Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/36720e-ebf2-4b41-8cc2-faff211ea4c6/1/DUH61KR3p_rKOxX4_0rcYPAOPNs.roa
File: DUH61KR3p_rKOxX4_0rcYPAOPNs.roa (raw, json)
Hash identifier: 49G3PPEesqnS53Of78uzQB3pFRaUb25VGXTJPYF1es4=
Subject key identifier: 0D:41:FA:D4:A4:77:A7:FA:CA:3B:15:F8:FF:4A:DC:60:F0:0E:3C:DB
Certificate issuer: /CN=015f2ef6db502994d7b0c8e49cd4a777bdb93572
Certificate serial: 04775478
Authority key identifier: 01:5F:2E:F6:DB:50:29:94:D7:B0:C8:E4:9C:D4:A7:77:BD:B9:35:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AV8u9ttQKZTXsMjknNSnd725NXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/36720e-ebf2-4b41-8cc2-faff211ea4c6/1/DUH61KR3p_rKOxX4_0rcYPAOPNs.roa
Signing time: Thu 28 Apr 2022 17:26:49 +0000
ROA not before: Thu 28 Apr 2022 17:26:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203123
IP address blocks: 185.144.8.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74929272 (0x4775478)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=015f2ef6db502994d7b0c8e49cd4a777bdb93572
Validity
Not Before: Apr 28 17:26:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0d41fad4a477a7faca3b15f8ff4adc60f00e3cdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e8:af:10:4e:d2:9f:36:59:b0:7f:9d:20:f6:
a9:ee:1b:69:4d:55:d5:37:c6:26:88:0f:35:36:15:
5b:df:81:5a:f6:8b:f4:e8:e7:78:7e:5a:5f:20:e6:
71:aa:18:15:e4:2d:8f:58:7e:6a:bd:2a:56:6c:5c:
f0:cc:ba:0c:47:a3:50:f3:60:61:12:0b:9c:ed:71:
22:c9:fd:83:fb:9d:26:14:c4:12:43:c9:b7:1d:7d:
cc:e9:3f:a0:1b:b2:11:71:2c:df:8a:40:91:22:cb:
b0:68:6c:c3:95:27:7a:51:6e:e7:65:0e:66:f3:56:
ea:0d:b2:40:82:2b:69:e4:45:2c:80:78:e3:00:97:
7b:da:3c:2d:b0:1e:cd:ec:15:b6:c3:7f:16:a5:77:
2f:e7:51:ec:5d:4a:e2:8a:ad:e7:a3:e1:ce:70:1e:
43:36:5b:d1:55:ee:2d:6d:f3:98:4c:8f:b9:27:f7:
ca:03:88:53:5a:fa:87:b2:da:de:89:01:b7:97:cb:
5f:66:4a:9a:86:fa:b7:00:c8:2e:e2:ea:cd:7b:d7:
02:1d:3b:99:bd:3b:19:1a:44:9d:2e:d4:c3:de:bf:
73:32:14:7d:9f:8f:0b:e7:8e:cf:03:ac:fa:0e:34:
5c:19:b8:db:b0:d0:06:eb:bc:99:61:84:58:73:55:
a2:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:41:FA:D4:A4:77:A7:FA:CA:3B:15:F8:FF:4A:DC:60:F0:0E:3C:DB
X509v3 Authority Key Identifier:
keyid:01:5F:2E:F6:DB:50:29:94:D7:B0:C8:E4:9C:D4:A7:77:BD:B9:35:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AV8u9ttQKZTXsMjknNSnd725NXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/36720e-ebf2-4b41-8cc2-faff211ea4c6/1/DUH61KR3p_rKOxX4_0rcYPAOPNs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/36720e-ebf2-4b41-8cc2-faff211ea4c6/1/AV8u9ttQKZTXsMjknNSnd725NXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.8.0/22
