Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/974881-4c4e-4d48-8fd3-1cc6a31b14bf/1/1wHbpptZ4WOGQMylSz3jT31Iqa8.roa
File: 1wHbpptZ4WOGQMylSz3jT31Iqa8.roa (raw, json)
Hash identifier: u/RlkZnvRoCatnYnasBvRzjCbmfi6kFAwHVY4gE6S7I=
Subject key identifier: D7:01:DB:A6:9B:59:E1:63:86:40:CC:A5:4B:3D:E3:4F:7D:48:A9:AF
Certificate issuer: /CN=d9d649188aaa439d8511f70ebe82ba5e766c85d2
Certificate serial: 01D22FC9
Authority key identifier: D9:D6:49:18:8A:AA:43:9D:85:11:F7:0E:BE:82:BA:5E:76:6C:85:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2dZJGIqqQ52FEfcOvoK6XnZshdI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/974881-4c4e-4d48-8fd3-1cc6a31b14bf/1/1wHbpptZ4WOGQMylSz3jT31Iqa8.roa
Signing time: Wed 29 Jun 2022 12:46:02 +0000
ROA not before: Wed 29 Jun 2022 12:46:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16197
IP address blocks: 185.85.89.0/24 maxlen: 24
185.85.88.0/22 maxlen: 22
185.85.88.0/24 maxlen: 24
185.85.91.0/24 maxlen: 24
185.85.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30552009 (0x1d22fc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9d649188aaa439d8511f70ebe82ba5e766c85d2
Validity
Not Before: Jun 29 12:46:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d701dba69b59e1638640cca54b3de34f7d48a9af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:17:ca:87:cb:e6:24:cd:3f:12:c5:b9:63:25:
e2:dd:08:32:6e:fb:f8:05:fc:c4:8b:78:0c:78:59:
bc:31:55:f3:62:d7:ac:7a:c7:88:6e:8c:67:88:10:
2a:9f:9d:30:ae:b6:63:de:ee:7b:93:86:81:80:7b:
81:05:bb:e7:74:f3:89:ab:a8:43:bd:f2:cd:b2:ef:
30:18:4f:93:0b:7a:7f:2d:23:73:40:16:79:4a:b5:
d5:b5:8d:62:49:31:94:35:04:7a:22:35:e8:4a:9e:
2d:83:25:4e:66:13:ea:3c:a3:7e:50:87:bc:ba:d0:
d2:e0:25:34:28:ec:ce:30:67:c9:25:c8:18:dc:17:
6b:af:05:71:92:0d:b1:90:e1:31:d3:c4:01:b6:75:
dd:36:9b:cb:1c:8c:75:28:11:ba:7d:cf:31:18:58:
74:78:07:05:42:78:f3:9a:76:90:cc:14:ed:68:c2:
ad:25:02:7a:e8:d1:24:b1:61:24:9b:49:f7:ba:b8:
46:b2:33:34:e7:f4:aa:58:f0:8d:a8:cc:c9:b6:f8:
89:5a:8f:6a:2e:85:b5:fb:b5:c5:c5:4d:b9:ea:53:
c7:6e:48:6d:97:bd:de:e5:25:04:83:e9:f3:36:75:
b8:dc:cb:ba:dd:1e:9d:25:77:e1:ad:2b:5e:d3:7f:
f1:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:01:DB:A6:9B:59:E1:63:86:40:CC:A5:4B:3D:E3:4F:7D:48:A9:AF
X509v3 Authority Key Identifier:
keyid:D9:D6:49:18:8A:AA:43:9D:85:11:F7:0E:BE:82:BA:5E:76:6C:85:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2dZJGIqqQ52FEfcOvoK6XnZshdI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/974881-4c4e-4d48-8fd3-1cc6a31b14bf/1/1wHbpptZ4WOGQMylSz3jT31Iqa8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/974881-4c4e-4d48-8fd3-1cc6a31b14bf/1/2dZJGIqqQ52FEfcOvoK6XnZshdI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.85.88.0/22
