Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/981176-4d10-4859-ba0f-1d22b02b9b1b/1/p6h3YVoSj1OI6TbQCASiu6fzHxM.roa
File: p6h3YVoSj1OI6TbQCASiu6fzHxM.roa (raw, json)
Hash identifier: 4thgtXVH2MaaGKsnYh4JsLk6P+h1Z6B64YqIqCpBLFc=
Subject key identifier: A7:A8:77:61:5A:12:8F:53:88:E9:36:D0:08:04:A2:BB:A7:F3:1F:13
Certificate issuer: /CN=b74f63fd0dc197e52ad272276c40d3ee4bb1d799
Certificate serial: 0430407E
Authority key identifier: B7:4F:63:FD:0D:C1:97:E5:2A:D2:72:27:6C:40:D3:EE:4B:B1:D7:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t09j_Q3Bl-Uq0nInbEDT7kux15k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/981176-4d10-4859-ba0f-1d22b02b9b1b/1/p6h3YVoSj1OI6TbQCASiu6fzHxM.roa
Signing time: Sat 01 Jan 2022 04:00:57 +0000
ROA not before: Sat 01 Jan 2022 04:00:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204108
IP address blocks: 185.114.136.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70271102 (0x430407e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b74f63fd0dc197e52ad272276c40d3ee4bb1d799
Validity
Not Before: Jan 1 04:00:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7a877615a128f5388e936d00804a2bba7f31f13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:09:e8:f9:48:9f:a4:d5:bd:1f:fa:6a:9d:08:
09:b2:c7:62:d8:2e:bc:b9:54:25:92:36:16:ee:29:
02:74:dd:11:9b:34:f4:31:2b:4a:3b:71:69:f8:f6:
7f:c5:91:ee:5e:07:97:5a:e6:05:8e:78:b2:8a:e6:
8f:dc:a6:33:08:b3:c5:ee:2e:80:d6:b9:a6:d4:5a:
83:dc:b1:5d:95:58:9e:f5:d1:18:7d:f7:04:41:9b:
a6:0f:73:33:f0:02:48:dd:1e:f8:14:77:11:09:05:
a5:91:28:1f:c1:c1:00:4e:f2:6a:7b:b6:a4:11:89:
34:fc:b5:d8:67:42:1d:b4:e6:3f:7e:a6:02:0e:fa:
02:39:8f:fe:65:ba:b3:da:b5:50:93:b0:b0:42:ab:
e3:46:69:06:f7:ed:d7:52:ef:cc:f7:81:6a:3e:91:
07:0f:a4:31:8d:79:84:6b:3d:71:92:bc:60:37:38:
93:1d:92:e9:d9:fc:94:70:8c:7b:99:35:4a:97:11:
e0:a3:b9:9b:62:01:4d:5e:7f:cf:c7:db:9f:df:da:
a6:46:7a:11:47:3b:10:f9:89:0e:67:3a:0b:df:b9:
e1:2f:d0:68:7c:68:f9:1b:1d:07:c8:5c:d3:e0:57:
5b:f0:53:c8:3b:1a:03:dd:84:82:f9:78:50:f8:7b:
8b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:A8:77:61:5A:12:8F:53:88:E9:36:D0:08:04:A2:BB:A7:F3:1F:13
X509v3 Authority Key Identifier:
keyid:B7:4F:63:FD:0D:C1:97:E5:2A:D2:72:27:6C:40:D3:EE:4B:B1:D7:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t09j_Q3Bl-Uq0nInbEDT7kux15k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/981176-4d10-4859-ba0f-1d22b02b9b1b/1/p6h3YVoSj1OI6TbQCASiu6fzHxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/981176-4d10-4859-ba0f-1d22b02b9b1b/1/t09j_Q3Bl-Uq0nInbEDT7kux15k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.114.136.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:cd:fe:ce:aa:a7:8f:64:94:cc:80:3d:b3:2a:b4:6c:c9:f7:
