Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/d1f390-4ec5-4c42-8e54-01fb46a433e1/1/ZNGKxC6mXDLTnIa1AS0wR1N6FWg.roa
File: ZNGKxC6mXDLTnIa1AS0wR1N6FWg.roa (raw, json)
Hash identifier: VoMKcoboeGw623C2p4dPII1CZoVcY60rX7su19A6Jsc=
Subject key identifier: 64:D1:8A:C4:2E:A6:5C:32:D3:9C:86:B5:01:2D:30:47:53:7A:15:68
Certificate issuer: /CN=1230cd8e13c86d8ef835c1aac7d5f953455c035c
Certificate serial: 17CFBB0B
Authority key identifier: 12:30:CD:8E:13:C8:6D:8E:F8:35:C1:AA:C7:D5:F9:53:45:5C:03:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EjDNjhPIbY74NcGqx9X5U0VcA1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/d1f390-4ec5-4c42-8e54-01fb46a433e1/1/ZNGKxC6mXDLTnIa1AS0wR1N6FWg.roa
Signing time: Sat 01 Jan 2022 11:04:33 +0000
ROA not before: Sat 01 Jan 2022 11:04:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20857
IP address blocks: 185.88.148.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 399489803 (0x17cfbb0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1230cd8e13c86d8ef835c1aac7d5f953455c035c
Validity
Not Before: Jan 1 11:04:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64d18ac42ea65c32d39c86b5012d3047537a1568
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:4d:fd:d0:6f:79:b3:fa:51:48:8f:25:6a:1e:
dd:5a:3d:49:87:3a:59:ce:5a:84:59:51:eb:4e:8f:
e6:8f:c7:fb:ea:3e:ff:fc:19:1f:67:e4:ce:9e:01:
3a:f7:1b:e7:30:52:59:85:9e:19:cf:03:e8:8b:3c:
1b:5d:a3:54:a2:7c:59:10:ca:73:5f:e4:81:3a:db:
7d:ff:2b:80:a4:40:60:0a:de:37:58:6a:29:be:fc:
32:74:6d:64:98:a2:10:9d:7e:9b:74:ce:48:6f:4a:
2c:62:f3:f4:fd:1a:6d:08:92:e1:c3:1d:55:88:bd:
94:e2:7e:7b:54:81:ba:af:f6:f7:26:85:56:72:52:
d8:99:c5:1e:9e:74:53:f8:30:2f:96:bf:98:6b:04:
14:80:08:1c:e6:72:48:4e:59:21:9d:89:3d:1c:77:
08:79:52:ca:08:22:88:cf:88:d8:5f:14:8f:7f:dc:
77:02:c2:89:69:ed:0e:85:ee:da:63:42:0c:5a:60:
9a:02:d3:f6:49:e3:5a:70:ae:3d:c7:63:16:12:87:
81:d8:71:a2:ca:37:02:12:5f:69:40:15:a1:c9:98:
55:a1:ce:a0:99:99:fb:96:8c:a5:75:0c:2e:fd:80:
e5:d8:9f:e3:32:df:c1:b1:e3:90:78:ae:5e:9c:9b:
b6:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:D1:8A:C4:2E:A6:5C:32:D3:9C:86:B5:01:2D:30:47:53:7A:15:68
X509v3 Authority Key Identifier:
keyid:12:30:CD:8E:13:C8:6D:8E:F8:35:C1:AA:C7:D5:F9:53:45:5C:03:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EjDNjhPIbY74NcGqx9X5U0VcA1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/d1f390-4ec5-4c42-8e54-01fb46a433e1/1/ZNGKxC6mXDLTnIa1AS0wR1N6FWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/d1f390-4ec5-4c42-8e54-01fb46a433e1/1/EjDNjhPIbY74NcGqx9X5U0VcA1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.88.148.0/22
