Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/lKQg8y9T4_jkO_nyNaw-284n-vQ.roa
File: lKQg8y9T4_jkO_nyNaw-284n-vQ.roa (raw, json)
Hash identifier: i9535pDSxzPKvrpTmpn0Gq7VPqbYrfW5JEAgdjQgLrM=
Subject key identifier: 94:A4:20:F3:2F:53:E3:F8:E4:3B:F9:F2:35:AC:3E:DB:CE:27:FA:F4
Certificate issuer: /CN=7c3c39d1899e699bf5177418ee381489edff4380
Certificate serial: 1A785699
Authority key identifier: 7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/lKQg8y9T4_jkO_nyNaw-284n-vQ.roa
Signing time: Mon 17 Jan 2022 10:17:05 +0000
ROA not before: Mon 17 Jan 2022 10:17:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 10753
IP address blocks: 185.27.176.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 444094105 (0x1a785699)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3c39d1899e699bf5177418ee381489edff4380
Validity
Not Before: Jan 17 10:17:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=94a420f32f53e3f8e43bf9f235ac3edbce27faf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:18:f0:6d:cd:09:03:69:09:f0:f8:2a:11:d7:
3d:b1:74:04:bd:5f:ba:21:a8:df:36:61:42:67:76:
44:4d:d4:75:53:10:7a:10:f2:7d:9e:36:7a:81:64:
17:fe:2b:a4:25:ed:fb:c1:28:91:88:91:4d:f0:9f:
cc:4e:2c:e6:1c:a3:e7:8c:a5:d5:14:54:bf:e5:9a:
be:f4:cb:a6:3f:e6:22:3d:e3:0c:bd:cc:15:b1:d6:
b0:0c:19:ce:a3:d7:89:8a:5a:0d:e5:3e:65:80:21:
9b:f9:2b:1f:1c:fa:66:a1:e2:d1:3e:c6:fe:43:72:
12:68:a5:d1:4d:24:db:0f:61:03:2b:fc:aa:a4:fc:
fd:1c:16:a6:d1:cd:c6:f6:a3:5b:a2:1e:19:9d:90:
13:ea:ae:d6:0b:ec:44:eb:de:af:cb:29:39:a2:b2:
d5:17:76:b3:d1:d3:84:eb:47:11:b6:3d:14:4e:64:
1e:9f:f9:0c:e5:b8:4f:1a:9a:05:28:08:cb:aa:11:
4c:f5:c7:20:16:59:3e:1d:c4:a6:8d:c9:9c:0c:84:
41:67:1c:e9:87:93:4c:99:b4:ac:ee:f2:30:3f:8d:
41:34:f4:f5:56:65:1f:0a:90:bd:4e:00:4b:25:72:
11:b8:53:6a:d3:2d:23:94:13:16:e5:30:64:2d:48:
51:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:A4:20:F3:2F:53:E3:F8:E4:3B:F9:F2:35:AC:3E:DB:CE:27:FA:F4
X509v3 Authority Key Identifier:
keyid:7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/lKQg8y9T4_jkO_nyNaw-284n-vQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/fDw50YmeaZv1F3QY7jgUie3_Q4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.27.176.0/23
Signature Algorithm: sha256WithRSAEncryption
34:a3:5f:22:a2:b4:81:30:18:24:b5:3e:ab:fb:d4:01:57:6a:
f9:64:5e:0b:44:6c:7c:e2:4e:66:fc:b6:47:84:d0:22:58:db:
ee:9b:f9:cc:28:86:81:be:88:c8:b5:51:67:64:24:39:ec:3d:
