Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/5615ec-51c5-4a4d-b6f9-e407e6025a43/1/yVCUPhDrMpYmBxBWoE_OsaZNUlM.roa
File: yVCUPhDrMpYmBxBWoE_OsaZNUlM.roa (raw, json)
Hash identifier: XlFXvzzQC3rIHwn2ouhPjCSX5ZTWRWXOWQWlCXoa1x4=
Subject key identifier: C9:50:94:3E:10:EB:32:96:26:07:10:56:A0:4F:CE:B1:A6:4D:52:53
Certificate issuer: /CN=1f00b0aa8924c377889e3d3b996093b87a73d0e1
Certificate serial: 01855CD0FBE6FA93F1FA84101756F5F93EFE
Authority key identifier: 1F:00:B0:AA:89:24:C3:77:88:9E:3D:3B:99:60:93:B8:7A:73:D0:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HwCwqokkw3eInj07mWCTuHpz0OE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/5615ec-51c5-4a4d-b6f9-e407e6025a43/1/yVCUPhDrMpYmBxBWoE_OsaZNUlM.roa
Signing time: Thu 29 Dec 2022 07:37:57 +0000
ROA not before: Thu 29 Dec 2022 07:37:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50264
IP address blocks: 185.165.22.0/24 maxlen: 24
185.165.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:5c:d0:fb:e6:fa:93:f1:fa:84:10:17:56:f5:f9:3e:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f00b0aa8924c377889e3d3b996093b87a73d0e1
Validity
Not Before: Dec 29 07:37:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c950943e10eb329626071056a04fceb1a64d5253
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:1e:0d:62:5d:c9:43:3a:d2:62:43:ce:d1:87:
c1:df:cb:21:59:ca:af:d5:76:bc:23:a7:01:48:9f:
69:01:a7:21:00:53:f9:40:87:8a:83:bf:71:a2:1e:
85:f6:53:64:f6:27:0e:5f:4e:59:63:82:17:b1:ff:
3d:67:2e:96:85:5e:63:f4:9a:ec:62:3f:dd:ab:11:
9b:39:ee:76:ea:2f:77:13:e1:6d:2b:9e:2f:f1:c2:
9b:32:41:10:cd:e4:7e:87:10:84:77:95:16:eb:17:
6b:11:fe:b5:d0:36:fc:f9:6f:f7:fe:32:43:ef:c1:
a5:0d:36:8b:64:dc:f6:ad:5f:a8:27:e9:8b:a3:d6:
f1:cf:8a:14:3f:c6:13:cb:5a:88:a5:59:73:9d:ab:
64:7f:f3:05:7f:de:22:6a:37:04:50:f1:57:5a:b6:
df:2a:7a:c5:41:1c:17:ee:1c:37:e9:35:bf:61:b1:
cc:d5:e4:93:a3:5c:d1:94:14:2c:b4:14:2d:0d:b0:
e9:0a:01:67:24:ec:59:8d:66:0b:78:db:7f:c5:11:
5f:ce:3a:de:3b:6e:5f:f6:16:d7:5b:8b:36:35:ba:
b4:1e:47:db:c1:3c:fa:c6:99:2e:e6:30:3b:d9:66:
9a:9b:00:af:62:33:b7:14:ec:eb:32:b4:65:38:48:
d9:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:50:94:3E:10:EB:32:96:26:07:10:56:A0:4F:CE:B1:A6:4D:52:53
X509v3 Authority Key Identifier:
keyid:1F:00:B0:AA:89:24:C3:77:88:9E:3D:3B:99:60:93:B8:7A:73:D0:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HwCwqokkw3eInj07mWCTuHpz0OE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/5615ec-51c5-4a4d-b6f9-e407e6025a43/1/yVCUPhDrMpYmBxBWoE_OsaZNUlM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/5615ec-51c5-4a4d-b6f9-e407e6025a43/1/HwCwqokkw3eInj07mWCTuHpz0OE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.22.0/23
