Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66214b-01df-4b01-ba76-f4cbd6ba6c0f/1/U8SMdjKmnwT-lR2TozW1y6d6-NY.roa
File: U8SMdjKmnwT-lR2TozW1y6d6-NY.roa (raw, json)
Hash identifier: rmG/16MSf5BhOD1eLIT9r2pgfBH874wAOSw8iuKEe3k=
Subject key identifier: 53:C4:8C:76:32:A6:9F:04:FE:95:1D:93:A3:35:B5:CB:A7:7A:F8:D6
Certificate issuer: /CN=61e565562d3e3f565e9c0a41946ea53d45d5d657
Certificate serial: 0181D992C48656E32D85510FFCF3A1055E58
Authority key identifier: 61:E5:65:56:2D:3E:3F:56:5E:9C:0A:41:94:6E:A5:3D:45:D5:D6:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YeVlVi0-P1ZenApBlG6lPUXV1lc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66214b-01df-4b01-ba76-f4cbd6ba6c0f/1/U8SMdjKmnwT-lR2TozW1y6d6-NY.roa
Signing time: Thu 07 Jul 2022 16:51:23 +0000
ROA not before: Thu 07 Jul 2022 16:51:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211186
IP address blocks: 185.14.96.0/24 maxlen: 24
2a0c:2580::/36 maxlen: 36
2a0c:2580:1000::/36 maxlen: 36
2a0c:2580::/30 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d9:92:c4:86:56:e3:2d:85:51:0f:fc:f3:a1:05:5e:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61e565562d3e3f565e9c0a41946ea53d45d5d657
Validity
Not Before: Jul 7 16:51:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53c48c7632a69f04fe951d93a335b5cba77af8d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:99:85:50:d3:04:8b:83:62:17:d7:ca:c0:9d:
b9:10:38:e7:f7:68:b7:a4:1e:66:87:d7:cb:38:9b:
3c:8d:55:3d:2b:46:20:c8:dd:b8:67:9c:43:7b:57:
86:e3:2f:c3:9d:be:c4:55:36:01:c0:b7:bc:65:f1:
d5:de:5e:cc:4c:25:4d:27:43:49:be:06:14:e6:99:
4f:dc:69:70:2a:3b:95:ad:25:b4:16:80:10:06:a9:
38:bf:45:6e:99:9b:e3:a5:25:04:f5:e4:7b:b9:0a:
f1:84:67:3e:cf:bc:16:3b:6c:c9:82:10:5e:b5:96:
58:57:13:ac:7d:e0:1c:bd:e9:57:e7:1f:6b:0f:f6:
8e:a0:71:54:5f:0c:46:ca:91:c8:49:ad:8d:49:28:
09:da:77:4e:a6:e9:9b:eb:0c:96:99:54:cd:17:b6:
21:7d:06:c6:5b:69:ac:fd:9b:20:94:d4:f0:32:76:
1d:7e:6b:a5:12:bb:26:eb:3e:d9:64:b7:9d:7a:96:
55:f2:55:bf:fe:0f:c9:7a:8e:03:4f:a1:81:65:0f:
88:d3:6f:dd:ab:77:fd:6b:bc:8e:34:a1:17:d6:d0:
03:8a:fa:f2:e8:a9:b6:51:42:d3:4b:87:e6:42:43:
08:8c:f1:d1:ae:d9:64:9b:87:b0:f7:43:84:f9:2c:
3e:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:C4:8C:76:32:A6:9F:04:FE:95:1D:93:A3:35:B5:CB:A7:7A:F8:D6
X509v3 Authority Key Identifier:
keyid:61:E5:65:56:2D:3E:3F:56:5E:9C:0A:41:94:6E:A5:3D:45:D5:D6:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YeVlVi0-P1ZenApBlG6lPUXV1lc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66214b-01df-4b01-ba76-f4cbd6ba6c0f/1/U8SMdjKmnwT-lR2TozW1y6d6-NY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66214b-01df-4b01-ba76-f4cbd6ba6c0f/1/YeVlVi0-P1ZenApBlG6lPUXV1lc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.14.96.0/24
