Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/02701d-081c-4d07-b3ff-69fcaf488bfa/1/LTeOtzB4LHJBCRXOJwq3W943RKk.roa
File: LTeOtzB4LHJBCRXOJwq3W943RKk.roa (raw, json)
Hash identifier: wW9flCrCg9MD3aQ2IfFJWXtKa6Zqh2zNg7iCwRfb50g=
Subject key identifier: 2D:37:8E:B7:30:78:2C:72:41:09:15:CE:27:0A:B7:5B:DE:37:44:A9
Certificate issuer: /CN=0b175873adeb83c8f16a2e0e3cbb251e58833a87
Certificate serial: 0777221C
Authority key identifier: 0B:17:58:73:AD:EB:83:C8:F1:6A:2E:0E:3C:BB:25:1E:58:83:3A:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CxdYc63rg8jxai4OPLslHliDOoc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/02701d-081c-4d07-b3ff-69fcaf488bfa/1/LTeOtzB4LHJBCRXOJwq3W943RKk.roa
Signing time: Thu 31 Mar 2022 08:39:47 +0000
ROA not before: Thu 31 Mar 2022 08:39:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.88.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125248028 (0x777221c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b175873adeb83c8f16a2e0e3cbb251e58833a87
Validity
Not Before: Mar 31 08:39:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d378eb730782c72410915ce270ab75bde3744a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:31:bf:9b:41:2f:78:a1:ca:9c:de:1d:d6:46:
b2:90:64:f2:a8:f7:e5:49:c3:7b:a4:db:12:85:6e:
67:f0:6c:c6:2d:a1:2c:00:e1:7b:63:32:9b:f8:c1:
1d:28:3f:00:fd:ff:4d:ae:65:5c:8d:d4:7b:c6:7f:
71:49:c0:21:06:96:75:9f:b8:6e:c7:e6:2e:23:c6:
e5:c2:64:18:3e:67:b2:ff:08:00:ee:35:4c:ec:ed:
56:96:01:91:31:b1:0f:3e:29:cf:c8:25:29:47:30:
99:f3:e9:5d:cb:8c:02:ef:f9:9c:e1:58:1e:dd:a1:
4f:d4:4a:b2:d4:f9:34:e0:b8:e7:b6:fc:d0:84:4e:
c4:4c:91:3e:25:70:87:cf:a0:7f:78:6b:ab:34:50:
10:ab:6c:1d:76:77:eb:17:32:49:e4:fc:b9:48:ef:
65:79:57:80:ed:a7:5a:51:3e:f3:7c:2c:b0:6f:f9:
a0:fd:13:5e:02:ce:1b:5c:d5:90:b5:e3:4f:ea:cc:
d2:04:46:f7:30:64:50:73:11:0f:d7:6c:b6:bc:6e:
15:d5:8d:42:88:4f:89:e5:53:e1:26:8d:5f:8a:4e:
b3:41:57:e5:88:84:c7:90:33:03:67:98:6c:8c:94:
61:9a:83:7c:56:4e:16:3c:c2:6a:b7:8b:58:d1:bd:
54:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:37:8E:B7:30:78:2C:72:41:09:15:CE:27:0A:B7:5B:DE:37:44:A9
X509v3 Authority Key Identifier:
keyid:0B:17:58:73:AD:EB:83:C8:F1:6A:2E:0E:3C:BB:25:1E:58:83:3A:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CxdYc63rg8jxai4OPLslHliDOoc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/02701d-081c-4d07-b3ff-69fcaf488bfa/1/LTeOtzB4LHJBCRXOJwq3W943RKk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/02701d-081c-4d07-b3ff-69fcaf488bfa/1/CxdYc63rg8jxai4OPLslHliDOoc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.88.184.0/24
