Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/8ccbcc-cd51-44ae-8f05-36fd233514f9/1/p1MAn_SoTvBtqoVAhfgJJ2eoveY.roa
File: p1MAn_SoTvBtqoVAhfgJJ2eoveY.roa (raw, json)
Hash identifier: MdURRRSR6S+EIzCm0d1RDvKqAHhJOnGsW2JHQq6/nrw=
Subject key identifier: A7:53:00:9F:F4:A8:4E:F0:6D:AA:85:40:85:F8:09:27:67:A8:BD:E6
Certificate issuer: /CN=b921277f3e7954a4af5520a99042fb0893af804d
Certificate serial: 090C87AD
Authority key identifier: B9:21:27:7F:3E:79:54:A4:AF:55:20:A9:90:42:FB:08:93:AF:80:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uSEnfz55VKSvVSCpkEL7CJOvgE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/8ccbcc-cd51-44ae-8f05-36fd233514f9/1/p1MAn_SoTvBtqoVAhfgJJ2eoveY.roa
Signing time: Sat 01 Jan 2022 08:05:46 +0000
ROA not before: Sat 01 Jan 2022 08:05:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213131
IP address blocks: 185.230.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151816109 (0x90c87ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b921277f3e7954a4af5520a99042fb0893af804d
Validity
Not Before: Jan 1 08:05:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a753009ff4a84ef06daa854085f8092767a8bde6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ba:60:4a:4d:50:cf:8e:e5:bd:5d:50:38:83:
ae:a1:06:fb:39:b6:07:1f:b7:60:76:bc:94:21:ea:
9e:54:43:a0:25:a1:72:57:4a:6c:03:4a:04:7e:52:
ef:24:df:69:67:1f:eb:67:8d:d3:44:58:89:c3:27:
8c:41:c7:c1:54:e8:76:fd:eb:3f:63:01:6e:6e:ad:
3d:8e:a3:b8:35:18:37:ad:f6:d8:16:0c:b7:cb:5a:
1e:94:71:8d:d9:08:0a:27:b1:1a:86:80:e3:02:18:
a5:95:ff:4c:6e:78:a6:de:6d:0a:ca:71:ed:18:87:
d9:fa:f4:e1:9e:20:28:bf:13:78:ce:53:fc:12:99:
c0:2e:e3:ef:a3:ab:d8:e1:98:46:e8:21:ad:1a:d8:
b5:df:0a:41:cb:c0:6e:0d:15:e8:dc:00:da:99:83:
38:63:26:bd:0b:5e:63:b5:17:29:c9:d6:a0:aa:f7:
c3:f8:d2:28:08:31:e4:c8:88:04:6b:e8:f1:35:7a:
f3:b7:29:04:22:9f:81:7b:af:c9:ca:0a:d4:05:0e:
4d:79:9d:9f:74:6c:8d:d3:b5:fa:0a:d6:a4:c8:85:
79:77:8f:5d:08:e2:bd:98:a4:c8:3a:1f:14:ad:4d:
94:65:59:5d:e4:7d:52:1b:62:24:dd:b2:75:7c:f4:
da:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:53:00:9F:F4:A8:4E:F0:6D:AA:85:40:85:F8:09:27:67:A8:BD:E6
X509v3 Authority Key Identifier:
keyid:B9:21:27:7F:3E:79:54:A4:AF:55:20:A9:90:42:FB:08:93:AF:80:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uSEnfz55VKSvVSCpkEL7CJOvgE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/8ccbcc-cd51-44ae-8f05-36fd233514f9/1/p1MAn_SoTvBtqoVAhfgJJ2eoveY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/8ccbcc-cd51-44ae-8f05-36fd233514f9/1/uSEnfz55VKSvVSCpkEL7CJOvgE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.158.0/24