Signature Algorithm: sha256WithRSAEncryption
47:0d:ec:04:d4:df:99:59:d4:9d:f5:b5:90:59:a0:f1:f4:e5:
39:f3:4a:84:65:1a:34:c6:dd:8b:91:17:53:f6:13:5b:2a:0f:
3a:d2:f1:24:cd:46:ff:a3:94:37:e0:3a:45:4e:db:04:1d:79:
9b:e5:35:8e:0f:78:c2:68:bd:cc:e7:81:0e:32:7a:77:b9:3a:
de:f6:e0:53:7b:3f:9e:4e:30:9f:74:9c:69:89:fc:d8:04:6c:
65:97:80:ab:60:4d:30:8e:ae:56:dd:25:51:4e:30:79:7c:e6:
84:02:a3:87:b1:e9:a9:52:83:58:9e:21:bc:fd:dd:f9:3a:e4:
7d:6f:63:66:05:a3:5a:54:63:89:6f:f4:15:3e:82:18:8c:a0:
72:a0:be:2d:26:f6:d5:02:d1:42:f5:48:f3:84:94:79:84:b5:
af:24:d7:42:a4:32:14:30:66:80:36:1a:0e:31:d1:a5:c6:28:
01:a0:83:d8:1e:f5:42:c5:e5:2c:f4:7f:46:1c:59:17:d4:5a:
c9:17:8c:75:6a:1c:9b:1a:ba:35:e3:45:82:5a:5d:1f:a3:84:
dd:b0:82:10:34:5e:d3:ed:aa:dd:93:75:e3:d5:dc:5f:fd:8f:
8f:7a:20:3c:63:81:69:9f:9d:a8:30:92:bc:6b:bc:ff:e1:c9:
aa:d8:4a:fb
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBHdUeDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
MTVmMmVmNmRiNTAyOTk0ZDdiMGM4ZTQ5Y2Q0YTc3N2JkYjkzNTcyMB4XDTIyMDQy
ODE3MjY0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGQ0MWZhZDRhNDc3
YTdmYWNhM2IxNWY4ZmY0YWRjNjBmMDBlM2NkYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKjorxBO0p82WbB/nSD2qe4baU1V1TfGJogPNTYVW9+BWvaL
9OjneH5aXyDmcaoYFeQtj1h+ar0qVmxc8My6DEejUPNgYRILnO1xIsn9g/udJhTE
EkPJtx19zOk/oBuyEXEs34pAkSLLsGhsw5UnelFu52UOZvNW6g2yQIIraeRFLIB4
4wCXe9o8LbAezewVtsN/FqV3L+dR7F1K4oqt56PhznAeQzZb0VXuLW3zmEyPuSf3
ygOIU1r6h7La3okBt5fLX2ZKmob6twDILuLqzXvXAh07mb07GRpEnS7Uw96/czIU
fZ+PC+eOzwOs+g40XBm427DQBuu8mWGEWHNVohECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQNQfrUpHen+so7Ffj/Stxg8A482zAfBgNVHSMEGDAWgBQBXy7221AplNew
yOSc1Kd3vbk1cjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0FWOHU5dHRRS1pUWHNNamtuTlNuZDcyNU5YSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzgvMzY3MjBlLWViZjItNGI0MS04Y2MyLWZhZmYyMTFlYTRjNi8x
L0RVSDYxS1IzcF9yS094WDRfMHJjWVBBT1BOcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzgv
MzY3MjBlLWViZjItNGI0MS04Y2MyLWZhZmYyMTFlYTRjNi8xL0FWOHU5dHRRS1pU
WHNNamtuTlNuZDcyNU5YSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArmQCDANBgkqhkiG9w0BAQsFAAOC
AQEARw3sBNTfmVnUnfW1kFmg8fTlOfNKhGUaNMbdi5EXU/YTWyoPOtLxJM1G/6OU
N+A6RU7bBB15m+U1jg94wmi9zOeBDjJ6d7k63vbgU3s/nk4wn3ScaYn82ARsZZeA
q2BNMI6uVt0lUU4weXzmhAKjh7HpqVKDWJ4hvP3d+TrkfW9jZgWjWlRjiW/0FT6C
GIygcqC+LSb21QLRQvVI84SUeYS1ryTXQqQyFDBmgDYaDjHRpcYoAaCD2B71QsXl
LPR/RhxZF9RayReMdWocmxq6NeNFglpdH6OE3bCCEDRe0+2q3ZN149XcX/2Pj3og
PGOBaZ+dqDCSvGu8/+HJqthK+w==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:24 2023 by rpki-client on console-ams.rpki-client.org