Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5afc37-0909-4d54-bcef-bd34e0a95a1e/1/_3xkyBIKuLmmAq9EIxbaaPljdso.roa
File: _3xkyBIKuLmmAq9EIxbaaPljdso.roa (raw, json)
Hash identifier: 3QhBoX8TLZ9+xPIH57YO+uq5VZjnvISclkoWxh+755w=
Subject key identifier: FF:7C:64:C8:12:0A:B8:B9:A6:02:AF:44:23:16:DA:68:F9:63:76:CA
Certificate issuer: /CN=90a03b68f87da71c271c9cf5c82e955dbc65c104
Certificate serial: 01846671BC40DE476665114DAD022D104356
Authority key identifier: 90:A0:3B:68:F8:7D:A7:1C:27:1C:9C:F5:C8:2E:95:5D:BC:65:C1:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kKA7aPh9pxwnHJz1yC6VXbxlwQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5afc37-0909-4d54-bcef-bd34e0a95a1e/1/_3xkyBIKuLmmAq9EIxbaaPljdso.roa
Signing time: Fri 11 Nov 2022 11:27:20 +0000
ROA not before: Fri 11 Nov 2022 11:27:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48062
IP address blocks: 185.197.180.0/24 maxlen: 26
2a10:f000::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:66:71:bc:40:de:47:66:65:11:4d:ad:02:2d:10:43:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90a03b68f87da71c271c9cf5c82e955dbc65c104
Validity
Not Before: Nov 11 11:27:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff7c64c8120ab8b9a602af442316da68f96376ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:11:ef:d3:68:8a:18:5e:ec:f7:dd:be:24:27:
59:b0:a0:44:39:b5:23:85:85:02:94:d0:20:63:83:
3f:19:0e:b1:b5:fd:77:bc:1f:6e:c0:e4:93:f4:4a:
c9:d4:cd:12:e2:a6:05:76:bf:f1:31:f2:8d:e5:24:
49:de:fb:73:d2:05:50:97:16:5f:23:3f:da:24:21:
44:86:08:e5:f6:4a:7e:00:8f:53:a5:aa:ab:47:eb:
f3:b8:a5:a4:88:e9:e2:f6:73:8f:64:dd:06:1d:d8:
c3:8d:96:04:14:01:98:3f:4a:06:06:a1:00:aa:53:
8e:14:6d:cf:2d:7d:e7:ed:28:48:fd:cf:97:95:8a:
8f:94:fa:29:a9:2b:35:58:69:48:fb:b3:ec:9e:dc:
09:91:b5:70:bd:e6:5b:04:b1:ba:43:f3:e7:b5:65:
01:d4:41:93:f6:6b:65:06:af:db:11:ad:20:92:52:
fd:8e:78:2f:fe:b8:cb:d0:e0:2a:ab:37:58:84:a1:
e1:b6:03:f5:35:4b:cd:86:ed:a0:53:d4:e7:19:68:
30:28:52:90:81:9b:f3:8f:87:12:f1:0b:b5:38:cc:
cd:10:4e:83:a4:8c:0e:17:c4:1e:98:89:5f:53:67:
a6:2a:a7:1d:f4:81:06:81:cb:27:70:7f:f6:c7:62:
2e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:7C:64:C8:12:0A:B8:B9:A6:02:AF:44:23:16:DA:68:F9:63:76:CA
X509v3 Authority Key Identifier:
keyid:90:A0:3B:68:F8:7D:A7:1C:27:1C:9C:F5:C8:2E:95:5D:BC:65:C1:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kKA7aPh9pxwnHJz1yC6VXbxlwQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5afc37-0909-4d54-bcef-bd34e0a95a1e/1/_3xkyBIKuLmmAq9EIxbaaPljdso.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5afc37-0909-4d54-bcef-bd34e0a95a1e/1/kKA7aPh9pxwnHJz1yC6VXbxlwQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.197.180.0/24