Signature Algorithm: sha256WithRSAEncryption
36:6f:5a:b2:8a:09:50:c4:15:14:25:58:86:5b:9a:fe:e0:99:
24:86:8a:93:2b:7f:7c:0b:c1:2d:e3:af:22:b5:dd:f2:ee:53:
f9:75:53:91:f0:4f:09:72:db:f8:ca:0b:21:f1:53:38:d0:7f:
df:a8:b1:a0:86:b0:74:df:49:e5:5f:d9:0b:65:6a:8c:4d:e8:
a3:d9:1c:fa:52:8f:a3:be:e1:0a:5f:ba:8f:44:57:e7:a3:f3:
56:46:f0:88:9b:18:72:39:05:79:5e:88:c0:0f:f0:4a:79:f5:
e8:06:1d:9b:70:42:9d:bc:2f:96:ea:9c:fb:47:e9:ff:d3:4f:
df:79:a1:3f:de:dd:76:e2:56:20:1b:7d:bc:9e:53:e1:30:54:
b4:6c:46:6a:e7:b3:0f:b2:9b:f2:1f:ed:2b:fa:76:7a:f0:a1:
d7:6f:5d:bf:dc:67:62:a3:ea:ac:bf:db:3f:de:65:62:5f:0b:
a8:ed:ad:a5:6e:6f:ec:58:52:71:27:d6:18:04:b8:d5:aa:e9:
68:9c:5e:a1:3f:6b:c5:96:7b:33:bf:9b:09:a5:6d:05:e8:05:
88:aa:a2:5c:1e:5d:8e:bc:70:68:bf:a1:20:ce:c8:f3:24:53:
47:e1:0c:62:83:67:cc:90:ec:ff:52:97:8a:b5:02:f3:1a:55:
13:34:a4:ed
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEF8+7CzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
MjMwY2Q4ZTEzYzg2ZDhlZjgzNWMxYWFjN2Q1Zjk1MzQ1NWMwMzVjMB4XDTIyMDEw
MTExMDQzM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjRkMThhYzQyZWE2
NWMzMmQzOWM4NmI1MDEyZDMwNDc1MzdhMTU2ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANBN/dBvebP6UUiPJWoe3Vo9SYc6Wc5ahFlR606P5o/H++o+
//wZH2fkzp4BOvcb5zBSWYWeGc8D6Is8G12jVKJ8WRDKc1/kgTrbff8rgKRAYAre
N1hqKb78MnRtZJiiEJ1+m3TOSG9KLGLz9P0abQiS4cMdVYi9lOJ+e1SBuq/29yaF
VnJS2JnFHp50U/gwL5a/mGsEFIAIHOZySE5ZIZ2JPRx3CHlSyggiiM+I2F8Uj3/c
dwLCiWntDoXu2mNCDFpgmgLT9knjWnCuPcdjFhKHgdhxoso3AhJfaUAVocmYVaHO
oJmZ+5aMpXUMLv2A5dif4zLfwbHjkHiuXpybtncCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRk0YrELqZcMtOchrUBLTBHU3oVaDAfBgNVHSMEGDAWgBQSMM2OE8htjvg1
warH1flTRVwDXDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0VqRE5qaFBJYlk3NE5jR3F4OVg1VTBWY0Exdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvM2QvZDFmMzkwLTRlYzUtNGM0Mi04ZTU0LTAxZmI0NmE0MzNlMS8x
L1pOR0t4QzZtWERMVG5JYTFBUzB3UjFONkZXZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2Qv
ZDFmMzkwLTRlYzUtNGM0Mi04ZTU0LTAxZmI0NmE0MzNlMS8xL0VqRE5qaFBJYlk3
NE5jR3F4OVg1VTBWY0Exdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArlYlDANBgkqhkiG9w0BAQsFAAOC
AQEANm9asooJUMQVFCVYhlua/uCZJIaKkyt/fAvBLeOvIrXd8u5T+XVTkfBPCXLb
+MoLIfFTONB/36ixoIawdN9J5V/ZC2VqjE3oo9kc+lKPo77hCl+6j0RX56PzVkbw
iJsYcjkFeV6IwA/wSnn16AYdm3BCnbwvluqc+0fp/9NP33mhP97dduJWIBt9vJ5T
4TBUtGxGauezD7Kb8h/tK/p2evCh129dv9xnYqPqrL/bP95lYl8LqO2tpW5v7FhS
cSfWGAS41arpaJxeoT9rxZZ7M7+bCaVtBegFiKqiXB5djrxwaL+hIM7I8yRTR+EM
YoNnzJDs/1KXirUC8xpVEzSk7Q==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:39 2023 by rpki-client on console-ams.rpki-client.org