Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/JGz70FqSlSt5ZX_lstmBqMbn8Ps.roa
File: JGz70FqSlSt5ZX_lstmBqMbn8Ps.roa (raw, json)
Hash identifier: lC+9EMX1d9oxCPjqXZLuOdUprDIJXxKxO0bg6AQnjXo=
Subject key identifier: 24:6C:FB:D0:5A:92:95:2B:79:65:7F:E5:B2:D9:81:A8:C6:E7:F0:FB
Certificate issuer: /CN=53da99f93518e29a945b07f60a18ef86e9b39e65
Certificate serial: 03D5A231
Authority key identifier: 53:DA:99:F9:35:18:E2:9A:94:5B:07:F6:0A:18:EF:86:E9:B3:9E:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U9qZ-TUY4pqUWwf2ChjvhumznmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/JGz70FqSlSt5ZX_lstmBqMbn8Ps.roa
Signing time: Sat 01 Jan 2022 15:59:37 +0000
ROA not before: Sat 01 Jan 2022 15:59:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44322
IP address blocks: 185.165.112.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64332337 (0x3d5a231)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53da99f93518e29a945b07f60a18ef86e9b39e65
Validity
Not Before: Jan 1 15:59:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=246cfbd05a92952b79657fe5b2d981a8c6e7f0fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ae:15:28:62:e7:23:46:8c:ba:ba:d3:b3:5b:
2d:cf:93:b6:10:22:d6:a9:97:11:e4:28:e4:9c:c1:
28:b6:09:8b:94:f9:36:3c:d2:44:3e:3d:da:18:b7:
f5:1c:99:ef:98:9f:5c:9e:b7:1b:62:b0:06:32:0e:
47:29:09:e3:fd:d8:da:07:d9:0e:d0:9a:1d:3c:52:
11:23:bf:b2:36:bb:82:c4:d6:99:36:13:9f:52:95:
f3:41:0e:6b:81:42:29:e1:f9:42:6a:78:11:0b:53:
8a:9c:13:79:b4:76:97:f2:33:44:d3:5a:3c:2c:76:
f5:2c:e5:51:9c:c5:01:b2:ee:b2:c6:ca:6c:1f:01:
47:05:72:5c:b6:df:ff:bb:a2:bf:7f:7f:b7:93:c2:
37:18:31:f0:95:3b:f4:94:36:af:ba:05:ac:13:c8:
39:65:07:44:9d:e5:36:b6:71:7b:86:da:b1:05:4a:
cb:54:31:ff:1d:cc:0a:92:46:82:d4:d1:c6:f2:fb:
80:26:41:01:6a:fd:b2:6d:1c:82:1f:ef:07:85:42:
74:1a:ce:7a:dd:b7:aa:69:43:39:b8:d1:79:79:6b:
ef:72:28:b9:c7:24:98:4d:3b:67:d6:69:ca:eb:94:
95:4a:bf:9b:b7:a3:3b:eb:a5:9c:d7:8c:6a:dd:e5:
44:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:6C:FB:D0:5A:92:95:2B:79:65:7F:E5:B2:D9:81:A8:C6:E7:F0:FB
X509v3 Authority Key Identifier:
keyid:53:DA:99:F9:35:18:E2:9A:94:5B:07:F6:0A:18:EF:86:E9:B3:9E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U9qZ-TUY4pqUWwf2ChjvhumznmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/JGz70FqSlSt5ZX_lstmBqMbn8Ps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.112.0/22
Signature Algorithm: sha256WithRSAEncryption
81:9c:44:f4:6f:ad:af:15:3c:82:15:28:8f:7c:5a:b1:e7:55:
