Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/01bf96-81b6-4e4c-ab80-e0bc41078426/1/KzuO5xL36wnJ711szCJTJGl1g7I.roa
File: KzuO5xL36wnJ711szCJTJGl1g7I.roa (raw, json)
Hash identifier: +9DmxHCfE/oWURM0wanz18DNrjCswhM+T6ZO6IdESJg=
Subject key identifier: 2B:3B:8E:E7:12:F7:EB:09:C9:EF:5D:6C:CC:22:53:24:69:75:83:B2
Certificate issuer: /CN=dc0f9ea04636d7e71418b93091ccd0e57015be49
Certificate serial: 10225C57
Authority key identifier: DC:0F:9E:A0:46:36:D7:E7:14:18:B9:30:91:CC:D0:E5:70:15:BE:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3A-eoEY21-cUGLkwkczQ5XAVvkk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/01bf96-81b6-4e4c-ab80-e0bc41078426/1/KzuO5xL36wnJ711szCJTJGl1g7I.roa
Signing time: Sat 01 Jan 2022 02:53:04 +0000
ROA not before: Sat 01 Jan 2022 02:53:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41026
IP address blocks: 185.56.244.0/22 maxlen: 22
2a02:5660::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 270687319 (0x10225c57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc0f9ea04636d7e71418b93091ccd0e57015be49
Validity
Not Before: Jan 1 02:53:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2b3b8ee712f7eb09c9ef5d6ccc225324697583b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:52:24:88:0c:c0:d2:55:b5:21:50:37:21:7f:
b7:0b:a9:1d:77:ad:4f:34:aa:7f:62:4b:3e:70:52:
ab:bb:64:7e:8c:bb:19:0c:fe:9a:a6:39:53:f9:81:
15:95:d7:a0:ac:fc:16:ed:21:5e:e6:cf:65:53:2e:
bd:36:f7:24:47:5a:40:2f:0d:f7:a5:bd:ad:8b:40:
22:f6:75:bf:0d:33:e2:81:7c:8b:10:b7:ff:6a:c6:
b4:d6:f4:bc:ea:c6:d5:8c:02:10:d3:61:a1:d3:aa:
28:12:38:ce:51:a2:bc:d3:32:8a:b0:71:9c:e6:84:
0e:6c:78:09:03:99:1c:2c:9d:23:8c:71:12:5d:31:
2d:28:12:af:75:3a:fe:06:4d:c3:41:f5:e5:03:d2:
5c:f9:58:6b:b5:1d:ab:01:11:38:a5:ed:62:66:0f:
1a:0f:65:1d:e5:5c:c7:2a:76:05:88:fd:c1:19:d6:
10:8f:3a:e6:d2:cc:ed:12:07:92:d3:c2:2b:d8:a3:
41:5d:96:da:9e:e6:b0:33:6c:09:ca:66:45:46:3e:
a6:f2:b8:09:09:28:e0:55:2a:34:b8:5d:d4:61:32:
97:95:2e:a9:b6:8e:d6:35:9d:61:65:34:bc:fd:60:
eb:fc:24:05:f2:3f:a4:c3:b8:cc:5b:ed:54:1e:b0:
ab:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:3B:8E:E7:12:F7:EB:09:C9:EF:5D:6C:CC:22:53:24:69:75:83:B2
X509v3 Authority Key Identifier:
keyid:DC:0F:9E:A0:46:36:D7:E7:14:18:B9:30:91:CC:D0:E5:70:15:BE:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3A-eoEY21-cUGLkwkczQ5XAVvkk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/01bf96-81b6-4e4c-ab80-e0bc41078426/1/KzuO5xL36wnJ711szCJTJGl1g7I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/01bf96-81b6-4e4c-ab80-e0bc41078426/1/3A-eoEY21-cUGLkwkczQ5XAVvkk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.56.244.0/22
