Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/9e86ab-bc7f-4bc4-b127-42262161e940/1/cr2qs4CJ6yrtE8407jaIYJzy0xc.roa
File: cr2qs4CJ6yrtE8407jaIYJzy0xc.roa (raw, json)
Hash identifier: HjrjNXdBUdYuD+jBSZwWVXdbiBZloTNuAn7Eu/YWd8c=
Subject key identifier: 72:BD:AA:B3:80:89:EB:2A:ED:13:CE:34:EE:36:88:60:9C:F2:D3:17
Certificate issuer: /CN=c38c3a1c05c899ebfe15d2361909a63597c68078
Certificate serial: 0F496DBB
Authority key identifier: C3:8C:3A:1C:05:C8:99:EB:FE:15:D2:36:19:09:A6:35:97:C6:80:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w4w6HAXImev-FdI2GQmmNZfGgHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/9e86ab-bc7f-4bc4-b127-42262161e940/1/cr2qs4CJ6yrtE8407jaIYJzy0xc.roa
Signing time: Sat 01 Jan 2022 05:01:41 +0000
ROA not before: Sat 01 Jan 2022 05:01:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42871
IP address blocks: 185.202.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 256470459 (0xf496dbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c38c3a1c05c899ebfe15d2361909a63597c68078
Validity
Not Before: Jan 1 05:01:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=72bdaab38089eb2aed13ce34ee3688609cf2d317
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:73:1e:36:d4:23:19:b8:ad:1a:29:e1:10:3e:
10:8f:34:65:6c:5c:2a:be:3b:03:eb:af:6f:2c:da:
32:ed:74:22:cd:a6:d1:12:e2:4b:4e:aa:59:95:88:
76:f1:4e:08:f0:23:01:1e:4d:57:ce:8c:1d:95:93:
62:62:bd:68:12:0d:89:a6:16:26:4e:6e:6c:9e:8e:
65:27:56:d1:2e:03:0c:8e:26:f2:31:af:eb:4e:99:
1f:19:97:51:dd:6e:b9:29:45:16:02:c4:68:07:fc:
74:09:3f:09:d6:d5:be:71:55:c6:40:ba:61:ec:44:
e9:ef:a8:dc:25:45:34:cb:7a:aa:eb:68:5f:51:9d:
cc:90:b3:0a:f1:8c:51:c3:d9:5a:08:ba:a6:30:1c:
4b:e4:b5:60:bd:c6:d3:a3:4f:4e:33:4c:37:1f:e0:
28:a0:17:c8:1f:54:73:48:b0:e4:62:49:8a:cf:fb:
d6:3e:27:d1:91:28:f3:a0:ce:4b:98:ca:68:95:99:
5e:49:82:8c:ef:06:9a:0e:f6:8d:ad:20:a2:a9:39:
5d:fb:d2:a0:94:a6:ce:3b:7a:f7:80:4b:db:3f:ed:
41:d3:d2:dc:bf:fe:be:06:9b:95:85:08:af:fd:f7:
a5:70:4b:57:76:85:2c:5f:23:3f:3e:7a:c1:fa:10:
42:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:BD:AA:B3:80:89:EB:2A:ED:13:CE:34:EE:36:88:60:9C:F2:D3:17
X509v3 Authority Key Identifier:
keyid:C3:8C:3A:1C:05:C8:99:EB:FE:15:D2:36:19:09:A6:35:97:C6:80:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w4w6HAXImev-FdI2GQmmNZfGgHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/9e86ab-bc7f-4bc4-b127-42262161e940/1/cr2qs4CJ6yrtE8407jaIYJzy0xc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/9e86ab-bc7f-4bc4-b127-42262161e940/1/w4w6HAXImev-FdI2GQmmNZfGgHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.7.0/24
