Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/DFZFQ4SOJ9VBkDxfkxFD3OUm5lg.roa
File: DFZFQ4SOJ9VBkDxfkxFD3OUm5lg.roa (raw, json)
Hash identifier: iTB888QjS3pED2oPVJSCm8K3KpEUapyAwmxQe4MU8Og=
Subject key identifier: 0C:56:45:43:84:8E:27:D5:41:90:3C:5F:93:11:43:DC:E5:26:E6:58
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 04395DC2
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/DFZFQ4SOJ9VBkDxfkxFD3OUm5lg.roa
Signing time: Thu 03 Feb 2022 18:32:03 +0000
ROA not before: Thu 03 Feb 2022 18:32:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212097
IP address blocks: 185.227.102.0/24 maxlen: 24
178.19.36.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70868418 (0x4395dc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Feb 3 18:32:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c564543848e27d541903c5f931143dce526e658
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:0d:dc:7b:21:c2:96:15:04:48:48:79:22:f7:
88:7b:7f:cd:a3:83:3d:98:13:d5:d7:23:36:a0:fb:
a4:70:e8:5c:6d:11:8d:dd:a8:4a:b1:82:38:0e:e9:
b7:19:91:09:72:26:65:09:20:cf:ea:22:2f:bb:1b:
4e:00:2c:8f:17:fa:fa:05:0b:12:f1:24:11:cb:85:
c2:56:e8:f8:77:84:20:5f:86:7a:bf:de:2d:62:57:
2f:33:96:7f:bc:8f:1a:7f:fc:4a:f1:e5:e6:af:b1:
7d:b6:6e:4b:22:90:ce:7a:ec:48:73:72:fb:fc:ab:
cc:f6:dc:76:6d:0b:73:9a:05:e6:18:1e:67:a2:7f:
36:97:00:5a:b5:51:17:dc:20:60:f8:89:5d:43:0e:
7a:81:a1:0a:4c:3d:09:b9:f5:4d:c4:3d:3b:4f:3a:
5c:cf:00:5a:e6:8a:10:63:d8:20:a5:1b:79:fe:23:
b3:a8:4d:fd:52:e9:e9:d4:11:be:98:43:22:91:ab:
cd:bb:67:70:70:46:5b:29:5d:95:ac:6f:c0:25:a1:
24:7f:8b:d9:14:83:0a:13:2d:d4:99:31:da:81:cb:
eb:14:63:68:fb:1b:93:8d:ac:eb:67:bc:54:0e:91:
ca:d1:d1:33:e3:a4:4c:e1:f6:7e:c1:af:0d:f7:3d:
d6:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:56:45:43:84:8E:27:D5:41:90:3C:5F:93:11:43:DC:E5:26:E6:58
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/DFZFQ4SOJ9VBkDxfkxFD3OUm5lg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.19.36.0/22
185.227.102.0/24
Signature Algorithm: sha256WithRSAEncryption
31:3c:cd:da:a8:84:bb:28:b3:b3:22:9a:58:6b:e0:0f:92:b7:
de:4c:01:59:90:53:cf:8b:7c:b4:51:cc:5f:fc:0d:a2:68:fe:
95:50:11:a2:ec:ff:0f:f9:ca:31:7e:f7:12:b4:db:c0:3f:6d:
89:e7:2d:e3:da:cd:ca:bc:38:4e:3b:eb:46:8a:16:c8:62:5e:
3d:3b:33:16:8b:82:c8:42:77:2f:f4:8b:bc:cc:9f:8a:97:a5:
9e:50:dd:aa:35:a4:5b:47:d3:96:46:80:4c:2f:d6:9e:71:14:
b5:04:c4:0d:a1:3e:c8:d6:99:80:6b:d5:d5:88:68:d6:2e:62:
96:c8:5f:00:ae:b7:ac:29:13:1c:df:e9:5c:d0:ea:9a:9e:1a:
50:9c:76:2d:b7:81:2c:df:de:bd:b7:fc:70:2d:6e:87:ff:29:
b5:f4:02:51:35:ee:55:53:1e:5d:bb:c4:e8:6b:ef:4f:50:3a:
0d:21:d6:8a:12:f3:1b:28:1c:e0:8b:76:d6:91:04:28:8f:46:
21:9d:ed:39:30:d2:7b:e1:98:6a:06:5a:5b:d4:56:89:9e:46:
94:ab:6d:1a:fe:4a:fe:e5:9d:31:16:1c:c7:c9:c6:a0:f6:10:
04:21:ad:44:87:78:06:e5:8a:3d:0d:fd:a8:20:a2:53:55:5b:
8d:a1:36:70
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBDldwjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NTM0YzQ5ZmNmYThhNDUwNDFkOTVlZDRkOGQ0ZmM2OWM3MjdhNDY3MB4XDTIyMDIw
MzE4MzIwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGM1NjQ1NDM4NDhl
MjdkNTQxOTAzYzVmOTMxMTQzZGNlNTI2ZTY1ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMQN3HshwpYVBEhIeSL3iHt/zaODPZgT1dcjNqD7pHDoXG0R
jd2oSrGCOA7ptxmRCXImZQkgz+oiL7sbTgAsjxf6+gULEvEkEcuFwlbo+HeEIF+G
er/eLWJXLzOWf7yPGn/8SvHl5q+xfbZuSyKQznrsSHNy+/yrzPbcdm0Lc5oF5hge
Z6J/NpcAWrVRF9wgYPiJXUMOeoGhCkw9Cbn1TcQ9O086XM8AWuaKEGPYIKUbef4j
s6hN/VLp6dQRvphDIpGrzbtncHBGWyldlaxvwCWhJH+L2RSDChMt1Jkx2oHL6xRj
aPsbk42s62e8VA6RytHRM+OkTOH2fsGvDfc91pUCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQMVkVDhI4n1UGQPF+TEUPc5SbmWDAfBgNVHSMEGDAWgBQFNMSfz6ikUEHZ
XtTY1PxpxyekZzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JUVEVuOC1vcEZCQjJWN1UyTlQ4YWNjbnBHYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWEvMGNjYmRhLWQ2ZjEtNDUyNy04MTA2LWNkN2UwNmNiYjUzMS8x
L0RGWkZRNFNPSjlWQmtEeGZreEZEM09VbTVsZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWEv
MGNjYmRhLWQ2ZjEtNDUyNy04MTA2LWNkN2UwNmNiYjUzMS8xL0JUVEVuOC1vcEZC
QjJWN1UyTlQ4YWNjbnBHYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEArITJAMEALnjZjANBgkqhkiG9w0B
AQsFAAOCAQEAMTzN2qiEuyizsyKaWGvgD5K33kwBWZBTz4t8tFHMX/wNomj+lVAR
ouz/D/nKMX73ErTbwD9tiect49rNyrw4TjvrRooWyGJePTszFouCyEJ3L/SLvMyf
ipelnlDdqjWkW0fTlkaATC/WnnEUtQTEDaE+yNaZgGvV1Yho1i5ilshfAK63rCkT
HN/pXNDqmp4aUJx2LbeBLN/evbf8cC1uh/8ptfQCUTXuVVMeXbvE6GvvT1A6DSHW
ihLzGygc4It21pEEKI9GIZ3tOTDSe+GYagZaW9RWiZ5GlKttGv5K/uWdMRYcx8nG
oPYQBCGtRId4BuWKPQ39qCCiU1VbjaE2cA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:35 2023 by rpki-client on console-ams.rpki-client.org