Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/drLNlP5m-8gwTp7d4ehudJiTdf0.roa
File: drLNlP5m-8gwTp7d4ehudJiTdf0.roa (raw, json)
Hash identifier: r0KY1/Vf6Uk/b6RvqMOoC3xb1F9houJmkhuI7bqYEyg=
Subject key identifier: 76:B2:CD:94:FE:66:FB:C8:30:4E:9E:DD:E1:E8:6E:74:98:93:75:FD
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 9BB50A
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/drLNlP5m-8gwTp7d4ehudJiTdf0.roa
Signing time: Thu 02 Jun 2022 15:24:21 +0000
ROA not before: Thu 02 Jun 2022 15:24:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61138
IP address blocks: 185.173.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10204426 (0x9bb50a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Jun 2 15:24:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76b2cd94fe66fbc8304e9edde1e86e74989375fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:7d:53:18:26:36:3f:a5:fc:a8:9d:3f:7a:a3:
fa:4c:38:ab:78:bf:51:30:1b:44:31:3f:de:fd:aa:
f9:96:d7:29:0e:bd:63:77:e0:60:ce:4b:41:35:8f:
52:df:06:80:70:6b:98:bc:a4:2a:1e:be:f2:5c:a5:
d9:98:a2:eb:a1:c1:10:50:a0:0c:b6:f6:1c:3b:2a:
d0:ab:73:01:cb:df:d8:28:b5:97:2c:18:2b:c1:a2:
2a:89:6e:58:26:b9:1e:48:cb:81:e0:34:88:57:c0:
30:ab:19:73:c0:e7:43:05:b5:26:e4:fe:c9:47:96:
35:03:00:8f:e2:71:24:bf:72:0f:98:9e:5d:6a:9e:
c0:7a:1c:5d:a1:ee:c9:85:42:94:a1:ec:c1:c4:7d:
68:56:e3:06:e2:48:29:85:4e:23:91:24:b6:08:53:
9c:8f:49:62:31:19:59:9c:20:ca:d7:71:6f:52:f6:
41:cc:cf:c0:24:ef:31:ec:b9:72:f2:a1:2b:95:ca:
b7:ad:19:33:e7:98:a6:09:5f:1c:dc:0c:b4:4b:25:
6f:6d:68:3b:0e:2b:1e:68:f8:91:aa:a1:5d:a2:a4:
3c:f8:e4:c8:62:95:c9:9e:9a:e7:59:81:72:71:31:
85:28:5a:61:fe:7a:63:2b:f8:d9:54:03:e1:5e:19:
e2:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:B2:CD:94:FE:66:FB:C8:30:4E:9E:DD:E1:E8:6E:74:98:93:75:FD
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/drLNlP5m-8gwTp7d4ehudJiTdf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.173.147.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:c6:b1:09:79:91:fc:21:93:9c:d8:7a:05:d0:34:c1:6c:f6:
da:0a:7b:40:74:15:53:9f:91:03:29:c1:16:87:17:6b:73:32:
50:39:d6:0b:c4:d4:97:ac:05:d1:ae:59:7a:16:5a:8b:32:7c:
0c:21:c5:35:d7:02:41:cc:c4:2c:2e:c6:97:3a:00:69:73:22:
2f:ff:c2:01:8b:69:08:cc:1c:e5:55:11:b7:cc:6a:46:db:94:
ac:38:df:a9:8e:19:6f:d8:98:77:72:12:0d:7b:3a:0f:9c:f1:
7d:c1:54:b8:5b:78:d4:06:14:b8:64:d6:7b:7f:aa:7e:45:dc:
86:fe:36:5f:d5:08:57:05:d9:08:0a:19:94:6d:67:af:6c:cf:
86:53:39:69:1a:72:25:17:b7:05:4d:bf:42:ae:12:25:85:58:
87:d0:d0:5a:fa:8d:44:f7:4d:5e:ef:e8:58:c1:5a:4e:64:3e:
1a:ea:31:0a:2e:75:89:42:1d:7f:21:cc:49:98:08:3e:73:67:
68:30:40:e2:03:99:35:23:66:65:bd:4d:a5:7a:21:4e:fc:b7:
08:ee:72:00:bc:cb:1e:b3:52:be:72:67:d1:d6:ab:4e:6a:78:
02:19:61:e6:d7:51:5e:22:a2:d7:ea:3c:59:82:2d:00:f4:49:
3d:d4:fa:a7
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAJu1CjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
Yzg5MmFlZDM4MzNlNjEwMGY1ZTBjZjEyMjcxZmQ4MGI3NTVjMzYxMB4XDTIyMDYw
MjE1MjQyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzZiMmNkOTRmZTY2
ZmJjODMwNGU5ZWRkZTFlODZlNzQ5ODkzNzVmZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMx9UxgmNj+l/KidP3qj+kw4q3i/UTAbRDE/3v2q+ZbXKQ69
Y3fgYM5LQTWPUt8GgHBrmLykKh6+8lyl2Zii66HBEFCgDLb2HDsq0KtzAcvf2Ci1
lywYK8GiKoluWCa5HkjLgeA0iFfAMKsZc8DnQwW1JuT+yUeWNQMAj+JxJL9yD5ie
XWqewHocXaHuyYVClKHswcR9aFbjBuJIKYVOI5EktghTnI9JYjEZWZwgytdxb1L2
QczPwCTvMey5cvKhK5XKt60ZM+eYpglfHNwMtEslb21oOw4rHmj4kaqhXaKkPPjk
yGKVyZ6a51mBcnExhShaYf56Yyv42VQD4V4Z4tUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR2ss2U/mb7yDBOnt3h6G50mJN1/TAfBgNVHSMEGDAWgBRciSrtODPmEA9e
DPEicf2At1XDYTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1hJa3E3VGd6NWhBUFhnenhJbkg5Z0xkVncyRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWYvODZmYjQ2LWQ3MTItNDYwMi05Y2NlLTNhYTdkYWE5ZDNlYy8x
L2RyTE5sUDVtLThnd1RwN2Q0ZWh1ZEppVGRmMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWYv
ODZmYjQ2LWQ3MTItNDYwMi05Y2NlLTNhYTdkYWE5ZDNlYy8xL1hJa3E3VGd6NWhB
UFhnenhJbkg5Z0xkVncyRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALmtkzANBgkqhkiG9w0BAQsFAAOC
AQEAqsaxCXmR/CGTnNh6BdA0wWz22gp7QHQVU5+RAynBFocXa3MyUDnWC8TUl6wF
0a5ZehZaizJ8DCHFNdcCQczELC7GlzoAaXMiL//CAYtpCMwc5VURt8xqRtuUrDjf
qY4Zb9iYd3ISDXs6D5zxfcFUuFt41AYUuGTWe3+qfkXchv42X9UIVwXZCAoZlG1n
r2zPhlM5aRpyJRe3BU2/Qq4SJYVYh9DQWvqNRPdNXu/oWMFaTmQ+GuoxCi51iUId
fyHMSZgIPnNnaDBA4gOZNSNmZb1NpXohTvy3CO5yALzLHrNSvnJn0darTmp4Ahlh
5tdRXiKi1+o8WYItAPRJPdT6pw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:34 2023 by rpki-client on console-ams.rpki-client.org