Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/5d6255-65c9-4bfa-b9d7-f657519d0233/1/A7idnUGnBzE5gAcx3xNdNo_kgYw.roa
File: A7idnUGnBzE5gAcx3xNdNo_kgYw.roa (raw, json)
Hash identifier: XX+EZFE5KmBJiOhJek2737Ly2MHFhoExeRvvI8zNFbU=
Subject key identifier: 03:B8:9D:9D:41:A7:07:31:39:80:07:31:DF:13:5D:36:8F:E4:81:8C
Certificate issuer: /CN=64dfe26d403141be9059ab2144325b402d4cab7d
Certificate serial: 0C448591
Authority key identifier: 64:DF:E2:6D:40:31:41:BE:90:59:AB:21:44:32:5B:40:2D:4C:AB:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZN_ibUAxQb6QWashRDJbQC1Mq30.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/5d6255-65c9-4bfa-b9d7-f657519d0233/1/A7idnUGnBzE5gAcx3xNdNo_kgYw.roa
Signing time: Wed 05 Jan 2022 10:24:14 +0000
ROA not before: Wed 05 Jan 2022 10:24:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49760
IP address blocks: 185.54.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 205817233 (0xc448591)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64dfe26d403141be9059ab2144325b402d4cab7d
Validity
Not Before: Jan 5 10:24:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=03b89d9d41a7073139800731df135d368fe4818c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:fd:96:bf:e9:bf:80:d5:61:b1:9e:97:dc:f0:
59:50:da:5d:c1:95:3f:eb:54:8f:a9:5d:c0:63:6c:
24:a0:2d:34:3b:87:bc:0b:fa:4b:77:bb:0d:ff:69:
c4:5d:6f:b9:2d:3b:b3:d1:60:86:c1:f4:b5:b3:e1:
48:e9:3e:1e:14:1e:2d:cb:40:c8:08:a7:71:5e:d5:
db:27:1f:86:11:8a:91:3b:57:e5:d6:cf:4c:c5:15:
9f:c2:78:d2:41:f7:2a:7d:08:f2:4c:01:b8:1a:f6:
7f:b5:7c:bf:a4:72:b4:c6:c6:4f:10:18:8c:db:e2:
93:fa:a7:cf:0b:25:5d:da:81:43:cb:0a:05:d1:c4:
bf:5d:5a:60:38:e0:dc:5d:58:c5:9b:2e:bf:ca:58:
26:c9:1c:73:8f:e6:01:6c:a1:df:8f:9b:22:7e:a7:
69:d2:c7:9e:69:07:5f:28:2c:3a:53:13:ee:99:39:
6e:7a:90:9b:18:21:a2:f1:c7:bf:ba:c8:64:1d:92:
e5:9c:b8:d9:7e:50:c3:39:4d:1b:1d:f0:71:2f:ae:
24:9c:31:32:53:2b:12:fd:73:c5:50:33:3e:60:e3:
99:d4:f5:b5:3a:ed:66:6e:b8:5c:d1:b0:ef:47:66:
5f:e2:34:6c:5b:e8:a4:7e:a8:94:8b:00:0e:86:77:
85:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:B8:9D:9D:41:A7:07:31:39:80:07:31:DF:13:5D:36:8F:E4:81:8C
X509v3 Authority Key Identifier:
keyid:64:DF:E2:6D:40:31:41:BE:90:59:AB:21:44:32:5B:40:2D:4C:AB:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZN_ibUAxQb6QWashRDJbQC1Mq30.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/5d6255-65c9-4bfa-b9d7-f657519d0233/1/A7idnUGnBzE5gAcx3xNdNo_kgYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/5d6255-65c9-4bfa-b9d7-f657519d0233/1/ZN_ibUAxQb6QWashRDJbQC1Mq30.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.54.158.0/24
