Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/d75759-8dcb-4532-8bfe-5b688acdb676/1/5mmw5o6565q4rXRT_HLmRF2sJQw.roa
File: 5mmw5o6565q4rXRT_HLmRF2sJQw.roa (raw, json)
Hash identifier: JC3Uh0YqNQWOz1lkMzeUihy/+xJt4Q4Ek7pUOMknd+8=
Subject key identifier: E6:69:B0:E6:8E:B9:EB:9A:B8:AD:74:53:FC:72:E6:44:5D:AC:25:0C
Certificate issuer: /CN=d4474c1c06cbfde94614d65c7d05f614a6e23998
Certificate serial: 0DA1B236
Authority key identifier: D4:47:4C:1C:06:CB:FD:E9:46:14:D6:5C:7D:05:F6:14:A6:E2:39:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1EdMHAbL_elGFNZcfQX2FKbiOZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/d75759-8dcb-4532-8bfe-5b688acdb676/1/5mmw5o6565q4rXRT_HLmRF2sJQw.roa
Signing time: Sat 01 Jan 2022 11:55:22 +0000
ROA not before: Sat 01 Jan 2022 11:55:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201926
IP address blocks: 185.59.120.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 228700726 (0xda1b236)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4474c1c06cbfde94614d65c7d05f614a6e23998
Validity
Not Before: Jan 1 11:55:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e669b0e68eb9eb9ab8ad7453fc72e6445dac250c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:17:26:a1:af:ce:07:2b:c4:2f:98:9f:e5:ad:
74:d8:ff:cc:44:05:8e:7f:00:96:43:48:e2:fd:e8:
21:92:f1:59:18:fc:7a:1c:0f:22:8c:84:d9:29:b4:
b1:23:7a:52:1c:b8:b9:1a:09:c8:b4:53:40:07:31:
1e:14:a6:ee:b1:c1:d2:8e:00:d2:96:1a:ce:c9:be:
0d:d8:f3:01:cd:48:c5:84:8e:41:11:9d:4f:00:87:
46:8f:ef:3b:8b:8a:c9:20:96:2c:58:f5:d4:de:b5:
6d:79:d7:b0:a5:83:80:1c:bc:51:2b:71:51:27:a2:
97:5e:31:1b:bf:50:63:e7:3f:8b:c9:a3:f4:08:0e:
81:2f:cf:98:73:23:ec:ee:d9:d1:a3:27:98:e2:ee:
a7:67:22:30:ab:88:17:9f:71:35:23:98:d9:f7:48:
4b:0d:e3:12:c6:a6:82:50:42:cd:84:e5:07:5d:68:
51:fe:49:82:58:68:1a:96:ba:39:e6:07:59:b6:77:
8a:a4:3e:36:ea:5b:10:7e:a3:57:71:30:25:0d:a3:
94:fb:af:6d:86:8e:ac:6a:45:cf:e0:c3:ef:3d:83:
c5:8e:49:88:62:80:18:d4:7a:e0:9a:3f:4d:b8:6b:
ff:83:e8:b7:2c:d7:18:33:4e:ac:eb:55:f5:f9:0e:
61:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:69:B0:E6:8E:B9:EB:9A:B8:AD:74:53:FC:72:E6:44:5D:AC:25:0C
X509v3 Authority Key Identifier:
keyid:D4:47:4C:1C:06:CB:FD:E9:46:14:D6:5C:7D:05:F6:14:A6:E2:39:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1EdMHAbL_elGFNZcfQX2FKbiOZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/d75759-8dcb-4532-8bfe-5b688acdb676/1/5mmw5o6565q4rXRT_HLmRF2sJQw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/d75759-8dcb-4532-8bfe-5b688acdb676/1/1EdMHAbL_elGFNZcfQX2FKbiOZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.59.120.0/22
