Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/00c3ab-4a7f-4f74-b556-a488bd42024f/1/ClusB8cHId-H1mX3agU8mX3o19k.roa
File: ClusB8cHId-H1mX3agU8mX3o19k.roa (raw, json)
Hash identifier: rzikOWq82/LghmBQEh3pisKQxFk9mQEhNM6qS2XC2IM=
Subject key identifier: 0A:5B:AC:07:C7:07:21:DF:87:D6:65:F7:6A:05:3C:99:7D:E8:D7:D9
Certificate issuer: /CN=9588d8b4c7aa45a9b2cd737c614871eb7181babe
Certificate serial: 058D5A6B
Authority key identifier: 95:88:D8:B4:C7:AA:45:A9:B2:CD:73:7C:61:48:71:EB:71:81:BA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYjYtMeqRamyzXN8YUhx63GBur4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/00c3ab-4a7f-4f74-b556-a488bd42024f/1/ClusB8cHId-H1mX3agU8mX3o19k.roa
Signing time: Sun 03 Apr 2022 08:27:21 +0000
ROA not before: Sun 03 Apr 2022 08:27:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204393
IP address blocks: 185.187.48.0/24 maxlen: 24
185.187.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93149803 (0x58d5a6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9588d8b4c7aa45a9b2cd737c614871eb7181babe
Validity
Not Before: Apr 3 08:27:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a5bac07c70721df87d665f76a053c997de8d7d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6f:91:99:74:34:c8:c4:6c:ab:2e:eb:ab:59:
bf:0e:1d:58:a5:3d:8a:92:21:3a:5f:18:5b:a2:d3:
61:55:05:ee:85:5f:3a:8e:7b:8d:ce:fd:f5:4e:7a:
73:b3:6f:45:35:b8:21:7a:b1:6a:3e:28:03:9d:01:
d1:03:2c:60:05:fe:38:ca:b8:d6:77:98:14:b2:ca:
07:3c:43:20:cd:20:dd:a7:f6:81:15:d4:63:ca:55:
92:f1:7c:cf:d4:ef:a4:1a:55:10:a7:60:aa:d1:bb:
88:41:2f:d9:83:d5:eb:d1:62:07:a2:9e:68:55:80:
ef:2c:8a:75:b0:c6:f4:3b:a2:2b:f8:1c:60:57:a9:
b2:52:73:9b:64:4b:9c:d7:54:76:46:c7:68:1f:6d:
01:68:a8:9b:db:a0:d0:2b:95:0a:a6:d2:d4:48:47:
a0:d6:aa:1e:94:9c:49:20:75:d4:3d:c9:59:d0:1d:
c1:ad:02:0e:4f:50:8d:4a:25:86:d3:34:37:24:4d:
10:4a:77:a2:51:b2:a1:03:ef:5d:40:bc:72:6d:fd:
86:e8:8e:0a:5e:21:8e:1f:39:fb:5a:97:2e:37:5e:
96:67:59:b8:66:ba:b5:d0:5e:81:51:77:4f:4b:a3:
85:98:45:15:ba:0d:6a:80:e7:59:8e:c4:fe:29:37:
0d:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:5B:AC:07:C7:07:21:DF:87:D6:65:F7:6A:05:3C:99:7D:E8:D7:D9
X509v3 Authority Key Identifier:
keyid:95:88:D8:B4:C7:AA:45:A9:B2:CD:73:7C:61:48:71:EB:71:81:BA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYjYtMeqRamyzXN8YUhx63GBur4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/00c3ab-4a7f-4f74-b556-a488bd42024f/1/ClusB8cHId-H1mX3agU8mX3o19k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/00c3ab-4a7f-4f74-b556-a488bd42024f/1/lYjYtMeqRamyzXN8YUhx63GBur4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.48.0/23
