Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/t6E2JrAdcaYq7VUnKJePKO1N0qA.roa
File: t6E2JrAdcaYq7VUnKJePKO1N0qA.roa (raw, json)
Hash identifier: zgV+ZXG0/j9mA5paiJotUlDbmCFS4qnDHuFh++8GhRY=
Subject key identifier: B7:A1:36:26:B0:1D:71:A6:2A:ED:55:27:28:97:8F:28:ED:4D:D2:A0
Certificate issuer: /CN=000b4faac79bb19690c3af5a078c6cb14a91ad42
Certificate serial: 01C384E1
Authority key identifier: 00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/t6E2JrAdcaYq7VUnKJePKO1N0qA.roa
Signing time: Sat 01 Jan 2022 05:03:50 +0000
ROA not before: Sat 01 Jan 2022 05:03:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52054
IP address blocks: 185.156.192.0/23 maxlen: 23
185.156.194.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29590753 (0x1c384e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=000b4faac79bb19690c3af5a078c6cb14a91ad42
Validity
Not Before: Jan 1 05:03:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7a13626b01d71a62aed552728978f28ed4dd2a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7b:09:f8:08:5a:e0:80:9b:58:9b:44:af:bf:
ac:8c:80:0c:0d:c1:64:b9:8b:6b:54:05:40:95:e2:
67:c6:86:05:2e:11:23:b5:1b:5a:8f:30:2e:ab:f8:
82:bc:0d:05:79:78:20:d8:60:95:b9:62:37:a2:0c:
d7:e3:59:e7:aa:8f:e0:1e:7d:75:82:a2:4d:e0:d9:
b5:9f:8c:52:fb:a8:84:75:d8:7c:43:2d:80:bc:99:
7c:9f:53:ae:8d:77:10:ec:fa:da:04:ec:30:54:92:
54:a5:1f:0b:9d:ce:d9:ed:15:c7:23:01:72:cb:e6:
b5:21:ef:95:9f:1b:9d:86:22:f4:7b:4a:3b:63:d2:
8b:75:91:5e:18:28:57:a7:f1:6f:a4:7f:7c:a7:7b:
7b:04:53:90:66:48:43:e5:71:ac:71:0f:75:01:8a:
c4:1a:9d:16:f4:52:99:38:9f:1c:0f:29:07:7c:9b:
04:7e:6c:5b:24:fc:0e:78:89:5b:79:03:83:31:6b:
5f:cb:d9:d7:da:84:2f:08:45:20:ef:72:97:99:43:
ee:28:6f:87:42:0e:58:8e:c8:c0:6d:16:79:e9:b6:
d5:8e:03:16:92:2a:fb:61:1b:c4:ff:02:0b:2a:40:
e3:f8:39:b0:64:d9:0a:8b:07:07:3d:89:34:6e:a9:
67:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:A1:36:26:B0:1D:71:A6:2A:ED:55:27:28:97:8F:28:ED:4D:D2:A0
X509v3 Authority Key Identifier:
keyid:00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/t6E2JrAdcaYq7VUnKJePKO1N0qA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.156.192.0-185.156.194.255
Signature Algorithm: sha256WithRSAEncryption
a1:1b:36:21:f9:b7:13:17:d9:c0:44:3f:f3:06:5a:e3:f5:db:
6a:dd:ec:39:b0:b1:04:08:8c:5d:27:e3:da:84:51:5e:d1:53:
b6:96:fc:db:d3:36:03:ad:df:c4:9b:1d:52:6e:c1:4d:5a:ce:
34:ac:a6:70:60:92:6d:a1:71:04:f7:ac:4f:9d:30:db:54:07:
8c:a9:9d:ae:aa:72:a8:d8:9d:41:76:c5:62:76:01:4f:ba:28:
a5:0c:e8:da:73:53:3a:cd:9b:e6:d6:a3:e8:c8:29:fc:0c:f2:
9a:5b:78:95:e8:41:8a:41:e4:53:b8:e1:35:d1:4e:6b:db:d2:
0d:e9:c6:ff:d7:73:08:b2:a2:96:8c:fe:b7:77:48:c3:67:d9:
62:aa:44:4d:2a:3c:31:2f:ee:86:c5:ef:8c:e8:b8:83:7e:17:
a9:19:f2:30:64:93:48:47:1b:09:73:c6:1a:0f:19:c2:c3:83:
49:41:31:03:13:ce:c0:5a:dd:2f:da:f6:76:1b:87:ff:87:eb:
da:27:60:4f:9e:75:ae:b7:92:7f:fe:4b:57:93:fa:97:7a:81:
6a:80:5d:15:80:9b:a9:3f:9a:5e:17:e1:04:5a:79:fd:db:d6:
fa:af:d0:ba:d8:ce:04:ab:c6:5e:7f:47:98:a4:62:fb:3d:e6:
8e:50:77:35
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEAcOE4TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
MDBiNGZhYWM3OWJiMTk2OTBjM2FmNWEwNzhjNmNiMTRhOTFhZDQyMB4XDTIyMDEw
MTA1MDM1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjdhMTM2MjZiMDFk
NzFhNjJhZWQ1NTI3Mjg5NzhmMjhlZDRkZDJhMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALl7CfgIWuCAm1ibRK+/rIyADA3BZLmLa1QFQJXiZ8aGBS4R
I7UbWo8wLqv4grwNBXl4INhglbliN6IM1+NZ56qP4B59dYKiTeDZtZ+MUvuohHXY
fEMtgLyZfJ9Tro13EOz62gTsMFSSVKUfC53O2e0VxyMBcsvmtSHvlZ8bnYYi9HtK
O2PSi3WRXhgoV6fxb6R/fKd7ewRTkGZIQ+VxrHEPdQGKxBqdFvRSmTifHA8pB3yb
BH5sWyT8DniJW3kDgzFrX8vZ19qELwhFIO9yl5lD7ihvh0IOWI7IwG0Weem21Y4D
FpIq+2EbxP8CCypA4/g5sGTZCosHBz2JNG6pZw0CAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBS3oTYmsB1xpirtVScol48o7U3SoDAfBgNVHSMEGDAWgBQAC0+qx5uxlpDD
r1oHjGyxSpGtQjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0FBdFBxc2Vic1phUXc2OWFCNHhzc1VxUnJVSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTEvOTkwYmI1LWZlNDItNDk4NS05Y2FmLWEwOTZlZWNkYTc5My8x
L3Q2RTJKckFkY2FZcTdWVW5LSmVQS08xTjBxQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEv
OTkwYmI1LWZlNDItNDk4NS05Y2FmLWEwOTZlZWNkYTc5My8xL0FBdFBxc2Vic1ph
UXc2OWFCNHhzc1VxUnJVSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQGuZzAAwQAuZzCMA0GCSqGSIb3
DQEBCwUAA4IBAQChGzYh+bcTF9nARD/zBlrj9dtq3ew5sLEECIxdJ+PahFFe0VO2
lvzb0zYDrd/Emx1SbsFNWs40rKZwYJJtoXEE96xPnTDbVAeMqZ2uqnKo2J1BdsVi
dgFPuiilDOjac1M6zZvm1qPoyCn8DPKaW3iV6EGKQeRTuOE10U5r29IN6cb/13MI
sqKWjP63d0jDZ9liqkRNKjwxL+6Gxe+M6LiDfhepGfIwZJNIRxsJc8YaDxnCw4NJ
QTEDE87AWt0v2vZ2G4f/h+vaJ2BPnnWut5J//ktXk/qXeoFqgF0VgJupP5peF+EE
Wnn929b6r9C62M4Eq8Zef0eYpGL7PeaOUHc1
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:22 2023 by rpki-client on console-fra.rpki-client.org