Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/Bz6AkPnr-mZPOVyp_diYGYmrDqk.roa
File: Bz6AkPnr-mZPOVyp_diYGYmrDqk.roa (raw, json)
Hash identifier: XwMVEmHIdmQoa7qnZXpPYAe0hXkbMHs3FYdGPL+Gg3w=
Subject key identifier: 07:3E:80:90:F9:EB:FA:66:4F:39:5C:A9:FD:D8:98:19:89:AB:0E:A9
Certificate issuer: /CN=842e178a85d6c30b572b20261c44f8e7a4bfc272
Certificate serial: 02D03B
Authority key identifier: 84:2E:17:8A:85:D6:C3:0B:57:2B:20:26:1C:44:F8:E7:A4:BF:C2:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hC4XioXWwwtXKyAmHET456S_wnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/Bz6AkPnr-mZPOVyp_diYGYmrDqk.roa
Signing time: Tue 01 Mar 2022 02:42:10 +0000
ROA not before: Tue 01 Mar 2022 02:42:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204706
IP address blocks: 185.143.130.0/24 maxlen: 24
185.143.131.0/24 maxlen: 24
185.143.128.0/24 maxlen: 24
185.143.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 184379 (0x2d03b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=842e178a85d6c30b572b20261c44f8e7a4bfc272
Validity
Not Before: Mar 1 02:42:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=073e8090f9ebfa664f395ca9fdd8981989ab0ea9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:04:09:b4:00:38:aa:bc:86:68:27:0f:0f:20:
88:e7:18:c7:13:73:7b:ef:0a:65:a9:64:c6:d1:56:
51:45:cf:0c:b5:45:0e:fa:18:f0:24:95:93:6b:a2:
94:43:f4:94:79:01:ea:00:1f:0c:35:3b:ed:46:78:
0f:23:10:d0:09:ad:3e:95:88:5b:e3:39:6f:c2:37:
88:09:d4:30:fd:1f:cd:ef:54:f4:b7:3d:64:1f:ea:
3d:44:73:9d:13:6a:65:74:13:6f:b3:e2:ad:30:a5:
f3:48:91:5c:bd:f5:7c:57:9f:2c:10:9e:4f:1a:77:
66:96:d2:e5:41:f1:5a:2f:24:68:5d:a5:6b:20:86:
5b:1d:7b:3a:d5:d5:90:7d:7c:e9:d2:d0:cf:02:e3:
23:02:a0:11:60:3f:94:8c:48:20:6a:2c:a6:dc:73:
da:99:a5:f1:3a:be:fe:c1:ad:77:c5:f5:96:61:02:
ab:80:19:e1:c7:b8:30:86:1b:f1:7e:02:ef:c0:0b:
c8:38:75:56:50:71:64:13:ff:ff:35:75:a5:f5:40:
89:c7:40:a3:35:07:42:89:6e:12:9a:0d:0d:cb:72:
bc:af:bb:58:79:17:bc:8e:90:67:8a:96:77:d4:3c:
70:d9:4a:fd:7e:66:ca:4a:2f:36:48:9d:84:53:d7:
5e:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:3E:80:90:F9:EB:FA:66:4F:39:5C:A9:FD:D8:98:19:89:AB:0E:A9
X509v3 Authority Key Identifier:
keyid:84:2E:17:8A:85:D6:C3:0B:57:2B:20:26:1C:44:F8:E7:A4:BF:C2:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hC4XioXWwwtXKyAmHET456S_wnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/Bz6AkPnr-mZPOVyp_diYGYmrDqk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.128.0/22
Signature Algorithm: sha256WithRSAEncryption