IPv6:
2a02:5660::/32
Signature Algorithm: sha256WithRSAEncryption
a0:12:e6:d5:09:83:d1:2c:a8:2d:b3:31:2a:fd:a1:f6:7d:a4:
2c:37:58:f3:00:f1:3b:bb:53:05:6a:35:ec:ed:52:27:7d:11:
7a:ef:47:f0:3c:86:af:53:da:6e:62:8b:15:1d:4c:ec:f7:2a:
d0:50:26:34:1d:30:ba:7b:74:70:21:e2:5d:20:7b:ee:cb:49:
1b:0a:e4:b8:27:8a:3b:9a:b6:cb:2a:07:70:a5:1a:0d:de:53:
4f:50:52:c0:ea:f5:f1:a1:ab:da:fa:13:7d:56:23:0f:b3:9e:
5b:c9:45:60:65:b1:49:e5:12:15:64:e0:dd:8a:b0:81:17:6f:
9a:2c:86:26:ae:7e:7f:d3:33:53:79:fb:14:14:02:ea:d4:7f:
98:63:69:24:8a:dc:d0:80:59:40:b8:db:30:0d:a8:82:79:82:
e6:28:69:9d:8c:43:76:65:52:65:62:f5:08:8a:02:91:e4:35:
37:7f:37:4f:b8:d1:47:f2:27:72:b5:7d:20:df:a1:b4:7a:a3:
ce:92:37:c8:57:a2:79:95:08:7a:19:f7:4f:6f:0b:12:ba:d0:
9a:b6:ae:dd:0a:9b:82:d1:f2:48:2f:93:25:5a:6a:e7:0f:27:
3c:da:53:99:7d:3e:7a:69:d4:58:4f:e9:d4:d0:a0:96:18:70:
63:62:03:85
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEECJcVzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
YzBmOWVhMDQ2MzZkN2U3MTQxOGI5MzA5MWNjZDBlNTcwMTViZTQ5MB4XDTIyMDEw
MTAyNTMwNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmIzYjhlZTcxMmY3
ZWIwOWM5ZWY1ZDZjY2MyMjUzMjQ2OTc1ODNiMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOJSJIgMwNJVtSFQNyF/twupHXetTzSqf2JLPnBSq7tkfoy7
GQz+mqY5U/mBFZXXoKz8Fu0hXubPZVMuvTb3JEdaQC8N96W9rYtAIvZ1vw0z4oF8
ixC3/2rGtNb0vOrG1YwCENNhodOqKBI4zlGivNMyirBxnOaEDmx4CQOZHCydI4xx
El0xLSgSr3U6/gZNw0H15QPSXPlYa7UdqwEROKXtYmYPGg9lHeVcxyp2BYj9wRnW
EI865tLM7RIHktPCK9ijQV2W2p7msDNsCcpmRUY+pvK4CQko4FUqNLhd1GEyl5Uu
qbaO1jWdYWU0vP1g6/wkBfI/pMO4zFvtVB6wq2ECAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBQrO47nEvfrCcnvXWzMIlMkaXWDsjAfBgNVHSMEGDAWgBTcD56gRjbX5xQY
uTCRzNDlcBW+STAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzNBLWVvRVkyMS1jVUdMa3drY3pRNVhBVnZray5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzQvMDFiZjk2LTgxYjYtNGU0Yy1hYjgwLWUwYmM0MTA3ODQyNi8x
L0t6dU81eEwzNnduSjcxMXN6Q0pUSkdsMWc3SS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzQv
MDFiZjk2LTgxYjYtNGU0Yy1hYjgwLWUwYmM0MTA3ODQyNi8xLzNBLWVvRVkyMS1j
VUdMa3drY3pRNVhBVnZray5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArk49DANBAIAAjAHAwUAKgJWYDAN
BgkqhkiG9w0BAQsFAAOCAQEAoBLm1QmD0SyoLbMxKv2h9n2kLDdY8wDxO7tTBWo1
7O1SJ30Reu9H8DyGr1PabmKLFR1M7Pcq0FAmNB0wunt0cCHiXSB77stJGwrkuCeK
O5q2yyoHcKUaDd5TT1BSwOr18aGr2voTfVYjD7OeW8lFYGWxSeUSFWTg3YqwgRdv
miyGJq5+f9MzU3n7FBQC6tR/mGNpJIrc0IBZQLjbMA2ognmC5ihpnYxDdmVSZWL1
CIoCkeQ1N383T7jRR/IncrV9IN+htHqjzpI3yFeieZUIehn3T28LErrQmrau3Qqb
gtHySC+TJVpq5w8nPNpTmX0+emnUWE/p1NCglhhwY2IDhQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:35 2023 by rpki-client on console-ams.rpki-client.org