Signature Algorithm: sha256WithRSAEncryption
28:c1:88:be:51:05:bb:3d:a4:27:69:1c:66:75:2e:c7:ce:63:
24:1e:e1:9b:a0:d9:8c:f5:31:e2:4a:9e:9c:d2:f7:cd:e7:91:
a2:64:5a:59:d2:49:fa:fd:60:93:03:ce:3b:60:fc:68:d6:50:
2e:49:40:14:d6:6d:18:aa:60:89:6d:52:d4:01:41:a3:e0:b3:
e2:e5:b7:54:9f:c3:b5:cf:81:0e:4e:12:f9:ae:c2:72:13:44:
3c:10:1a:b4:cb:cd:3f:56:ac:28:7d:2f:4b:80:ed:e6:69:3a:
77:bc:71:a1:dc:a1:51:5b:bc:72:b2:f9:c0:7b:70:49:35:97:
65:ba:c3:39:4a:7e:23:5b:9e:e2:c7:ba:4c:18:84:04:1f:36:
77:58:85:63:67:ce:4f:e7:71:b8:3c:5f:4c:c8:69:d4:df:08:
9c:54:fe:09:1c:14:54:e7:d6:2a:35:86:ec:e3:e3:e0:10:d6:
94:b9:cd:50:83:0b:1c:c4:6c:d7:70:65:ce:26:d9:3a:ac:be:
4f:20:32:42:21:b3:cc:17:a3:1b:c0:3d:1c:82:fa:33:80:28:
d8:29:97:4c:47:f5:bb:ae:f3:38:c0:a7:19:ac:a3:39:93:de:
d5:be:60:ce:be:69:33:b3:89:eb:9b:4d:d4:b7:fd:cb:30:50:
2c:31:87:05
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB3ciHDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
YjE3NTg3M2FkZWI4M2M4ZjE2YTJlMGUzY2JiMjUxZTU4ODMzYTg3MB4XDTIyMDMz
MTA4Mzk0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmQzNzhlYjczMDc4
MmM3MjQxMDkxNWNlMjcwYWI3NWJkZTM3NDRhOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJkxv5tBL3ihypzeHdZGspBk8qj35UnDe6TbEoVuZ/Bsxi2h
LADhe2Mym/jBHSg/AP3/Ta5lXI3Ue8Z/cUnAIQaWdZ+4bsfmLiPG5cJkGD5nsv8I
AO41TOztVpYBkTGxDz4pz8glKUcwmfPpXcuMAu/5nOFYHt2hT9RKstT5NOC457b8
0IROxEyRPiVwh8+gf3hrqzRQEKtsHXZ36xcySeT8uUjvZXlXgO2nWlE+83wssG/5
oP0TXgLOG1zVkLXjT+rM0gRG9zBkUHMRD9dstrxuFdWNQohPieVT4SaNX4pOs0FX
5YiEx5AzA2eYbIyUYZqDfFZOFjzCareLWNG9VFsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQtN463MHgsckEJFc4nCrdb3jdEqTAfBgNVHSMEGDAWgBQLF1hzreuDyPFq
Lg48uyUeWIM6hzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0N4ZFljNjNyZzhqeGFpNE9QTHNsSGxpRE9vYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDMvMDI3MDFkLTA4MWMtNGQwNy1iM2ZmLTY5ZmNhZjQ4OGJmYS8x
L0xUZU90ekI0TEhKQkNSWE9Kd3EzVzk0M1JLay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDMv
MDI3MDFkLTA4MWMtNGQwNy1iM2ZmLTY5ZmNhZjQ4OGJmYS8xL0N4ZFljNjNyZzhq
eGFpNE9QTHNsSGxpRE9vYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALlYuDANBgkqhkiG9w0BAQsFAAOC
AQEAKMGIvlEFuz2kJ2kcZnUux85jJB7hm6DZjPUx4kqenNL3zeeRomRaWdJJ+v1g
kwPOO2D8aNZQLklAFNZtGKpgiW1S1AFBo+Cz4uW3VJ/Dtc+BDk4S+a7CchNEPBAa
tMvNP1asKH0vS4Dt5mk6d7xxodyhUVu8crL5wHtwSTWXZbrDOUp+I1ue4se6TBiE
BB82d1iFY2fOT+dxuDxfTMhp1N8InFT+CRwUVOfWKjWG7OPj4BDWlLnNUIMLHMRs
13BlzibZOqy+TyAyQiGzzBejG8A9HIL6M4Ao2CmXTEf1u67zOMCnGayjOZPe1b5g
zr5pM7OJ65tN1Lf9yzBQLDGHBQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:11 2023 by rpki-client on console-fra.rpki-client.org