Signature Algorithm: sha256WithRSAEncryption
83:92:5d:d0:6b:b7:f1:9f:f8:ad:f5:f6:b5:be:08:a6:d4:cf:
9f:f2:fd:00:a8:a6:c7:f4:66:b0:36:aa:9e:6c:a9:4a:21:e8:
85:14:cf:6a:36:ac:1d:15:25:a7:d6:c0:b0:98:7d:a2:ec:5d:
db:5a:6f:07:fa:38:6b:2f:1a:4f:c7:2f:fd:c0:5e:cf:c5:f2:
ef:94:42:44:d4:b4:ff:ae:2f:df:92:13:e4:33:be:d0:cb:00:
53:4c:56:07:a0:82:56:4a:2e:27:7d:bc:0c:8f:f9:bd:d2:ac:
ca:ea:ed:77:4b:e3:3b:49:18:52:cb:e6:63:18:00:7f:95:eb:
1c:91:cd:65:bf:48:e2:c3:00:f6:2c:d5:ef:1f:de:58:de:b7:
4f:fe:b5:a2:2e:df:39:dc:3e:6b:62:76:d4:5c:85:0a:53:02:
88:e1:86:f3:1d:d1:11:2a:c2:25:84:30:36:a1:30:82:33:48:
97:37:08:f5:6b:55:9e:be:7d:be:b5:24:7e:13:ca:8e:2a:25:
25:24:b2:4e:99:d7:e5:2d:83:52:a9:8c:b5:14:d9:68:73:d1:
51:fa:43:bc:3c:1c:3b:04:33:be:f5:e3:4c:d4:7a:4c:86:98:
fa:af:55:8b:65:5b:68:87:fd:82:78:a4:d2:e1:22:9a:53:c5:
75:43:3b:c7
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIED0ltuzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
MzhjM2ExYzA1Yzg5OWViZmUxNWQyMzYxOTA5YTYzNTk3YzY4MDc4MB4XDTIyMDEw
MTA1MDE0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzJiZGFhYjM4MDg5
ZWIyYWVkMTNjZTM0ZWUzNjg4NjA5Y2YyZDMxNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJBzHjbUIxm4rRop4RA+EI80ZWxcKr47A+uvbyzaMu10Is2m
0RLiS06qWZWIdvFOCPAjAR5NV86MHZWTYmK9aBINiaYWJk5ubJ6OZSdW0S4DDI4m
8jGv606ZHxmXUd1uuSlFFgLEaAf8dAk/CdbVvnFVxkC6YexE6e+o3CVFNMt6quto
X1GdzJCzCvGMUcPZWgi6pjAcS+S1YL3G06NPTjNMNx/gKKAXyB9Uc0iw5GJJis/7
1j4n0ZEo86DOS5jKaJWZXkmCjO8Gmg72ja0goqk5XfvSoJSmzjt694BL2z/tQdPS
3L/+vgablYUIr/33pXBLV3aFLF8jPz56wfoQQr8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRyvaqzgInrKu0TzjTuNohgnPLTFzAfBgNVHSMEGDAWgBTDjDocBciZ6/4V
0jYZCaY1l8aAeDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3c0dzZIQVhJbWV2LUZkSTJHUW1tTlpmR2dIZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWUvOWU4NmFiLWJjN2YtNGJjNC1iMTI3LTQyMjYyMTYxZTk0MC8x
L2NyMnFzNENKNnlydEU4NDA3amFJWUp6eTB4Yy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWUv
OWU4NmFiLWJjN2YtNGJjNC1iMTI3LTQyMjYyMTYxZTk0MC8xL3c0dzZIQVhJbWV2
LUZkSTJHUW1tTlpmR2dIZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnKBzANBgkqhkiG9w0BAQsFAAOC
AQEAg5Jd0Gu38Z/4rfX2tb4IptTPn/L9AKimx/RmsDaqnmypSiHohRTPajasHRUl
p9bAsJh9ouxd21pvB/o4ay8aT8cv/cBez8Xy75RCRNS0/64v35IT5DO+0MsAU0xW
B6CCVkouJ328DI/5vdKsyurtd0vjO0kYUsvmYxgAf5XrHJHNZb9I4sMA9izV7x/e
WN63T/61oi7fOdw+a2J21FyFClMCiOGG8x3RESrCJYQwNqEwgjNIlzcI9WtVnr59
vrUkfhPKjiolJSSyTpnX5S2DUqmMtRTZaHPRUfpDvDwcOwQzvvXjTNR6TIaY+q9V
i2VbaIf9gnik0uEimlPFdUM7xw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:26 2024 by rpki-client on console-ams.rpki-client.org