5a:cc:d6:76:19:f8:72:dd:d5:53:10:d0:87:48:56:0b:eb:dd:
ca:b3:27:49:78:68:30:18:dd:b9:82:b7:87:8e:6a:77:b6:a0:
01:e2:31:47:9d:25:ac:02:a5:7a:55:44:8b:06:b1:f0:c4:37:
b6:0e:7f:85:25:2d:7c:5d:56:01:dc:75:93:8b:75:9c:e2:87:
98:4b:e8:6d:b6:fa:2f:ac:65:14:c9:18:89:05:3f:e9:40:7d:
44:b6:4b:f7:a4:83:f3:0f:72:38:b9:45:96:a7:12:51:d4:ce:
a7:79:05:39:8d:b3:0d:0c:34:d2:45:f9:d0:44:fc:9b:c0:1e:
4e:5b:40:f0:8b:6b:f0:95:d7:69:3e:c7:7c:a6:d0:45:52:55:
7f:ad:b4:75:f7:8a:d4:dd:00:aa:37:38:3d:23:df:8d:34:1b:
3b:bf:2d:43:d4:e2:2f:4b:6e:c5:58:1b:f0:a2:86:98:b4:c9:
a1:5f:5c:07:0a:fb:d0:4b:52:bc:5a:3b:b7:5e:18:50:cf:d5:
51:d8:f9:a8:50:74:45:fe:9e:2d:a2:59:92:d7:4e:45:f1:a1:
96:87:e4:02:fc:c1:db:1d:15:9d:99:90:59:56:f9:8b:ec:2c:
e8:a2:2d:f7
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBDBAfjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NzRmNjNmZDBkYzE5N2U1MmFkMjcyMjc2YzQwZDNlZTRiYjFkNzk5MB4XDTIyMDEw
MTA0MDA1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTdhODc3NjE1YTEy
OGY1Mzg4ZTkzNmQwMDgwNGEyYmJhN2YzMWYxMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALMJ6PlIn6TVvR/6ap0ICbLHYtguvLlUJZI2Fu4pAnTdEZs0
9DErSjtxafj2f8WR7l4Hl1rmBY54sormj9ymMwizxe4ugNa5ptRag9yxXZVYnvXR
GH33BEGbpg9zM/ACSN0e+BR3EQkFpZEoH8HBAE7yanu2pBGJNPy12GdCHbTmP36m
Ag76AjmP/mW6s9q1UJOwsEKr40ZpBvft11LvzPeBaj6RBw+kMY15hGs9cZK8YDc4
kx2S6dn8lHCMe5k1SpcR4KO5m2IBTV5/z8fbn9/apkZ6EUc7EPmJDmc6C9+54S/Q
aHxo+RsdB8hc0+BXW/BTyDsaA92Egvl4UPh7i0UCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSnqHdhWhKPU4jpNtAIBKK7p/MfEzAfBgNVHSMEGDAWgBS3T2P9DcGX5SrS
cidsQNPuS7HXmTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3QwOWpfUTNCbC1VcTBuSW5iRURUN2t1eDE1ay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODEvOTgxMTc2LTRkMTAtNDg1OS1iYTBmLTFkMjJiMDJiOWIxYi8x
L3A2aDNZVm9TajFPSTZUYlFDQVNpdTZmekh4TS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODEv
OTgxMTc2LTRkMTAtNDg1OS1iYTBmLTFkMjJiMDJiOWIxYi8xL3QwOWpfUTNCbC1V
cTBuSW5iRURUN2t1eDE1ay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArlyiDANBgkqhkiG9w0BAQsFAAOC
AQEAX83+zqqnj2SUzIA9syq0bMn3WszWdhn4ct3VUxDQh0hWC+vdyrMnSXhoMBjd
uYK3h45qd7agAeIxR50lrAKlelVEiwax8MQ3tg5/hSUtfF1WAdx1k4t1nOKHmEvo
bbb6L6xlFMkYiQU/6UB9RLZL96SD8w9yOLlFlqcSUdTOp3kFOY2zDQw00kX50ET8
m8AeTltA8Itr8JXXaT7HfKbQRVJVf620dfeK1N0Aqjc4PSPfjTQbO78tQ9TiL0tu
xVgb8KKGmLTJoV9cBwr70EtSvFo7t14YUM/VUdj5qFB0Rf6eLaJZktdORfGhlofk
AvzB2x0VnZmQWVb5i+ws6KIt9w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:02 2024 by rpki-client on console-fra.rpki-client.org