Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/TH9xrk1YF3ZEDHdHYa7594UlMA0.roa
File: TH9xrk1YF3ZEDHdHYa7594UlMA0.roa (raw, json)
Hash identifier: A12GN7bLOkWLrg7doNsDQ/PMQC3g79dvF/pck5+zUKY=
Subject key identifier: 4C:7F:71:AE:4D:58:17:76:44:0C:77:47:61:AE:F9:F7:85:25:30:0D
Certificate issuer: /CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c
Certificate serial: 366A1656
Authority key identifier: 20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/TH9xrk1YF3ZEDHdHYa7594UlMA0.roa
Signing time: Mon 21 Feb 2022 18:56:17 +0000
ROA not before: Mon 21 Feb 2022 18:56:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42604
IP address blocks: 185.1.122.0/24 maxlen: 24
2001:7f8:cd::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 912922198 (0x366a1656)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c
Validity
Not Before: Feb 21 18:56:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c7f71ae4d581776440c774761aef9f78525300d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:bb:75:df:36:8b:f6:d4:5c:1f:86:7a:39:d8:
24:4e:27:29:e4:5b:ba:d4:9d:28:82:f1:4a:e9:7a:
cd:ec:8b:d3:bb:c1:58:00:3e:40:32:12:cb:f5:bf:
64:2b:29:2f:05:ea:68:fd:33:ec:ef:02:24:b2:67:
93:fb:0f:fa:5d:57:3a:22:28:cb:ed:09:38:94:af:
bc:1f:bb:43:b3:e7:cd:8c:82:9b:3d:79:fd:d7:8e:
0f:87:52:f8:fd:93:70:98:7a:03:ea:20:13:fc:65:
3a:56:4c:a8:58:fa:ec:ae:cf:3d:73:41:43:1a:0b:
13:31:53:53:44:68:c6:0f:ae:9e:09:69:1c:80:5e:
87:fd:c6:69:4f:2b:0c:3d:f1:0f:6c:8a:b7:5d:ad:
e8:a7:fb:96:3f:ae:6e:24:2c:60:a4:ff:6e:3a:4f:
a5:cb:e7:cc:55:c8:a1:a7:f2:61:da:6a:4a:95:47:
ab:26:3c:7b:57:0e:f8:39:53:9e:70:f0:96:3a:9a:
f4:04:e4:65:9c:f2:30:9a:0b:b7:41:5c:d3:64:0f:
92:24:14:5d:a8:92:93:3b:eb:3f:c7:47:d2:ce:2c:
e8:17:d1:f9:ad:5d:54:48:3c:f7:85:b7:47:81:90:
e6:b6:4a:a0:72:96:e4:bc:91:ac:b4:51:11:3d:14:
fa:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:7F:71:AE:4D:58:17:76:44:0C:77:47:61:AE:F9:F7:85:25:30:0D
X509v3 Authority Key Identifier:
keyid:20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/TH9xrk1YF3ZEDHdHYa7594UlMA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/IB_jD8a0sND2204b-71QGV3KV1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.122.0/24
IPv6:
2001:7f8:cd::/48
Signature Algorithm: sha256WithRSAEncryption
15:6d:4d:b5:d8:a7:df:3f:54:d1:b4:d7:9f:40:8a:3d:d4:42:
da:16:e6:98:03:e3:22:ba:2b:80:35:49:2d:b4:e0:a3:7f:72:
45:6e:c2:4c:6f:81:44:65:93:3a:b5:29:ec:3b:d7:d3:cf:ab:
95:e6:84:87:32:43:b4:6c:88:9b:0b:4a:03:73:a4:1d:b1:dd:
99:3d:06:55:b5:eb:16:e9:0b:e9:51:e0:45:05:08:9d:fa:aa:
cf:00:11:27:85:17:2a:a5:ae:9d:e2:de:96:3c:2a:4e:b8:40:
4a:be:ff:15:ab:06:a0:7b:cb:7f:90:4b:1e:1d:fc:c9:cb:95:
b4:80:78:5b:24:5d:f3:80:f5:34:95:f7:af:cd:1d:b3:49:95:
28:f9:0d:33:17:e0:5b:eb:47:25:93:35:a7:54:be:3b:b4:8a:
53:b6:af:b3:06:d0:8a:23:aa:7a:a3:96:35:ec:d7:58:c9:d4:
86:7e:eb:17:87:0a:01:54:de:cb:bf:ef:e8:8c:f4:b9:01:e7:
c6:4d:52:b5:87:76:69:ae:92:eb:aa:83:0c:0e:df:0a:4f:0b:
99:8b:8c:36:58:fa:eb:e8:23:48:8c:03:eb:08:39:4b:ee:52:
5b:8e:08:df:8d:67:36:5f:38:35:19:23:c2:e2:ef:b7:aa:fd:
45:6b:57:42
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIENmoWVjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MDFmZTMwZmM2YjRiMGQwZjZkYjRlMWJmYmJkNTAxOTVkY2E1NzVjMB4XDTIyMDIy
MTE4NTYxN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGM3ZjcxYWU0ZDU4
MTc3NjQ0MGM3NzQ3NjFhZWY5Zjc4NTI1MzAwZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJq7dd82i/bUXB+GejnYJE4nKeRbutSdKILxSul6zeyL07vB
WAA+QDISy/W/ZCspLwXqaP0z7O8CJLJnk/sP+l1XOiIoy+0JOJSvvB+7Q7PnzYyC
mz15/deOD4dS+P2TcJh6A+ogE/xlOlZMqFj67K7PPXNBQxoLEzFTU0Roxg+unglp
HIBeh/3GaU8rDD3xD2yKt12t6Kf7lj+ubiQsYKT/bjpPpcvnzFXIoafyYdpqSpVH
qyY8e1cO+DlTnnDwljqa9ATkZZzyMJoLt0Fc02QPkiQUXaiSkzvrP8dH0s4s6BfR
+a1dVEg894W3R4GQ5rZKoHKW5LyRrLRRET0U+scCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBRMf3GuTVgXdkQMd0dhrvn3hSUwDTAfBgNVHSMEGDAWgBQgH+MPxrSw0Pbb
Thv7vVAZXcpXXDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0lCX2pEOGEwc05EMjIwNGItNzFRR1YzS1Yxdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDMvOGQ4MGY5LTQ5NGUtNGFiYi05OTU2LWZjMTIxYzgwMGIzMC8x
L1RIOXhyazFZRjNaRURIZEhZYTc1OTRVbE1BMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDMv
OGQ4MGY5LTQ5NGUtNGFiYi05OTU2LWZjMTIxYzgwMGIzMC8xL0lCX2pEOGEwc05E
MjIwNGItNzFRR1YzS1Yxdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEALkBejAPBAIAAjAJAwcAIAEH+ADN
MA0GCSqGSIb3DQEBCwUAA4IBAQAVbU212KffP1TRtNefQIo91ELaFuaYA+MiuiuA
NUkttOCjf3JFbsJMb4FEZZM6tSnsO9fTz6uV5oSHMkO0bIibC0oDc6Qdsd2ZPQZV
tesW6QvpUeBFBQid+qrPABEnhRcqpa6d4t6WPCpOuEBKvv8Vqwage8t/kEseHfzJ
y5W0gHhbJF3zgPU0lfevzR2zSZUo+Q0zF+Bb60clkzWnVL47tIpTtq+zBtCKI6p6
o5Y17NdYydSGfusXhwoBVN7Lv+/ojPS5AefGTVK1h3ZprpLrqoMMDt8KTwuZi4w2
WPrr6CNIjAPrCDlL7lJbjgjfjWc2Xzg1GSPC4u+3qv1Fa1dC
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:12 2023 by rpki-client on console-fra.rpki-client.org