IPv6:
2a10:f000::/32
Signature Algorithm: sha256WithRSAEncryption
85:63:6a:3b:a9:b1:ef:05:9b:a9:cb:5c:23:3b:7b:5b:d8:d7:
2c:7a:ab:b5:73:ca:50:48:2b:2d:d6:5c:f3:e5:d0:50:ec:fe:
7d:51:61:f4:87:f9:9c:bf:32:66:97:6c:ce:57:a3:ea:2c:01:
e2:52:57:70:b0:7b:5b:ad:ef:3f:63:d8:bc:8f:89:95:dd:98:
a3:77:57:7f:62:6d:09:9b:99:0d:d6:87:cc:71:bf:ec:b5:43:
a9:f4:69:33:a5:0b:91:f6:4a:1f:d9:5f:3c:47:be:da:0a:2d:
fe:ef:d6:1d:02:9f:b0:3f:e8:9e:9e:6a:eb:03:25:c9:4b:71:
71:65:89:e6:87:b0:bc:c8:cf:b5:57:e4:2c:a2:09:43:d2:4c:
e4:62:29:02:9f:f1:cf:b8:f6:64:75:30:3f:56:27:2d:aa:57:
ff:bb:31:80:19:a1:b1:48:6a:4f:79:f0:8c:a2:05:85:f6:ea:
81:51:4f:e2:50:96:9b:94:ba:69:08:1f:eb:d5:bd:8a:99:e7:
b7:d5:28:dd:40:3c:40:76:94:7e:02:2a:6f:5e:b2:94:0d:c3:
d7:48:ba:fb:e1:4a:7f:af:99:df:0e:8b:6c:16:29:06:c7:bf:
27:ce:bb:15:83:a6:43:65:f3:80:02:21:c9:df:54:76:ab:ad:
b9:96:92:16
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYRmcbxA3kdmZRFNrQItEENWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwYTAzYjY4Zjg3ZGE3MWMyNzFjOWNmNWM4MmU5NTVkYmM2
NWMxMDQwHhcNMjIxMTExMTEyNzIwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZjdjNjRjODEyMGFiOGI5YTYwMmFmNDQyMzE2ZGE2OGY5NjM3NmNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuhHv02iKGF7s992+JCdZsKBEObUj
hYUClNAgY4M/GQ6xtf13vB9uwOST9ErJ1M0S4qYFdr/xMfKN5SRJ3vtz0gVQlxZf
Iz/aJCFEhgjl9kp+AI9TpaqrR+vzuKWkiOni9nOPZN0GHdjDjZYEFAGYP0oGBqEA
qlOOFG3PLX3n7ShI/c+XlYqPlPopqSs1WGlI+7PsntwJkbVwveZbBLG6Q/PntWUB
1EGT9mtlBq/bEa0gklL9jngv/rjL0OAqqzdYhKHhtgP1NUvNhu2gU9TnGWgwKFKQ
gZvzj4cS8Qu1OMzNEE6DpIwOF8QemIlfU2emKqcd9IEGgcsncH/2x2IuiQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFP98ZMgSCri5pgKvRCMW2mj5Y3bKMB8GA1UdIwQY
MBaAFJCgO2j4faccJxyc9cgulV28ZcEEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva0tBN2FQaDlweHduSEp6MXlDNlZYYnhsd1FRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS81YWZjMzctMDkwOS00ZDU0LWJjZWYt
YmQzNGUwYTk1YTFlLzEvXzN4a3lCSUt1TG1tQXE5RUl4YmFhUGxqZHNvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS81YWZjMzctMDkwOS00ZDU0LWJjZWYtYmQzNGUwYTk1YTFl
LzEva0tBN2FQaDlweHduSEp6MXlDNlZYYnhsd1FRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAucW0MA0E
AgACMAcDBQAqEPAAMA0GCSqGSIb3DQEBCwUAA4IBAQCFY2o7qbHvBZupy1wjO3tb
2Ncsequ1c8pQSCst1lzz5dBQ7P59UWH0h/mcvzJml2zOV6PqLAHiUldwsHtbre8/
Y9i8j4mV3Zijd1d/Ym0Jm5kN1ofMcb/stUOp9GkzpQuR9kof2V88R77aCi3+79Yd
Ap+wP+ienmrrAyXJS3FxZYnmh7C8yM+1V+QsoglD0kzkYikCn/HPuPZkdTA/Vict
qlf/uzGAGaGxSGpPefCMogWF9uqBUU/iUJablLppCB/r1b2Kmee31SjdQDxAdpR+
AipvXrKUDcPXSLr74Up/r5nfDotsFikGx78nzrsVg6ZDZfOAAiHJ31R2q625lpIW
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:44 2024 by rpki-client on console-fra.rpki-client.org