Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/4989ba-9af3-4e3d-845d-eb977164a7e4/1/RkIDpX5U1GSm9o5wLiZ6Lv5wDQ8.roa
File: RkIDpX5U1GSm9o5wLiZ6Lv5wDQ8.roa (raw, json)
Hash identifier: nvhQxeYRnsuXI7YFwVYD10PPDQzlFQds4ldCscWgL3Y=
Subject key identifier: 46:42:03:A5:7E:54:D4:64:A6:F6:8E:70:2E:26:7A:2E:FE:70:0D:0F
Certificate issuer: /CN=0a77196340d2144b8ca7b0778984bb04bc1cb378
Certificate serial: 03F85779
Authority key identifier: 0A:77:19:63:40:D2:14:4B:8C:A7:B0:77:89:84:BB:04:BC:1C:B3:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CncZY0DSFEuMp7B3iYS7BLwcs3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/4989ba-9af3-4e3d-845d-eb977164a7e4/1/RkIDpX5U1GSm9o5wLiZ6Lv5wDQ8.roa
Signing time: Sat 01 Jan 2022 11:53:54 +0000
ROA not before: Sat 01 Jan 2022 11:53:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9002
IP address blocks: 185.212.88.0/23 maxlen: 23
185.212.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66606969 (0x3f85779)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a77196340d2144b8ca7b0778984bb04bc1cb378
Validity
Not Before: Jan 1 11:53:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=464203a57e54d464a6f68e702e267a2efe700d0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c9:b8:2d:66:cb:5a:4d:c2:f6:a0:7a:53:ae:
4a:4a:ab:ac:a2:98:e5:0d:9a:cd:7d:a8:0f:2e:05:
d4:04:aa:6b:c6:15:79:98:fa:e2:0c:3c:9e:ca:ed:
86:f7:0f:b0:a6:c5:1e:b9:6e:30:c5:7f:2c:67:10:
c2:e7:99:d6:84:92:27:7e:97:35:da:35:27:b6:be:
5f:b0:50:b6:7c:4c:cc:2b:ca:fb:12:24:45:94:de:
7d:13:77:d8:00:b8:73:df:45:32:ba:b7:6d:40:8c:
d3:82:cb:c8:ec:e6:76:a2:60:76:30:38:0e:08:c1:
67:93:d8:ac:33:be:f9:24:3b:f7:13:3a:7d:1e:76:
d2:c8:e5:7f:d9:80:07:b2:26:b6:d3:32:a1:20:da:
93:b6:6f:34:c3:12:c7:d4:b6:db:1c:f3:27:8e:4b:
5d:c9:cd:4c:25:6c:22:a0:6b:57:ff:17:a4:0b:39:
7c:e0:c2:97:a5:ab:ad:ac:6c:ef:05:38:ed:64:43:
ef:85:de:aa:57:22:71:c7:40:e7:1c:f0:98:b1:fe:
1d:0e:86:39:e6:d7:8e:0a:11:d8:3e:58:08:43:81:
01:27:28:8d:6b:af:0c:e6:b1:68:1f:7c:6c:47:2e:
73:92:03:04:b8:66:40:84:64:db:44:55:65:a6:3d:
99:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:42:03:A5:7E:54:D4:64:A6:F6:8E:70:2E:26:7A:2E:FE:70:0D:0F
X509v3 Authority Key Identifier:
keyid:0A:77:19:63:40:D2:14:4B:8C:A7:B0:77:89:84:BB:04:BC:1C:B3:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CncZY0DSFEuMp7B3iYS7BLwcs3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/4989ba-9af3-4e3d-845d-eb977164a7e4/1/RkIDpX5U1GSm9o5wLiZ6Lv5wDQ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/4989ba-9af3-4e3d-845d-eb977164a7e4/1/CncZY0DSFEuMp7B3iYS7BLwcs3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.88.0-185.212.90.255
