Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/b6b167-07d4-47bb-be0e-434bc4ad390a/1/S8qxkxJVG3sEpBCAdKV959uxE9g.roa
File: S8qxkxJVG3sEpBCAdKV959uxE9g.roa (raw, json)
Hash identifier: XHtWm6T8AEwPNEa9EdqZj0r6w6z0iCeXmEwXX5Kg6j0=
Subject key identifier: 4B:CA:B1:93:12:55:1B:7B:04:A4:10:80:74:A5:7D:E7:DB:B1:13:D8
Certificate issuer: /CN=00b032f0261a0ea46fdc19a334e40e35c087f1c7
Certificate serial: 9AF6
Authority key identifier: 00:B0:32:F0:26:1A:0E:A4:6F:DC:19:A3:34:E4:0E:35:C0:87:F1:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ALAy8CYaDqRv3BmjNOQONcCH8cc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/b6b167-07d4-47bb-be0e-434bc4ad390a/1/S8qxkxJVG3sEpBCAdKV959uxE9g.roa
Signing time: Wed 26 Jan 2022 18:28:15 +0000
ROA not before: Wed 26 Jan 2022 18:28:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49392
IP address blocks: 185.94.67.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39670 (0x9af6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00b032f0261a0ea46fdc19a334e40e35c087f1c7
Validity
Not Before: Jan 26 18:28:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4bcab19312551b7b04a4108074a57de7dbb113d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f9:61:b4:b8:76:02:e1:c7:bf:57:7f:3d:9c:
fd:12:13:6c:69:be:e1:77:a3:29:67:ae:50:2f:8a:
9a:53:38:59:11:af:e4:50:72:b3:f0:a8:9e:f6:e9:
4a:a8:bb:ac:7c:a6:20:0d:78:0a:af:b3:d0:a1:54:
ef:29:be:6c:a4:90:a5:2b:ac:1a:64:e4:38:6f:3e:
2f:79:33:90:95:45:f9:9b:2a:e0:d1:46:b0:e3:c3:
9a:a7:90:02:4a:3b:fc:ca:ae:e7:92:46:9b:2b:e5:
e3:66:44:16:4f:f5:be:ae:00:63:15:a5:e6:2d:16:
61:dc:a3:d7:71:6e:cb:50:af:b1:18:75:7c:d0:40:
9c:56:1a:05:bd:44:fa:cb:22:d5:21:a9:a3:42:63:
06:33:b6:04:3a:a9:ef:b2:0a:39:85:ba:bb:d1:d8:
10:15:fb:97:aa:3d:e4:77:da:03:08:52:73:96:5c:
61:98:2c:1f:63:33:86:67:c4:b3:13:17:0c:a9:72:
00:41:c3:64:34:a5:2d:1e:f9:13:13:1a:26:0e:e2:
0f:ea:4f:ed:67:2d:8a:71:42:0a:3b:50:c3:af:13:
1a:70:8e:9a:32:ac:49:12:ed:05:9d:77:fc:c2:73:
e6:44:69:08:80:6f:40:0f:e4:b0:39:65:27:f9:77:
fe:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:CA:B1:93:12:55:1B:7B:04:A4:10:80:74:A5:7D:E7:DB:B1:13:D8
X509v3 Authority Key Identifier:
keyid:00:B0:32:F0:26:1A:0E:A4:6F:DC:19:A3:34:E4:0E:35:C0:87:F1:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ALAy8CYaDqRv3BmjNOQONcCH8cc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/b6b167-07d4-47bb-be0e-434bc4ad390a/1/S8qxkxJVG3sEpBCAdKV959uxE9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/b6b167-07d4-47bb-be0e-434bc4ad390a/1/ALAy8CYaDqRv3BmjNOQONcCH8cc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.94.67.0/24
