Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/kjlSc98mdc026nXpKDX0z7WnmGY.roa
File: kjlSc98mdc026nXpKDX0z7WnmGY.roa (raw, json)
Hash identifier: BMT9xCIxjm3RjRpXfjG6PvT34HLvZH3vBA3YQGfmD+w=
Subject key identifier: 92:39:52:73:DF:26:75:CD:36:EA:75:E9:28:35:F4:CF:B5:A7:98:66
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 05900D9A
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/kjlSc98mdc026nXpKDX0z7WnmGY.roa
Signing time: Mon 20 Jun 2022 11:30:44 +0000
ROA not before: Mon 20 Jun 2022 11:30:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60711
IP address blocks: 185.226.194.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93326746 (0x5900d9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jun 20 11:30:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=92395273df2675cd36ea75e92835f4cfb5a79866
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:a1:29:c4:8e:c8:b8:8f:4e:f6:9d:a0:d9:2f:
be:11:af:e9:78:e3:90:cf:55:0f:7a:b5:53:b1:0c:
7b:29:d3:cb:11:07:7a:77:83:65:9e:fb:bc:07:bd:
f6:67:87:e6:72:23:60:16:0f:e7:da:01:33:3f:3a:
1d:07:f0:54:1c:65:a1:c2:2f:f3:72:90:ed:16:cd:
80:af:89:a3:aa:5f:24:aa:dd:f2:62:02:2a:21:53:
d5:ad:09:f0:e1:34:79:72:b6:78:5b:03:e8:95:79:
69:ef:ad:41:c6:dc:19:2a:78:bb:a5:37:c8:5e:e2:
56:a4:74:65:b4:fb:5a:69:46:59:3a:12:38:c4:64:
8e:44:2a:4c:1a:01:6e:e5:59:d2:39:31:a5:41:bb:
6d:a8:6d:84:7c:16:2e:2c:cd:79:60:21:e3:14:84:
a3:d2:2a:e5:4d:37:4d:96:c2:1c:a2:76:ea:2e:34:
ae:bb:94:a4:9f:76:45:cb:8a:23:e0:b4:58:96:0f:
80:43:29:dc:84:94:c3:50:20:f7:85:d9:33:03:ec:
42:b6:73:07:63:bf:aa:c9:68:02:15:d1:97:a1:d0:
39:9d:fe:ce:99:ca:ed:69:21:35:89:68:8f:5f:08:
27:cd:16:e7:43:2e:a8:e7:7d:5e:77:eb:0f:7c:d4:
55:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:39:52:73:DF:26:75:CD:36:EA:75:E9:28:35:F4:CF:B5:A7:98:66
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/kjlSc98mdc026nXpKDX0z7WnmGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.194.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:85:e1:3c:8a:e4:83:98:45:e1:0d:d4:1e:43:a0:38:58:d0:
8b:da:d6:26:91:46:21:96:3a:d7:26:8f:44:4a:8e:48:b6:ab:
be:52:07:2e:50:ad:59:5b:af:78:52:d0:1c:4b:2a:58:91:da:
c7:e5:ee:ac:44:a0:be:e2:e1:67:cd:a9:59:05:dc:00:63:09:
55:d4:05:e0:38:21:df:c5:56:2d:87:11:7f:4b:6a:e7:44:9c:
e7:e3:98:a0:d8:38:f8:8f:f0:9d:ec:56:c9:6a:59:39:5a:8a:
d6:6f:e9:47:51:e2:a1:2f:61:97:18:a9:2c:80:ad:5f:d5:18:
38:8b:90:d3:8d:b3:65:41:21:0e:cb:4d:d0:7a:73:b6:37:ea:
8b:8e:6b:a8:1e:00:c4:d7:9b:28:3b:5e:3e:02:1e:ec:03:92:
ca:7f:6f:10:62:32:2c:bb:e9:c7:5b:7e:d5:72:7c:76:fa:2b:
8a:44:4d:2c:8e:43:ad:aa:f5:97:09:34:5f:ae:7d:d3:3d:78:
ba:fd:a9:23:b7:ed:94:4c:68:d6:1f:5f:cd:a1:21:ed:e2:00:
d2:fe:1a:14:ee:3b:a1:ff:35:1a:f7:28:60:e0:9c:51:84:ad:
d7:a3:6e:95:be:7f:3f:e6:f6:85:9f:e8:ee:90:87:37:49:3f:
ad:e6:90:e4
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBZANmjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NTM0YzQ5ZmNmYThhNDUwNDFkOTVlZDRkOGQ0ZmM2OWM3MjdhNDY3MB4XDTIyMDYy
MDExMzA0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTIzOTUyNzNkZjI2
NzVjZDM2ZWE3NWU5MjgzNWY0Y2ZiNWE3OTg2NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOihKcSOyLiPTvadoNkvvhGv6XjjkM9VD3q1U7EMeynTyxEH
eneDZZ77vAe99meH5nIjYBYP59oBMz86HQfwVBxlocIv83KQ7RbNgK+Jo6pfJKrd
8mICKiFT1a0J8OE0eXK2eFsD6JV5ae+tQcbcGSp4u6U3yF7iVqR0ZbT7WmlGWToS
OMRkjkQqTBoBbuVZ0jkxpUG7bahthHwWLizNeWAh4xSEo9Iq5U03TZbCHKJ26i40
rruUpJ92RcuKI+C0WJYPgEMp3ISUw1Ag94XZMwPsQrZzB2O/qsloAhXRl6HQOZ3+
zpnK7WkhNYloj18IJ80W50MuqOd9XnfrD3zUVVkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSSOVJz3yZ1zTbqdekoNfTPtaeYZjAfBgNVHSMEGDAWgBQFNMSfz6ikUEHZ
XtTY1PxpxyekZzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JUVEVuOC1vcEZCQjJWN1UyTlQ4YWNjbnBHYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWEvMGNjYmRhLWQ2ZjEtNDUyNy04MTA2LWNkN2UwNmNiYjUzMS8x
L2tqbFNjOThtZGMwMjZuWHBLRFgwejdXbm1HWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWEv
MGNjYmRhLWQ2ZjEtNDUyNy04MTA2LWNkN2UwNmNiYjUzMS8xL0JUVEVuOC1vcEZC
QjJWN1UyTlQ4YWNjbnBHYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALniwjANBgkqhkiG9w0BAQsFAAOC
AQEApIXhPIrkg5hF4Q3UHkOgOFjQi9rWJpFGIZY61yaPREqOSLarvlIHLlCtWVuv
eFLQHEsqWJHax+XurESgvuLhZ82pWQXcAGMJVdQF4Dgh38VWLYcRf0tq50Sc5+OY
oNg4+I/wnexWyWpZOVqK1m/pR1HioS9hlxipLICtX9UYOIuQ042zZUEhDstN0Hpz
tjfqi45rqB4AxNebKDtePgIe7AOSyn9vEGIyLLvpx1t+1XJ8dvorikRNLI5Drar1
lwk0X6590z14uv2pI7ftlExo1h9fzaEh7eIA0v4aFO47of81GvcoYOCcUYSt16Nu
lb5/P+b2hZ/o7pCHN0k/reaQ5A==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:35 2023 by rpki-client on console-ams.rpki-client.org