Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/f8bb1b-d6fd-49a1-9653-ff157bef0621/1/2I9FMEyylzmF8FsE1lDMidwhftE.roa
File: 2I9FMEyylzmF8FsE1lDMidwhftE.roa (raw, json)
Hash identifier: bpyOXVbipZNjJEYKSiFH3ov8Dq19bmZ0DH79QT1csQ0=
Subject key identifier: D8:8F:45:30:4C:B2:97:39:85:F0:5B:04:D6:50:CC:89:DC:21:7E:D1
Certificate issuer: /CN=dd82de4f1304339fde527ba06033ca9e511171bd
Certificate serial: 058D4362
Authority key identifier: DD:82:DE:4F:13:04:33:9F:DE:52:7B:A0:60:33:CA:9E:51:11:71:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YLeTxMEM5_eUnugYDPKnlERcb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/f8bb1b-d6fd-49a1-9653-ff157bef0621/1/2I9FMEyylzmF8FsE1lDMidwhftE.roa
Signing time: Sat 01 Jan 2022 15:00:29 +0000
ROA not before: Sat 01 Jan 2022 15:00:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3177
IP address blocks: 185.86.183.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93143906 (0x58d4362)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd82de4f1304339fde527ba06033ca9e511171bd
Validity
Not Before: Jan 1 15:00:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d88f45304cb2973985f05b04d650cc89dc217ed1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:62:ed:04:a3:ff:2b:95:78:31:a0:2f:30:b1:
9c:97:34:04:82:39:62:ed:99:de:d3:e4:d0:93:db:
8f:05:9a:6d:90:ff:b7:92:55:7d:f9:e6:2b:ef:4e:
bd:61:41:13:d2:ab:17:c0:54:74:31:7c:6c:b4:b4:
8e:e0:a4:7f:3d:07:c6:57:16:3a:10:a8:a9:e5:e8:
ad:4e:df:88:54:c4:9b:1e:27:52:fd:23:f8:63:93:
af:e1:5a:c9:48:e7:cc:9b:18:a6:23:e4:cc:dd:82:
fe:e3:e6:d4:65:01:0a:fb:c0:52:31:b8:0e:15:18:
04:de:2c:eb:6b:06:69:61:72:c2:42:31:b7:da:36:
82:d9:ed:11:36:d7:2e:61:52:5d:66:ef:c2:d9:e1:
bb:2d:e3:93:ec:f4:d7:8e:91:6c:b2:72:2e:4a:cb:
f5:33:57:af:15:04:b5:9e:4e:62:88:ae:eb:98:d0:
30:f7:59:91:6c:93:c9:4e:ec:eb:1e:50:2b:eb:ed:
00:5d:6a:20:23:cb:81:d7:67:ed:66:bd:bd:e0:3f:
7e:b4:ef:a8:6a:8d:11:d9:fa:a3:a8:7d:b7:06:f9:
56:ab:b9:38:74:25:a7:3a:f8:d0:66:ef:b3:60:39:
bf:e8:bf:80:e7:05:54:40:73:b0:38:3b:db:37:2f:
ba:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:8F:45:30:4C:B2:97:39:85:F0:5B:04:D6:50:CC:89:DC:21:7E:D1
X509v3 Authority Key Identifier:
keyid:DD:82:DE:4F:13:04:33:9F:DE:52:7B:A0:60:33:CA:9E:51:11:71:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YLeTxMEM5_eUnugYDPKnlERcb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f8bb1b-d6fd-49a1-9653-ff157bef0621/1/2I9FMEyylzmF8FsE1lDMidwhftE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f8bb1b-d6fd-49a1-9653-ff157bef0621/1/3YLeTxMEM5_eUnugYDPKnlERcb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.183.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:91:19:17:db:b6:80:2b:16:87:5c:3c:32:cb:9d:0c:56:20:
10:69:d1:80:e6:30:30:e9:18:75:ad:b2:70:dc:05:48:20:f2:
a4:77:94:83:e2:f0:29:3c:e1:05:d0:d0:27:be:67:73:c0:b5:
f3:fa:6e:43:01:78:ed:e5:db:76:43:4b:a5:f8:0c:69:48:23:
f9:4e:bb:00:57:ae:c8:c3:83:23:13:68:ba:10:77:3a:79:aa:
5f:70:b2:54:0d:8f:55:ee:ab:90:00:71:c6:5c:64:5b:0c:3b:
a2:a6:f1:73:2a:60:3b:b9:36:8e:96:87:b9:8f:84:bb:d8:5b:
37:12:01:ec:be:2e:42:6d:27:ec:39:d9:3a:5c:a9:89:24:89:
74:e7:69:d5:78:ca:10:6a:4f:09:b4:7c:4d:1c:d7:ce:9d:3b:
78:df:22:18:85:56:e9:79:6b:27:11:92:ef:6f:6c:ee:d6:68:
4b:c9:b1:d1:25:62:ea:65:41:7c:13:9b:7c:a6:df:88:07:05:
5c:d8:45:db:36:69:24:5d:06:17:f9:5f:01:3a:a1:6b:00:b3:
38:ff:16:cd:ce:d8:a8:20:13:6a:fe:dc:30:32:73:95:3a:05:
c9:5f:88:0a:7a:3d:0b:b7:f0:eb:a0:a6:b1:a2:79:c1:0d:64:
92:59:e9:95
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBY1DYjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
ZDgyZGU0ZjEzMDQzMzlmZGU1MjdiYTA2MDMzY2E5ZTUxMTE3MWJkMB4XDTIyMDEw
MTE1MDAyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDg4ZjQ1MzA0Y2Iy
OTczOTg1ZjA1YjA0ZDY1MGNjODlkYzIxN2VkMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK9i7QSj/yuVeDGgLzCxnJc0BII5Yu2Z3tPk0JPbjwWabZD/
t5JVffnmK+9OvWFBE9KrF8BUdDF8bLS0juCkfz0HxlcWOhCoqeXorU7fiFTEmx4n
Uv0j+GOTr+FayUjnzJsYpiPkzN2C/uPm1GUBCvvAUjG4DhUYBN4s62sGaWFywkIx
t9o2gtntETbXLmFSXWbvwtnhuy3jk+z0146RbLJyLkrL9TNXrxUEtZ5OYoiu65jQ
MPdZkWyTyU7s6x5QK+vtAF1qICPLgddn7Wa9veA/frTvqGqNEdn6o6h9twb5Vqu5
OHQlpzr40Gbvs2A5v+i/gOcFVEBzsDg72zcvuqsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTYj0UwTLKXOYXwWwTWUMyJ3CF+0TAfBgNVHSMEGDAWgBTdgt5PEwQzn95S
e6BgM8qeURFxvTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzNZTGVUeE1FTTVfZVVudWdZRFBLbmxFUmNiMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2QvZjhiYjFiLWQ2ZmQtNDlhMS05NjUzLWZmMTU3YmVmMDYyMS8x
LzJJOUZNRXl5bHptRjhGc0UxbERNaWR3aGZ0RS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Qv
ZjhiYjFiLWQ2ZmQtNDlhMS05NjUzLWZmMTU3YmVmMDYyMS8xLzNZTGVUeE1FTTVf
ZVVudWdZRFBLbmxFUmNiMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALlWtzANBgkqhkiG9w0BAQsFAAOC
AQEAO5EZF9u2gCsWh1w8MsudDFYgEGnRgOYwMOkYda2ycNwFSCDypHeUg+LwKTzh
BdDQJ75nc8C18/puQwF47eXbdkNLpfgMaUgj+U67AFeuyMODIxNouhB3OnmqX3Cy
VA2PVe6rkABxxlxkWww7oqbxcypgO7k2jpaHuY+Eu9hbNxIB7L4uQm0n7DnZOlyp
iSSJdOdp1XjKEGpPCbR8TRzXzp07eN8iGIVW6XlrJxGS729s7tZoS8mx0SVi6mVB
fBObfKbfiAcFXNhF2zZpJF0GF/lfATqhawCzOP8Wzc7YqCATav7cMDJzlToFyV+I
Cno9C7fw66CmsaJ5wQ1kklnplQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:06 2023 by rpki-client on console-ams.rpki-client.org