Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/9fcccf-e7aa-4c44-9590-1cf0feaaa3ea/1/tobPIr-51lhaUmf8K1odWNphoEI.roa
File: tobPIr-51lhaUmf8K1odWNphoEI.roa (raw, json)
Hash identifier: O+/DKJ9HjZEr5f2gSN/4wlKuNbmvxzrBQeuPEIjEOyg=
Subject key identifier: B6:86:CF:22:BF:B9:D6:58:5A:52:67:FC:2B:5A:1D:58:DA:61:A0:42
Certificate issuer: /CN=3f0289affaaf080e252718e3f4489da29d9fa55a
Certificate serial: 0EA69195
Authority key identifier: 3F:02:89:AF:FA:AF:08:0E:25:27:18:E3:F4:48:9D:A2:9D:9F:A5:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PwKJr_qvCA4lJxjj9Eidop2fpVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/9fcccf-e7aa-4c44-9590-1cf0feaaa3ea/1/tobPIr-51lhaUmf8K1odWNphoEI.roa
Signing time: Sat 15 Jan 2022 16:49:49 +0000
ROA not before: Sat 15 Jan 2022 16:49:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137488
IP address blocks: 185.119.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 245797269 (0xea69195)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f0289affaaf080e252718e3f4489da29d9fa55a
Validity
Not Before: Jan 15 16:49:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b686cf22bfb9d6585a5267fc2b5a1d58da61a042
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:66:30:d9:ab:68:5c:0e:e3:37:4c:ba:29:27:
4e:5d:95:51:88:b7:af:b7:fc:7a:5c:a5:ae:d8:d1:
1c:61:63:e4:05:61:be:6c:9d:0c:0c:c4:04:eb:e9:
73:ee:0d:09:a7:cd:78:d0:56:7f:a8:93:00:c0:c8:
38:43:af:73:c8:3c:59:ef:86:b6:e0:e3:39:85:fa:
c1:05:ee:e0:1a:03:7a:f7:9d:13:90:bb:93:b2:99:
b5:0f:a1:65:f3:bb:cf:3a:b7:32:ac:c2:0d:73:ca:
3e:ef:1d:14:3a:f6:56:62:e4:81:71:12:ae:a9:23:
93:36:7a:d2:eb:c4:4e:6b:14:32:1b:c1:cc:b4:c5:
77:8c:f2:d8:df:7d:1d:98:b6:34:5e:4c:0e:42:06:
4a:66:af:48:43:0d:fa:58:54:68:97:fb:84:98:33:
3a:49:05:29:fb:80:a1:03:9f:0c:8f:52:4e:33:bb:
3b:66:02:67:25:95:00:b5:62:ca:dd:be:9a:23:58:
84:ce:9e:bc:14:c0:6c:28:48:bc:1d:f2:47:4a:64:
3f:68:ae:d3:1a:7f:92:63:76:a3:d0:5d:d1:fc:fc:
13:9e:e5:23:23:0c:c1:e4:01:84:50:56:dd:df:22:
4e:5a:7f:ac:7a:6b:70:22:0b:b0:5c:c5:24:31:ec:
78:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:86:CF:22:BF:B9:D6:58:5A:52:67:FC:2B:5A:1D:58:DA:61:A0:42
X509v3 Authority Key Identifier:
keyid:3F:02:89:AF:FA:AF:08:0E:25:27:18:E3:F4:48:9D:A2:9D:9F:A5:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PwKJr_qvCA4lJxjj9Eidop2fpVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/9fcccf-e7aa-4c44-9590-1cf0feaaa3ea/1/tobPIr-51lhaUmf8K1odWNphoEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/9fcccf-e7aa-4c44-9590-1cf0feaaa3ea/1/PwKJr_qvCA4lJxjj9Eidop2fpVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.119.219.0/24