IPv6:
2a0c:2580::/30
Signature Algorithm: sha256WithRSAEncryption
37:af:94:b4:c4:eb:5c:ba:24:4f:5c:9f:6f:ac:61:45:d4:fb:
e7:1f:2d:f0:d1:57:d0:49:d8:eb:40:28:84:b3:89:df:7c:c4:
2d:ba:dd:75:40:e5:61:06:94:19:5c:a2:ee:eb:ef:57:3c:a5:
5f:0b:94:79:04:a4:8b:51:db:14:2b:e3:5a:fe:c5:9a:33:09:
4b:d6:c6:03:84:aa:4a:29:83:85:d5:14:f0:c1:db:23:7e:e5:
20:52:2d:d0:f7:4e:10:9a:b1:5e:cc:6b:4a:ab:49:df:92:5c:
0e:6c:4d:9a:0d:49:58:19:37:e2:45:96:1c:ea:0d:b9:f4:90:
55:be:ef:6d:15:07:d2:2e:f6:81:48:aa:a9:75:ac:db:58:95:
1c:f8:10:ad:09:d9:1f:1a:f8:cd:f9:e5:53:cf:3b:d4:10:95:
9b:11:cc:f2:4b:89:21:a9:12:fe:cf:d6:13:ef:ab:71:9e:6c:
09:88:09:45:08:eb:96:ed:5b:37:c2:01:8a:bd:b5:b2:a2:b8:
69:00:fb:a1:7b:6b:e0:6a:77:13:1f:0d:4d:6d:1e:22:51:d3:
3c:69:1e:5a:1d:1f:78:54:f6:35:8c:0d:88:e9:81:07:66:b4:
a4:af:c5:68:36:79:9a:ec:c0:0f:f2:16:fd:3d:0b:fc:9c:3d:
aa:58:bf:90
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYHZksSGVuMthVEP/POhBV5YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxZTU2NTU2MmQzZTNmNTY1ZTljMGE0MTk0NmVhNTNkNDVk
NWQ2NTcwHhcNMjIwNzA3MTY1MTIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1M2M0OGM3NjMyYTY5ZjA0ZmU5NTFkOTNhMzM1YjVjYmE3N2FmOGQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm5mFUNMEi4NiF9fKwJ25EDjn92i3
pB5mh9fLOJs8jVU9K0YgyN24Z5xDe1eG4y/Dnb7EVTYBwLe8ZfHV3l7MTCVNJ0NJ
vgYU5plP3GlwKjuVrSW0FoAQBqk4v0VumZvjpSUE9eR7uQrxhGc+z7wWO2zJghBe
tZZYVxOsfeAcvelX5x9rD/aOoHFUXwxGypHISa2NSSgJ2ndOpumb6wyWmVTNF7Yh
fQbGW2ms/ZsglNTwMnYdfmulErsm6z7ZZLedepZV8lW//g/Jeo4DT6GBZQ+I02/d
q3f9a7yONKEX1tADivry6Km2UULTS4fmQkMIjPHRrtlkm4ew90OE+Sw+jwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFFPEjHYypp8E/pUdk6M1tcunevjWMB8GA1UdIwQY
MBaAFGHlZVYtPj9WXpwKQZRupT1F1dZXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWVWbFZpMC1QMVplbkFwQmxHNmxQVVhWMWxjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82NjIxNGItMDFkZi00YjAxLWJhNzYt
ZjRjYmQ2YmE2YzBmLzEvVThTTWRqS21ud1QtbFIyVG96VzF5NmQ2LU5ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC82NjIxNGItMDFkZi00YjAxLWJhNzYtZjRjYmQ2YmE2YzBm
LzEvWWVWbFZpMC1QMVplbkFwQmxHNmxQVVhWMWxjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuQ5gMA0E
AgACMAcDBQIqDCWAMA0GCSqGSIb3DQEBCwUAA4IBAQA3r5S0xOtcuiRPXJ9vrGFF
1PvnHy3w0VfQSdjrQCiEs4nffMQtut11QOVhBpQZXKLu6+9XPKVfC5R5BKSLUdsU
K+Na/sWaMwlL1sYDhKpKKYOF1RTwwdsjfuUgUi3Q904QmrFezGtKq0nfklwObE2a
DUlYGTfiRZYc6g259JBVvu9tFQfSLvaBSKqpdazbWJUc+BCtCdkfGvjN+eVTzzvU
EJWbEczyS4khqRL+z9YT76txnmwJiAlFCOuW7Vs3wgGKvbWyorhpAPuhe2vgancT
Hw1NbR4iUdM8aR5aHR94VPY1jA2I6YEHZrSkr8VoNnma7MAP8hb9PQv8nD2qWL+Q
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:46 2024 by rpki-client on console-ams.rpki-client.org