83:76:82:3e:3d:df:50:64:22:28:ec:9b:9c:9c:f4:4a:ae:b5:
08:23:51:12:a8:fb:d8:bb:04:17:f2:47:28:3e:92:87:64:5b:
a5:52:02:da:4b:b4:ad:50:7c:66:cc:d0:8e:bb:56:af:88:e8:
d0:24:43:44:c7:e9:95:31:ec:40:ec:22:d0:92:43:b0:af:61:
e8:91:ae:76:d0:57:77:34:a0:c1:fd:ed:97:d1:84:61:bb:ce:
ca:eb:0b:07:c0:86:a3:3e:13:fd:c6:98:3a:52:c0:b3:f0:e2:
f1:08:38:cd:6e:81:7f:2e:39:d8:84:3d:f9:ec:81:80:a1:a2:
c7:94:17:ef:d7:5c:64:c6:b7:6f:62:cb:90:a1:79:07:67:12:
b6:66:5d:1e:18:9d:4f:84:72:9f:5e:8e:48:7f:df:8e:20:1d:
36:f6:85:e5:07:bb:18:32:04:1b:5d:72:b8:23:9e:95:00:fc:
53:5a:21:ce:4b:11:c4:1d:81:9c:19:20:24:f5:aa:b7:13:02:
3d:46:d9:e6
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGnhWmTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
YzNjMzlkMTg5OWU2OTliZjUxNzc0MThlZTM4MTQ4OWVkZmY0MzgwMB4XDTIyMDEx
NzEwMTcwNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTRhNDIwZjMyZjUz
ZTNmOGU0M2JmOWYyMzVhYzNlZGJjZTI3ZmFmNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPIY8G3NCQNpCfD4KhHXPbF0BL1fuiGo3zZhQmd2RE3UdVMQ
ehDyfZ42eoFkF/4rpCXt+8EokYiRTfCfzE4s5hyj54yl1RRUv+WavvTLpj/mIj3j
DL3MFbHWsAwZzqPXiYpaDeU+ZYAhm/krHxz6ZqHi0T7G/kNyEmil0U0k2w9hAyv8
qqT8/RwWptHNxvajW6IeGZ2QE+qu1gvsROver8spOaKy1Rd2s9HThOtHEbY9FE5k
Hp/5DOW4TxqaBSgIy6oRTPXHIBZZPh3Epo3JnAyEQWcc6YeTTJm0rO7yMD+NQTT0
9VZlHwqQvU4ASyVyEbhTatMtI5QTFuUwZC1IUVECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSUpCDzL1Pj+OQ7+fI1rD7bzif69DAfBgNVHSMEGDAWgBR8PDnRiZ5pm/UX
dBjuOBSJ7f9DgDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ZEdzUwWW1lYVp2MUYzUVk3amdVaWUzX1E0QS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzYvYzgwMGM5LTUxYjUtNDU4OS05MjYwLTA2M2ZjZGQzYTA1Ny8x
L2xLUWc4eTlUNF9qa09fbnlOYXctMjg0bi12US5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzYv
YzgwMGM5LTUxYjUtNDU4OS05MjYwLTA2M2ZjZGQzYTA1Ny8xL2ZEdzUwWW1lYVp2
MUYzUVk3amdVaWUzX1E0QS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAbkbsDANBgkqhkiG9w0BAQsFAAOC
AQEANKNfIqK0gTAYJLU+q/vUAVdq+WReC0RsfOJOZvy2R4TQIljb7pv5zCiGgb6I
yLVRZ2QkOew9g3aCPj3fUGQiKOybnJz0Sq61CCNREqj72LsEF/JHKD6Sh2RbpVIC
2ku0rVB8ZszQjrtWr4jo0CRDRMfplTHsQOwi0JJDsK9h6JGudtBXdzSgwf3tl9GE
YbvOyusLB8CGoz4T/caYOlLAs/Di8Qg4zW6Bfy452IQ9+eyBgKGix5QX79dcZMa3
b2LLkKF5B2cStmZdHhidT4Ryn16OSH/fjiAdNvaF5Qe7GDIEG11yuCOelQD8U1oh
zksRxB2BnBkgJPWqtxMCPUbZ5g==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:31 2023 by rpki-client on console-fra.rpki-client.org