Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/TcKaWTmN1_kHZ3uqCoYWogI_Q18.roa
File: TcKaWTmN1_kHZ3uqCoYWogI_Q18.roa (raw, json)
Hash identifier: HIyvzUdZbZLGS9wNqAs6Cbauin/U8Aq6YZdfeM4wxsg=
Subject key identifier: 4D:C2:9A:59:39:8D:D7:F9:07:67:7B:AA:0A:86:16:A2:02:3F:43:5F
Certificate issuer: /CN=3797e039f025a25aa6e992391d924260699ba67b
Certificate serial: F146CE
Authority key identifier: 37:97:E0:39:F0:25:A2:5A:A6:E9:92:39:1D:92:42:60:69:9B:A6:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N5fgOfAlolqm6ZI5HZJCYGmbpns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/TcKaWTmN1_kHZ3uqCoYWogI_Q18.roa
Signing time: Sat 01 Jan 2022 06:05:51 +0000
ROA not before: Sat 01 Jan 2022 06:05:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61006
IP address blocks: 185.96.72.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15812302 (0xf146ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3797e039f025a25aa6e992391d924260699ba67b
Validity
Not Before: Jan 1 06:05:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4dc29a59398dd7f907677baa0a8616a2023f435f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ab:43:a0:9d:01:f8:ea:d4:78:04:fc:7a:d2:
7b:9e:9a:ba:de:41:c0:30:5c:da:ef:71:61:b9:b0:
af:36:1c:64:36:07:a2:88:c8:0e:91:b8:6d:00:e7:
3a:9d:02:8a:dc:76:88:1f:c3:e5:7e:52:29:84:01:
93:bd:2f:bc:5d:ee:5e:3f:8c:f4:7b:52:64:69:91:
82:a2:67:bc:cd:c9:e4:95:18:38:db:33:de:b0:cc:
cd:7d:80:55:f0:20:d4:f0:2e:a9:8a:36:dd:e2:0f:
7a:2e:00:50:d9:7e:bb:69:2c:75:64:e2:c0:ea:ca:
25:b3:24:02:ad:79:20:57:53:fd:13:f6:72:aa:ce:
7c:be:12:52:df:eb:ef:8a:88:eb:69:01:98:eb:55:
35:b7:4e:65:d7:f7:1d:dc:0e:b2:a9:f1:36:ec:b4:
80:e2:ad:d2:6d:cb:4f:5f:b4:54:00:8e:50:c5:60:
b9:c8:b3:3d:cc:11:b2:37:4f:b3:27:df:3b:7c:9f:
1d:71:0a:d2:8b:8f:6f:db:c6:15:d2:32:a9:54:a0:
7a:7f:80:3d:76:79:a3:a2:1f:8a:bf:18:c6:1c:48:
b7:31:c9:f8:70:f2:16:0f:f1:26:24:88:2d:69:48:
01:07:87:a7:a1:75:18:23:ed:a0:97:04:a8:ce:d6:
ff:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:C2:9A:59:39:8D:D7:F9:07:67:7B:AA:0A:86:16:A2:02:3F:43:5F
X509v3 Authority Key Identifier:
keyid:37:97:E0:39:F0:25:A2:5A:A6:E9:92:39:1D:92:42:60:69:9B:A6:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N5fgOfAlolqm6ZI5HZJCYGmbpns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/TcKaWTmN1_kHZ3uqCoYWogI_Q18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.96.72.0/22
Signature Algorithm: sha256WithRSAEncryption
b7:8d:5a:1a:8b:1f:cd:40:ce:c3:26:04:a3:06:6b:8c:e3:40:
ff:48:91:d5:6b:b2:fa:1a:dd:f9:fc:a6:e4:c9:bf:82:3f:7f:
4a:9a:95:fa:a1:ad:ae:f4:20:3d:89:4c:8e:97:67:64:21:a1:
d8:64:27:4b:e2:34:ab:65:2c:e3:13:62:3c:01:89:cb:59:0f:
d1:b2:ca:a6:0f:1e:a4:52:ad:e9:2a:f2:d2:1c:70:4b:5a:20:
b0:0e:f7:36:6a:1f:54:dd:ac:94:1a:12:41:b6:80:37:c2:22:
76:4c:6b:87:ec:d9:b1:20:d6:ad:a7:85:78:2d:d9:80:ce:d5:
b2:ae:be:24:52:7a:a5:75:fe:05:42:5e:82:bb:0e:d5:05:1f:
b9:5b:67:07:a0:02:50:b3:bc:e9:9b:09:3e:bd:ae:d8:84:43:
12:ce:95:bf:1b:b0:ae:d9:d6:e0:df:fc:ac:63:f1:da:14:f2:
67:77:c0:fc:4e:46:55:78:18:43:05:d4:06:a9:09:f1:e4:c3:
38:03:19:e3:57:0e:a4:84:49:a5:1c:b9:d6:29:ff:80:85:ce:
04:42:3e:8a:04:d5:55:b8:a8:12:59:ba:35:f1:e3:1c:7a:e9:
65:34:ab:0a:75:0c:29:5a:f5:41:97:ca:ff:60:c9:51:44:de:
b2:49:4a:21
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAPFGzjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
Nzk3ZTAzOWYwMjVhMjVhYTZlOTkyMzkxZDkyNDI2MDY5OWJhNjdiMB4XDTIyMDEw
MTA2MDU1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGRjMjlhNTkzOThk
ZDdmOTA3Njc3YmFhMGE4NjE2YTIwMjNmNDM1ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANqrQ6CdAfjq1HgE/HrSe56aut5BwDBc2u9xYbmwrzYcZDYH
oojIDpG4bQDnOp0Citx2iB/D5X5SKYQBk70vvF3uXj+M9HtSZGmRgqJnvM3J5JUY
ONsz3rDMzX2AVfAg1PAuqYo23eIPei4AUNl+u2ksdWTiwOrKJbMkAq15IFdT/RP2
cqrOfL4SUt/r74qI62kBmOtVNbdOZdf3HdwOsqnxNuy0gOKt0m3LT1+0VACOUMVg
ucizPcwRsjdPsyffO3yfHXEK0ouPb9vGFdIyqVSgen+APXZ5o6Ifir8YxhxItzHJ
+HDyFg/xJiSILWlIAQeHp6F1GCPtoJcEqM7W/+kCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRNwppZOY3X+Qdne6oKhhaiAj9DXzAfBgNVHSMEGDAWgBQ3l+A58CWiWqbp
kjkdkkJgaZumezAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L041ZmdPZkFsb2xxbTZaSTVIWkpDWUdtYnBucy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjEvMGFiYjhhLTk3OTgtNGJmOC1iYWUxLWMxYzA1Y2RiNzg0MS8x
L1RjS2FXVG1OMV9rSFozdXFDb1lXb2dJX1ExOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjEv
MGFiYjhhLTk3OTgtNGJmOC1iYWUxLWMxYzA1Y2RiNzg0MS8xL041ZmdPZkFsb2xx
bTZaSTVIWkpDWUdtYnBucy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArlgSDANBgkqhkiG9w0BAQsFAAOC
AQEAt41aGosfzUDOwyYEowZrjONA/0iR1Wuy+hrd+fym5Mm/gj9/SpqV+qGtrvQg
PYlMjpdnZCGh2GQnS+I0q2Us4xNiPAGJy1kP0bLKpg8epFKt6Sry0hxwS1ogsA73
NmofVN2slBoSQbaAN8Iidkxrh+zZsSDWraeFeC3ZgM7Vsq6+JFJ6pXX+BUJegrsO
1QUfuVtnB6ACULO86ZsJPr2u2IRDEs6VvxuwrtnW4N/8rGPx2hTyZ3fA/E5GVXgY
QwXUBqkJ8eTDOAMZ41cOpIRJpRy51in/gIXOBEI+igTVVbioElm6NfHjHHrpZTSr
CnUMKVr1QZfK/2DJUUTesklKIQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:02 2024 by rpki-client on console-ams.rpki-client.org