Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/7e2f28-5cae-4e6f-a5f0-01bb5fd534f5/1/l58v2fkq9-mXe5Zx5X_CKbemTNA.roa
File: l58v2fkq9-mXe5Zx5X_CKbemTNA.roa (raw, json)
Hash identifier: 89swtwESXvbsaS6MiszrEWFgAGb/suQhV039gpwIZyY=
Subject key identifier: 97:9F:2F:D9:F9:2A:F7:E9:97:7B:96:71:E5:7F:C2:29:B7:A6:4C:D0
Certificate issuer: /CN=435e41960d590e99804e90b9af0365584c712c72
Certificate serial: 03DCD313
Authority key identifier: 43:5E:41:96:0D:59:0E:99:80:4E:90:B9:AF:03:65:58:4C:71:2C:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q15Blg1ZDpmATpC5rwNlWExxLHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/7e2f28-5cae-4e6f-a5f0-01bb5fd534f5/1/l58v2fkq9-mXe5Zx5X_CKbemTNA.roa
Signing time: Sat 01 Jan 2022 05:58:12 +0000
ROA not before: Sat 01 Jan 2022 05:58:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204686
IP address blocks: 185.196.150.0/24 maxlen: 24
185.196.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64803603 (0x3dcd313)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=435e41960d590e99804e90b9af0365584c712c72
Validity
Not Before: Jan 1 05:58:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=979f2fd9f92af7e9977b9671e57fc229b7a64cd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:5f:4a:76:ad:40:17:88:3f:4e:72:3b:4b:33:
f5:a2:6b:4b:eb:6a:74:46:df:22:11:1f:61:ee:9c:
49:60:07:4a:18:d9:ab:d9:33:9e:6f:09:f1:d0:67:
d2:4f:b0:8b:e1:7f:8e:a8:b9:e5:c3:0d:f2:d2:bd:
42:0c:bd:1c:a1:55:1c:e5:65:3e:98:24:46:d5:34:
3f:33:d4:d1:24:85:25:4c:d6:ca:65:27:a1:2a:ae:
a4:df:2d:8c:6a:20:47:69:bc:0a:6e:78:20:1d:8c:
6f:99:5b:57:1a:a0:55:82:b5:ea:af:06:58:03:81:
a2:0a:aa:c8:e7:1b:fa:5e:31:99:4f:3e:8c:f8:94:
46:19:58:d4:95:ac:c7:85:1d:42:84:e1:ea:3b:92:
53:f2:bb:52:b2:33:60:8a:7f:75:7c:e4:3e:db:05:
26:ce:d4:69:45:bb:2f:71:63:2b:9c:bb:8f:72:c4:
72:7b:2e:ff:98:ca:18:29:cd:26:0b:ea:c2:85:7d:
f8:36:15:b6:5a:f7:f9:50:61:7a:21:47:42:8f:ca:
6d:39:72:a1:fc:24:10:70:8d:16:ff:c4:a2:79:97:
25:e1:f9:a0:96:28:c9:13:4c:63:0b:2f:8d:a9:11:
53:bd:86:31:85:74:63:cc:40:37:b0:5c:a0:77:36:
ec:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:9F:2F:D9:F9:2A:F7:E9:97:7B:96:71:E5:7F:C2:29:B7:A6:4C:D0
X509v3 Authority Key Identifier:
keyid:43:5E:41:96:0D:59:0E:99:80:4E:90:B9:AF:03:65:58:4C:71:2C:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q15Blg1ZDpmATpC5rwNlWExxLHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/7e2f28-5cae-4e6f-a5f0-01bb5fd534f5/1/l58v2fkq9-mXe5Zx5X_CKbemTNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/7e2f28-5cae-4e6f-a5f0-01bb5fd534f5/1/Q15Blg1ZDpmATpC5rwNlWExxLHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.149.0-185.196.150.255