Signature Algorithm: sha256WithRSAEncryption
59:3e:1c:f6:ae:ef:38:d2:87:6d:a9:ed:02:98:40:95:34:88:
2f:be:7a:b1:d1:98:5e:03:40:be:c4:d5:ad:bf:7c:4e:ab:05:
a7:a4:8c:5a:a0:ee:84:0e:f0:f8:96:29:06:ac:54:83:e0:a3:
ee:2c:c1:ce:c5:f5:19:9c:6f:5f:fc:4f:e5:55:84:74:86:30:
69:15:00:6f:c3:43:5a:3d:95:14:86:79:08:16:af:b1:72:c9:
a7:90:c4:d8:3d:d0:48:10:10:82:15:92:8a:1c:e6:c1:1e:e0:
f0:78:57:cc:df:56:8d:0a:73:5e:2e:c5:3a:52:a5:aa:89:5a:
c3:57:5d:5d:6a:69:df:c8:8d:8d:cd:83:99:fd:5c:2b:30:93:
26:65:0c:a0:14:87:27:e3:b3:0b:6d:be:7d:8e:88:89:b2:21:
d9:04:8c:48:11:a1:04:a5:94:32:fa:f5:73:8f:6c:4a:1e:e3:
c7:b8:44:a6:5d:32:63:39:ca:e8:0a:e9:04:4f:8e:f0:12:78:
de:b8:62:2d:8a:52:46:94:ec:61:47:3c:ba:fd:9a:71:5b:8c:
e1:d8:18:e8:cc:36:4e:d1:e9:76:7d:05:20:ef:27:f4:d8:34:
ed:a8:e9:a8:86:1a:c0:a0:25:bc:33:9c:78:c1:5b:ce:f7:31:
fc:d6:42:35
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAdIvyTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
OWQ2NDkxODhhYWE0MzlkODUxMWY3MGViZTgyYmE1ZTc2NmM4NWQyMB4XDTIyMDYy
OTEyNDYwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDcwMWRiYTY5YjU5
ZTE2Mzg2NDBjY2E1NGIzZGUzNGY3ZDQ4YTlhZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMQXyofL5iTNPxLFuWMl4t0IMm77+AX8xIt4DHhZvDFV82LX
rHrHiG6MZ4gQKp+dMK62Y97ue5OGgYB7gQW753TziauoQ73yzbLvMBhPkwt6fy0j
c0AWeUq11bWNYkkxlDUEeiI16EqeLYMlTmYT6jyjflCHvLrQ0uAlNCjszjBnySXI
GNwXa68FcZINsZDhMdPEAbZ13TabyxyMdSgRun3PMRhYdHgHBUJ485p2kMwU7WjC
rSUCeujRJLFhJJtJ97q4RrIzNOf0qljwjajMybb4iVqPai6Ftfu1xcVNuepTx25I
bZe93uUlBIPp8zZ1uNzLut0enSV34a0rXtN/8dUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTXAdumm1nhY4ZAzKVLPeNPfUiprzAfBgNVHSMEGDAWgBTZ1kkYiqpDnYUR
9w6+grpedmyF0jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzJkWkpHSXFxUTUyRkVmY092b0s2WG5ac2hkSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2IvOTc0ODgxLTRjNGUtNGQ0OC04ZmQzLTFjYzZhMzFiMTRiZi8x
LzF3SGJwcHRaNFdPR1FNeWxTejNqVDMxSXFhOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Iv
OTc0ODgxLTRjNGUtNGQ0OC04ZmQzLTFjYzZhMzFiMTRiZi8xLzJkWkpHSXFxUTUy
RkVmY092b0s2WG5ac2hkSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArlVWDANBgkqhkiG9w0BAQsFAAOC
AQEAWT4c9q7vONKHbantAphAlTSIL756sdGYXgNAvsTVrb98TqsFp6SMWqDuhA7w
+JYpBqxUg+Cj7izBzsX1GZxvX/xP5VWEdIYwaRUAb8NDWj2VFIZ5CBavsXLJp5DE
2D3QSBAQghWSihzmwR7g8HhXzN9WjQpzXi7FOlKlqolaw1ddXWpp38iNjc2Dmf1c
KzCTJmUMoBSHJ+OzC22+fY6IibIh2QSMSBGhBKWUMvr1c49sSh7jx7hEpl0yYznK
6ArpBE+O8BJ43rhiLYpSRpTsYUc8uv2acVuM4dgY6Mw2TtHpdn0FIO8n9Ng07ajp
qIYawKAlvDOceMFbzvcx/NZCNQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:58 2023 by rpki-client on console-ams.rpki-client.org