Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/7Ze9NhH-e4SH0SmwFJZVR-bpCmg.roa
File: 7Ze9NhH-e4SH0SmwFJZVR-bpCmg.roa (raw, json)
Hash identifier: ThqvjcTlNPU86dEQbHuOUswvfj2peO4ThK+ldYB7W/Y=
Subject key identifier: ED:97:BD:36:11:FE:7B:84:87:D1:29:B0:14:96:55:47:E6:E9:0A:68
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 01831431B924E5D2EC09CAA8B527DF3327C7
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/7Ze9NhH-e4SH0SmwFJZVR-bpCmg.roa
Signing time: Tue 06 Sep 2022 19:05:46 +0000
ROA not before: Tue 06 Sep 2022 19:05:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60602
IP address blocks: 185.179.216.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:14:31:b9:24:e5:d2:ec:09:ca:a8:b5:27:df:33:27:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Sep 6 19:05:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed97bd3611fe7b8487d129b014965547e6e90a68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:19:7b:de:4c:74:71:b5:a5:f3:8c:eb:df:42:
8f:88:f1:e9:83:93:e9:3e:16:79:23:be:19:b2:54:
2a:3f:f9:84:18:9f:1f:a5:25:af:53:7f:74:d7:6f:
76:27:29:95:7d:0b:0d:2f:10:38:dd:c9:84:ab:55:
ec:3e:30:69:bf:19:fe:db:4d:07:e8:a0:99:18:90:
bc:d8:10:a2:19:b8:31:f1:94:64:9d:1f:82:78:81:
a3:b2:f1:e3:5a:e5:83:53:ba:77:ad:76:34:b1:ee:
3e:5b:2a:96:df:ac:9b:a0:6a:01:5b:ee:fd:30:11:
b1:4d:d5:15:fb:45:8e:6f:b3:d9:e6:c3:c1:7b:31:
01:dd:fc:f9:dc:c0:4d:8a:1b:62:75:57:21:3a:d8:
40:b2:e7:10:29:38:44:c4:45:5b:11:14:e9:32:99:
ed:8c:bb:0d:6f:82:65:47:78:1a:42:a4:08:8a:77:
b5:6c:04:fe:da:a8:5d:0a:c2:73:66:77:e5:e8:ca:
48:d6:fa:5e:ed:64:76:58:46:f1:10:82:9c:d5:bc:
a9:3b:05:cd:05:6d:1e:31:65:88:9b:ba:68:c6:7e:
d1:ff:d1:84:1f:3f:dd:1d:71:ae:fc:4d:e7:50:fc:
55:0b:ff:fd:5a:f7:0a:3b:e3:78:23:a4:73:58:26:
fa:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:97:BD:36:11:FE:7B:84:87:D1:29:B0:14:96:55:47:E6:E9:0A:68
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/7Ze9NhH-e4SH0SmwFJZVR-bpCmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.216.0/23
Signature Algorithm: sha256WithRSAEncryption
99:05:0f:a2:a9:b2:8f:07:a1:07:2c:17:52:4a:e5:95:90:c5:
af:06:cf:7b:e4:70:03:b5:e9:5d:c5:24:dc:63:89:78:c7:11:
89:3e:c5:26:e7:59:a0:13:6e:32:7e:54:37:3b:f4:bf:95:46:
ab:df:f5:3c:b3:d9:35:9a:4e:bd:92:84:d4:8b:05:ec:57:b9:
7b:90:82:68:23:44:f1:1e:e2:a6:e2:96:87:80:75:0b:51:5b:
bf:c6:04:ec:c6:40:1d:a3:80:35:a0:b3:82:c8:ba:31:e2:c3:
ee:bd:a5:50:c9:a9:b4:13:81:3d:be:ce:6f:c6:fa:77:22:84:
08:72:ef:0c:d7:ab:06:78:69:bb:8e:0e:38:aa:3b:13:b2:e5:
9e:10:69:42:39:2d:40:f1:22:b2:39:0f:94:a2:2c:70:a6:c2:
02:59:26:8b:55:cd:59:81:19:31:3a:70:43:f7:a8:44:57:8f:
3d:95:b6:cc:9f:4f:c4:dc:e3:1c:b4:f8:81:53:c3:40:a7:54:
72:6c:9d:e5:d8:b8:13:69:6e:89:61:9d:3b:c2:c5:7e:55:91:
62:59:e7:25:3f:8c:cd:6e:99:07:a0:a9:45:72:df:16:3d:2b:
71:81:b6:6e:d2:ec:7f:32:69:66:b3:82:ea:88:c8:63:24:6f:
3b:ca:3e:e5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYMUMbkk5dLsCcqotSffMyfHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4MTAxNzcyMjQ4OTk2Yjg3ZDkwODQwYzJkMjdkNjI1NDk0
NTgxNzMwHhcNMjIwOTA2MTkwNTQ2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZDk3YmQzNjExZmU3Yjg0ODdkMTI5YjAxNDk2NTU0N2U2ZTkwYTY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlhl73kx0cbWl84zr30KPiPHpg5Pp
PhZ5I74ZslQqP/mEGJ8fpSWvU3901292JymVfQsNLxA43cmEq1XsPjBpvxn+200H
6KCZGJC82BCiGbgx8ZRknR+CeIGjsvHjWuWDU7p3rXY0se4+WyqW36yboGoBW+79
MBGxTdUV+0WOb7PZ5sPBezEB3fz53MBNihtidVchOthAsucQKThExEVbERTpMpnt
jLsNb4JlR3gaQqQIine1bAT+2qhdCsJzZnfl6MpI1vpe7WR2WEbxEIKc1bypOwXN
BW0eMWWIm7poxn7R/9GEHz/dHXGu/E3nUPxVC//9WvcKO+N4I6RzWCb6WQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFO2XvTYR/nuEh9EpsBSWVUfm6QpoMB8GA1UdIwQY
MBaAFBgQF3IkiZa4fZCEDC0n1iVJRYFzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQt
M2NjODVhZDNjMTkwLzEvN1plOU5oSC1lNFNIMFNtd0ZKWlZSLWJwQ21nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQtM2NjODVhZDNjMTkw
LzEvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBubPYMA0G
CSqGSIb3DQEBCwUAA4IBAQCZBQ+iqbKPB6EHLBdSSuWVkMWvBs975HADteldxSTc
Y4l4xxGJPsUm51mgE24yflQ3O/S/lUar3/U8s9k1mk69koTUiwXsV7l7kIJoI0Tx
HuKm4paHgHULUVu/xgTsxkAdo4A1oLOCyLox4sPuvaVQyam0E4E9vs5vxvp3IoQI
cu8M16sGeGm7jg44qjsTsuWeEGlCOS1A8SKyOQ+UoixwpsICWSaLVc1ZgRkxOnBD
96hEV489lbbMn0/E3OMctPiBU8NAp1RybJ3l2LgTaW6JYZ07wsV+VZFiWeclP4zN
bpkHoKlFct8WPStxgbZu0ux/Mmlms4LqiMhjJG87yj7l
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:40 2023 by rpki-client on console-fra.rpki-client.org