Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/DTKlIp2jqoS-CwEiI9rVx7BZ6TQ.roa
File: DTKlIp2jqoS-CwEiI9rVx7BZ6TQ.roa (raw, json)
Hash identifier: DioOD4gOjy/j6mDcfi+sqmNSA+Ik4hrMlQXDNktGjiI=
Subject key identifier: 0D:32:A5:22:9D:A3:AA:84:BE:0B:01:22:23:DA:D5:C7:B0:59:E9:34
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 38DEC094
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/DTKlIp2jqoS-CwEiI9rVx7BZ6TQ.roa
Signing time: Sat 01 Jan 2022 07:55:20 +0000
ROA not before: Sat 01 Jan 2022 07:55:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201204
IP address blocks: 145.62.64.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 954122388 (0x38dec094)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 1 07:55:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0d32a5229da3aa84be0b012223dad5c7b059e934
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:c0:c5:cc:83:7e:94:02:33:f1:80:a0:c6:cc:
81:c4:21:d6:1f:d4:96:1c:8c:bd:7c:b3:a9:da:5b:
e7:b5:74:4b:81:5a:39:e9:e8:fb:5c:fa:ed:6b:9a:
5d:da:c8:b4:1d:cd:08:82:e0:7b:c9:0c:03:f6:4b:
9f:dc:de:7b:26:66:e5:ca:1e:5a:f9:e1:09:d6:92:
4a:87:b7:21:b8:10:d2:be:34:66:f8:e3:c4:f1:b8:
86:ae:5a:51:51:3c:af:ce:c6:80:ff:7e:e3:c8:82:
9e:9a:b2:ca:76:25:35:b0:89:0f:cc:08:d0:60:7e:
59:05:4c:ad:29:cd:4f:be:cf:97:cc:05:60:f3:17:
fc:1c:55:a6:14:62:dc:cd:66:ad:c2:89:a4:56:31:
70:ed:a0:b3:ad:eb:c2:3a:da:f5:54:c2:dd:8a:38:
26:e7:cf:23:2c:fd:12:62:18:73:e8:27:d3:07:80:
47:c8:98:4f:83:07:05:cf:79:cb:8e:7e:0c:72:3d:
47:62:f7:20:3e:e3:c1:82:eb:70:8f:11:42:1f:3c:
56:30:db:8f:cc:b6:e4:19:12:83:36:8f:a9:44:52:
db:f4:af:12:66:c2:d0:b6:2c:ae:c2:1f:55:96:65:
89:37:5d:5b:f8:be:57:b3:b3:96:c9:7d:a3:31:4c:
00:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:32:A5:22:9D:A3:AA:84:BE:0B:01:22:23:DA:D5:C7:B0:59:E9:34
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/DTKlIp2jqoS-CwEiI9rVx7BZ6TQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.62.64.0/20
Signature Algorithm: sha256WithRSAEncryption
b0:85:e5:dc:11:7c:07:0e:72:e6:54:86:4a:92:c7:93:02:8c:
68:57:bf:06:72:66:67:50:ff:ed:00:35:84:9e:3a:df:09:59:
61:0f:84:cb:20:4d:36:46:8e:92:4b:16:14:f4:ac:f1:08:d6:
e8:1d:4d:85:dd:51:08:fa:a6:aa:86:99:4a:35:1d:71:b9:4a:
6b:ac:a6:1e:7b:d7:fa:34:a8:47:99:9c:42:9b:03:44:62:b0:
21:1f:86:d4:cc:4d:2e:4b:a1:a9:8e:e7:37:b7:0a:23:c6:06:
16:6b:81:34:15:e2:7c:df:94:80:85:6a:b1:cc:5e:c5:08:e5:
f2:ec:33:92:6c:1b:76:a2:bf:b5:1f:4b:5b:8f:fd:0a:57:b1:
09:cf:fa:ca:9e:ed:52:b4:50:be:af:7d:a9:52:c0:fa:e9:fc:
59:19:da:41:3a:56:86:ad:c0:81:e1:e8:68:27:8f:d8:c5:0d:
b1:bc:79:1a:1f:a1:d6:04:49:83:81:fc:f9:97:29:d6:ee:0a:
94:dc:b4:e8:93:66:25:f1:f8:d4:c5:39:5f:b8:a8:0f:45:70:
68:2a:54:ea:80:49:cc:d8:08:b2:12:46:65:fe:61:b9:4b:44:
40:d1:92:b1:a7:c4:48:a0:ea:bc:c5:f6:e9:60:52:05:5d:14:
2d:30:38:e8
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEON7AlDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
NzczZGIxNzc5NWQyYmYxYjRiNTM0NWM1YjI5MzkwZGJhZjQ1MjNlMB4XDTIyMDEw
MTA3NTUyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGQzMmE1MjI5ZGEz
YWE4NGJlMGIwMTIyMjNkYWQ1YzdiMDU5ZTkzNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANzAxcyDfpQCM/GAoMbMgcQh1h/UlhyMvXyzqdpb57V0S4Fa
Oeno+1z67WuaXdrItB3NCILge8kMA/ZLn9zeeyZm5coeWvnhCdaSSoe3IbgQ0r40
ZvjjxPG4hq5aUVE8r87GgP9+48iCnpqyynYlNbCJD8wI0GB+WQVMrSnNT77Pl8wF
YPMX/BxVphRi3M1mrcKJpFYxcO2gs63rwjra9VTC3Yo4JufPIyz9EmIYc+gn0weA
R8iYT4MHBc95y45+DHI9R2L3ID7jwYLrcI8RQh88VjDbj8y25BkSgzaPqURS2/Sv
EmbC0LYsrsIfVZZliTddW/i+V7Ozlsl9ozFMANsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQNMqUinaOqhL4LASIj2tXHsFnpNDAfBgNVHSMEGDAWgBQXc9sXeV0r8bS1
NFxbKTkNuvRSPjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0YzUGJGM2xkS19HMHRUUmNXeWs1RGJyMFVqNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmQvZjc3Y2JkLTg5M2ItNDYxNi05ZDc2LTU0ODYxZjIzMjQ5ZC8x
L0RUS2xJcDJqcW9TLUN3RWlJOXJWeDdCWjZUUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmQv
Zjc3Y2JkLTg5M2ItNDYxNi05ZDc2LTU0ODYxZjIzMjQ5ZC8xL0YzUGJGM2xkS19H
MHRUUmNXeWs1RGJyMFVqNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBJE+QDANBgkqhkiG9w0BAQsFAAOC
AQEAsIXl3BF8Bw5y5lSGSpLHkwKMaFe/BnJmZ1D/7QA1hJ463wlZYQ+EyyBNNkaO
kksWFPSs8QjW6B1Nhd1RCPqmqoaZSjUdcblKa6ymHnvX+jSoR5mcQpsDRGKwIR+G
1MxNLkuhqY7nN7cKI8YGFmuBNBXifN+UgIVqscxexQjl8uwzkmwbdqK/tR9LW4/9
ClexCc/6yp7tUrRQvq99qVLA+un8WRnaQTpWhq3AgeHoaCeP2MUNsbx5Gh+h1gRJ
g4H8+Zcp1u4KlNy06JNmJfH41MU5X7ioD0VwaCpU6oBJzNgIshJGZf5huUtEQNGS
safESKDqvMX26WBSBV0ULTA46A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:44 2024 by rpki-client on console-ams.rpki-client.org