Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/399d62-882a-443d-bd80-55ddf80e9a9d/1/d6EilZJ8dBIuf3NTOr4RwBeQFZU.roa
File: d6EilZJ8dBIuf3NTOr4RwBeQFZU.roa (raw, json)
Hash identifier: W21cJNUsPjqKMeUVDd5ZFJGbV5/OBjdptar1C51vNWA=
Subject key identifier: 77:A1:22:95:92:7C:74:12:2E:7F:73:53:3A:BE:11:C0:17:90:15:95
Certificate issuer: /CN=00d946a5340b7f0ff50d9afa6519ade7f3a4a082
Certificate serial: 079E3218
Authority key identifier: 00:D9:46:A5:34:0B:7F:0F:F5:0D:9A:FA:65:19:AD:E7:F3:A4:A0:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ANlGpTQLfw_1DZr6ZRmt5_OkoII.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/399d62-882a-443d-bd80-55ddf80e9a9d/1/d6EilZJ8dBIuf3NTOr4RwBeQFZU.roa
Signing time: Sat 01 Jan 2022 09:59:48 +0000
ROA not before: Sat 01 Jan 2022 09:59:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205854
IP address blocks: 185.185.188.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127808024 (0x79e3218)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00d946a5340b7f0ff50d9afa6519ade7f3a4a082
Validity
Not Before: Jan 1 09:59:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77a12295927c74122e7f73533abe11c017901595
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:2b:1a:02:45:2f:6f:0d:c2:e2:6a:eb:c0:f0:
f2:01:93:3d:54:49:b6:9f:b4:f5:e1:99:71:c7:f7:
e9:71:6f:9f:8d:79:10:4b:ae:e0:b7:8a:59:d2:32:
d2:70:40:0f:ba:fa:54:8c:8d:48:ee:79:e7:08:9d:
60:2a:bc:55:0a:4f:31:7e:3b:de:f6:04:c2:cd:a7:
52:ee:04:21:c8:52:4f:33:c2:a0:7a:7b:94:1f:61:
bc:7c:c7:94:d9:ce:6b:80:e2:95:47:94:20:a7:5e:
60:73:0a:3e:f0:61:1c:33:46:cc:43:d5:3c:39:ec:
bf:4b:23:68:43:dd:be:07:d3:40:ed:30:e0:66:e2:
ec:30:5d:1a:a9:ea:a2:f8:1f:fc:38:c8:b8:10:a4:
1e:87:d3:35:95:cd:af:97:15:b5:aa:12:c0:1f:4f:
a1:94:16:11:ae:2e:08:69:f0:68:4c:74:8b:8f:19:
b8:7d:88:5c:85:74:6a:ce:29:9b:f9:f0:bf:44:94:
dd:b8:22:26:6c:ac:aa:6a:14:c1:a3:a2:f4:a7:2d:
b2:92:8a:bd:32:9b:1e:44:bc:48:e2:6e:91:d0:4e:
7e:50:39:81:9c:43:c0:93:2c:a3:25:88:0e:3d:0e:
2d:14:b3:8b:c7:87:34:d2:4a:5f:ec:d3:c0:58:6f:
c7:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:A1:22:95:92:7C:74:12:2E:7F:73:53:3A:BE:11:C0:17:90:15:95
X509v3 Authority Key Identifier:
keyid:00:D9:46:A5:34:0B:7F:0F:F5:0D:9A:FA:65:19:AD:E7:F3:A4:A0:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ANlGpTQLfw_1DZr6ZRmt5_OkoII.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/399d62-882a-443d-bd80-55ddf80e9a9d/1/d6EilZJ8dBIuf3NTOr4RwBeQFZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/399d62-882a-443d-bd80-55ddf80e9a9d/1/ANlGpTQLfw_1DZr6ZRmt5_OkoII.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.185.188.0/22
