Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/7def13-c4cd-46a6-825f-42ea5514e722/1/12IVDh8Moh3RB1jsow34F2XROGw.roa
File: 12IVDh8Moh3RB1jsow34F2XROGw.roa (raw, json)
Hash identifier: DdsIvff21ZcgVisJ8oC2Kg7wJJ81KdVynkJmVYOKv74=
Subject key identifier: D7:62:15:0E:1F:0C:A2:1D:D1:07:58:EC:A3:0D:F8:17:65:D1:38:6C
Certificate issuer: /CN=c556bccbdc9f2e4badc0a057ea08f7c748188b1f
Certificate serial: 02A31B80
Authority key identifier: C5:56:BC:CB:DC:9F:2E:4B:AD:C0:A0:57:EA:08:F7:C7:48:18:8B:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xVa8y9yfLkutwKBX6gj3x0gYix8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/7def13-c4cd-46a6-825f-42ea5514e722/1/12IVDh8Moh3RB1jsow34F2XROGw.roa
Signing time: Sat 01 Jan 2022 07:57:44 +0000
ROA not before: Sat 01 Jan 2022 07:57:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39392
IP address blocks: 185.203.84.0/24 maxlen: 24
185.203.85.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44243840 (0x2a31b80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c556bccbdc9f2e4badc0a057ea08f7c748188b1f
Validity
Not Before: Jan 1 07:57:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d762150e1f0ca21dd10758eca30df81765d1386c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c7:cd:eb:de:c6:3d:ab:64:0d:0f:70:72:7c:
06:66:25:52:6d:27:85:9b:39:03:88:50:bc:bf:07:
55:33:51:9e:b1:3d:1f:3d:0b:38:57:c5:83:65:48:
8d:1b:23:82:14:db:b0:ac:51:6e:cf:64:22:26:c8:
3b:1b:1c:6f:98:97:4e:cd:d2:2f:ea:73:b2:09:f9:
8c:c6:19:39:55:aa:98:96:28:09:a5:28:dd:8a:22:
9f:5b:f8:00:0f:16:c6:fc:57:66:b9:ab:09:3b:6c:
7c:f0:68:b0:13:c1:2d:90:9a:c1:5c:16:4e:4a:cb:
de:9d:9f:48:c6:be:04:35:d4:e2:11:87:6d:b7:b5:
82:b6:bf:eb:ff:68:88:27:c1:e7:a9:8a:9d:56:93:
b0:63:ec:a4:38:7f:d0:70:1e:35:2c:38:7a:00:3b:
3c:a2:4e:45:42:71:c5:a1:98:06:4c:f5:98:d3:84:
06:9e:7e:52:e2:a8:4e:b6:7c:40:10:5d:cc:35:1d:
1a:30:b5:e3:34:3c:0d:ce:f4:68:36:f1:ce:99:79:
37:0a:9a:b6:c6:6f:4a:ad:48:7c:2e:69:5a:18:e8:
2b:8f:60:c6:5c:43:52:05:8e:51:8a:c9:69:d8:3e:
c8:a9:bc:d2:8f:f7:40:33:8d:10:f9:3b:66:b0:86:
75:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:62:15:0E:1F:0C:A2:1D:D1:07:58:EC:A3:0D:F8:17:65:D1:38:6C
X509v3 Authority Key Identifier:
keyid:C5:56:BC:CB:DC:9F:2E:4B:AD:C0:A0:57:EA:08:F7:C7:48:18:8B:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xVa8y9yfLkutwKBX6gj3x0gYix8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/7def13-c4cd-46a6-825f-42ea5514e722/1/12IVDh8Moh3RB1jsow34F2XROGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/7def13-c4cd-46a6-825f-42ea5514e722/1/xVa8y9yfLkutwKBX6gj3x0gYix8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.203.84.0/23
