Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f59aa0-1fb3-4dda-9e5e-43202c7a5001/1/Hr5TQXQR6K2gWYJ3nlan9f-CSls.roa
File: Hr5TQXQR6K2gWYJ3nlan9f-CSls.roa (raw, json)
Hash identifier: Z3tbLJORA4mXr448AA9cj3puCK/PLZXSosZHp2BcRl4=
Subject key identifier: 1E:BE:53:41:74:11:E8:AD:A0:59:82:77:9E:56:A7:F5:FF:82:4A:5B
Certificate issuer: /CN=8e7a92cc4b9bd8de378f7e2218a62517d9ac56bc
Certificate serial: 0291E91E
Authority key identifier: 8E:7A:92:CC:4B:9B:D8:DE:37:8F:7E:22:18:A6:25:17:D9:AC:56:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jnqSzEub2N43j34iGKYlF9msVrw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f59aa0-1fb3-4dda-9e5e-43202c7a5001/1/Hr5TQXQR6K2gWYJ3nlan9f-CSls.roa
Signing time: Sat 01 Jan 2022 06:00:56 +0000
ROA not before: Sat 01 Jan 2022 06:00:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49603
IP address blocks: 185.65.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43116830 (0x291e91e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e7a92cc4b9bd8de378f7e2218a62517d9ac56bc
Validity
Not Before: Jan 1 06:00:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ebe53417411e8ada05982779e56a7f5ff824a5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:68:3c:a7:df:df:03:bf:be:37:65:c2:12:2b:
b9:b0:bc:c3:ca:6c:8a:18:57:87:9e:b7:84:20:1c:
1c:0a:59:d6:5b:96:90:87:16:e4:19:fa:37:b4:2e:
31:0a:8e:2a:78:a6:8f:fc:62:33:2b:17:d7:3b:7b:
7d:17:10:92:30:72:5b:b0:13:47:b5:0c:58:e1:52:
a2:87:bd:01:ac:fc:b4:9d:eb:6b:bc:1c:07:07:fe:
62:91:49:70:c4:26:b2:85:1a:53:e2:08:95:02:5a:
e1:43:86:b7:44:31:2a:a6:de:73:a8:cb:ca:a1:9c:
f1:c4:86:3f:cc:b2:d1:be:a5:00:70:50:68:1c:31:
c2:99:a4:ca:a3:79:a6:ab:17:7a:c5:2a:9c:2b:50:
7a:09:21:bc:26:89:33:64:1b:c8:39:b3:a6:86:68:
fd:b7:27:b7:b8:b7:6d:00:60:01:1b:da:a5:84:f3:
04:a4:76:1c:2b:c5:e5:b4:36:55:9d:f0:bb:1b:12:
81:d9:b5:95:f6:16:00:5e:75:78:37:50:a6:b9:ca:
ac:84:3b:4c:75:8a:7e:a2:dd:13:0d:ab:64:81:ef:
9e:32:08:b2:28:cc:36:6c:61:53:6d:7a:31:e9:8e:
ad:e5:6c:40:70:0e:e4:0e:fd:6c:4d:b8:05:58:72:
08:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:BE:53:41:74:11:E8:AD:A0:59:82:77:9E:56:A7:F5:FF:82:4A:5B
X509v3 Authority Key Identifier:
keyid:8E:7A:92:CC:4B:9B:D8:DE:37:8F:7E:22:18:A6:25:17:D9:AC:56:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jnqSzEub2N43j34iGKYlF9msVrw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f59aa0-1fb3-4dda-9e5e-43202c7a5001/1/Hr5TQXQR6K2gWYJ3nlan9f-CSls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f59aa0-1fb3-4dda-9e5e-43202c7a5001/1/jnqSzEub2N43j34iGKYlF9msVrw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.140.0/24
