Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/267a8b-3b7d-4bb0-b222-960dee072f3a/1/2w_wRFW0EwJZ7P1Hf8WxW5CctsY.roa
File: 2w_wRFW0EwJZ7P1Hf8WxW5CctsY.roa (raw, json)
Hash identifier: ywTQcNxHbL7msx0ElOdsMl96WbeNG4FRA7dLosX+szY=
Subject key identifier: DB:0F:F0:44:55:B4:13:02:59:EC:FD:47:7F:C5:B1:5B:90:9C:B6:C6
Certificate issuer: /CN=e9e9ad934f40594c9f1ba500495a93eeec3c6ce3
Certificate serial: 01840ED8131730505C4703ED1B27BB471496
Authority key identifier: E9:E9:AD:93:4F:40:59:4C:9F:1B:A5:00:49:5A:93:EE:EC:3C:6C:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6emtk09AWUyfG6UASVqT7uw8bOM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/267a8b-3b7d-4bb0-b222-960dee072f3a/1/2w_wRFW0EwJZ7P1Hf8WxW5CctsY.roa
Signing time: Tue 25 Oct 2022 11:12:32 +0000
ROA not before: Tue 25 Oct 2022 11:12:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 185.253.56.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0e:d8:13:17:30:50:5c:47:03:ed:1b:27:bb:47:14:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9e9ad934f40594c9f1ba500495a93eeec3c6ce3
Validity
Not Before: Oct 25 11:12:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db0ff04455b4130259ecfd477fc5b15b909cb6c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:19:d5:cb:85:05:c2:ef:6a:29:88:7b:26:73:
97:d7:c5:fb:34:98:c1:67:46:61:52:c8:8f:81:f9:
c3:25:c7:bb:cb:32:63:63:68:80:78:97:b3:5a:bc:
17:45:ff:67:f6:9b:4d:d3:d2:50:d5:dc:aa:4e:79:
b1:3c:1f:aa:fc:87:c8:d7:5c:6c:59:0b:ce:a6:2a:
93:62:a7:b6:d3:ab:8a:65:31:d5:d4:80:71:25:38:
fc:df:7b:a5:50:7b:af:a8:9b:fe:19:1f:21:f4:6e:
cb:1a:fe:50:44:61:a9:f0:d7:2a:2c:eb:b8:a0:e9:
5e:e3:f1:87:0d:31:cb:74:14:99:f0:cf:83:c4:6b:
a4:45:c2:83:90:d7:8a:f5:7d:2a:f7:de:46:75:5f:
76:b6:5a:e8:8d:e6:2b:be:d3:da:f6:40:fe:c0:ae:
f3:a1:7e:af:5e:e1:c3:82:9b:22:e3:01:78:06:75:
48:80:88:c4:1f:68:07:29:d3:51:d8:e6:c3:80:11:
27:44:3f:de:bb:47:ac:10:95:28:68:68:46:a4:4d:
55:5c:3e:71:a2:0f:79:0d:e5:eb:15:3b:d3:80:86:
34:b5:03:97:4a:43:72:04:c9:cc:48:9a:35:b7:11:
df:1b:4d:25:7b:61:5d:70:f9:e5:51:27:c7:f0:72:
68:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:0F:F0:44:55:B4:13:02:59:EC:FD:47:7F:C5:B1:5B:90:9C:B6:C6
X509v3 Authority Key Identifier:
keyid:E9:E9:AD:93:4F:40:59:4C:9F:1B:A5:00:49:5A:93:EE:EC:3C:6C:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6emtk09AWUyfG6UASVqT7uw8bOM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/267a8b-3b7d-4bb0-b222-960dee072f3a/1/2w_wRFW0EwJZ7P1Hf8WxW5CctsY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/267a8b-3b7d-4bb0-b222-960dee072f3a/1/6emtk09AWUyfG6UASVqT7uw8bOM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.253.56.0/24