Signature Algorithm: sha256WithRSAEncryption
54:2e:3e:48:77:48:37:14:70:eb:32:65:90:c4:20:e5:84:10:
9d:b8:f1:e4:98:79:da:70:09:1c:85:93:8e:37:5e:44:ca:4a:
10:65:11:3e:33:03:ab:ab:b1:96:1b:5c:1a:20:47:f9:a8:fd:
c6:3e:7f:97:f3:cf:b0:05:88:d7:98:bb:7c:d0:1b:49:80:01:
d3:7e:28:8c:24:e5:a5:38:7f:b6:b8:8a:03:45:50:a8:fd:42:
5e:9d:c5:36:91:ff:a7:39:6b:6f:aa:73:72:13:3f:1f:c8:c9:
65:c8:b8:5f:5f:1f:32:b1:6a:b6:39:d5:f5:49:68:4e:26:11:
8b:e2:46:4b:bb:e5:1e:b6:02:70:8e:eb:fb:36:1f:c3:33:57:
27:9b:3a:a5:0f:83:8d:44:8e:49:b3:08:bd:5a:9b:9a:ae:04:
6a:b7:40:ed:61:cc:ad:52:4d:a7:1a:e2:32:75:de:41:a7:5c:
c0:17:d8:78:46:ce:63:d4:c3:94:76:bf:b8:ac:be:1f:e7:0e:
88:4e:40:db:3d:c5:38:af:67:78:6e:94:c7:c3:10:9c:52:ee:
a4:c7:6f:3d:ea:6a:0b:95:be:28:94:49:78:3d:84:2b:78:12:
90:36:e3:fa:5f:ac:da:44:eb:b2:51:11:e2:f2:7b:b6:2a:f0:
51:34:f4:2a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECQyHrTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
OTIxMjc3ZjNlNzk1NGE0YWY1NTIwYTk5MDQyZmIwODkzYWY4MDRkMB4XDTIyMDEw
MTA4MDU0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTc1MzAwOWZmNGE4
NGVmMDZkYWE4NTQwODVmODA5Mjc2N2E4YmRlNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJi6YEpNUM+O5b1dUDiDrqEG+zm2Bx+3YHa8lCHqnlRDoCWh
cldKbANKBH5S7yTfaWcf62eN00RYicMnjEHHwVTodv3rP2MBbm6tPY6juDUYN632
2BYMt8taHpRxjdkICiexGoaA4wIYpZX/TG54pt5tCspx7RiH2fr04Z4gKL8TeM5T
/BKZwC7j76Or2OGYRughrRrYtd8KQcvAbg0V6NwA2pmDOGMmvQteY7UXKcnWoKr3
w/jSKAgx5MiIBGvo8TV687cpBCKfgXuvycoK1AUOTXmdn3RsjdO1+grWpMiFeXeP
XQjivZikyDofFK1NlGVZXeR9UhtiJN2ydXz02rECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSnUwCf9KhO8G2qhUCF+AknZ6i95jAfBgNVHSMEGDAWgBS5ISd/PnlUpK9V
IKmQQvsIk6+ATTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3VTRW5mejU1VktTdlZTQ3BrRUw3Q0pPdmdFMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWYvOGNjYmNjLWNkNTEtNDRhZS04ZjA1LTM2ZmQyMzM1MTRmOS8x
L3AxTUFuX1NvVHZCdHFvVkFoZmdKSjJlb3ZlWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWYv
OGNjYmNjLWNkNTEtNDRhZS04ZjA1LTM2ZmQyMzM1MTRmOS8xL3VTRW5mejU1VktT
dlZTQ3BrRUw3Q0pPdmdFMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnmnjANBgkqhkiG9w0BAQsFAAOC
AQEAVC4+SHdINxRw6zJlkMQg5YQQnbjx5Jh52nAJHIWTjjdeRMpKEGURPjMDq6ux
lhtcGiBH+aj9xj5/l/PPsAWI15i7fNAbSYAB034ojCTlpTh/triKA0VQqP1CXp3F
NpH/pzlrb6pzchM/H8jJZci4X18fMrFqtjnV9UloTiYRi+JGS7vlHrYCcI7r+zYf
wzNXJ5s6pQ+DjUSOSbMIvVqbmq4EardA7WHMrVJNpxriMnXeQadcwBfYeEbOY9TD
lHa/uKy+H+cOiE5A2z3FOK9neG6Ux8MQnFLupMdvPepqC5W+KJRJeD2EK3gSkDbj
+l+s2kTrslER4vJ7tirwUTT0Kg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:03 2024 by rpki-client on console-fra.rpki-client.org