Signature Algorithm: sha256WithRSAEncryption
72:3e:a7:4e:97:47:7a:08:11:01:a6:23:45:a1:5f:fa:99:99:
84:63:da:9d:6b:72:98:e8:43:e7:19:69:9e:5d:47:71:80:6b:
1d:77:69:cf:2b:bb:aa:1a:cf:48:7a:c8:8d:2f:94:14:b2:d6:
f5:c1:cc:df:2e:01:83:3d:88:e2:19:b1:2b:d2:67:28:7e:ee:
b9:51:54:96:2f:51:f7:2f:6d:2c:74:c4:41:92:a4:cb:c0:f8:
3c:f3:5e:86:9d:e6:32:da:a7:80:45:4a:47:8b:58:90:8c:7b:
1c:3d:1a:46:16:21:5b:94:e8:c2:c8:b0:c9:97:4f:9b:20:4f:
e4:ec:be:e1:16:74:76:60:04:72:28:ae:bd:9c:9e:44:59:7f:
fe:ff:ea:a5:e2:c9:10:c1:3a:27:f3:fc:5c:8d:e8:e9:2a:46:
fb:c1:f8:e5:f2:af:0f:58:e5:d7:90:6b:d8:2e:43:1e:0c:c0:
61:d2:97:26:92:55:81:aa:0b:71:e2:34:13:37:49:90:f1:05:
1a:fd:d9:9a:47:02:8e:58:1c:f5:d2:ba:38:f9:62:39:ab:f8:
7f:78:b5:ff:09:21:d8:6a:34:cd:d5:aa:a2:fc:c2:7f:4a:8f:
7b:eb:7a:1c:c7:92:64:c3:e9:ae:79:b5:dd:fd:e9:e5:ad:29:
52:68:ec:bd
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDESFkTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
NGRmZTI2ZDQwMzE0MWJlOTA1OWFiMjE0NDMyNWI0MDJkNGNhYjdkMB4XDTIyMDEw
NTEwMjQxNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDNiODlkOWQ0MWE3
MDczMTM5ODAwNzMxZGYxMzVkMzY4ZmU0ODE4YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM39lr/pv4DVYbGel9zwWVDaXcGVP+tUj6ldwGNsJKAtNDuH
vAv6S3e7Df9pxF1vuS07s9FghsH0tbPhSOk+HhQeLctAyAincV7V2ycfhhGKkTtX
5dbPTMUVn8J40kH3Kn0I8kwBuBr2f7V8v6RytMbGTxAYjNvik/qnzwslXdqBQ8sK
BdHEv11aYDjg3F1YxZsuv8pYJskcc4/mAWyh34+bIn6nadLHnmkHXygsOlMT7pk5
bnqQmxghovHHv7rIZB2S5Zy42X5QwzlNGx3wcS+uJJwxMlMrEv1zxVAzPmDjmdT1
tTrtZm64XNGw70dmX+I0bFvopH6olIsADoZ3hfMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQDuJ2dQacHMTmABzHfE102j+SBjDAfBgNVHSMEGDAWgBRk3+JtQDFBvpBZ
qyFEMltALUyrfTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1pOX2liVUF4UWI2UVdhc2hSREpiUUMxTXEzMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGYvNWQ2MjU1LTY1YzktNGJmYS1iOWQ3LWY2NTc1MTlkMDIzMy8x
L0E3aWRuVUduQnpFNWdBY3gzeE5kTm9fa2dZdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGYv
NWQ2MjU1LTY1YzktNGJmYS1iOWQ3LWY2NTc1MTlkMDIzMy8xL1pOX2liVUF4UWI2
UVdhc2hSREpiUUMxTXEzMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALk2njANBgkqhkiG9w0BAQsFAAOC
AQEAcj6nTpdHeggRAaYjRaFf+pmZhGPanWtymOhD5xlpnl1HcYBrHXdpzyu7qhrP
SHrIjS+UFLLW9cHM3y4Bgz2I4hmxK9JnKH7uuVFUli9R9y9tLHTEQZKky8D4PPNe
hp3mMtqngEVKR4tYkIx7HD0aRhYhW5TowsiwyZdPmyBP5Oy+4RZ0dmAEciiuvZye
RFl//v/qpeLJEME6J/P8XI3o6SpG+8H45fKvD1jl15Br2C5DHgzAYdKXJpJVgaoL
ceI0EzdJkPEFGv3ZmkcCjlgc9dK6OPliOav4f3i1/wkh2Go0zdWqovzCf0qPe+t6
HMeSZMPprnm13f3p5a0pUmjsvQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:01 2024 by rpki-client on console-fra.rpki-client.org