Signature Algorithm: sha256WithRSAEncryption
48:d3:6a:85:1f:c6:20:3b:98:05:f6:90:c0:6a:a9:2e:ba:11:
08:63:00:8c:61:37:ac:cb:7e:0f:3f:e7:fd:ef:36:0c:86:9f:
23:93:8c:58:8b:57:38:76:94:06:c0:dd:ad:3e:36:81:6a:bb:
7c:1e:e7:dc:f6:b6:1d:2b:04:ab:e4:c2:34:91:0e:df:96:10:
96:3d:6f:83:4a:35:56:45:88:87:f0:28:90:42:ce:37:a0:60:
e8:a7:34:33:18:1e:c8:77:60:f6:0f:f3:11:45:1e:98:96:ac:
55:b9:13:c3:b8:d7:7c:24:a2:ba:a2:5c:26:13:cf:90:df:14:
0f:b0:90:ee:ef:f0:af:fa:de:f2:56:8b:11:5e:a6:5e:e4:c1:
73:20:d4:1e:e8:e6:d6:c2:1d:19:b3:be:7a:fc:ee:05:8b:ee:
b5:e8:81:89:ca:db:37:fd:87:db:8b:50:4c:01:c1:e0:79:60:
b4:70:77:cf:37:a8:fc:26:b6:30:d0:04:12:40:b3:4f:3f:cf:
01:cc:64:b5:6e:c4:e5:7e:2d:ec:43:d5:a9:ae:e9:c3:d0:89:
30:ce:43:32:cc:f5:6c:53:26:26:96:37:3a:3e:38:7d:5e:13:
d7:fb:8f:84:6f:c4:fb:c7:45:31:ae:72:7f:4e:2d:d2:5c:ee:
1d:cd:fc:1b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDaGyNjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NDQ3NGMxYzA2Y2JmZGU5NDYxNGQ2NWM3ZDA1ZjYxNGE2ZTIzOTk4MB4XDTIyMDEw
MTExNTUyMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTY2OWIwZTY4ZWI5
ZWI5YWI4YWQ3NDUzZmM3MmU2NDQ1ZGFjMjUwYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALcXJqGvzgcrxC+Yn+WtdNj/zEQFjn8AlkNI4v3oIZLxWRj8
ehwPIoyE2Sm0sSN6Uhy4uRoJyLRTQAcxHhSm7rHB0o4A0pYazsm+DdjzAc1IxYSO
QRGdTwCHRo/vO4uKySCWLFj11N61bXnXsKWDgBy8UStxUSeil14xG79QY+c/i8mj
9AgOgS/PmHMj7O7Z0aMnmOLup2ciMKuIF59xNSOY2fdISw3jEsamglBCzYTlB11o
Uf5JglhoGpa6OeYHWbZ3iqQ+NupbEH6jV3EwJQ2jlPuvbYaOrGpFz+DD7z2DxY5J
iGKAGNR64Jo/Tbhr/4PotyzXGDNOrOtV9fkOYYUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTmabDmjrnrmritdFP8cuZEXawlDDAfBgNVHSMEGDAWgBTUR0wcBsv96UYU
1lx9BfYUpuI5mDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzFFZE1IQWJMX2VsR0ZOWmNmUVgyRktiaU9aZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2EvZDc1NzU5LThkY2ItNDUzMi04YmZlLTViNjg4YWNkYjY3Ni8x
LzVtbXc1bzY1NjVxNHJYUlRfSExtUkYyc0pRdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Ev
ZDc1NzU5LThkY2ItNDUzMi04YmZlLTViNjg4YWNkYjY3Ni8xLzFFZE1IQWJMX2Vs
R0ZOWmNmUVgyRktiaU9aZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArk7eDANBgkqhkiG9w0BAQsFAAOC
AQEASNNqhR/GIDuYBfaQwGqpLroRCGMAjGE3rMt+Dz/n/e82DIafI5OMWItXOHaU
BsDdrT42gWq7fB7n3Pa2HSsEq+TCNJEO35YQlj1vg0o1VkWIh/AokELON6Bg6Kc0
MxgeyHdg9g/zEUUemJasVbkTw7jXfCSiuqJcJhPPkN8UD7CQ7u/wr/re8laLEV6m
XuTBcyDUHujm1sIdGbO+evzuBYvuteiBicrbN/2H24tQTAHB4HlgtHB3zzeo/Ca2
MNAEEkCzTz/PAcxktW7E5X4t7EPVqa7pw9CJMM5DMsz1bFMmJpY3Oj44fV4T1/uP
hG/E+8dFMa5yf04t0lzuHc38Gw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:19 2023 by rpki-client on console-fra.rpki-client.org