Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/1-pvoLED7_gWs_CROV3cSuM3qBXw.roa
File: 1-pvoLED7_gWs_CROV3cSuM3qBXw.roa (raw, json)
Hash identifier: o3msztZWw7jumyNfCvNVGX719sTneY0NCo91X9Zx4oY=
Subject key identifier: FA:9B:E8:2C:40:FB:FE:05:AC:FC:24:4E:57:77:12:B8:CD:EA:05:7C
Certificate issuer: /CN=626a28b7c63ef6ab214a52cfa7c3e78db9a40823
Certificate serial: EE19CC
Authority key identifier: 62:6A:28:B7:C6:3E:F6:AB:21:4A:52:CF:A7:C3:E7:8D:B9:A4:08:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ymoot8Y-9qshSlLPp8PnjbmkCCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/1-pvoLED7_gWs_CROV3cSuM3qBXw.roa
Signing time: Sat 01 Jan 2022 08:57:55 +0000
ROA not before: Sat 01 Jan 2022 08:57:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 185.251.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15604172 (0xee19cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=626a28b7c63ef6ab214a52cfa7c3e78db9a40823
Validity
Not Before: Jan 1 08:57:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa9be82c40fbfe05acfc244e577712b8cdea057c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e4:e9:28:d4:bb:e4:40:c4:b0:0c:6c:e6:9d:
ba:8c:7d:05:fe:c0:34:ed:3a:49:a3:46:7f:c6:1a:
c4:6c:06:7a:7d:ad:2a:f7:38:b2:cc:c8:dc:dd:b6:
47:20:d6:90:2a:68:ee:07:2a:42:3e:79:86:f7:0e:
8a:1e:d6:7d:25:1d:39:22:05:52:46:9f:f0:35:76:
9d:f5:49:c6:e4:0e:2a:35:3a:58:92:7d:85:c9:b8:
36:9d:35:0e:bf:09:46:a6:84:3c:91:17:c9:9d:ea:
8a:3e:da:f3:15:79:33:bb:fe:fc:2f:80:11:44:3d:
1e:38:d2:05:0b:bd:a7:39:69:6f:74:92:2f:73:cc:
81:00:a2:36:c7:4a:9d:2f:c3:3a:74:38:b2:89:e7:
93:6b:4a:c2:60:00:97:fe:ef:ff:1c:7e:6b:83:ee:
b0:9e:fe:11:3b:07:7d:29:ab:e1:42:83:d0:4e:7b:
9d:c6:d3:9e:fd:a7:64:7d:db:8f:98:13:9f:63:37:
fd:47:70:9e:c1:d8:b9:75:88:4a:c3:e3:f2:7d:3e:
df:e5:01:15:da:01:3e:d5:d2:67:da:07:e7:e1:4b:
aa:4a:29:d9:97:2a:1b:15:5d:19:e7:43:cb:52:33:
c1:96:0a:4a:e7:d1:28:b9:ca:e0:6a:56:b7:9b:2e:
b8:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:9B:E8:2C:40:FB:FE:05:AC:FC:24:4E:57:77:12:B8:CD:EA:05:7C
X509v3 Authority Key Identifier:
keyid:62:6A:28:B7:C6:3E:F6:AB:21:4A:52:CF:A7:C3:E7:8D:B9:A4:08:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ymoot8Y-9qshSlLPp8PnjbmkCCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/1-pvoLED7_gWs_CROV3cSuM3qBXw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/Ymoot8Y-9qshSlLPp8PnjbmkCCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.21.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:b6:e3:f2:89:89:2d:56:28:a3:78:00:e6:b7:96:09:60:09:
