Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/9TmIxjjf7z7WoflT7C5146VUmrQ.roa
File: 9TmIxjjf7z7WoflT7C5146VUmrQ.roa (raw, json)
Hash identifier: s0LeTyzLIMdVQbP/42eGz1wt428zUVDEV3Oy4LBgdQw=
Subject key identifier: F5:39:88:C6:38:DF:EF:3E:D6:A1:F9:53:EC:2E:75:E3:A5:54:9A:B4
Certificate issuer: /CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9
Certificate serial: 05647D3D
Authority key identifier: 4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/9TmIxjjf7z7WoflT7C5146VUmrQ.roa
Signing time: Sat 01 Jan 2022 11:04:35 +0000
ROA not before: Sat 01 Jan 2022 11:04:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7922
IP address blocks: 185.215.116.0/22 maxlen: 24
159.197.144.0/20 maxlen: 24
159.197.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90471741 (0x5647d3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9
Validity
Not Before: Jan 1 11:04:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f53988c638dfef3ed6a1f953ec2e75e3a5549ab4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:f3:62:99:71:79:f9:c0:f4:14:99:3f:41:c2:
bc:3e:3f:94:87:1d:81:12:e7:12:fb:d8:b8:51:da:
90:0d:d9:fb:3b:fe:36:8e:b2:e4:ca:83:12:18:e3:
1b:af:9b:a6:61:3b:66:4c:55:40:e3:30:21:c2:6a:
00:e8:fb:4c:b4:a8:40:44:10:02:88:d5:31:b2:0a:
18:d6:6c:54:83:b6:22:3c:40:9b:66:31:24:ef:11:
53:ee:55:80:20:58:e3:29:27:c3:b5:51:88:b5:01:
d9:b2:e8:21:8b:d3:cb:1c:f0:83:42:f5:8a:2c:96:
b7:53:18:35:ef:14:db:64:ec:62:ec:06:36:62:04:
5f:92:a6:27:0f:ea:54:e7:2d:10:0a:c3:5c:7c:e1:
b8:d9:6d:ba:45:0a:7d:9c:a8:e0:f9:7c:49:ba:88:
9b:6a:aa:33:63:d1:8a:e3:79:0a:af:59:bb:dc:ee:
be:a8:97:2b:6e:de:05:97:dd:8e:02:a0:57:8d:f4:
fb:ec:94:ff:8f:d0:0a:2c:a0:86:c2:2c:13:d2:b4:
c7:0b:fc:26:91:fc:8d:54:8b:ab:ca:86:4f:60:63:
52:b3:63:9d:62:89:e9:7e:59:d6:24:09:4c:23:5c:
33:ff:6a:66:da:0b:b8:95:82:b0:d0:30:a4:fd:71:
05:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:39:88:C6:38:DF:EF:3E:D6:A1:F9:53:EC:2E:75:E3:A5:54:9A:B4
X509v3 Authority Key Identifier:
keyid:4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/9TmIxjjf7z7WoflT7C5146VUmrQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/TdlU08d8nE437r91PYbz3PCR1Kk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.197.144.0-159.197.191.255
185.215.116.0/22
Signature Algorithm: sha256WithRSAEncryption
59:b9:80:3c:6f:37:a4:be:d4:e1:44:ca:c1:8f:91:30:df:00:
3c:e3:4b:2c:65:f1:1a:d1:ad:ed:c7:bd:79:ac:fa:36:33:ff:
95:06:ff:be:47:ea:53:d7:ae:e8:b7:7c:39:5e:d5:df:e4:a9:
8f:9e:5d:31:e1:e9:d0:fd:08:06:cb:70:40:69:30:cb:56:16:
13:ed:18:8f:a6:3f:3a:fc:16:73:4d:d0:04:d5:de:c9:ee:bf:
fb:85:fd:ba:ad:33:31:5d:21:1f:83:1a:82:18:19:ab:c6:6b:
07:b8:7d:8b:37:09:61:fb:a2:28:89:d9:54:69:3b:3d:73:da:
02:44:1c:44:b0:66:08:ed:f6:ba:86:ea:0c:d9:0a:7d:3d:3e:
ed:ef:ef:76:89:bc:72:fa:c7:93:56:26:c5:43:96:97:eb:7c:
4e:bc:09:81:5a:d2:0e:bf:c8:eb:87:a3:aa:32:e4:f8:e6:a1:
f6:ca:cd:19:d3:97:15:a4:92:a4:58:38:11:b5:ad:ba:b5:60:
ff:35:b8:c4:a0:72:93:70:8f:6c:76:2e:f2:c5:a4:8c:56:aa:
0a:b2:1b:20:ba:a8:69:f5:37:ef:0f:48:af:1b:cb:f5:df:56:
f2:e6:8b:f3:db:3a:43:51:2c:68:19:5f:de:fa:5f:a1:e9:6e:
2b:ef:a6:dd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgIEBWR9PTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
ZGQ5NTRkM2M3N2M5YzRlMzdlZWJmNzUzZDg2ZjNkY2YwOTFkNGE5MB4XDTIyMDEw
MTExMDQzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjUzOTg4YzYzOGRm
ZWYzZWQ2YTFmOTUzZWMyZTc1ZTNhNTU0OWFiNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANrzYplxefnA9BSZP0HCvD4/lIcdgRLnEvvYuFHakA3Z+zv+
No6y5MqDEhjjG6+bpmE7ZkxVQOMwIcJqAOj7TLSoQEQQAojVMbIKGNZsVIO2IjxA
m2YxJO8RU+5VgCBY4yknw7VRiLUB2bLoIYvTyxzwg0L1iiyWt1MYNe8U22TsYuwG
NmIEX5KmJw/qVOctEArDXHzhuNltukUKfZyo4Pl8SbqIm2qqM2PRiuN5Cq9Zu9zu
vqiXK27eBZfdjgKgV430++yU/4/QCiyghsIsE9K0xwv8JpH8jVSLq8qGT2BjUrNj
nWKJ6X5Z1iQJTCNcM/9qZtoLuJWCsNAwpP1xBZMCAwEAAaOCAhcwggITMB0GA1Ud
DgQWBBT1OYjGON/vPtah+VPsLnXjpVSatDAfBgNVHSMEGDAWgBRN2VTTx3ycTjfu
v3U9hvPc8JHUqTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1RkbFUwOGQ4bkU0MzdyOTFQWWJ6M1BDUjFLay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWQvN2EyYTk5LTE0NmMtNDc4MS1hMzAyLWViN2FhYTY4MjhiZS8x
LzlUbUl4ampmN3o3V29mbFQ3QzUxNDZWVW1yUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWQv
N2EyYTk5LTE0NmMtNDc4MS1hMzAyLWViN2FhYTY4MjhiZS8xL1RkbFUwOGQ4bkU0
MzdyOTFQWWJ6M1BDUjFLay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAt
BggrBgEFBQcBBwEB/wQeMBwwGgQCAAEwFDAMAwQEn8WQAwQGn8WAAwQCudd0MA0G
CSqGSIb3DQEBCwUAA4IBAQBZuYA8bzekvtThRMrBj5Ew3wA840ssZfEa0a3tx715
rPo2M/+VBv++R+pT167ot3w5XtXf5KmPnl0x4enQ/QgGy3BAaTDLVhYT7RiPpj86
/BZzTdAE1d7J7r/7hf26rTMxXSEfgxqCGBmrxmsHuH2LNwlh+6IoidlUaTs9c9oC
RBxEsGYI7fa6huoM2Qp9PT7t7+92ibxy+seTVibFQ5aX63xOvAmBWtIOv8jrh6Oq
MuT45qH2ys0Z05cVpJKkWDgRta26tWD/NbjEoHKTcI9sdi7yxaSMVqoKshsguqhp
9TfvD0ivG8v131by5ovz2zpDUSxoGV/e+l+h6W4r76bd
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:23 2024 by rpki-client on console-fra.rpki-client.org