Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/R5VoixVBED5MiC140LkGflmiU0k.roa
File: R5VoixVBED5MiC140LkGflmiU0k.roa (raw, json)
Hash identifier: CLz0MxTbK2/KO03NHB705dcSiomc68iiZ0myFvJVOrY=
Subject key identifier: 47:95:68:8B:15:41:10:3E:4C:88:2D:78:D0:B9:06:7E:59:A2:53:49
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 0720B7B5
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/R5VoixVBED5MiC140LkGflmiU0k.roa
Signing time: Thu 02 Jun 2022 08:07:20 +0000
ROA not before: Thu 02 Jun 2022 08:07:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.114.144.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119584693 (0x720b7b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Jun 2 08:07:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4795688b1541103e4c882d78d0b9067e59a25349
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:b5:b8:89:d3:92:a3:9d:b6:20:7e:15:28:a1:
ae:03:16:ef:1e:1d:c1:99:06:d8:39:27:30:46:4d:
6c:f6:41:27:45:54:e1:7e:ca:77:79:1b:c6:df:14:
95:cd:30:44:7a:3d:e4:39:ba:96:66:af:65:4a:30:
26:81:2b:ea:71:ac:ea:5d:e3:7d:ed:3f:f9:e6:df:
54:52:89:a7:a0:61:9d:d7:84:5e:88:65:9c:63:d3:
d2:b9:2d:3e:26:43:03:1a:c7:51:71:07:71:9f:66:
0b:c0:7f:b7:3c:b1:e9:6b:ee:2e:82:f9:66:22:2e:
b4:b8:4b:4d:4c:e8:b7:75:01:13:0c:4c:e9:34:f6:
a4:80:30:2d:7d:a7:7f:82:49:07:9f:71:1b:ee:c5:
d4:c5:0f:1b:25:41:85:ab:c6:95:de:94:2e:1b:a9:
45:43:0b:ba:9a:2b:38:7a:79:21:c1:36:61:32:3e:
4b:e0:4d:a6:cf:bd:47:7c:54:3d:74:76:41:4c:66:
65:5e:4e:ad:34:b1:76:3e:7d:5e:f0:a4:da:dc:2e:
83:27:33:42:cd:a0:d9:39:d2:28:89:70:1c:ef:1a:
88:6e:b8:b4:db:79:4e:9a:7c:e7:99:96:66:55:1b:
49:bc:85:38:d6:66:c0:ef:c0:3b:2e:30:b3:17:1a:
ac:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:95:68:8B:15:41:10:3E:4C:88:2D:78:D0:B9:06:7E:59:A2:53:49
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/R5VoixVBED5MiC140LkGflmiU0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.114.144.0/22
Signature Algorithm: sha256WithRSAEncryption
42:78:c0:ba:86:34:c0:93:6d:7a:74:9f:77:db:ce:40:5e:f0:
a5:a4:b3:49:58:55:61:45:85:c1:bc:88:c4:0a:3e:5b:c8:ae:
ee:15:0a:ea:c2:a3:4b:1c:bb:4e:ec:f9:74:e0:ba:f5:d0:6d:
56:0f:9b:a7:2f:73:ae:b5:4c:cc:f8:5b:99:be:f0:bf:70:e0:
44:7e:d7:46:88:78:06:2a:f5:b5:19:29:6f:6e:32:f3:5c:59:
b0:36:f0:58:1c:fb:e9:cf:26:24:05:4c:8b:3d:0a:f3:95:e2:
93:22:0a:15:4d:8f:22:a1:8f:24:fa:93:10:7f:f6:9e:1b:6f:
36:a8:55:1d:9f:ce:db:c6:02:97:81:42:32:4f:77:e7:5f:7a:
a3:e0:58:37:ac:01:ae:92:76:10:1b:37:fe:b0:d3:5e:50:99:
f1:06:ea:f4:ef:3d:5b:58:1b:8e:79:d7:2c:ba:93:f7:b0:58:
b6:dc:6d:1a:00:52:7b:b2:ca:97:e8:30:03:a0:45:0f:7b:fd:
59:70:79:41:4e:47:ed:0d:20:c6:b7:25:55:f6:ff:b1:1c:9d:
7f:b0:4a:ac:ca:6f:5a:97:08:22:f3:62:05:cd:b3:e9:ef:19:
9b:fb:06:92:b6:f3:10:2c:e6:39:e4:c0:7c:af:c0:40:a0:c4:
50:93:05:6a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEByC3tTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ODEwMTc3MjI0ODk5NmI4N2Q5MDg0MGMyZDI3ZDYyNTQ5NDU4MTczMB4XDTIyMDYw
MjA4MDcyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDc5NTY4OGIxNTQx
MTAzZTRjODgyZDc4ZDBiOTA2N2U1OWEyNTM0OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIK1uInTkqOdtiB+FSihrgMW7x4dwZkG2DknMEZNbPZBJ0VU
4X7Kd3kbxt8Ulc0wRHo95Dm6lmavZUowJoEr6nGs6l3jfe0/+ebfVFKJp6BhndeE
XohlnGPT0rktPiZDAxrHUXEHcZ9mC8B/tzyx6WvuLoL5ZiIutLhLTUzot3UBEwxM
6TT2pIAwLX2nf4JJB59xG+7F1MUPGyVBhavGld6ULhupRUMLuporOHp5IcE2YTI+
S+BNps+9R3xUPXR2QUxmZV5OrTSxdj59XvCk2twugyczQs2g2TnSKIlwHO8aiG64
tNt5Tpp855mWZlUbSbyFONZmwO/AOy4wsxcarE0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRHlWiLFUEQPkyILXjQuQZ+WaJTSTAfBgNVHSMEGDAWgBQYEBdyJImWuH2Q
hAwtJ9YlSUWBczAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0dCQVhjaVNKbHJoOWtJUU1MU2ZXSlVsRmdYTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODEvMjBhNWE1LTBiYTItNDA1Mi1iZWI0LTNjYzg1YWQzYzE5MC8x
L1I1Vm9peFZCRUQ1TWlDMTQwTGtHZmxtaVUway5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODEv
MjBhNWE1LTBiYTItNDA1Mi1iZWI0LTNjYzg1YWQzYzE5MC8xL0dCQVhjaVNKbHJo
OWtJUU1MU2ZXSlVsRmdYTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArlykDANBgkqhkiG9w0BAQsFAAOC
AQEAQnjAuoY0wJNtenSfd9vOQF7wpaSzSVhVYUWFwbyIxAo+W8iu7hUK6sKjSxy7
Tuz5dOC69dBtVg+bpy9zrrVMzPhbmb7wv3DgRH7XRoh4Bir1tRkpb24y81xZsDbw
WBz76c8mJAVMiz0K85XikyIKFU2PIqGPJPqTEH/2nhtvNqhVHZ/O28YCl4FCMk93
5196o+BYN6wBrpJ2EBs3/rDTXlCZ8Qbq9O89W1gbjnnXLLqT97BYttxtGgBSe7LK
l+gwA6BFD3v9WXB5QU5H7Q0gxrclVfb/sRydf7BKrMpvWpcIIvNiBc2z6e8Zm/sG
krbzECzmOeTAfK/AQKDEUJMFag==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:16 2023 by rpki-client on console-ams.rpki-client.org