54:88:05:69:0c:b0:19:46:26:a2:0b:18:7e:5f:6a:4b:a8:c1:
02:3a:0e:4b:d4:e4:c4:89:e0:bb:33:dd:5a:92:06:d2:3a:e8:
60:91:d7:12:8a:31:fa:1f:39:dd:48:1c:54:a2:2e:67:b6:c5:
17:0f:e7:5a:cc:5d:6e:90:09:1d:f0:69:16:e5:19:86:8e:d7:
36:b6:a6:0d:82:e2:31:3f:43:27:45:3f:e7:c5:e4:a9:82:a9:
bf:64:c2:21:2e:26:75:42:5e:d6:43:80:a1:eb:6d:d4:02:d6:
01:40:0f:a0:dd:c2:32:c7:42:61:24:3f:ed:17:51:d7:8a:44:
b4:9c:1c:44:ba:29:78:7a:fb:2c:0c:dc:73:b8:06:8c:3c:ff:
10:79:8a:7e:74:e3:59:96:57:f4:ba:a1:4f:8d:e2:66:ad:bb:
41:08:ac:32:71:dc:81:cf:2f:24:ea:19:25:77:b1:b7:22:d8:
88:0e:db:0f:23:2a:da:0b:6e:2d:41:93:c2:d3:df:e3:aa:fc:
5e:78:c0:26:c8:76:39:51:c1:50:0e:f2:5f:6c:06:b7:a8:e7:
75:2a:15:7f:c7:94:41:cc:18:62:b1:1e:7a:96:9e:2f:a1:f6:
66:b0:98:d8:05:f9:0a:1c:32:08:75:ac:bd:aa:a9:0b:c5:ba:
b0:21:19:9c
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAtA7MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDg0
MmUxNzhhODVkNmMzMGI1NzJiMjAyNjFjNDRmOGU3YTRiZmMyNzIwHhcNMjIwMzAx
MDI0MjEwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygwNzNlODA5MGY5ZWJm
YTY2NGYzOTVjYTlmZGQ4OTgxOTg5YWIwZWE5MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAyAQJtAA4qryGaCcPDyCI5xjHE3N77wplqWTG0VZRRc8MtUUO
+hjwJJWTa6KUQ/SUeQHqAB8MNTvtRngPIxDQCa0+lYhb4zlvwjeICdQw/R/N71T0
tz1kH+o9RHOdE2pldBNvs+KtMKXzSJFcvfV8V58sEJ5PGndmltLlQfFaLyRoXaVr
IIZbHXs61dWQfXzp0tDPAuMjAqARYD+UjEggaiym3HPamaXxOr7+wa13xfWWYQKr
gBnhx7gwhhvxfgLvwAvIOHVWUHFkE///NXWl9UCJx0CjNQdCiW4Smg0Ny3K8r7tY
eRe8jpBnipZ31Dxw2Ur9fmbKSi82SJ2EU9deyQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFAc+gJD56/pmTzlcqf3YmBmJqw6pMB8GA1UdIwQYMBaAFIQuF4qF1sMLVysg
JhxE+Oekv8JyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
aEM0WGlvWFd3d3RYS3lBbUhFVDQ1NlNfd25JLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC80NS8wNzMwZDEtZmVlMy00NjU0LTlkZWEtZTE4N2JlOWI2YzIzLzEv
Qno2QWtQbnItbVpQT1Z5cF9kaVlHWW1yRHFrLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS8w
NzMwZDEtZmVlMy00NjU0LTlkZWEtZTE4N2JlOWI2YzIzLzEvaEM0WGlvWFd3d3RY
S3lBbUhFVDQ1NlNfd25JLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuY+AMA0GCSqGSIb3DQEBCwUAA4IB
AQBUiAVpDLAZRiaiCxh+X2pLqMECOg5L1OTEieC7M91akgbSOuhgkdcSijH6Hznd
SBxUoi5ntsUXD+dazF1ukAkd8GkW5RmGjtc2tqYNguIxP0MnRT/nxeSpgqm/ZMIh
LiZ1Ql7WQ4Ch623UAtYBQA+g3cIyx0JhJD/tF1HXikS0nBxEuil4evssDNxzuAaM
PP8QeYp+dONZllf0uqFPjeJmrbtBCKwycdyBzy8k6hkld7G3ItiIDtsPIyraC24t
QZPC09/jqvxeeMAmyHY5UcFQDvJfbAa3qOd1KhV/x5RBzBhisR56lp4vofZmsJjY
BfkKHDIIday9qqkLxbqwIRmc
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:23 2024 by rpki-client on console-fra.rpki-client.org