Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f0971a-8891-4b53-944c-5be9e117dbda/1/A1txYq6rL4nP8EIOnKPmwcxk-tc.roa
File: A1txYq6rL4nP8EIOnKPmwcxk-tc.roa (raw, json)
Hash identifier: JeXq2PaNHpPMKn0pFcQT/R+K7iGJshZ9Ay3boNmnMAQ=
Subject key identifier: 03:5B:71:62:AE:AB:2F:89:CF:F0:42:0E:9C:A3:E6:C1:CC:64:FA:D7
Certificate issuer: /CN=6583d322ef24c87198b765ea1d1c42c283a7f8f6
Certificate serial: 018268F5F1401E50F3604BDD877F19BCA609
Authority key identifier: 65:83:D3:22:EF:24:C8:71:98:B7:65:EA:1D:1C:42:C2:83:A7:F8:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYPTIu8kyHGYt2XqHRxCwoOn-PY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f0971a-8891-4b53-944c-5be9e117dbda/1/A1txYq6rL4nP8EIOnKPmwcxk-tc.roa
Signing time: Thu 04 Aug 2022 13:05:24 +0000
ROA not before: Thu 04 Aug 2022 13:05:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209209
IP address blocks: 185.232.44.0/24 maxlen: 24
2a11:fe80::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:68:f5:f1:40:1e:50:f3:60:4b:dd:87:7f:19:bc:a6:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6583d322ef24c87198b765ea1d1c42c283a7f8f6
Validity
Not Before: Aug 4 13:05:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=035b7162aeab2f89cff0420e9ca3e6c1cc64fad7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:90:bd:16:57:52:c5:27:71:d8:02:ff:b0:f8:
c7:e8:cc:ca:c5:91:e5:7a:3d:82:ed:08:14:26:89:
18:44:ef:77:34:aa:83:bc:dc:74:5a:9d:e2:82:74:
22:2a:ae:78:b6:62:b7:f4:06:0a:7d:0d:bf:f5:d4:
ff:a5:96:cb:71:43:6f:f2:e0:2e:1e:23:b1:bb:be:
6b:cb:8e:fb:f5:61:93:eb:20:bd:f9:85:a8:62:97:
74:97:28:3e:90:09:57:43:4c:fd:50:f0:95:74:60:
89:cb:90:74:61:2f:9f:c5:8a:0d:87:74:c7:52:e0:
ca:44:07:7a:61:30:15:b1:05:6b:74:56:dd:64:c5:
68:68:9f:a8:76:f6:64:1a:f6:45:f2:3f:88:5b:2e:
e0:1b:4b:7b:3a:a9:72:a0:e5:e9:23:da:f5:96:b3:
b2:7b:8f:2b:b5:b0:d0:58:6b:1c:38:d6:68:e1:bf:
58:94:e2:74:85:e7:a3:8c:04:3a:9c:f6:e5:73:09:
2d:34:dd:73:78:de:45:a9:e9:e6:bf:7b:47:85:40:
10:b6:80:a5:6a:c9:af:61:4d:d6:9a:d8:38:6f:44:
a6:1e:71:0c:5e:4f:1a:e5:7f:1c:78:ba:5d:c0:63:
19:1c:8a:5d:0a:92:9e:7c:dd:ba:a5:22:b6:e4:c4:
c1:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:5B:71:62:AE:AB:2F:89:CF:F0:42:0E:9C:A3:E6:C1:CC:64:FA:D7
X509v3 Authority Key Identifier:
keyid:65:83:D3:22:EF:24:C8:71:98:B7:65:EA:1D:1C:42:C2:83:A7:F8:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYPTIu8kyHGYt2XqHRxCwoOn-PY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f0971a-8891-4b53-944c-5be9e117dbda/1/A1txYq6rL4nP8EIOnKPmwcxk-tc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f0971a-8891-4b53-944c-5be9e117dbda/1/ZYPTIu8kyHGYt2XqHRxCwoOn-PY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.232.44.0/24
