Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/f09788-9869-4f12-9f1e-ac4de169adce/1/t-kLadQg3xmeyQSy7S9HQFKr28Q.roa
File: t-kLadQg3xmeyQSy7S9HQFKr28Q.roa (raw, json)
Hash identifier: bZjwd4r45//pe49ZrmbFF1dicX7Ol3KRDYeDXhW4qCs=
Subject key identifier: B7:E9:0B:69:D4:20:DF:19:9E:C9:04:B2:ED:2F:47:40:52:AB:DB:C4
Certificate issuer: /CN=5e6c64fc20ce1d972f5e3474319048a2ac656df1
Certificate serial: 78004B
Authority key identifier: 5E:6C:64:FC:20:CE:1D:97:2F:5E:34:74:31:90:48:A2:AC:65:6D:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xmxk_CDOHZcvXjR0MZBIoqxlbfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/f09788-9869-4f12-9f1e-ac4de169adce/1/t-kLadQg3xmeyQSy7S9HQFKr28Q.roa
Signing time: Sat 01 Jan 2022 00:50:59 +0000
ROA not before: Sat 01 Jan 2022 00:50:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204566
IP address blocks: 185.243.208.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7864395 (0x78004b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e6c64fc20ce1d972f5e3474319048a2ac656df1
Validity
Not Before: Jan 1 00:50:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7e90b69d420df199ec904b2ed2f474052abdbc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:2b:ba:fb:45:74:bc:45:d5:c5:05:10:ba:ad:
1f:77:60:55:63:98:84:10:e2:d1:9c:40:ae:c3:2d:
3a:68:38:fd:24:7f:3d:02:39:f2:39:eb:b0:12:59:
0a:08:12:97:17:2a:61:7e:d1:aa:52:a7:93:7c:4f:
a0:4c:9b:7c:71:27:5d:df:ed:d0:b0:3b:0f:10:41:
58:29:1e:6d:ca:b0:64:36:6d:2d:5d:09:6f:9d:cf:
73:33:e5:97:93:b2:f9:53:0f:42:ee:8e:43:c4:0a:
d4:d8:42:26:c1:93:a5:11:53:f5:2a:22:3b:16:47:
90:00:e8:c5:03:93:56:46:35:c0:bb:f0:a6:29:c8:
d5:b9:d9:7b:e7:63:dc:e0:13:bf:eb:b3:61:a4:80:
cb:2f:76:40:bd:6d:57:65:d8:cf:bd:d4:bb:fc:a9:
90:bd:74:d9:84:8f:cd:21:ff:74:09:f3:e2:8e:4c:
b9:d1:aa:26:12:55:94:da:a3:56:2c:c5:cb:57:7b:
ac:bf:3a:96:4f:cc:eb:14:8c:f1:61:2d:8c:c2:2e:
6f:c0:13:c9:2d:8f:08:d1:16:d4:65:9f:c1:35:f2:
22:06:5c:f3:b8:ff:93:05:1b:9b:d3:45:c4:f0:2f:
4e:a1:4d:fb:eb:0e:ec:71:cd:e8:53:b3:7e:a5:bd:
cf:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:E9:0B:69:D4:20:DF:19:9E:C9:04:B2:ED:2F:47:40:52:AB:DB:C4
X509v3 Authority Key Identifier:
keyid:5E:6C:64:FC:20:CE:1D:97:2F:5E:34:74:31:90:48:A2:AC:65:6D:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xmxk_CDOHZcvXjR0MZBIoqxlbfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/f09788-9869-4f12-9f1e-ac4de169adce/1/t-kLadQg3xmeyQSy7S9HQFKr28Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/f09788-9869-4f12-9f1e-ac4de169adce/1/Xmxk_CDOHZcvXjR0MZBIoqxlbfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.208.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:5f:ce:52:08:8e:8e:58:2c:51:89:39:53:e0:87:21:a3:d1:
5b:ed:72:71:92:2f:e2:2b:6f:fe:3d:0f:63:fd:4f:95:3e:89:
ac:25:5a:0d:91:60:0b:5d:76:a9:08:74:4c:a8:39:87:fa:5e:
c7:78:51:ba:90:b7:dd:b6:66:8f:fb:b8:45:75:b8:43:dd:6a:
37:13:24:45:52:6f:1d:9b:06:7b:9d:66:6e:45:e1:1f:c5:a2:
12:5b:4c:9d:79:1b:57:e8:5e:8b:60:66:83:6f:22:0b:d9:8a:
6f:6a:1b:9c:3a:67:bd:8d:f0:36:10:0d:b5:b8:30:d6:6a:23:
10:41:79:80:04:20:4a:e1:58:b0:3c:2e:f3:c5:81:bf:eb:0b:
ae:b3:b3:00:74:02:72:ad:9d:5d:63:e0:bb:4e:7e:9d:34:3d:
86:c9:91:20:d6:95:28:b6:60:72:4e:a4:4e:0a:5f:71:53:9b:
f8:a2:40:08:ee:65:50:71:2a:8b:f1:e7:0d:5b:30:3d:46:4f:
8c:c4:19:dc:38:cd:6d:ca:0e:1b:c5:e6:57:35:87:05:d4:f3:
f6:aa:b2:eb:ea:3e:36:2b:35:d7:8f:e8:94:95:32:2c:e4:23:
e7:ec:09:8e:94:38:23:fd:7f:a5:09:c8:1d:74:2c:f4:eb:3e:
77:5f:20:10
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDeABLMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDVl
NmM2NGZjMjBjZTFkOTcyZjVlMzQ3NDMxOTA0OGEyYWM2NTZkZjEwHhcNMjIwMTAx
MDA1MDU5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhiN2U5MGI2OWQ0MjBk
ZjE5OWVjOTA0YjJlZDJmNDc0MDUyYWJkYmM0MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAsyu6+0V0vEXVxQUQuq0fd2BVY5iEEOLRnECuwy06aDj9JH89
AjnyOeuwElkKCBKXFyphftGqUqeTfE+gTJt8cSdd3+3QsDsPEEFYKR5tyrBkNm0t
XQlvnc9zM+WXk7L5Uw9C7o5DxArU2EImwZOlEVP1KiI7FkeQAOjFA5NWRjXAu/Cm
KcjVudl752Pc4BO/67NhpIDLL3ZAvW1XZdjPvdS7/KmQvXTZhI/NIf90CfPijky5
0aomElWU2qNWLMXLV3usvzqWT8zrFIzxYS2Mwi5vwBPJLY8I0RbUZZ/BNfIiBlzz
uP+TBRub00XE8C9OoU376w7scc3oU7N+pb3PEwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFLfpC2nUIN8ZnskEsu0vR0BSq9vEMB8GA1UdIwQYMBaAFF5sZPwgzh2XL140
dDGQSKKsZW3xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
WG14a19DRE9IWmN2WGpSME1aQklvcXhsYmZFLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8zNi9mMDk3ODgtOTg2OS00ZjEyLTlmMWUtYWM0ZGUxNjlhZGNlLzEv
dC1rTGFkUWczeG1leVFTeTdTOUhRRktyMjhRLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9m
MDk3ODgtOTg2OS00ZjEyLTlmMWUtYWM0ZGUxNjlhZGNlLzEvWG14a19DRE9IWmN2
WGpSME1aQklvcXhsYmZFLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCufPQMA0GCSqGSIb3DQEBCwUAA4IB
AQCtX85SCI6OWCxRiTlT4Icho9Fb7XJxki/iK2/+PQ9j/U+VPomsJVoNkWALXXap
CHRMqDmH+l7HeFG6kLfdtmaP+7hFdbhD3Wo3EyRFUm8dmwZ7nWZuReEfxaISW0yd
eRtX6F6LYGaDbyIL2YpvahucOme9jfA2EA21uDDWaiMQQXmABCBK4ViwPC7zxYG/
6wuus7MAdAJyrZ1dY+C7Tn6dND2GyZEg1pUotmByTqROCl9xU5v4okAI7mVQcSqL
8ecNWzA9Rk+MxBncOM1tyg4bxeZXNYcF1PP2qrLr6j42KzXXj+iUlTIs5CPn7AmO
lDgj/X+lCcgddCz06z53XyAQ
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:36 2023 by rpki-client on console-fra.rpki-client.org