Signature Algorithm: sha256WithRSAEncryption
c3:c1:9b:b7:6d:7a:ad:ee:56:36:e7:18:9a:91:b6:e4:5b:ca:
ad:f6:41:64:b2:37:e1:73:72:25:9b:97:20:c4:4f:63:d2:ac:
af:d1:20:6e:50:69:37:c7:92:c7:71:fd:29:12:21:47:56:27:
b3:da:41:51:81:2a:c8:f1:57:cd:d4:38:fa:2e:01:fb:66:2b:
8c:28:45:4b:c6:04:ac:b7:3b:bf:74:a7:9a:9d:68:3f:0a:97:
3c:62:6d:fb:25:47:ef:c6:0e:e5:2c:a4:6a:98:45:c7:22:06:
21:ad:22:0e:6a:43:f5:b6:97:99:c9:05:79:08:67:b4:a9:21:
41:ac:20:ab:a3:d3:36:2e:2e:55:01:1a:6c:ba:2d:49:fd:08:
e7:00:5e:54:5d:7a:63:4e:64:da:e9:17:2a:d0:48:1e:2c:7c:
af:cb:32:9f:ed:53:47:04:03:26:5c:6e:3b:9f:a0:ef:b5:f6:
30:67:0e:a6:ea:7f:9e:3c:6c:08:de:05:db:a4:e4:51:94:b9:
76:56:d5:59:68:7b:af:ac:39:0d:fd:47:12:83:d1:8b:86:f6:
9f:81:45:71:ac:82:9c:ca:d6:1f:34:c5:4f:f3:50:06:67:5d:
b4:5a:ff:1f:b1:8a:d7:69:a4:1b:63:84:b8:2f:c7:32:f1:43:
b0:5a:d3:af
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBY1aazANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
NTg4ZDhiNGM3YWE0NWE5YjJjZDczN2M2MTQ4NzFlYjcxODFiYWJlMB4XDTIyMDQw
MzA4MjcyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGE1YmFjMDdjNzA3
MjFkZjg3ZDY2NWY3NmEwNTNjOTk3ZGU4ZDdkOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALpvkZl0NMjEbKsu66tZvw4dWKU9ipIhOl8YW6LTYVUF7oVf
Oo57jc799U56c7NvRTW4IXqxaj4oA50B0QMsYAX+OMq41neYFLLKBzxDIM0g3af2
gRXUY8pVkvF8z9TvpBpVEKdgqtG7iEEv2YPV69FiB6KeaFWA7yyKdbDG9DuiK/gc
YFepslJzm2RLnNdUdkbHaB9tAWiom9ug0CuVCqbS1EhHoNaqHpScSSB11D3JWdAd
wa0CDk9QjUolhtM0NyRNEEp3olGyoQPvXUC8cm39huiOCl4hjh85+1qXLjdelmdZ
uGa6tdBegVF3T0ujhZhFFboNaoDnWY7E/ik3DR0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQKW6wHxwch34fWZfdqBTyZfejX2TAfBgNVHSMEGDAWgBSViNi0x6pFqbLN
c3xhSHHrcYG6vjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2xZall0TWVxUmFteXpYTjhZVWh4NjNHQnVyNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzUvMDBjM2FiLTRhN2YtNGY3NC1iNTU2LWE0ODhiZDQyMDI0Zi8x
L0NsdXNCOGNISWQtSDFtWDNhZ1U4bVgzbzE5ay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzUv
MDBjM2FiLTRhN2YtNGY3NC1iNTU2LWE0ODhiZDQyMDI0Zi8xL2xZall0TWVxUmFt
eXpYTjhZVWh4NjNHQnVyNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAbm7MDANBgkqhkiG9w0BAQsFAAOC
AQEAw8Gbt216re5WNucYmpG25FvKrfZBZLI34XNyJZuXIMRPY9Ksr9EgblBpN8eS
x3H9KRIhR1Yns9pBUYEqyPFXzdQ4+i4B+2YrjChFS8YErLc7v3Snmp1oPwqXPGJt
+yVH78YO5SykaphFxyIGIa0iDmpD9baXmckFeQhntKkhQawgq6PTNi4uVQEabLot
Sf0I5wBeVF16Y05k2ukXKtBIHix8r8syn+1TRwQDJlxuO5+g77X2MGcOpup/njxs
CN4F26TkUZS5dlbVWWh7r6w5Df1HEoPRi4b2n4FFcayCnMrWHzTFT/NQBmddtFr/
H7GK12mkG2OEuC/HMvFDsFrTrw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:11 2024 by rpki-client on console-fra.rpki-client.org