Signature Algorithm: sha256WithRSAEncryption
b7:05:aa:9a:cf:31:79:53:ef:55:b0:b6:d5:77:db:f5:27:4f:
94:64:b8:8b:29:5e:c1:ce:63:c9:12:ef:a0:84:03:13:2e:18:
2c:cd:18:18:97:31:f8:50:0d:53:e5:ae:1b:92:82:85:4b:ff:
26:f3:8b:d2:55:ef:b2:b7:7f:17:e7:93:2b:ac:24:d4:56:46:
1f:8e:5e:0a:c5:34:92:17:c3:a6:d5:75:8a:37:7a:e6:45:c5:
a5:5f:c3:f1:37:f9:0b:d4:93:d2:c5:e0:a4:93:c4:2a:a6:df:
a6:84:9a:6e:a6:01:cc:c9:34:e1:1f:aa:d5:2a:a7:14:a1:f7:
37:a4:c2:84:17:00:d4:d3:6e:c6:02:0b:67:d0:bf:08:66:33:
3e:1b:0a:51:51:48:49:85:cb:fe:7a:d4:69:6f:42:99:dc:76:
cd:26:a4:39:49:9f:c5:54:9f:9f:2a:5e:c9:e1:1c:11:ab:cb:
e1:04:fc:af:cc:6c:e2:5d:08:80:b1:9a:7b:a0:80:db:ef:6a:
15:06:9d:9b:c6:ac:be:22:95:05:3d:23:50:dd:2c:9c:7f:38:
36:76:8d:f7:c2:26:72:7f:83:8a:b9:f3:e1:5c:8f:fc:e2:9a:
35:b5:42:68:da:31:10:41:3c:f2:15:0d:e4:f8:1e:9d:a9:36:
36:1f:75:97
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEA9zTEzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
MzVlNDE5NjBkNTkwZTk5ODA0ZTkwYjlhZjAzNjU1ODRjNzEyYzcyMB4XDTIyMDEw
MTA1NTgxMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTc5ZjJmZDlmOTJh
ZjdlOTk3N2I5NjcxZTU3ZmMyMjliN2E2NGNkMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMhfSnatQBeIP05yO0sz9aJrS+tqdEbfIhEfYe6cSWAHShjZ
q9kznm8J8dBn0k+wi+F/jqi55cMN8tK9Qgy9HKFVHOVlPpgkRtU0PzPU0SSFJUzW
ymUnoSqupN8tjGogR2m8Cm54IB2Mb5lbVxqgVYK16q8GWAOBogqqyOcb+l4xmU8+
jPiURhlY1JWsx4UdQoTh6juSU/K7UrIzYIp/dXzkPtsFJs7UaUW7L3FjK5y7j3LE
cnsu/5jKGCnNJgvqwoV9+DYVtlr3+VBheiFHQo/KbTlyofwkEHCNFv/EonmXJeH5
oJYoyRNMYwsvjakRU72GMYV0Y8xAN7BcoHc27KMCAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBSXny/Z+Sr36Zd7lnHlf8Ipt6ZM0DAfBgNVHSMEGDAWgBRDXkGWDVkOmYBO
kLmvA2VYTHEscjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ExNUJsZzFaRHBtQVRwQzVyd05sV0V4eExISS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDgvN2UyZjI4LTVjYWUtNGU2Zi1hNWYwLTAxYmI1ZmQ1MzRmNS8x
L2w1OHYyZmtxOS1tWGU1Wng1WF9DS2JlbVROQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDgv
N2UyZjI4LTVjYWUtNGU2Zi1hNWYwLTAxYmI1ZmQ1MzRmNS8xL1ExNUJsZzFaRHBt
QVRwQzVyd05sV0V4eExISS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQAucSVAwQAucSWMA0GCSqGSIb3
DQEBCwUAA4IBAQC3BaqazzF5U+9VsLbVd9v1J0+UZLiLKV7BzmPJEu+ghAMTLhgs
zRgYlzH4UA1T5a4bkoKFS/8m84vSVe+yt38X55MrrCTUVkYfjl4KxTSSF8Om1XWK
N3rmRcWlX8PxN/kL1JPSxeCkk8Qqpt+mhJpupgHMyTThH6rVKqcUofc3pMKEFwDU
027GAgtn0L8IZjM+GwpRUUhJhcv+etRpb0KZ3HbNJqQ5SZ/FVJ+fKl7J4RwRq8vh
BPyvzGziXQiAsZp7oIDb72oVBp2bxqy+IpUFPSNQ3Sycfzg2do33wiZyf4OKufPh
XI/84po1tUJo2jEQQTzyFQ3k+B6dqTY2H3WX
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:11 2023 by rpki-client on console-ams.rpki-client.org