Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/f0172e-69c2-422f-8296-9e80d0d87c2d/1/xeJJXGpR_3zHI1MM1Gm8dff_bqQ.roa
File: xeJJXGpR_3zHI1MM1Gm8dff_bqQ.roa (raw, json)
Hash identifier: Z+2XkcxyZVrhArFIItd5Y96T+voJhD3Soha5jvxUnRY=
Subject key identifier: C5:E2:49:5C:6A:51:FF:7C:C7:23:53:0C:D4:69:BC:75:F7:FF:6E:A4
Certificate issuer: /CN=73975d5da9da8a074b33fbcb5c09d503a3b443a1
Certificate serial: 160F1795
Authority key identifier: 73:97:5D:5D:A9:DA:8A:07:4B:33:FB:CB:5C:09:D5:03:A3:B4:43:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c5ddXanaigdLM_vLXAnVA6O0Q6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/f0172e-69c2-422f-8296-9e80d0d87c2d/1/xeJJXGpR_3zHI1MM1Gm8dff_bqQ.roa
Signing time: Thu 06 Jan 2022 17:22:19 +0000
ROA not before: Thu 06 Jan 2022 17:22:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207778
IP address blocks: 185.86.226.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 370087829 (0x160f1795)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73975d5da9da8a074b33fbcb5c09d503a3b443a1
Validity
Not Before: Jan 6 17:22:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c5e2495c6a51ff7cc723530cd469bc75f7ff6ea4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:e4:12:52:8d:8b:70:a4:95:7c:02:aa:6a:a3:
88:0a:ab:f8:c2:4d:be:38:4a:74:ad:d1:02:c8:a4:
61:8f:1d:65:d1:5e:02:98:70:39:00:1e:d5:5e:a6:
8c:d9:60:0d:65:05:6c:8f:6f:85:fc:a2:59:ea:29:
e4:82:6c:e4:1f:dc:05:ec:91:c8:45:99:33:91:9a:
62:72:15:6e:31:a8:85:33:53:d5:1a:eb:1a:a7:12:
56:9a:c3:dc:99:d4:a8:d1:ae:76:d9:91:34:a2:a9:
57:43:81:08:bc:7a:1a:6d:76:a7:b9:0d:b4:7e:5d:
9f:ce:09:3b:ca:64:bb:1d:1d:cf:68:90:93:62:bd:
09:5a:01:de:c6:3a:9a:06:5b:b3:ae:f7:ed:a2:1c:
ef:98:9b:25:eb:0c:b3:c5:17:84:a4:aa:d9:43:42:
1d:4c:77:94:d1:ab:4a:a9:76:e2:91:63:d4:4e:82:
74:1a:1f:ec:11:0f:90:7e:18:6f:2f:d4:1f:9a:09:
9e:05:2d:68:99:8b:bd:28:19:32:30:a9:a1:b2:43:
0e:fa:48:db:24:26:e3:f9:55:eb:da:2f:46:03:2f:
ca:ec:c2:11:41:70:29:b1:cb:1d:7e:3e:45:be:8d:
01:03:2f:db:ab:7f:79:b4:63:37:bf:60:08:8a:5f:
f9:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:E2:49:5C:6A:51:FF:7C:C7:23:53:0C:D4:69:BC:75:F7:FF:6E:A4
X509v3 Authority Key Identifier:
keyid:73:97:5D:5D:A9:DA:8A:07:4B:33:FB:CB:5C:09:D5:03:A3:B4:43:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5ddXanaigdLM_vLXAnVA6O0Q6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f0172e-69c2-422f-8296-9e80d0d87c2d/1/xeJJXGpR_3zHI1MM1Gm8dff_bqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f0172e-69c2-422f-8296-9e80d0d87c2d/1/c5ddXanaigdLM_vLXAnVA6O0Q6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.226.0/24