Signature Algorithm: sha256WithRSAEncryption
92:07:56:70:09:d3:22:b6:ad:36:33:de:08:c3:15:ff:d9:80:
cb:9b:a5:e6:36:5a:65:47:66:6b:43:11:61:87:50:8d:0c:4c:
44:f3:a3:e0:c2:2d:e9:3b:a7:fa:a6:c6:b7:78:0d:cb:f9:c0:
dc:bd:52:14:c6:d0:ab:ae:8a:5b:0a:ff:f0:a3:54:e2:1b:1e:
35:2d:55:97:2a:84:5b:7d:5f:56:43:7f:68:6c:e0:78:32:db:
02:69:92:e5:b3:a9:27:60:36:95:20:5e:3d:0e:05:96:0d:09:
71:72:b6:b3:db:b6:b9:d1:9a:61:53:85:c6:46:35:07:8c:b4:
f9:e7:74:d4:12:ad:69:f9:25:7c:7d:0b:2b:76:db:6b:16:11:
97:b2:85:db:30:e0:74:2d:80:ea:04:4a:55:17:38:59:61:6a:
e0:fb:37:6e:15:f7:f4:39:34:35:4f:7f:6d:16:3e:6f:4f:ee:
56:91:fd:75:40:b9:b5:e5:98:d3:58:b9:94:ab:d8:9e:33:0e:
80:b9:6f:51:fd:38:cb:b5:9b:a3:d4:92:00:1a:81:b8:f2:52:
83:bb:8d:6d:27:f3:71:d9:33:5e:8f:45:a0:eb:d6:c4:20:08:
c2:9d:cd:05:67:76:7e:86:86:3c:cb:f0:a5:5b:fb:7a:08:a7:
b5:b1:ad:b1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVc0Pvm+pPx+oQQF1b1+T7+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmMDBiMGFhODkyNGMzNzc4ODllM2QzYjk5NjA5M2I4N2E3
M2QwZTEwHhcNMjIxMjI5MDczNzU3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjOTUwOTQzZTEwZWIzMjk2MjYwNzEwNTZhMDRmY2ViMWE2NGQ1MjUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiB4NYl3JQzrSYkPO0YfB38shWcqv
1Xa8I6cBSJ9pAachAFP5QIeKg79xoh6F9lNk9icOX05ZY4IXsf89Zy6WhV5j9Jrs
Yj/dqxGbOe526i93E+FtK54v8cKbMkEQzeR+hxCEd5UW6xdrEf610Db8+W/3/jJD
78GlDTaLZNz2rV+oJ+mLo9bxz4oUP8YTy1qIpVlznatkf/MFf94iajcEUPFXWrbf
KnrFQRwX7hw36TW/YbHM1eSTo1zRlBQstBQtDbDpCgFnJOxZjWYLeNt/xRFfzjre
O25f9hbXW4s2Nbq0HkfbwTz6xpku5jA72WaamwCvYjO3FOzrMrRlOEjZAQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMlQlD4Q6zKWJgcQVqBPzrGmTVJTMB8GA1UdIwQY
MBaAFB8AsKqJJMN3iJ49O5lgk7h6c9DhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHdDd3Fva2t3M2VJbmowN21XQ1R1SHB6ME9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi81NjE1ZWMtNTFjNS00YTRkLWI2Zjkt
ZTQwN2U2MDI1YTQzLzEveVZDVVBoRHJNcFltQnhCV29FX09zYVpOVWxNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi81NjE1ZWMtNTFjNS00YTRkLWI2ZjktZTQwN2U2MDI1YTQz
LzEvSHdDd3Fva2t3M2VJbmowN21XQ1R1SHB6ME9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuaUWMA0G
CSqGSIb3DQEBCwUAA4IBAQCSB1ZwCdMitq02M94IwxX/2YDLm6XmNlplR2ZrQxFh
h1CNDExE86Pgwi3pO6f6psa3eA3L+cDcvVIUxtCrropbCv/wo1TiGx41LVWXKoRb
fV9WQ39obOB4MtsCaZLls6knYDaVIF49DgWWDQlxcraz27a50ZphU4XGRjUHjLT5
53TUEq1p+SV8fQsrdttrFhGXsoXbMOB0LYDqBEpVFzhZYWrg+zduFff0OTQ1T39t
Fj5vT+5Wkf11QLm15ZjTWLmUq9ieMw6AuW9R/TjLtZuj1JIAGoG48lKDu41tJ/Nx
2TNej0Wg69bEIAjCnc0FZ3Z+hoY8y/ClW/t6CKe1sa2x
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:40 2023 by rpki-client on console-ams.rpki-client.org