpcxFz0OxKZ1
jSQdoMclrvydjw3g4qoYI2SePEbuET0DC8N9HKeUFhQqCkITS4strF9g89eVvVZS
cX/7dr5wy/+WvDiNTPhK0iI3KRJfkh8NR+7ziuFz6cMftF/9s+tLKahLSUAiWRVT
u1pVQENljTHzoq8c8tTGaGl/uJg3072iT+ecxHKL6gUH
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:22 2023 by rpki-client on console-fra.rpki-client.org