Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/SnTs6hZvM-43NqdvYokFA_SXvt0.roa
File: SnTs6hZvM-43NqdvYokFA_SXvt0.roa (raw, json)
Hash identifier: ZsHh7HEH54G+4QA51zs6M0XMaSi0JchhakpVQXQwGzY=
Subject key identifier: 4A:74:EC:EA:16:6F:33:EE:37:36:A7:6F:62:89:05:03:F4:97:BE:DD
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018563C5704D853B62CAF93D94AFF649D88F
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/SnTs6hZvM-43NqdvYokFA_SXvt0.roa
Signing time: Fri 30 Dec 2022 16:02:41 +0000
ROA not before: Fri 30 Dec 2022 16:02:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213002
IP address blocks: 185.241.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:63:c5:70:4d:85:3b:62:ca:f9:3d:94:af:f6:49:d8:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Dec 30 16:02:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a74ecea166f33ee3736a76f62890503f497bedd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:fe:b1:e5:24:c2:85:72:82:83:6c:e7:77:11:
ee:3f:84:6d:46:d8:2d:72:33:ef:8e:e4:10:ea:ee:
c5:51:3a:75:2b:db:95:5e:09:41:90:d7:19:b4:32:
de:20:de:3d:20:a4:10:a5:e1:c1:7e:2a:f5:a9:4b:
43:42:61:36:92:54:13:f0:3a:3e:74:db:7b:54:b8:
dc:c7:84:41:e5:64:b6:3e:7f:3d:7c:59:d1:6c:6c:
9b:d2:b5:2f:30:cb:9d:3e:3d:7c:a4:f7:b9:53:06:
dd:f2:ac:4c:2f:f1:56:f6:78:92:d5:e2:42:3f:04:
cc:76:44:86:64:d4:d1:d3:3f:7d:eb:69:c8:77:0f:
2e:3a:4d:46:96:b9:8f:24:4d:c6:ae:f8:8b:4f:be:
7b:d7:b9:7c:52:0d:bb:33:90:b7:38:f9:7a:34:9c:
21:5e:78:f4:5e:e4:31:d2:e0:b1:46:00:21:26:92:
99:52:c1:60:5c:c1:ec:67:6f:e8:dc:24:ae:7b:15:
d5:e0:3e:b1:3f:55:d7:d5:83:8c:8b:7d:e7:87:f6:
99:60:90:de:bf:60:af:9f:07:41:ed:47:4a:15:c5:
e3:8d:ac:c8:ac:a5:f0:dc:f9:1a:36:4d:86:86:82:
9c:54:2e:63:f8:7d:17:97:b3:4d:35:07:bf:1d:84:
24:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:74:EC:EA:16:6F:33:EE:37:36:A7:6F:62:89:05:03:F4:97:BE:DD
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/SnTs6hZvM-43NqdvYokFA_SXvt0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.10.0/24
Signature Algorithm: sha256WithRSAEncryption
58:97:ae:9f:5d:ac:78:0e:1b:11:15:eb:58:d6:97:2f:77:6f:
b3:7b:21:85:e1:97:21:95:78:84:03:41:e4:30:be:59:df:f0:
ed:7e:b6:42:c7:5e:af:d1:25:09:a4:c5:a2:4d:b2:50:1f:52:
b9:37:67:2a:ca:77:6a:70:43:93:35:6d:87:66:89:21:66:02:
0c:d5:5a:d5:05:0e:4a:38:da:9a:ec:5f:c1:0b:31:80:b4:5d:
91:f5:65:25:c8:06:59:f7:9d:1c:58:42:6a:71:5d:49:31:9b:
fb:e1:48:a1:87:fc:0f:34:cf:e6:49:52:f1:a7:19:15:1e:2b:
7b:4c:94:a8:ab:28:7a:62:e0:a5:5e:91:ee:27:5c:7c:31:50:
45:32:e4:f2:8f:72:d0:33:85:fa:f9:e0:95:8d:d5:2a:6a:60:
9d:b0:57:77:12:0e:9a:cb:a7:5d:38:64:b8:12:bc:2d:90:98:
7b:0a:63:b5:d7:3d:76:43:b7:dd:72:63:34:c9:a8:3b:de:a1:
62:00:0e:da:fc:8e:f7:6c:d5:f0:85:29:d0:d5:8f:f9:6a:88:
65:5c:9e:f2:72:e1:4e:61:62:f1:5a:fa:bc:4a:4f:c0:3e:fa:
82:28:c3:35:f1:d8:38:90:22:ac:29:5d:8f:86:6e:57:53:f9:
6f:f8:5d:f2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVjxXBNhTtiyvk9lK/2SdiPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZDU3NDQ3ZTM0MjBiODUzODc1YjZmYTQwMzcyYWFkZTMx
OTJjYTIwHhcNMjIxMjMwMTYwMjQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YTc0ZWNlYTE2NmYzM2VlMzczNmE3NmY2Mjg5MDUwM2Y0OTdiZWRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi/6x5STChXKCg2zndxHuP4RtRtgt
cjPvjuQQ6u7FUTp1K9uVXglBkNcZtDLeIN49IKQQpeHBfir1qUtDQmE2klQT8Do+
dNt7VLjcx4RB5WS2Pn89fFnRbGyb0rUvMMudPj18pPe5Uwbd8qxML/FW9niS1eJC
PwTMdkSGZNTR0z9962nIdw8uOk1GlrmPJE3GrviLT75717l8Ug27M5C3OPl6NJwh
Xnj0XuQx0uCxRgAhJpKZUsFgXMHsZ2/o3CSuexXV4D6xP1XX1YOMi33nh/aZYJDe
v2CvnwdB7UdKFcXjjazIrKXw3PkaNk2GhoKcVC5j+H0Xl7NNNQe/HYQkHQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEp07OoWbzPuNzanb2KJBQP0l77dMB8GA1UdIwQY
MBaAFMnVdEfjQguFOHW2+kA3Kq3jGSyiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTkt
NGUxOThmMGE2MDEzLzEvU25UczZoWnZNLTQzTnFkdllva0ZBX1NYdnQwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTktNGUxOThmMGE2MDEz
LzEveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufEKMA0G
CSqGSIb3DQEBCwUAA4IBAQBYl66fXax4DhsRFetY1pcvd2+zeyGF4ZchlXiEA0Hk
ML5Z3/DtfrZCx16v0SUJpMWiTbJQH1K5N2cqyndqcEOTNW2HZokhZgIM1VrVBQ5K
ONqa7F/BCzGAtF2R9WUlyAZZ950cWEJqcV1JMZv74Uihh/wPNM/mSVLxpxkVHit7
TJSoqyh6YuClXpHuJ1x8MVBFMuTyj3LQM4X6+eCVjdUqamCdsFd3Eg6ay6ddOGS4
ErwtkJh7CmO11z12Q7fdcmM0yag73qFiAA7a/I73bNXwhSnQ1Y/5aohlXJ7ycuFO
YWLxWvq8Sk/APvqCKMM18dg4kCKsKV2Phm5XU/lv+F3y
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org