Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/e57dcf-36f9-4a4a-ae3c-0bb3affcc2d3/1/DMT9c4LqBDU83eEf0A8WvZPii2Y.roa
File: DMT9c4LqBDU83eEf0A8WvZPii2Y.roa (raw, json)
Hash identifier: SgJD/piRZ0XeGLuHkqdnXKS9/XIPcEftbBEEXFGQevg=
Subject key identifier: 0C:C4:FD:73:82:EA:04:35:3C:DD:E1:1F:D0:0F:16:BD:93:E2:8B:66
Certificate issuer: /CN=919bf29e1aca23a515e11f66960b4eb95c80cfb9
Certificate serial: D6D997
Authority key identifier: 91:9B:F2:9E:1A:CA:23:A5:15:E1:1F:66:96:0B:4E:B9:5C:80:CF:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kZvynhrKI6UV4R9mlgtOuVyAz7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/e57dcf-36f9-4a4a-ae3c-0bb3affcc2d3/1/DMT9c4LqBDU83eEf0A8WvZPii2Y.roa
Signing time: Sat 01 Jan 2022 05:05:24 +0000
ROA not before: Sat 01 Jan 2022 05:05:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 185.51.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14080407 (0xd6d997)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=919bf29e1aca23a515e11f66960b4eb95c80cfb9
Validity
Not Before: Jan 1 05:05:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0cc4fd7382ea04353cdde11fd00f16bd93e28b66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8e:b2:7f:ac:cc:77:0d:08:21:c9:08:3b:28:
61:be:17:7a:cb:00:57:3f:e1:7e:e0:1c:8f:78:3d:
cb:f5:cb:90:c8:e7:f8:e3:0b:db:2d:92:20:08:eb:
5e:c1:14:ae:3f:71:3a:f2:b5:b3:3e:08:b3:6d:29:
25:ad:02:a3:a4:c5:5d:48:4a:9f:9d:94:80:7a:5c:
6d:04:f4:0d:87:04:6f:83:d6:a4:3f:aa:29:dc:0a:
b2:17:c7:32:91:81:b4:93:ca:57:43:56:76:38:fb:
38:7e:48:a4:cf:2d:67:60:19:ee:59:a6:4e:ba:b6:
ac:64:26:18:06:1f:ca:8c:a1:74:15:49:01:99:91:
13:f0:ef:f4:0a:34:f1:be:40:d6:93:0e:f0:08:0b:
c1:34:fc:bc:52:86:13:d6:24:4f:00:ce:e6:45:90:
18:d2:06:a4:de:76:2b:2c:bb:a0:63:4d:e1:91:6a:
a5:df:b2:1c:de:0e:2a:68:c3:17:e0:65:15:55:87:
a9:1d:8e:f7:f9:b2:7e:91:91:32:02:13:ed:a3:6c:
18:11:ef:62:39:87:49:46:56:54:14:6b:d9:99:2f:
25:e1:12:3f:f7:f1:c6:ff:3d:ae:45:52:a2:41:55:
cf:f1:53:54:a8:55:a3:d1:15:e9:f1:8d:3c:65:ee:
7a:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:C4:FD:73:82:EA:04:35:3C:DD:E1:1F:D0:0F:16:BD:93:E2:8B:66
X509v3 Authority Key Identifier:
keyid:91:9B:F2:9E:1A:CA:23:A5:15:E1:1F:66:96:0B:4E:B9:5C:80:CF:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kZvynhrKI6UV4R9mlgtOuVyAz7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/e57dcf-36f9-4a4a-ae3c-0bb3affcc2d3/1/DMT9c4LqBDU83eEf0A8WvZPii2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/e57dcf-36f9-4a4a-ae3c-0bb3affcc2d3/1/kZvynhrKI6UV4R9mlgtOuVyAz7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.120.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:3b:c9:73:40:02:53:28:fd:7c:f1:52:5f:a9:bd:8c:ae:6c:
62:86:38:d3:e2:e1:d1:2d:42:e9:ce:40:45:1e:70:21:f0:87:
6b:6a:e7:79:1e:8e:6b:7a:8c:b1:ff:bc:e5:ca:ec:5f:cf:8a:
3b:5f:36:1a:f7:57:90:8c:7a:5a:84:6e:3d:a4:b5:2b:ab:f7:
51:b4:00:15:87:9f:9f:b4:9f:d1:bd:08:c8:b7:ba:08:84:90:
18:aa:c5:14:36:fc:b8:cc:d6:76:f9:d5:0d:68:45:e3:6e:ce:
be:28:54:f5:04:b5:f0:ae:02:c8:56:d9:2a:18:91:c1:05:17:
8e:50:7e:e6:25:f1:c9:19:a7:f2:cc:d4:f8:44:9d:22:81:df:
e1:35:fd:b1:09:02:a2:cb:1b:a9:7f:b1:67:42:48:f9:b8:9a:
33:59:29:b0:da:16:8c:ad:79:2e:ad:a6:3b:c5:6e:9e:2a:67:
e5:6f:97:72:8a:49:2a:2d:d1:40:db:9e:e2:62:96:d5:0a:c2:
1c:cf:d7:10:76:8f:f9:ff:00:be:17:fc:59:86:c3:65:02:1f:
b5:af:75:22:3c:ff:bd:20:de:8f:ae:83:67:ba:8d:15:6f:d8:
1d:12:e2:b6:6b:73:0a:ef:f9:a1:71:85:69:d0:16:2a:2b:2c:
69:0c:32:eb
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEANbZlzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MTliZjI5ZTFhY2EyM2E1MTVlMTFmNjY5NjBiNGViOTVjODBjZmI5MB4XDTIyMDEw
MTA1MDUyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGNjNGZkNzM4MmVh
MDQzNTNjZGRlMTFmZDAwZjE2YmQ5M2UyOGI2NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALqOsn+szHcNCCHJCDsoYb4XessAVz/hfuAcj3g9y/XLkMjn
+OML2y2SIAjrXsEUrj9xOvK1sz4Is20pJa0Co6TFXUhKn52UgHpcbQT0DYcEb4PW
pD+qKdwKshfHMpGBtJPKV0NWdjj7OH5IpM8tZ2AZ7lmmTrq2rGQmGAYfyoyhdBVJ
AZmRE/Dv9Ao08b5A1pMO8AgLwTT8vFKGE9YkTwDO5kWQGNIGpN52Kyy7oGNN4ZFq
pd+yHN4OKmjDF+BlFVWHqR2O9/myfpGRMgIT7aNsGBHvYjmHSUZWVBRr2ZkvJeES
P/fxxv89rkVSokFVz/FTVKhVo9EV6fGNPGXuevMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQMxP1zguoENTzd4R/QDxa9k+KLZjAfBgNVHSMEGDAWgBSRm/KeGsojpRXh
H2aWC065XIDPuTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2tadnluaHJLSTZVVjRSOW1sZ3RPdVZ5QXo3ay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2EvZTU3ZGNmLTM2ZjktNGE0YS1hZTNjLTBiYjNhZmZjYzJkMy8x
L0RNVDljNExxQkRVODNlRWYwQThXdlpQaWkyWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Ev
ZTU3ZGNmLTM2ZjktNGE0YS1hZTNjLTBiYjNhZmZjYzJkMy8xL2tadnluaHJLSTZV
VjRSOW1sZ3RPdVZ5QXo3ay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALkzeDANBgkqhkiG9w0BAQsFAAOC
AQEAajvJc0ACUyj9fPFSX6m9jK5sYoY40+Lh0S1C6c5ARR5wIfCHa2rneR6Oa3qM
sf+85crsX8+KO182GvdXkIx6WoRuPaS1K6v3UbQAFYefn7Sf0b0IyLe6CISQGKrF
FDb8uMzWdvnVDWhF427OvihU9QS18K4CyFbZKhiRwQUXjlB+5iXxyRmn8szU+ESd
IoHf4TX9sQkCossbqX+xZ0JI+biaM1kpsNoWjK15Lq2mO8Vunipn5W+XcopJKi3R
QNue4mKW1QrCHM/XEHaP+f8Avhf8WYbDZQIfta91Ijz/vSDej66DZ7qNFW/YHRLi
tmtzCu/5oXGFadAWKissaQwy6w==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:19 2023 by rpki-client on console-fra.rpki-client.org