Signature Algorithm: sha256WithRSAEncryption
28:12:6d:49:7b:79:be:d0:88:8f:aa:3c:c0:27:0f:7a:a7:5e:
ea:a6:11:5d:16:50:20:b9:bc:bb:17:57:2d:e7:3c:3c:d6:1d:
48:2d:fe:91:f2:3d:5d:8e:37:a8:aa:84:08:bc:0d:7f:c8:52:
4b:87:ce:16:e8:3d:1a:74:66:91:e1:8b:1e:cc:76:f9:39:42:
3b:9d:ec:f2:4f:51:71:1e:6d:40:ab:fc:bb:a3:69:be:4e:23:
e8:91:f8:f9:e2:db:be:96:91:a7:a8:05:5a:5a:ec:0e:6a:54:
24:ac:d9:0e:0e:d8:6a:2f:e6:72:13:4f:af:a2:28:d9:51:65:
a6:da:8b:2f:3b:f4:6b:41:b8:b5:ac:d8:36:10:7e:34:be:92:
c4:21:73:98:83:91:28:b9:85:b6:56:c9:e1:f1:14:46:be:e0:
5c:f5:05:d2:00:e6:95:63:58:5a:c7:0a:c7:26:59:83:69:10:
1b:6e:59:8d:7a:ab:a2:3a:f9:08:41:d4:10:79:2c:a7:21:ca:
99:7a:7e:92:76:98:ec:4e:a7:b1:81:61:ec:e9:d5:96:6e:ff:
65:02:96:0b:b1:f2:26:c1:43:9f:be:36:a5:ea:50:72:3a:cb:
91:49:08:bf:99:a0:81:a2:10:da:80:98:dc:e6:a6:27:63:5a:
f4:e3:a0:a2
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDqaRlTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
ZjAyODlhZmZhYWYwODBlMjUyNzE4ZTNmNDQ4OWRhMjlkOWZhNTVhMB4XDTIyMDEx
NTE2NDk0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjY4NmNmMjJiZmI5
ZDY1ODVhNTI2N2ZjMmI1YTFkNThkYTYxYTA0MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK9mMNmraFwO4zdMuiknTl2VUYi3r7f8elylrtjRHGFj5AVh
vmydDAzEBOvpc+4NCafNeNBWf6iTAMDIOEOvc8g8We+GtuDjOYX6wQXu4BoDeved
E5C7k7KZtQ+hZfO7zzq3MqzCDXPKPu8dFDr2VmLkgXESrqkjkzZ60uvETmsUMhvB
zLTFd4zy2N99HZi2NF5MDkIGSmavSEMN+lhUaJf7hJgzOkkFKfuAoQOfDI9STjO7
O2YCZyWVALViyt2+miNYhM6evBTAbChIvB3yR0pkP2iu0xp/kmN2o9Bd0fz8E57l
IyMMweQBhFBW3d8iTlp/rHprcCILsFzFJDHseI0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS2hs8iv7nWWFpSZ/wrWh1Y2mGgQjAfBgNVHSMEGDAWgBQ/Aomv+q8IDiUn
GOP0SJ2inZ+lWjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1B3S0pyX3F2Q0E0bEp4amo5RWlkb3AyZnBWby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzYvOWZjY2NmLWU3YWEtNGM0NC05NTkwLTFjZjBmZWFhYTNlYS8x
L3RvYlBJci01MWxoYVVtZjhLMW9kV05waG9FSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzYv
OWZjY2NmLWU3YWEtNGM0NC05NTkwLTFjZjBmZWFhYTNlYS8xL1B3S0pyX3F2Q0E0
bEp4amo5RWlkb3AyZnBWby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALl32zANBgkqhkiG9w0BAQsFAAOC
AQEAKBJtSXt5vtCIj6o8wCcPeqde6qYRXRZQILm8uxdXLec8PNYdSC3+kfI9XY43
qKqECLwNf8hSS4fOFug9GnRmkeGLHsx2+TlCO53s8k9RcR5tQKv8u6Npvk4j6JH4
+eLbvpaRp6gFWlrsDmpUJKzZDg7Yai/mchNPr6Io2VFlptqLLzv0a0G4tazYNhB+
NL6SxCFzmIORKLmFtlbJ4fEURr7gXPUF0gDmlWNYWscKxyZZg2kQG25ZjXqrojr5
CEHUEHkspyHKmXp+knaY7E6nsYFh7OnVlm7/ZQKWC7HyJsFDn742pepQcjrLkUkI
v5mggaIQ2oCY3OamJ2Na9OOgog==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:05 2023 by rpki-client on console-fra.rpki-client.org