Signature Algorithm: sha256WithRSAEncryption
45:72:1d:be:86:3c:31:d4:63:01:47:91:c3:4a:95:ba:94:42:
4c:c6:63:fe:25:1b:61:d3:6d:49:51:d2:aa:40:d5:ab:a7:a2:
d8:f7:4f:b0:43:a6:fa:da:3c:a2:72:21:0f:b5:18:ba:91:f1:
7b:72:9d:54:6b:75:ae:ca:f6:0b:5a:d7:11:b5:24:e5:b1:d7:
d4:e8:d2:d2:f8:eb:e8:78:b4:f7:ef:3f:8a:9c:92:fc:a9:19:
ca:20:1a:2b:f9:d7:3f:45:e0:95:5a:39:5b:e7:37:d7:3f:5c:
f7:6e:0e:d4:fd:69:2a:19:e7:b7:b5:fd:4c:1e:4c:49:db:4a:
56:bf:64:3e:0a:83:75:c8:ba:93:45:d9:5a:52:e0:8c:29:76:
1a:a2:42:e6:fa:86:09:07:8c:75:44:a5:16:ec:60:fa:11:12:
17:6b:dc:24:ec:a8:be:6a:6e:c8:28:3f:ba:48:27:6c:2a:3d:
1f:da:74:f7:c0:b3:db:33:79:fa:1d:66:d4:ab:50:b6:8f:8a:
ef:4d:7f:94:48:3c:3b:5c:ce:38:c7:7e:1c:cb:5a:ce:64:da:
6c:82:c7:47:fe:b1:27:97:c9:be:5e:2f:50:39:f6:d6:4f:19:
d3:99:58:ed:e0:f5:19:53:0b:59:5f:d5:c7:b1:8d:f2:b0:47:
d0:28:31:6b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEApHpHjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZTdhOTJjYzRiOWJkOGRlMzc4ZjdlMjIxOGE2MjUxN2Q5YWM1NmJjMB4XDTIyMDEw
MTA2MDA1NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWViZTUzNDE3NDEx
ZThhZGEwNTk4Mjc3OWU1NmE3ZjVmZjgyNGE1YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMNoPKff3wO/vjdlwhIrubC8w8psihhXh563hCAcHApZ1luW
kIcW5Bn6N7QuMQqOKnimj/xiMysX1zt7fRcQkjByW7ATR7UMWOFSooe9Aaz8tJ3r
a7wcBwf+YpFJcMQmsoUaU+IIlQJa4UOGt0QxKqbec6jLyqGc8cSGP8yy0b6lAHBQ
aBwxwpmkyqN5pqsXesUqnCtQegkhvCaJM2QbyDmzpoZo/bcnt7i3bQBgARvapYTz
BKR2HCvF5bQ2VZ3wuxsSgdm1lfYWAF51eDdQprnKrIQ7THWKfqLdEw2rZIHvnjII
sijMNmxhU216MemOreVsQHAO5A79bE24BVhyCGkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQevlNBdBHoraBZgneeVqf1/4JKWzAfBgNVHSMEGDAWgBSOepLMS5vY3jeP
fiIYpiUX2axWvDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2pucVN6RXViMk40M2ozNGlHS1lsRjltc1Zydy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTIvZjU5YWEwLTFmYjMtNGRkYS05ZTVlLTQzMjAyYzdhNTAwMS8x
L0hyNVRRWFFSNksyZ1dZSjNubGFuOWYtQ1Nscy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTIv
ZjU5YWEwLTFmYjMtNGRkYS05ZTVlLTQzMjAyYzdhNTAwMS8xL2pucVN6RXViMk40
M2ozNGlHS1lsRjltc1Zydy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALlBjDANBgkqhkiG9w0BAQsFAAOC
AQEARXIdvoY8MdRjAUeRw0qVupRCTMZj/iUbYdNtSVHSqkDVq6ei2PdPsEOm+to8
onIhD7UYupHxe3KdVGt1rsr2C1rXEbUk5bHX1OjS0vjr6Hi09+8/ipyS/KkZyiAa
K/nXP0XglVo5W+c31z9c924O1P1pKhnnt7X9TB5MSdtKVr9kPgqDdci6k0XZWlLg
jCl2GqJC5vqGCQeMdUSlFuxg+hESF2vcJOyovmpuyCg/ukgnbCo9H9p098Cz2zN5
+h1m1KtQto+K701/lEg8O1zOOMd+HMtazmTabILHR/6xJ5fJvl4vUDn21k8Z05lY
7eD1GVMLWV/Vx7GN8rBH0Cgxaw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:10 2023 by rpki-client on console-ams.rpki-client.org