IPv6:
2a11:fe80::/32
Signature Algorithm: sha256WithRSAEncryption
31:65:f9:bb:49:0d:2d:81:b5:8b:95:0b:e3:8c:ee:23:ad:56:
82:79:dc:e6:62:da:e9:92:33:13:70:ba:1f:97:38:f9:b7:66:
41:24:fb:b8:e6:68:d0:48:7f:87:25:b8:88:31:1f:72:fc:cb:
7c:da:6f:18:62:89:23:a0:63:8c:72:7d:f4:8a:aa:eb:72:2f:
a3:aa:e2:a6:d2:37:c1:43:ed:c1:10:1d:c9:77:dd:42:4b:9b:
54:90:5a:5a:e5:6d:15:eb:10:d6:54:89:9a:be:85:5b:1f:1e:
0c:e3:96:8e:be:9f:fb:11:dd:28:45:a0:7b:13:e2:a6:33:b4:
a1:8b:1f:5c:78:23:6f:71:92:3b:56:74:c4:88:a8:1e:3b:8e:
20:2c:0d:ea:9d:ed:db:04:33:76:49:c1:a7:99:05:c1:7a:43:
22:38:4b:b0:a6:07:75:2e:2b:6f:9f:08:89:ba:90:91:5d:78:
ff:0a:d5:cc:35:98:2c:ee:91:b9:2b:b7:d9:76:c6:c8:de:33:
12:b6:65:1d:98:5c:98:0e:07:e5:15:62:ee:2a:66:e6:b0:93:
24:46:6a:db:5b:e1:2c:6a:0d:43:9e:f8:9b:be:33:77:e2:11:
42:b0:64:d4:15:18:9c:c5:3e:56:4f:bc:a8:b4:5c:f5:fe:7b:
9c:a3:15:fc
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYJo9fFAHlDzYEvdh38ZvKYJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY1ODNkMzIyZWYyNGM4NzE5OGI3NjVlYTFkMWM0MmMyODNh
N2Y4ZjYwHhcNMjIwODA0MTMwNTI0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMzViNzE2MmFlYWIyZjg5Y2ZmMDQyMGU5Y2EzZTZjMWNjNjRmYWQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz5C9FldSxSdx2AL/sPjH6MzKxZHl
ej2C7QgUJokYRO93NKqDvNx0Wp3ignQiKq54tmK39AYKfQ2/9dT/pZbLcUNv8uAu
HiOxu75ry4779WGT6yC9+YWoYpd0lyg+kAlXQ0z9UPCVdGCJy5B0YS+fxYoNh3TH
UuDKRAd6YTAVsQVrdFbdZMVoaJ+odvZkGvZF8j+IWy7gG0t7OqlyoOXpI9r1lrOy
e48rtbDQWGscONZo4b9YlOJ0heejjAQ6nPblcwktNN1zeN5Fqenmv3tHhUAQtoCl
asmvYU3Wmtg4b0SmHnEMXk8a5X8ceLpdwGMZHIpdCpKefN26pSK25MTBmQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFANbcWKuqy+Jz/BCDpyj5sHMZPrXMB8GA1UdIwQY
MBaAFGWD0yLvJMhxmLdl6h0cQsKDp/j2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWllQVEl1OGt5SEdZdDJYcUhSeEN3b09uLVBZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9mMDk3MWEtODg5MS00YjUzLTk0NGMt
NWJlOWUxMTdkYmRhLzEvQTF0eFlxNnJMNG5QOEVJT25LUG13Y3hrLXRjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni9mMDk3MWEtODg5MS00YjUzLTk0NGMtNWJlOWUxMTdkYmRh
LzEvWllQVEl1OGt5SEdZdDJYcUhSeEN3b09uLVBZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuegsMA0E
AgACMAcDBQAqEf6AMA0GCSqGSIb3DQEBCwUAA4IBAQAxZfm7SQ0tgbWLlQvjjO4j
rVaCedzmYtrpkjMTcLoflzj5t2ZBJPu45mjQSH+HJbiIMR9y/Mt82m8YYokjoGOM
cn30iqrrci+jquKm0jfBQ+3BEB3Jd91CS5tUkFpa5W0V6xDWVImavoVbHx4M45aO
vp/7Ed0oRaB7E+KmM7Shix9ceCNvcZI7VnTEiKgeO44gLA3qne3bBDN2ScGnmQXB
ekMiOEuwpgd1LitvnwiJupCRXXj/CtXMNZgs7pG5K7fZdsbI3jMStmUdmFyYDgfl
FWLuKmbmsJMkRmrbW+Esag1DnvibvjN34hFCsGTUFRicxT5WT7yotFz1/nucoxX8
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:21 2024 by rpki-client on console-ams.rpki-client.org