Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/290a60-792f-4475-a9f4-e3b9e0bae6ab/1/TQdsShqxUZZPiwdwmA3KZZQV_Pw.roa
File: TQdsShqxUZZPiwdwmA3KZZQV_Pw.roa (raw, json)
Hash identifier: ebcjZB8R5gBhLPSjg4XluJReqWwFgdXrjxCKv5DwOmQ=
Subject key identifier: 4D:07:6C:4A:1A:B1:51:96:4F:8B:07:70:98:0D:CA:65:94:15:FC:FC
Certificate issuer: /CN=7f1d58d62ddd7e47af2196fd754bb3ff2679892a
Certificate serial: 0C04B91A
Authority key identifier: 7F:1D:58:D6:2D:DD:7E:47:AF:21:96:FD:75:4B:B3:FF:26:79:89:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fx1Y1i3dfkevIZb9dUuz_yZ5iSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/290a60-792f-4475-a9f4-e3b9e0bae6ab/1/TQdsShqxUZZPiwdwmA3KZZQV_Pw.roa
Signing time: Sat 01 Jan 2022 12:56:50 +0000
ROA not before: Sat 01 Jan 2022 12:56:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60068
IP address blocks: 185.102.218.0/24 maxlen: 24
185.102.216.0/24 maxlen: 24
185.102.219.0/24 maxlen: 24
185.102.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 201636122 (0xc04b91a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f1d58d62ddd7e47af2196fd754bb3ff2679892a
Validity
Not Before: Jan 1 12:56:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d076c4a1ab151964f8b0770980dca659415fcfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b6:d6:0c:0a:35:52:c1:1c:d8:48:56:16:d2:
b0:e0:30:53:4c:95:e1:19:54:e4:e2:40:a5:8f:00:
ea:71:4a:b3:13:06:ff:7e:a4:33:55:85:fc:1d:8d:
b4:c3:c7:c3:61:3b:e9:82:87:6d:05:d0:5e:24:8b:
ac:88:32:80:4e:8f:ce:ed:28:4e:d2:ef:fe:3d:e7:
6c:5e:eb:fc:69:7b:5a:d8:d2:90:d3:f7:39:af:82:
c5:96:da:d9:91:f1:1a:51:5e:96:7e:7d:a3:90:f5:
8e:24:05:70:d0:d0:0c:d6:2c:5d:2f:e3:d8:89:eb:
d5:4a:8e:c7:26:19:b5:80:f3:d0:68:f0:88:a3:b0:
a8:13:1f:0a:c1:87:e3:6a:cf:4c:92:81:22:2d:97:
11:bf:07:6b:99:6d:91:f7:2c:c0:fa:e5:b9:82:c8:
28:ab:66:85:f1:e6:97:73:99:fe:af:61:25:61:bf:
1b:09:d7:c6:a8:a4:7e:c4:46:39:0e:4c:ce:04:f8:
88:3c:64:bf:f6:a0:1b:82:88:0c:30:c3:cf:d1:69:
b6:b8:3a:c5:da:e1:08:4c:35:a4:4c:30:61:71:9e:
01:d0:e3:34:0f:fc:cb:2f:47:e6:57:e2:df:f7:03:
9e:be:52:ca:fe:99:0c:db:05:f8:4b:d1:0c:14:0e:
3d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:07:6C:4A:1A:B1:51:96:4F:8B:07:70:98:0D:CA:65:94:15:FC:FC
X509v3 Authority Key Identifier:
keyid:7F:1D:58:D6:2D:DD:7E:47:AF:21:96:FD:75:4B:B3:FF:26:79:89:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fx1Y1i3dfkevIZb9dUuz_yZ5iSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/290a60-792f-4475-a9f4-e3b9e0bae6ab/1/TQdsShqxUZZPiwdwmA3KZZQV_Pw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/290a60-792f-4475-a9f4-e3b9e0bae6ab/1/fx1Y1i3dfkevIZb9dUuz_yZ5iSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.102.216.0/22