70:e7:c0:98:2b:a1:54:43:ed:a0:18:c2:8d:b1:62:aa:48:d4:
6a:ae:72:4a:4e:95:d0:58:04:25:83:5d:31:52:11:4f:fd:0f:
da:26:88:4b:c6:ce:b1:2f:7c:2e:20:99:01:b0:55:f3:56:11:
e4:25:25:69:40:f8:e1:e1:0c:38:16:72:73:58:0b:bd:c5:98:
72:48:82:c7:5f:85:8f:35:5a:4f:c8:b6:2a:ee:8d:b9:5e:75:
e2:ac:00:a2:c3:0b:a2:8e:72:e3:ce:60:a4:1b:6d:cb:4c:f9:
83:bc:6e:2d:54:c2:f4:5c:14:6b:5a:c6:41:9a:de:c2:c6:1c:
89:5d:0e:63:81:81:0d:85:4c:d1:8a:7a:54:87:4a:79:7b:cf:
d7:dc:83:52:d2:1b:be:9e:d3:8a:aa:19:f7:f7:9a:99:e5:a8:
43:00:5c:2e:3d:17:96:a9:f7:cf:d8:ac:e7:8e:f2:8a:c1:2e:
b7:ba:40:b4:8a:a5:40:f9:16:c0:2e:eb:a0:5a:c9:9d:a6:bb:
88:d3:97:7a:fc:62:c9:77:7a:b9:f1:c8:08:41:30:f7:39:c4:
f3:0c:3a:ed:ca:8c:71:cd:4f:da:31:1b:49:35:cb:da:50:2a:
fc:7e:74:52
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEAO4ZzDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MjZhMjhiN2M2M2VmNmFiMjE0YTUyY2ZhN2MzZTc4ZGI5YTQwODIzMB4XDTIyMDEw
MTA4NTc1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmE5YmU4MmM0MGZi
ZmUwNWFjZmMyNDRlNTc3NzEyYjhjZGVhMDU3YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJvk6SjUu+RAxLAMbOaduox9Bf7ANO06SaNGf8YaxGwGen2t
Kvc4sszI3N22RyDWkCpo7gcqQj55hvcOih7WfSUdOSIFUkaf8DV2nfVJxuQOKjU6
WJJ9hcm4Np01Dr8JRqaEPJEXyZ3qij7a8xV5M7v+/C+AEUQ9HjjSBQu9pzlpb3SS
L3PMgQCiNsdKnS/DOnQ4sonnk2tKwmAAl/7v/xx+a4PusJ7+ETsHfSmr4UKD0E57
ncbTnv2nZH3bj5gTn2M3/UdwnsHYuXWISsPj8n0+3+UBFdoBPtXSZ9oH5+FLqkop
2ZcqGxVdGedDy1IzwZYKSufRKLnK4GpWt5suuNcCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBT6m+gsQPv+Baz8JE5XdxK4zeoFfDAfBgNVHSMEGDAWgBRiaii3xj72qyFK
Us+nw+eNuaQIIzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ltb290OFktOXFzaFNsTFBwOFBuamJta0NDTS5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGUvM2MwNzg1LWIyNzMtNDA3Mi1hNjM1LWQyY2QyNmI2OWRmMS8x
LzEtcHZvTEVEN19nV3NfQ1JPVjNjU3VNM3FCWHcucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRl
LzNjMDc4NS1iMjczLTQwNzItYTYzNS1kMmNkMjZiNjlkZjEvMS9ZbW9vdDhZLTlx
c2hTbExQcDhQbmpibWtDQ00uY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC5+xUwDQYJKoZIhvcNAQELBQAD
ggEBAGq24/KJiS1WKKN4AOa3lglgCXDnwJgroVRD7aAYwo2xYqpI1GquckpOldBY
BCWDXTFSEU/9D9omiEvGzrEvfC4gmQGwVfNWEeQlJWlA+OHhDDgWcnNYC73FmHJI
gsdfhY81Wk/ItirujbledeKsAKLDC6KOcuPOYKQbbctM+YO8bi1UwvRcFGtaxkGa
3sLGHIldDmOBgQ2FTNGKelSHSnl7z9fcg1LSG76e04qqGff3mpnlqEMAXC49F5ap
98/YrOeO8orBLre6QLSKpUD5FsAu66BayZ2mu4jTl3r8Ysl3ernxyAhBMPc5xPMM
Ou3KjHHNT9oxG0k1y9pQKvx+dFI=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:58 2023 by rpki-client on console-fra.rpki-client.org