40:6d:b8:88:70:46:0a:ab:e1:10:85:55:e6:32:3a:36:82:81:
9f:70:b9:4e:62:fd:d2:53:43:1f:a4:46:26:54:24:60:48:76:
4f:19:f3:c6:ec:d1:72:09:e6:41:45:99:d5:ce:ea:d6:f5:97:
4d:17:86:24:f6:0e:35:0c:c3:c6:2d:0d:0a:9e:42:d8:bd:aa:
5f:53:46:f0:ad:0a:ec:c1:dc:e5:92:4d:5b:fa:ac:c6:e0:7c:
c0:51:91:0f:74:47:d0:dc:c4:b4:2e:e0:96:63:d4:1b:34:3c:
ac:bd:40:7c:5e:c8:51:69:1f:17:cc:57:ad:30:15:bb:6a:a6:
83:8f:ea:6d:36:57:3f:67:ab:7c:19:fa:36:9f:b8:5f:9b:83:
f6:1f:55:d3:a1:10:54:91:47:28:15:fd:7f:9c:73:0f:8b:db:
e4:57:12:11:c9:35:5f:35:59:27:da:08:76:1b:57:16:bb:7b:
31:1e:b5:2f:56:45:83:49:8f:31:ee:7f:92:38:13:25:09:1f:
e5:72:bc:4e:74:76:1f:03:2d:94:b1:e3:df:01:12:03:cb:7a:
4e:5d:ac:39:e5:1a:ad:ab:52:95:93:9b:2f:d5:bb:36:6b:a9:
86:fe:5d:63
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA9WiMTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
M2RhOTlmOTM1MThlMjlhOTQ1YjA3ZjYwYTE4ZWY4NmU5YjM5ZTY1MB4XDTIyMDEw
MTE1NTkzN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjQ2Y2ZiZDA1YTky
OTUyYjc5NjU3ZmU1YjJkOTgxYThjNmU3ZjBmYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANeuFShi5yNGjLq607NbLc+TthAi1qmXEeQo5JzBKLYJi5T5
NjzSRD492hi39RyZ75ifXJ63G2KwBjIORykJ4/3Y2gfZDtCaHTxSESO/sja7gsTW
mTYTn1KV80EOa4FCKeH5Qmp4EQtTipwTebR2l/IzRNNaPCx29SzlUZzFAbLussbK
bB8BRwVyXLbf/7uiv39/t5PCNxgx8JU79JQ2r7oFrBPIOWUHRJ3lNrZxe4basQVK
y1Qx/x3MCpJGgtTRxvL7gCZBAWr9sm0cgh/vB4VCdBrOet23qmlDObjReXlr73Io
ucckmE07Z9ZpyuuUlUq/m7ejO+ulnNeMat3lRMsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQkbPvQWpKVK3llf+Wy2YGoxufw+zAfBgNVHSMEGDAWgBRT2pn5NRjimpRb
B/YKGO+G6bOeZTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1U5cVotVFVZNHBxVVd3ZjJDaGp2aHVtem5tVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjcvNTgzNTQzLWUzMzEtNDU5Mi04ZDg5LTlmMzAyYzIwYWU3MC8x
L0pHejcwRnFTbFN0NVpYX2xzdG1CcU1ibjhQcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjcv
NTgzNTQzLWUzMzEtNDU5Mi04ZDg5LTlmMzAyYzIwYWU3MC8xL1U5cVotVFVZNHBx
VVd3ZjJDaGp2aHVtem5tVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArmlcDANBgkqhkiG9w0BAQsFAAOC
AQEAgZxE9G+trxU8ghUoj3xasedVQG24iHBGCqvhEIVV5jI6NoKBn3C5TmL90lND
H6RGJlQkYEh2TxnzxuzRcgnmQUWZ1c7q1vWXTReGJPYONQzDxi0NCp5C2L2qX1NG
8K0K7MHc5ZJNW/qsxuB8wFGRD3RH0NzEtC7glmPUGzQ8rL1AfF7IUWkfF8xXrTAV
u2qmg4/qbTZXP2erfBn6Np+4X5uD9h9V06EQVJFHKBX9f5xzD4vb5FcSEck1XzVZ
J9oIdhtXFrt7MR61L1ZFg0mPMe5/kjgTJQkf5XK8TnR2HwMtlLHj3wESA8t6Tl2s
OeUaratSlZObL9W7Nmuphv5dYw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:19 2024 by rpki-client on console-fra.rpki-client.org