Signature Algorithm: sha256WithRSAEncryption
41:dd:87:fb:60:22:26:c4:45:34:9f:5a:17:98:c2:d8:06:78:
47:4d:d3:02:f5:91:76:8f:a6:1d:95:8e:f3:a5:a4:6c:a7:65:
b3:d3:e8:ef:72:fd:4f:24:52:af:9f:23:11:28:0e:2f:ea:65:
bb:00:8c:6b:d9:98:7f:96:b7:3b:0f:0e:98:b6:01:aa:b9:e3:
09:c9:87:2c:3d:ad:e6:21:68:84:8e:b6:26:38:27:64:47:be:
63:15:57:3a:0b:b6:4f:b9:40:e4:04:fb:fd:73:c0:03:1a:6f:
ec:ab:3f:04:5d:ea:61:74:80:6d:0b:d3:fe:9b:38:bd:d4:9c:
e6:f4:ca:d8:20:4f:69:ca:c3:ee:d1:28:fc:40:d5:05:57:17:
fd:40:5c:89:27:c2:09:9d:e1:ee:58:97:52:f8:88:20:99:6a:
cf:00:fe:41:e3:78:db:c9:48:26:8c:47:c8:2d:eb:96:a1:2a:
5b:71:e3:c1:05:47:8a:46:0b:de:45:9a:4f:33:b9:ae:63:98:
36:4e:2f:15:ca:22:fa:38:65:57:de:1c:13:a0:ff:41:3d:f4:
6d:f6:0a:0c:1e:58:1c:04:74:ad:e5:f9:e7:90:41:c2:03:25:
01:84:96:fd:ce:5e:4e:b5:03:90:cb:1b:e1:3d:ba:33:54:43:
74:f2:8a:2b
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEA/hXeTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
YTc3MTk2MzQwZDIxNDRiOGNhN2IwNzc4OTg0YmIwNGJjMWNiMzc4MB4XDTIyMDEw
MTExNTM1NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDY0MjAzYTU3ZTU0
ZDQ2NGE2ZjY4ZTcwMmUyNjdhMmVmZTcwMGQwZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKzJuC1my1pNwvagelOuSkqrrKKY5Q2azX2oDy4F1ASqa8YV
eZj64gw8nsrthvcPsKbFHrluMMV/LGcQwueZ1oSSJ36XNdo1J7a+X7BQtnxMzCvK
+xIkRZTefRN32AC4c99FMrq3bUCM04LLyOzmdqJgdjA4DgjBZ5PYrDO++SQ79xM6
fR520sjlf9mAB7ImttMyoSDak7ZvNMMSx9S22xzzJ45LXcnNTCVsIqBrV/8XpAs5
fODCl6Wrraxs7wU47WRD74XeqlciccdA5xzwmLH+HQ6GOebXjgoR2D5YCEOBASco
jWuvDOaxaB98bEcuc5IDBLhmQIRk20RVZaY9mVcCAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBRGQgOlflTUZKb2jnAuJnou/nANDzAfBgNVHSMEGDAWgBQKdxljQNIUS4yn
sHeJhLsEvByzeDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0NuY1pZMERTRkV1TXA3QjNpWVM3Qkx3Y3MzZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGUvNDk4OWJhLTlhZjMtNGUzZC04NDVkLWViOTc3MTY0YTdlNC8x
L1JrSURwWDVVMUdTbTlvNXdMaVo2THY1d0RROC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGUv
NDk4OWJhLTlhZjMtNGUzZC04NDVkLWViOTc3MTY0YTdlNC8xL0NuY1pZMERTRkV1
TXA3QjNpWVM3Qkx3Y3MzZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQDudRYAwQAudRaMA0GCSqGSIb3
DQEBCwUAA4IBAQBB3Yf7YCImxEU0n1oXmMLYBnhHTdMC9ZF2j6YdlY7zpaRsp2Wz
0+jvcv1PJFKvnyMRKA4v6mW7AIxr2Zh/lrc7Dw6YtgGqueMJyYcsPa3mIWiEjrYm
OCdkR75jFVc6C7ZPuUDkBPv9c8ADGm/sqz8EXephdIBtC9P+mzi91Jzm9MrYIE9p
ysPu0Sj8QNUFVxf9QFyJJ8IJneHuWJdS+IggmWrPAP5B43jbyUgmjEfILeuWoSpb
cePBBUeKRgveRZpPM7muY5g2Ti8VyiL6OGVX3hwToP9BPfRt9goMHlgcBHSt5fnn
kEHCAyUBhJb9zl5OtQOQyxvhPbozVEN08oor
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:41 2023 by rpki-client on console-ams.rpki-client.org