Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/1Md9k9npTTBR8j4ECSkvyk9GBLg.roa
File: 1Md9k9npTTBR8j4ECSkvyk9GBLg.roa (raw, json)
Hash identifier: mM0SlmXnEW/lmJKgXg2K8SzAeQRGWLfYz2NPWXocbew=
Subject key identifier: D4:C7:7D:93:D9:E9:4D:30:51:F2:3E:04:09:29:2F:CA:4F:46:04:B8
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 01852C97D60BE250072D9170718C0E660FC9
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/1Md9k9npTTBR8j4ECSkvyk9GBLg.roa
Signing time: Mon 19 Dec 2022 22:53:46 +0000
ROA not before: Mon 19 Dec 2022 22:53:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207279
IP address blocks: 185.179.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2c:97:d6:0b:e2:50:07:2d:91:70:71:8c:0e:66:0f:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Dec 19 22:53:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d4c77d93d9e94d3051f23e0409292fca4f4604b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:29:63:ad:23:d1:77:3e:1c:1a:24:14:5f:2b:
51:8a:69:63:d2:40:30:95:81:fc:47:b0:b5:b6:74:
04:d1:08:9d:3d:a8:86:fa:be:31:4b:f1:5d:b8:0a:
d6:fc:2e:0b:35:ef:0a:b2:ea:42:06:89:7d:0f:d4:
21:7a:e3:3f:c3:1d:fc:d9:d6:38:ae:56:71:3e:4d:
39:6a:fa:97:08:9a:29:25:95:b7:f7:a8:c2:3c:00:
e7:f7:ad:90:75:30:c4:4c:77:3a:aa:88:86:20:3d:
71:7a:9f:4f:e1:62:e1:75:78:bc:34:09:3c:e8:b3:
37:e4:83:d8:c7:7b:71:0b:fd:14:fe:5e:2e:6d:e7:
d4:d1:fe:08:2b:61:16:cf:b6:94:27:e7:57:8c:7b:
b3:17:64:d8:07:b3:db:a1:26:d6:98:53:80:2e:2a:
4e:84:ea:bb:00:52:5c:0d:b2:1c:24:90:91:45:a2:
e0:01:f3:8e:96:fb:3f:a1:3d:7b:bd:d4:e1:aa:1d:
e6:c1:14:48:25:67:66:f9:39:1a:d5:2f:77:fa:ed:
1b:e9:95:38:52:6e:26:42:fb:b7:06:a5:3e:97:5e:
ee:3c:dd:a9:60:a8:ef:ee:ee:11:2d:e9:4d:bd:70:
8e:e9:cd:de:c9:89:6e:82:85:d5:7c:03:c4:fc:22:
66:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:C7:7D:93:D9:E9:4D:30:51:F2:3E:04:09:29:2F:CA:4F:46:04:B8
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/1Md9k9npTTBR8j4ECSkvyk9GBLg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.216.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:a3:40:24:09:22:62:88:60:90:02:84:df:3b:e2:66:56:7c:
e6:b8:12:35:01:4d:37:ae:df:62:95:eb:24:bb:33:78:98:f4:
48:9b:12:78:76:bf:42:3d:94:4d:21:a9:d5:f3:de:75:47:3c:
a4:d5:53:08:87:16:12:9e:95:f2:a1:c9:17:0a:e3:bb:c9:0b:
c3:b7:42:95:5b:ab:d8:4f:7b:5c:ba:3f:40:99:46:db:f1:b4:
bb:52:a3:ab:15:ed:48:19:3b:56:d3:a4:b0:c2:64:6e:e8:c4:
b3:bc:4b:13:1f:ea:dd:e1:2f:32:92:a5:45:d5:18:bb:ef:27:
bb:f4:1e:48:2a:52:c2:79:f7:e7:ec:71:d9:06:b8:96:f0:15:
d1:e3:f4:59:e5:44:05:9e:1f:64:d2:76:d1:d5:19:cc:33:f3:
bb:58:3f:41:41:8a:87:87:ee:a7:5a:60:66:b2:a1:5f:e3:25:
fa:c4:c9:2f:f7:dc:72:1d:a9:6b:8f:27:1f:e5:6c:f2:24:f6:
87:7d:76:4d:be:aa:c9:a4:e3:7f:c1:25:29:bd:f6:ae:a1:ed:
16:2a:61:44:58:2b:e6:f7:25:c8:f0:d9:33:17:a9:b1:2d:9a:
ae:dc:e2:ed:16:42:69:33:53:06:a5:f9:b3:73:97:a6:89:a0:
e9:49:1b:d0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYUsl9YL4lAHLZFwcYwOZg/JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4MTAxNzcyMjQ4OTk2Yjg3ZDkwODQwYzJkMjdkNjI1NDk0
NTgxNzMwHhcNMjIxMjE5MjI1MzQ2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNGM3N2Q5M2Q5ZTk0ZDMwNTFmMjNlMDQwOTI5MmZjYTRmNDYwNGI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5SljrSPRdz4cGiQUXytRimlj0kAw
lYH8R7C1tnQE0QidPaiG+r4xS/FduArW/C4LNe8KsupCBol9D9QheuM/wx382dY4
rlZxPk05avqXCJopJZW396jCPADn962QdTDETHc6qoiGID1xep9P4WLhdXi8NAk8
6LM35IPYx3txC/0U/l4ubefU0f4IK2EWz7aUJ+dXjHuzF2TYB7PboSbWmFOALipO
hOq7AFJcDbIcJJCRRaLgAfOOlvs/oT17vdThqh3mwRRIJWdm+Tka1S93+u0b6ZU4
Um4mQvu3BqU+l17uPN2pYKjv7u4RLelNvXCO6c3eyYlugoXVfAPE/CJmKwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNTHfZPZ6U0wUfI+BAkpL8pPRgS4MB8GA1UdIwQY
MBaAFBgQF3IkiZa4fZCEDC0n1iVJRYFzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQt
M2NjODVhZDNjMTkwLzEvMU1kOWs5bnBUVEJSOGo0RUNTa3Z5azlHQkxnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQtM2NjODVhZDNjMTkw
LzEvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAubPYMA0G
CSqGSIb3DQEBCwUAA4IBAQBOo0AkCSJiiGCQAoTfO+JmVnzmuBI1AU03rt9ilesk
uzN4mPRImxJ4dr9CPZRNIanV8951Rzyk1VMIhxYSnpXyockXCuO7yQvDt0KVW6vY
T3tcuj9AmUbb8bS7UqOrFe1IGTtW06SwwmRu6MSzvEsTH+rd4S8ykqVF1Ri77ye7
9B5IKlLCeffn7HHZBriW8BXR4/RZ5UQFnh9k0nbR1RnMM/O7WD9BQYqHh+6nWmBm
sqFf4yX6xMkv99xyHalrjycf5WzyJPaHfXZNvqrJpON/wSUpvfauoe0WKmFEWCvm
9yXI8NkzF6mxLZqu3OLtFkJpM1MGpfmzc5emiaDpSRvQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:59 2024 by rpki-client on console-fra.rpki-client.org