Signature Algorithm: sha256WithRSAEncryption
34:1f:b0:79:30:fd:7e:2b:16:88:42:9d:63:3c:44:fa:8d:80:
c9:56:7b:88:4c:88:4c:ff:39:7c:35:c9:20:8f:ea:a4:65:ee:
6a:42:0e:89:4a:b0:4c:d1:b0:ee:03:d5:7b:dd:3d:1d:49:5e:
1d:3b:ce:87:b1:2c:9f:4a:3f:2d:a4:1b:f7:b9:53:a3:74:94:
70:d8:9b:eb:6c:cf:11:f2:c9:aa:94:d4:17:14:22:c2:23:33:
b2:47:ba:a9:e0:64:b6:b6:11:96:ea:3e:fd:2f:a3:95:4e:4d:
0a:6e:70:0d:76:bb:93:47:4d:e7:2a:68:e1:4c:65:ab:b6:41:
c6:72:cd:ee:b1:30:ef:28:34:3c:7b:1c:70:10:d7:e1:e4:79:
f2:c9:04:f2:fb:39:8e:46:72:81:ed:2a:0d:71:20:51:ee:d1:
24:59:b6:e4:fa:f6:8a:e8:29:87:c9:91:62:cd:01:47:69:9e:
6a:07:1c:ca:40:2d:dc:d6:0a:1c:cb:aa:b7:d8:0d:d0:41:6c:
1c:4b:ee:17:50:aa:59:b2:70:a6:20:37:1b:1d:cf:59:fc:f6:
62:3e:d1:b0:0b:82:75:f9:e0:de:9f:7a:c5:6a:6e:70:53:36:
ff:68:5c:3f:6e:5b:55:dc:60:fd:b2:a6:57:ba:b4:66:21:62:
a9:8c:ba:aa
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAJr2MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDAw
YjAzMmYwMjYxYTBlYTQ2ZmRjMTlhMzM0ZTQwZTM1YzA4N2YxYzcwHhcNMjIwMTI2
MTgyODE1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg0YmNhYjE5MzEyNTUx
YjdiMDRhNDEwODA3NGE1N2RlN2RiYjExM2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAyPlhtLh2AuHHv1d/PZz9EhNsab7hd6MpZ65QL4qaUzhZEa/k
UHKz8Kie9ulKqLusfKYgDXgKr7PQoVTvKb5spJClK6waZOQ4bz4veTOQlUX5myrg
0Uaw48Oap5ACSjv8yq7nkkabK+XjZkQWT/W+rgBjFaXmLRZh3KPXcW7LUK+xGHV8
0ECcVhoFvUT6yyLVIamjQmMGM7YEOqnvsgo5hbq70dgQFfuXqj3kd9oDCFJzllxh
mCwfYzOGZ8SzExcMqXIAQcNkNKUtHvkTExomDuIP6k/tZy2KcUIKO1DDrxMacI6a
MqxJEu0FnXf8wnPmRGkIgG9AD+SwOWUn+Xf+IwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFEvKsZMSVRt7BKQQgHSlfefbsRPYMB8GA1UdIwQYMBaAFACwMvAmGg6kb9wZ
ozTkDjXAh/HHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
QUxBeThDWWFEcVJ2M0Jtak5PUU9OY0NIOGNjLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC83My9iNmIxNjctMDdkNC00N2JiLWJlMGUtNDM0YmM0YWQzOTBhLzEv
UzhxeGt4SlZHM3NFcEJDQWRLVjk1OXV4RTlnLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My9i
NmIxNjctMDdkNC00N2JiLWJlMGUtNDM0YmM0YWQzOTBhLzEvQUxBeThDWWFEcVJ2
M0Jtak5PUU9OY0NIOGNjLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuV5DMA0GCSqGSIb3DQEBCwUAA4IB
AQA0H7B5MP1+KxaIQp1jPET6jYDJVnuITIhM/zl8Nckgj+qkZe5qQg6JSrBM0bDu
A9V73T0dSV4dO86HsSyfSj8tpBv3uVOjdJRw2JvrbM8R8smqlNQXFCLCIzOyR7qp
4GS2thGW6j79L6OVTk0KbnANdruTR03nKmjhTGWrtkHGcs3usTDvKDQ8exxwENfh
5HnyyQTy+zmORnKB7SoNcSBR7tEkWbbk+vaK6CmHyZFizQFHaZ5qBxzKQC3c1goc
y6q32A3QQWwcS+4XUKpZsnCmIDcbHc9Z/PZiPtGwC4J1+eDen3rFam5wUzb/aFw/
bltV3GD9sqZXurRmIWKpjLqq
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:35 2023 by rpki-client on console-ams.rpki-client.org