Signature Algorithm: sha256WithRSAEncryption
83:c0:62:27:ed:4e:fc:e3:da:ed:03:ee:06:de:af:fe:85:89:
c6:5d:56:62:c3:23:bb:fc:4a:8f:07:06:f3:5e:ab:da:da:e2:
55:ab:61:35:50:31:07:6a:d3:50:96:64:68:0d:cd:02:f9:3b:
b8:ae:5a:02:8f:69:e5:46:37:49:f6:17:43:f9:35:84:eb:25:
9b:e2:8d:eb:62:39:e9:a7:e8:88:32:6d:64:87:ad:42:d2:9e:
b1:2a:88:60:90:6a:01:37:49:c8:de:93:d3:1b:e8:da:2b:45:
39:bb:c3:20:12:12:06:44:e6:ca:b4:8c:55:c8:2a:52:8f:3d:
45:71:68:24:8b:16:fa:98:28:fd:56:28:27:b9:43:98:c5:ba:
50:90:17:77:d5:4d:fd:04:22:a6:f9:10:42:b6:79:ed:1c:9b:
81:b9:60:06:14:a8:33:60:81:5f:b3:71:ad:14:04:1b:21:86:
9e:b4:09:da:57:97:f5:9f:08:d4:5e:5e:b9:f5:63:c1:95:b2:
ee:8c:34:10:5d:11:ca:2f:fe:a3:da:de:47:cd:05:33:fb:c4:
86:16:cc:f2:93:80:4a:9a:ea:1f:9e:13:42:88:c7:be:fd:21:
15:53:7f:34:d6:94:f2:d6:81:a1:fb:f5:14:fa:cc:02:33:7a:
2c:64:d6:b7
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB54yGDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
MGQ5NDZhNTM0MGI3ZjBmZjUwZDlhZmE2NTE5YWRlN2YzYTRhMDgyMB4XDTIyMDEw
MTA5NTk0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzdhMTIyOTU5Mjdj
NzQxMjJlN2Y3MzUzM2FiZTExYzAxNzkwMTU5NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOUrGgJFL28NwuJq68Dw8gGTPVRJtp+09eGZccf36XFvn415
EEuu4LeKWdIy0nBAD7r6VIyNSO555widYCq8VQpPMX473vYEws2nUu4EIchSTzPC
oHp7lB9hvHzHlNnOa4DilUeUIKdeYHMKPvBhHDNGzEPVPDnsv0sjaEPdvgfTQO0w
4Gbi7DBdGqnqovgf/DjIuBCkHofTNZXNr5cVtaoSwB9PoZQWEa4uCGnwaEx0i48Z
uH2IXIV0as4pm/nwv0SU3bgiJmysqmoUwaOi9KctspKKvTKbHkS8SOJukdBOflA5
gZxDwJMsoyWIDj0OLRSzi8eHNNJKX+zTwFhvx9sCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR3oSKVknx0Ei5/c1M6vhHAF5AVlTAfBgNVHSMEGDAWgBQA2UalNAt/D/UN
mvplGa3n86SggjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0FObEdwVFFMZndfMURacjZaUm10NV9Pa29JSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGMvMzk5ZDYyLTg4MmEtNDQzZC1iZDgwLTU1ZGRmODBlOWE5ZC8x
L2Q2RWlsWko4ZEJJdWYzTlRPcjRSd0JlUUZaVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGMv
Mzk5ZDYyLTg4MmEtNDQzZC1iZDgwLTU1ZGRmODBlOWE5ZC8xL0FObEdwVFFMZndf
MURacjZaUm10NV9Pa29JSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArm5vDANBgkqhkiG9w0BAQsFAAOC
AQEAg8BiJ+1O/OPa7QPuBt6v/oWJxl1WYsMju/xKjwcG816r2triVathNVAxB2rT
UJZkaA3NAvk7uK5aAo9p5UY3SfYXQ/k1hOslm+KN62I56afoiDJtZIetQtKesSqI
YJBqATdJyN6T0xvo2itFObvDIBISBkTmyrSMVcgqUo89RXFoJIsW+pgo/VYoJ7lD
mMW6UJAXd9VN/QQipvkQQrZ57RybgblgBhSoM2CBX7NxrRQEGyGGnrQJ2leX9Z8I
1F5eufVjwZWy7ow0EF0Ryi/+o9reR80FM/vEhhbM8pOASprqH54TQojHvv0hFVN/
NNaU8taBofv1FPrMAjN6LGTWtw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:34 2023 by rpki-client on console-ams.rpki-client.org