Signature Algorithm: sha256WithRSAEncryption
54:79:ee:22:8c:5f:3a:37:fa:74:92:a6:b5:08:81:3e:49:84:
ee:c7:6b:d7:4d:79:89:b5:4d:b4:90:24:c5:7a:ce:19:68:18:
b1:4f:25:fb:e8:c4:ae:99:03:12:97:d6:b2:16:d1:e2:5b:f6:
5e:84:d0:55:81:65:74:1d:a3:29:a5:dc:ed:3f:93:b1:b5:fd:
5c:d8:9a:6b:a0:ad:96:98:fd:28:d2:a3:21:6b:0a:b8:ee:40:
1c:6f:3f:8b:46:d7:5f:53:84:c7:f0:b8:8e:9e:22:00:c2:35:
12:59:e9:87:db:fd:24:fa:c5:11:23:5f:19:73:67:bd:f9:96:
97:d0:62:d8:ef:bc:ad:d1:2b:c0:33:e6:69:29:5e:7a:12:11:
39:a5:a2:ae:53:d5:d7:4e:48:ca:89:6c:ee:2a:2c:5c:f6:f8:
56:39:3e:19:c2:ac:2a:91:45:6c:5f:95:85:22:c4:1a:c5:4b:
fb:fb:4b:57:96:54:e3:fc:e4:ac:12:1c:0c:21:27:54:6a:40:
ef:b5:c3:22:11:c0:55:ce:86:8d:fd:5d:e5:f1:19:07:8e:f0:
92:32:49:c9:14:03:83:47:66:f4:d2:89:ee:1a:40:99:cb:5e:
30:2f:dd:46:46:66:47:3d:19:b6:f6:f4:35:0c:e5:f3:67:00:
64:12:81:41
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYQO2BMXMFBcRwPtGye7RxSWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU5ZTlhZDkzNGY0MDU5NGM5ZjFiYTUwMDQ5NWE5M2VlZWMz
YzZjZTMwHhcNMjIxMDI1MTExMjMyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYjBmZjA0NDU1YjQxMzAyNTllY2ZkNDc3ZmM1YjE1YjkwOWNiNmM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtBnVy4UFwu9qKYh7JnOX18X7NJjB
Z0ZhUsiPgfnDJce7yzJjY2iAeJezWrwXRf9n9ptN09JQ1dyqTnmxPB+q/IfI11xs
WQvOpiqTYqe206uKZTHV1IBxJTj833ulUHuvqJv+GR8h9G7LGv5QRGGp8NcqLOu4
oOle4/GHDTHLdBSZ8M+DxGukRcKDkNeK9X0q995GdV92tlrojeYrvtPa9kD+wK7z
oX6vXuHDgpsi4wF4BnVIgIjEH2gHKdNR2ObDgBEnRD/eu0esEJUoaGhGpE1VXD5x
og95DeXrFTvTgIY0tQOXSkNyBMnMSJo1txHfG00le2FdcPnlUSfH8HJosQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNsP8ERVtBMCWez9R3/FsVuQnLbGMB8GA1UdIwQY
MBaAFOnprZNPQFlMnxulAElak+7sPGzjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNmVtdGswOUFXVXlmRzZVQVNWcVQ3dXc4Yk9NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC8yNjdhOGItM2I3ZC00YmIwLWIyMjIt
OTYwZGVlMDcyZjNhLzEvMndfd1JGVzBFd0paN1AxSGY4V3hXNUNjdHNZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC8yNjdhOGItM2I3ZC00YmIwLWIyMjItOTYwZGVlMDcyZjNh
LzEvNmVtdGswOUFXVXlmRzZVQVNWcVQ3dXc4Yk9NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuf04MA0G
CSqGSIb3DQEBCwUAA4IBAQBUee4ijF86N/p0kqa1CIE+SYTux2vXTXmJtU20kCTF
es4ZaBixTyX76MSumQMSl9ayFtHiW/ZehNBVgWV0HaMppdztP5Oxtf1c2JproK2W
mP0o0qMhawq47kAcbz+LRtdfU4TH8LiOniIAwjUSWemH2/0k+sURI18Zc2e9+ZaX
0GLY77yt0SvAM+ZpKV56EhE5paKuU9XXTkjKiWzuKixc9vhWOT4ZwqwqkUVsX5WF
IsQaxUv7+0tXllTj/OSsEhwMISdUakDvtcMiEcBVzoaN/V3l8RkHjvCSMknJFAOD
R2b00onuGkCZy14wL91GRmZHPRm29vQ1DOXzZwBkEoFB
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:45 2023 by rpki-client on console-ams.rpki-client.org