Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/ff0742-7313-4e94-9618-63a1ce33307f/1/t6RmT8jbgY5RxuXNHqaTPdZbW0E.roa
File: t6RmT8jbgY5RxuXNHqaTPdZbW0E.roa (raw, json)
Hash identifier: N7j95NtqfbmXOsCB6PZSltVHx9HbvpRxR6cUBJa1H+s=
Subject key identifier: B7:A4:66:4F:C8:DB:81:8E:51:C6:E5:CD:1E:A6:93:3D:D6:5B:5B:41
Certificate issuer: /CN=7da49a9aef2184ec0bb6ef0fde901c5b2841ba64
Certificate serial: 01DA2A
Authority key identifier: 7D:A4:9A:9A:EF:21:84:EC:0B:B6:EF:0F:DE:90:1C:5B:28:41:BA:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faSamu8hhOwLtu8P3pAcWyhBumQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/ff0742-7313-4e94-9618-63a1ce33307f/1/t6RmT8jbgY5RxuXNHqaTPdZbW0E.roa
Signing time: Thu 27 Jan 2022 09:44:58 +0000
ROA not before: Thu 27 Jan 2022 09:44:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206771
IP address blocks: 185.171.116.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121386 (0x1da2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da49a9aef2184ec0bb6ef0fde901c5b2841ba64
Validity
Not Before: Jan 27 09:44:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7a4664fc8db818e51c6e5cd1ea6933dd65b5b41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:cb:e3:cf:87:05:6e:e2:32:4a:ee:31:39:ea:
6e:99:87:0f:3a:a8:f2:0f:51:30:ef:87:f8:8d:33:
b7:7f:06:e1:e5:91:d9:c0:be:3d:b3:d5:bb:8f:dd:
fe:40:ae:5a:1d:e6:8c:2b:a1:e5:d4:46:d1:e8:b9:
2a:57:fb:c6:9f:85:0a:a7:9c:bb:0b:28:57:b6:a8:
2f:66:8d:d3:5a:be:df:57:c3:a7:36:98:aa:b4:4c:
92:5b:12:45:18:91:6e:44:9a:9a:35:81:23:8c:bf:
05:c4:6a:88:06:39:18:42:86:15:e9:1b:85:ee:14:
d1:b0:86:4a:f9:75:e7:37:1e:31:5b:0d:58:72:dc:
84:0b:f6:38:b7:96:c6:17:e7:25:3a:09:50:6d:7e:
ed:46:cd:71:b5:0a:c3:d5:18:11:48:61:4e:db:d8:
5e:37:c5:9e:6a:34:31:fd:51:d4:ca:dd:0d:aa:2a:
96:e8:3c:f6:bc:e9:bd:f7:45:57:05:e3:68:b6:9b:
02:4a:18:c2:81:47:cb:49:12:fa:7d:c9:06:72:24:
4f:f0:89:cd:0a:9e:fc:58:dc:78:8e:99:07:2b:85:
a3:7f:ef:89:35:08:d5:37:4e:f0:62:30:1d:1b:63:
8c:4b:19:96:56:bb:d4:ea:20:25:84:0c:96:4e:da:
d9:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:A4:66:4F:C8:DB:81:8E:51:C6:E5:CD:1E:A6:93:3D:D6:5B:5B:41
X509v3 Authority Key Identifier:
keyid:7D:A4:9A:9A:EF:21:84:EC:0B:B6:EF:0F:DE:90:1C:5B:28:41:BA:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faSamu8hhOwLtu8P3pAcWyhBumQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/ff0742-7313-4e94-9618-63a1ce33307f/1/t6RmT8jbgY5RxuXNHqaTPdZbW0E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/ff0742-7313-4e94-9618-63a1ce33307f/1/faSamu8hhOwLtu8P3pAcWyhBumQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.171.116.0/22