Signature Algorithm: sha256WithRSAEncryption
29:01:03:ce:fb:c0:d2:24:bc:53:6b:b8:5d:d4:af:5c:ca:28:
69:11:91:77:83:6a:b7:bc:ed:72:d2:d6:b5:ca:b5:21:05:68:
04:be:d2:bc:6b:e5:ac:c4:8f:18:f9:ec:e8:ac:ea:ef:da:87:
c7:d1:9e:94:8a:f8:80:72:df:fb:60:4e:e9:2e:f1:89:e2:04:
6e:1a:07:45:28:cc:5a:75:39:71:e5:8f:2a:e0:5b:79:5f:e2:
75:dd:89:33:ab:f0:56:a2:37:0e:59:56:9c:d7:9b:60:38:c1:
cf:1e:e7:cf:65:f4:c6:e9:88:34:a9:5a:1d:85:95:e5:66:28:
ac:de:fa:40:9c:f7:88:9f:3b:0c:3b:e9:49:f7:60:df:fa:09:
02:c6:81:34:c0:1c:a3:5f:80:dd:42:f7:42:db:21:99:69:2d:
b2:44:6e:75:8e:9c:86:a2:f3:09:97:43:21:26:ca:99:3b:df:
1f:37:fd:1a:1e:9b:4f:05:e2:68:b0:66:fb:f2:ca:2c:f7:12:
25:e0:0c:a4:c1:06:45:e3:a0:c6:2a:ea:0b:3d:db:dc:f8:a0:
e0:ed:d0:6a:48:f5:97:cd:e2:c1:5f:35:39:27:8b:03:15:f3:
0d:b5:40:94:fe:fd:a3:6f:93:d3:a3:05:2c:e2:6c:f9:9d:c0:
ea:58:89:17
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDAS5GjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
ZjFkNThkNjJkZGQ3ZTQ3YWYyMTk2ZmQ3NTRiYjNmZjI2Nzk4OTJhMB4XDTIyMDEw
MTEyNTY1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGQwNzZjNGExYWIx
NTE5NjRmOGIwNzcwOTgwZGNhNjU5NDE1ZmNmYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMK21gwKNVLBHNhIVhbSsOAwU0yV4RlU5OJApY8A6nFKsxMG
/36kM1WF/B2NtMPHw2E76YKHbQXQXiSLrIgygE6Pzu0oTtLv/j3nbF7r/Gl7WtjS
kNP3Oa+CxZba2ZHxGlFeln59o5D1jiQFcNDQDNYsXS/j2Inr1UqOxyYZtYDz0Gjw
iKOwqBMfCsGH42rPTJKBIi2XEb8Ha5ltkfcswPrluYLIKKtmhfHml3OZ/q9hJWG/
GwnXxqikfsRGOQ5MzgT4iDxkv/agG4KIDDDDz9Fptrg6xdrhCEw1pEwwYXGeAdDj
NA/8yy9H5lfi3/cDnr5Syv6ZDNsF+EvRDBQOPQMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRNB2xKGrFRlk+LB3CYDcpllBX8/DAfBgNVHSMEGDAWgBR/HVjWLd1+R68h
lv11S7P/JnmJKjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2Z4MVkxaTNkZmtldklaYjlkVXV6X3laNWlTby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDYvMjkwYTYwLTc5MmYtNDQ3NS1hOWY0LWUzYjllMGJhZTZhYi8x
L1RRZHNTaHF4VVpaUGl3ZHdtQTNLWlpRVl9Qdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDYv
MjkwYTYwLTc5MmYtNDQ3NS1hOWY0LWUzYjllMGJhZTZhYi8xL2Z4MVkxaTNkZmtl
dklaYjlkVXV6X3laNWlTby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArlm2DANBgkqhkiG9w0BAQsFAAOC
AQEAKQEDzvvA0iS8U2u4XdSvXMooaRGRd4Nqt7ztctLWtcq1IQVoBL7SvGvlrMSP
GPns6Kzq79qHx9GelIr4gHLf+2BO6S7xieIEbhoHRSjMWnU5ceWPKuBbeV/idd2J
M6vwVqI3DllWnNebYDjBzx7nz2X0xumINKlaHYWV5WYorN76QJz3iJ87DDvpSfdg
3/oJAsaBNMAco1+A3UL3QtshmWktskRudY6chqLzCZdDISbKmTvfHzf9Gh6bTwXi
aLBm+/LKLPcSJeAMpMEGReOgxirqCz3b3Pig4O3Qakj1l83iwV81OSeLAxXzDbVA
lP79o2+T06MFLOJs+Z3A6liJFw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:21 2023 by rpki-client on console-fra.rpki-client.org