Signature Algorithm: sha256WithRSAEncryption
44:a7:8d:fd:6b:76:97:97:02:3e:63:35:f7:f3:94:c5:e9:08:
41:c1:e6:b0:1a:74:fc:d3:75:fe:65:5c:a5:f7:82:ce:05:72:
08:63:be:ac:4a:ab:72:1d:45:b8:2c:ec:a8:f5:8c:18:de:47:
68:85:45:29:40:ca:20:b2:2f:98:97:58:d4:8a:ba:87:47:c6:
87:60:fd:a3:e2:38:1f:17:e6:3e:6c:f9:87:f9:e0:06:78:39:
b7:34:e2:e7:a6:5f:41:21:c1:b3:96:49:e2:ed:70:d4:67:fd:
21:41:07:48:13:e9:9d:d5:dd:99:5c:e9:99:4d:79:03:78:79:
dc:c9:5d:6c:51:22:c4:1f:e9:0f:3d:26:4f:d1:62:4a:cb:34:
aa:f9:6b:c8:1a:0a:7d:77:ad:84:e9:02:4a:cf:f7:3e:ba:3e:
f9:41:71:0d:28:f5:e5:5b:20:9a:99:c4:9e:cb:d1:4d:47:47:
b6:9d:ec:d4:b8:aa:75:6e:4b:2f:61:ce:44:b4:83:03:01:7d:
bd:5c:47:46:c3:54:53:ac:55:50:58:37:ef:00:aa:15:38:22:
36:19:52:e4:4f:57:85:04:32:95:c3:df:39:19:71:a7:c2:54:
96:87:4e:cf:66:06:9d:b9:36:3a:12:12:3d:e6:79:03:aa:c6:
60:42:45:10
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFg8XlTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
Mzk3NWQ1ZGE5ZGE4YTA3NGIzM2ZiY2I1YzA5ZDUwM2EzYjQ0M2ExMB4XDTIyMDEw
NjE3MjIxOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzVlMjQ5NWM2YTUx
ZmY3Y2M3MjM1MzBjZDQ2OWJjNzVmN2ZmNmVhNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI7kElKNi3CklXwCqmqjiAqr+MJNvjhKdK3RAsikYY8dZdFe
AphwOQAe1V6mjNlgDWUFbI9vhfyiWeop5IJs5B/cBeyRyEWZM5GaYnIVbjGohTNT
1RrrGqcSVprD3JnUqNGudtmRNKKpV0OBCLx6Gm12p7kNtH5dn84JO8pkux0dz2iQ
k2K9CVoB3sY6mgZbs6737aIc75ibJesMs8UXhKSq2UNCHUx3lNGrSql24pFj1E6C
dBof7BEPkH4Yby/UH5oJngUtaJmLvSgZMjCpobJDDvpI2yQm4/lV69ovRgMvyuzC
EUFwKbHLHX4+Rb6NAQMv26t/ebRjN79gCIpf+SMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTF4klcalH/fMcjUwzUabx19/9upDAfBgNVHSMEGDAWgBRzl11dqdqKB0sz
+8tcCdUDo7RDoTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2M1ZGRYYW5haWdkTE1fdkxYQW5WQTZPMFE2RS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2QvZjAxNzJlLTY5YzItNDIyZi04Mjk2LTllODBkMGQ4N2MyZC8x
L3hlSkpYR3BSXzN6SEkxTU0xR204ZGZmX2JxUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Qv
ZjAxNzJlLTY5YzItNDIyZi04Mjk2LTllODBkMGQ4N2MyZC8xL2M1ZGRYYW5haWdk
TE1fdkxYQW5WQTZPMFE2RS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALlW4jANBgkqhkiG9w0BAQsFAAOC
AQEARKeN/Wt2l5cCPmM19/OUxekIQcHmsBp0/NN1/mVcpfeCzgVyCGO+rEqrch1F
uCzsqPWMGN5HaIVFKUDKILIvmJdY1Iq6h0fGh2D9o+I4HxfmPmz5h/ngBng5tzTi
56ZfQSHBs5ZJ4u1w1Gf9IUEHSBPpndXdmVzpmU15A3h53MldbFEixB/pDz0mT9Fi
Sss0qvlryBoKfXethOkCSs/3Pro++UFxDSj15VsgmpnEnsvRTUdHtp3s1LiqdW5L
L2HORLSDAwF9vVxHRsNUU6xVUFg37wCqFTgiNhlS5E9XhQQylcPfORlxp8JUlodO
z2YGnbk2OhISPeZ5A6rGYEJFEA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:55 2024 by rpki-client on console-ams.rpki-client.org