Signature Algorithm: sha256WithRSAEncryption
05:2e:d5:db:39:2c:92:90:96:8f:4a:d2:f2:5e:80:f6:7e:55:
59:ba:03:7d:bc:ab:bf:68:e8:9e:d3:9f:fc:3a:70:79:fb:92:
f1:da:52:04:7d:f3:88:bd:3a:ac:2d:a9:7b:4a:88:de:e9:45:
b2:12:c2:bb:ba:7d:28:eb:7c:1f:58:c0:de:19:7b:f4:38:49:
48:84:ec:49:71:fa:79:c8:62:6b:26:27:de:0e:a3:ee:8b:0e:
c8:b3:d4:dc:a0:0e:9a:30:33:b8:e7:6f:f3:0a:2a:6c:39:7a:
94:7b:f9:d3:98:4c:b7:b8:d2:93:69:af:90:9c:df:79:45:67:
04:3e:78:30:ba:ab:70:ad:b3:e0:0b:79:f1:aa:82:43:8b:2e:
bb:31:e2:3d:e4:ab:80:84:3c:59:b0:72:88:da:95:59:24:a5:
c8:78:26:8a:95:bc:20:79:14:66:80:96:a5:77:b6:d0:93:c5:
fc:e6:d1:bd:ca:f5:3a:a9:94:49:da:e4:86:3f:c4:19:40:5a:
c3:b1:58:67:1c:f2:14:c7:ac:b7:d1:e5:52:bf:5d:c3:3b:ea:
c1:35:da:c0:fc:87:e8:c3:fb:14:72:53:31:81:52:6c:1f:43:
a2:db:b1:5d:68:a8:ba:c9:8f:19:19:4d:ab:5f:16:d0:f2:4f:
b3:36:b5:2e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAqMbgDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NTU2YmNjYmRjOWYyZTRiYWRjMGEwNTdlYTA4ZjdjNzQ4MTg4YjFmMB4XDTIyMDEw
MTA3NTc0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDc2MjE1MGUxZjBj
YTIxZGQxMDc1OGVjYTMwZGY4MTc2NWQxMzg2YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKbHzevexj2rZA0PcHJ8BmYlUm0nhZs5A4hQvL8HVTNRnrE9
Hz0LOFfFg2VIjRsjghTbsKxRbs9kIibIOxscb5iXTs3SL+pzsgn5jMYZOVWqmJYo
CaUo3Yoin1v4AA8WxvxXZrmrCTtsfPBosBPBLZCawVwWTkrL3p2fSMa+BDXU4hGH
bbe1gra/6/9oiCfB56mKnVaTsGPspDh/0HAeNSw4egA7PKJORUJxxaGYBkz1mNOE
Bp5+UuKoTrZ8QBBdzDUdGjC14zQ8Dc70aDbxzpl5NwqatsZvSq1IfC5pWhjoK49g
xlxDUgWOUYrJadg+yKm80o/3QDONEPk7ZrCGdSECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTXYhUOHwyiHdEHWOyjDfgXZdE4bDAfBgNVHSMEGDAWgBTFVrzL3J8uS63A
oFfqCPfHSBiLHzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hWYTh5OXlmTGt1dHdLQlg2Z2ozeDBnWWl4OC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTkvN2RlZjEzLWM0Y2QtNDZhNi04MjVmLTQyZWE1NTE0ZTcyMi8x
LzEySVZEaDhNb2gzUkIxanNvdzM0RjJYUk9Hdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTkv
N2RlZjEzLWM0Y2QtNDZhNi04MjVmLTQyZWE1NTE0ZTcyMi8xL3hWYTh5OXlmTGt1
dHdLQlg2Z2ozeDBnWWl4OC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAbnLVDANBgkqhkiG9w0BAQsFAAOC
AQEABS7V2zkskpCWj0rS8l6A9n5VWboDfbyrv2jontOf/DpwefuS8dpSBH3ziL06
rC2pe0qI3ulFshLCu7p9KOt8H1jA3hl79DhJSITsSXH6echiayYn3g6j7osOyLPU
3KAOmjAzuOdv8woqbDl6lHv505hMt7jSk2mvkJzfeUVnBD54MLqrcK2z4At58aqC
Q4suuzHiPeSrgIQ8WbByiNqVWSSlyHgmipW8IHkUZoCWpXe20JPF/ObRvcr1OqmU
Sdrkhj/EGUBaw7FYZxzyFMest9HlUr9dwzvqwTXawPyH6MP7FHJTMYFSbB9Dotux
XWiousmPGRlNq18W0PJPsza1Lg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:21 2024 by rpki-client on console-ams.rpki-client.org