Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/F9iNfBZtcjV3rpEXfLeQ0Ipk8Hg.roa
File: F9iNfBZtcjV3rpEXfLeQ0Ipk8Hg.roa (raw, json)
Hash identifier: /xppl4spzBD/GBtb8icZXqqONdygkaEeqcI08Li7dMQ=
Subject key identifier: 17:D8:8D:7C:16:6D:72:35:77:AE:91:17:7C:B7:90:D0:8A:64:F0:78
Certificate issuer: /CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Certificate serial: 01850731F6E0C4257F36E4B7154EE6F558B2
Authority key identifier: 54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/F9iNfBZtcjV3rpEXfLeQ0Ipk8Hg.roa
Signing time: Mon 12 Dec 2022 16:36:32 +0000
ROA not before: Mon 12 Dec 2022 16:36:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210439
IP address blocks: 185.101.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:07:31:f6:e0:c4:25:7f:36:e4:b7:15:4e:e6:f5:58:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Validity
Not Before: Dec 12 16:36:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=17d88d7c166d723577ae91177cb790d08a64f078
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ec:d1:b0:53:8c:13:a4:43:43:11:16:68:ab:
d8:fc:37:3c:63:a3:29:2f:7f:aa:03:80:cf:64:60:
c8:26:09:02:03:c3:87:6e:48:72:6a:06:d4:98:b8:
51:cb:e3:2d:87:48:d0:c9:91:68:0e:9d:a0:ae:36:
64:d1:d5:e6:81:a8:ee:92:64:a7:ae:55:e6:d4:48:
96:9d:31:5d:86:5e:12:03:8c:d7:81:4e:a8:ac:00:
7b:aa:d8:6a:14:b1:06:3e:8b:a8:ed:dc:63:dc:1a:
fc:6d:f1:f3:c4:71:54:4c:e4:bc:aa:54:60:0d:4a:
fa:3d:b8:8e:08:20:50:9c:70:3e:cc:93:0a:86:29:
e7:64:15:7d:68:20:cc:7a:3f:bb:71:88:ed:81:1e:
47:cd:1e:90:5f:fe:1f:a2:76:b6:b1:17:9c:4b:d8:
1f:ab:2f:36:2a:c8:40:79:93:a7:1f:b0:9a:5b:b8:
a6:78:10:1d:8f:00:2e:81:7f:a4:79:41:82:ec:bc:
af:31:1f:8c:31:f6:1c:1c:e9:ac:2b:61:ad:e9:06:
d0:84:02:d8:f2:48:89:ed:24:26:6e:23:fb:f8:40:
3b:5e:24:4f:52:e8:00:b6:ec:b9:70:09:b1:42:85:
6a:84:09:fa:5f:b7:9f:9e:0a:8c:01:b3:9d:20:73:
50:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:D8:8D:7C:16:6D:72:35:77:AE:91:17:7C:B7:90:D0:8A:64:F0:78
X509v3 Authority Key Identifier:
keyid:54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/F9iNfBZtcjV3rpEXfLeQ0Ipk8Hg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/VB_cei8RpXZtOte99iXOXhGaj98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.170.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:be:4c:0a:33:5e:e3:68:f9:14:32:b6:a4:1d:a0:e4:4c:bc:
54:5d:84:b7:ab:d5:93:b0:3d:2f:cc:2d:c0:52:cd:d3:0b:42:
6c:c2:c4:66:52:f8:d1:5e:fb:d3:63:10:63:d2:db:c5:42:8a:
bd:30:96:d6:b9:07:64:75:1c:38:28:f3:ab:64:b1:d6:a9:d9:
87:12:ea:58:93:4e:e6:04:76:9d:7a:25:e3:68:e4:98:07:5b:
47:bc:4f:dc:43:3b:49:38:f4:ed:6b:ca:52:b4:eb:45:02:63:
30:41:3c:b4:c4:7e:ff:48:35:5e:59:79:16:6e:98:d4:83:5a:
67:3c:45:34:93:d0:57:7f:3f:90:09:1a:d7:0b:ea:f9:4f:6f:
93:70:fc:cb:a1:13:17:a3:6f:26:ce:4d:a5:f1:3f:9f:71:c2:
1b:23:6f:2d:24:3f:f3:23:87:40:d5:0a:92:15:54:54:88:c6:
71:ae:f5:d7:d0:d0:59:2a:47:f0:42:c3:68:ed:80:fa:17:59:
fe:d5:e3:74:3f:c7:04:ae:de:c3:f3:76:55:7a:11:75:4a:6c:
19:53:3f:6c:56:15:77:15:9d:b7:11:e0:16:06:a7:cb:b1:00:
d0:16:56:82:c6:bc:24:00:25:8b:b6:10:e3:8b:c4:f0:3a:11:
bd:b2:03:d8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYUHMfbgxCV/NuS3FU7m9ViyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0MWZkYzdhMmYxMWE1NzY2ZDNhZDdiZGY2MjVjZTVlMTE5
YThmZGYwHhcNMjIxMjEyMTYzNjMyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxN2Q4OGQ3YzE2NmQ3MjM1NzdhZTkxMTc3Y2I3OTBkMDhhNjRmMDc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlOzRsFOME6RDQxEWaKvY/Dc8Y6Mp
L3+qA4DPZGDIJgkCA8OHbkhyagbUmLhRy+Mth0jQyZFoDp2grjZk0dXmgajukmSn
rlXm1EiWnTFdhl4SA4zXgU6orAB7qthqFLEGPouo7dxj3Br8bfHzxHFUTOS8qlRg
DUr6PbiOCCBQnHA+zJMKhinnZBV9aCDMej+7cYjtgR5HzR6QX/4fona2sRecS9gf
qy82KshAeZOnH7CaW7imeBAdjwAugX+keUGC7LyvMR+MMfYcHOmsK2Gt6QbQhALY
8kiJ7SQmbiP7+EA7XiRPUugAtuy5cAmxQoVqhAn6X7efngqMAbOdIHNQBQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBfYjXwWbXI1d66RF3y3kNCKZPB4MB8GA1UdIwQY
MBaAFFQf3HovEaV2bTrXvfYlzl4Rmo/fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkJfY2VpOFJwWFp0T3RlOTlpWE9YaEdhajk4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC84ZmFkNjctYmI2Yi00NzczLWI4MWUt
YzkwMGE4OWYyMGYxLzEvRjlpTmZCWnRjalYzcnBFWGZMZVEwSXBrOEhnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC84ZmFkNjctYmI2Yi00NzczLWI4MWUtYzkwMGE4OWYyMGYx
LzEvVkJfY2VpOFJwWFp0T3RlOTlpWE9YaEdhajk4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuWWqMA0G
CSqGSIb3DQEBCwUAA4IBAQCzvkwKM17jaPkUMrakHaDkTLxUXYS3q9WTsD0vzC3A
Us3TC0JswsRmUvjRXvvTYxBj0tvFQoq9MJbWuQdkdRw4KPOrZLHWqdmHEupYk07m
BHadeiXjaOSYB1tHvE/cQztJOPTta8pStOtFAmMwQTy0xH7/SDVeWXkWbpjUg1pn
PEU0k9BXfz+QCRrXC+r5T2+TcPzLoRMXo28mzk2l8T+fccIbI28tJD/zI4dA1QqS
FVRUiMZxrvXX0NBZKkfwQsNo7YD6F1n+1eN0P8cErt7D83ZVehF1SmwZUz9sVhV3
FZ23EeAWBqfLsQDQFlaCxrwkACWLthDji8TwOhG9sgPY
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:39 2023 by rpki-client on console-ams.rpki-client.org