Signature Algorithm: sha256WithRSAEncryption
b2:3c:04:f8:4d:cb:d2:c5:2b:6e:46:c7:94:8a:6c:18:99:5a:
70:c2:ba:e3:3c:a9:97:92:67:2b:da:f1:b1:e9:41:3e:76:37:
41:50:58:97:0c:c9:76:0a:2b:e8:fa:5d:07:d8:5f:74:62:7c:
05:2e:74:54:8d:84:c8:46:3c:2a:8a:b4:99:c5:bc:30:f6:f4:
0e:68:4d:d9:7e:21:73:d5:b6:52:1b:97:40:14:96:0c:6a:0f:
4b:a2:57:45:89:f8:ec:68:5e:e4:7e:08:75:99:d8:56:8f:08:
cd:9e:1a:aa:23:82:ae:b1:63:f4:89:9f:06:49:e7:8b:2f:ab:
3e:98:79:bf:82:c8:c1:f6:24:2b:cc:6d:a6:4c:92:e4:9c:6b:
e2:02:1b:db:9d:e5:10:d8:14:63:0e:a2:20:58:78:cb:bc:4a:
0a:cb:6e:80:a4:e6:b6:f8:c5:1b:74:13:9a:d2:20:04:90:69:
8a:cd:66:99:5e:1a:37:66:be:da:4d:5c:9e:7e:f6:26:95:6e:
8b:65:7f:40:1f:27:8b:df:a1:da:f3:80:19:a4:16:65:8d:f6:
e7:65:41:e5:b9:83:a7:a6:85:a8:b0:8d:be:84:4f:fa:d2:0d:
19:61:b7:c4:96:da:f4:85:13:55:2d:12:10:ba:b7:29:46:9e:
10:e6:dd:3d
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAdoqMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDdk
YTQ5YTlhZWYyMTg0ZWMwYmI2ZWYwZmRlOTAxYzViMjg0MWJhNjQwHhcNMjIwMTI3
MDk0NDU4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhiN2E0NjY0ZmM4ZGI4
MThlNTFjNmU1Y2QxZWE2OTMzZGQ2NWI1YjQxMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAl8vjz4cFbuIySu4xOepumYcPOqjyD1Ew74f4jTO3fwbh5ZHZ
wL49s9W7j93+QK5aHeaMK6Hl1EbR6LkqV/vGn4UKp5y7CyhXtqgvZo3TWr7fV8On
NpiqtEySWxJFGJFuRJqaNYEjjL8FxGqIBjkYQoYV6RuF7hTRsIZK+XXnNx4xWw1Y
ctyEC/Y4t5bGF+clOglQbX7tRs1xtQrD1RgRSGFO29heN8WeajQx/VHUyt0NqiqW
6Dz2vOm990VXBeNotpsCShjCgUfLSRL6fckGciRP8InNCp78WNx4jpkHK4Wjf++J
NQjVN07wYjAdG2OMSxmWVrvU6iAlhAyWTtrZ+QIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFLekZk/I24GOUcblzR6mkz3WW1tBMB8GA1UdIwQYMBaAFH2kmprvIYTsC7bv
D96QHFsoQbpkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
ZmFTYW11OGhoT3dMdHU4UDNwQWNXeWhCdW1RLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC83Yy9mZjA3NDItNzMxMy00ZTk0LTk2MTgtNjNhMWNlMzMzMDdmLzEv
dDZSbVQ4amJnWTVSeHVYTkhxYVRQZFpiVzBFLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy9m
ZjA3NDItNzMxMy00ZTk0LTk2MTgtNjNhMWNlMzMzMDdmLzEvZmFTYW11OGhoT3dM
dHU4UDNwQWNXeWhCdW1RLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuat0MA0GCSqGSIb3DQEBCwUAA4IB
AQCyPAT4TcvSxStuRseUimwYmVpwwrrjPKmXkmcr2vGx6UE+djdBUFiXDMl2Civo
+l0H2F90YnwFLnRUjYTIRjwqirSZxbww9vQOaE3ZfiFz1bZSG5dAFJYMag9LoldF
ifjsaF7kfgh1mdhWjwjNnhqqI4KusWP0iZ8GSeeLL6s+mHm/gsjB9iQrzG2mTJLk
nGviAhvbneUQ2BRjDqIgWHjLvEoKy26ApOa2+MUbdBOa0iAEkGmKzWaZXho3Zr7a
TVyefvYmlW6LZX9AHyeL36Ha84AZpBZljfbnZUHluYOnpoWosI2+hE/60g0ZYbfE
ltr0hRNVLRIQurcpRp4Q5t09
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:13 2025 by rpki-client