Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/by--RdmoB5vYGOhurcCnmzHBwTM.roa
File: by--RdmoB5vYGOhurcCnmzHBwTM.roa (raw, json)
Hash identifier: BJt4AdTQQ5u7RAgO/P0IyAeaCnFkexAk76tWHNUMZtk=
Subject key identifier: 6F:2F:BE:45:D9:A8:07:9B:D8:18:E8:6E:AD:C0:A7:9B:31:C1:C1:33
Certificate issuer: /CN=0e831fd70c6bd37a2a75d7a0eac031c92da8e185
Certificate serial: 03442921
Authority key identifier: 0E:83:1F:D7:0C:6B:D3:7A:2A:75:D7:A0:EA:C0:31:C9:2D:A8:E1:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/by--RdmoB5vYGOhurcCnmzHBwTM.roa
Signing time: Sat 01 Jan 2022 09:57:20 +0000
ROA not before: Sat 01 Jan 2022 09:57:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.230.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54798625 (0x3442921)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e831fd70c6bd37a2a75d7a0eac031c92da8e185
Validity
Not Before: Jan 1 09:57:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f2fbe45d9a8079bd818e86eadc0a79b31c1c133
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8b:44:6e:fe:35:58:a1:09:21:da:19:f1:20:
53:48:ec:69:ea:96:be:99:ab:1e:e0:88:bf:5a:4b:
a3:66:da:7d:e4:69:c3:9c:2c:18:4d:1b:1a:06:77:
b7:8d:7f:7d:aa:f1:85:2c:12:86:8c:73:f3:7e:27:
d2:2f:d4:0f:30:4d:32:3b:98:9f:0f:e5:1c:e9:7c:
8b:de:41:58:5b:76:08:73:6b:40:51:43:c6:67:61:
25:ab:60:41:2d:91:42:dd:e4:61:ba:3c:74:87:9b:
62:c9:c3:7c:ca:42:dd:7a:37:f1:61:ab:f3:9f:37:
3f:a2:dd:72:9d:ad:22:9c:ed:fb:c7:11:2f:cd:91:
79:46:3f:a6:b2:72:02:e4:aa:44:83:79:fd:57:96:
02:94:ac:c2:17:6b:87:61:ce:a1:fa:af:92:e8:06:
2f:f7:99:ca:ff:bc:fd:3b:35:1c:14:f0:7a:be:fa:
bb:24:a8:9c:e6:c8:c8:77:53:a9:29:a4:de:03:e2:
3e:80:66:43:a5:cf:e8:6f:2e:ea:98:a1:fe:32:7c:
2c:40:f3:5d:ee:1f:ab:b8:1f:4f:e1:ca:84:8d:ca:
55:96:de:92:a2:ff:17:e7:20:cb:a7:ce:28:4d:4f:
d1:4f:6f:17:bb:8a:75:3d:7a:98:df:b9:c8:e7:ff:
38:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:2F:BE:45:D9:A8:07:9B:D8:18:E8:6E:AD:C0:A7:9B:31:C1:C1:33
X509v3 Authority Key Identifier:
keyid:0E:83:1F:D7:0C:6B:D3:7A:2A:75:D7:A0:EA:C0:31:C9:2D:A8:E1:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/by--RdmoB5vYGOhurcCnmzHBwTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.103.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:0e:86:a9:54:ca:18:ad:20:c6:05:ad:07:a2:93:88:ef:9d:
40:a8:6b:70:eb:2f:25:d7:6a:5f:fe:f7:f8:a7:b6:22:5d:f4:
f8:48:12:1d:99:5c:68:06:29:1a:bc:7d:43:08:b5:7e:00:0a:
9b:45:2c:f8:ac:bf:ec:70:81:70:ac:41:fa:f5:8e:4f:fa:7e:
a7:ae:92:a3:bd:16:18:ca:a6:4f:8c:de:42:85:83:a0:3b:f1:
a2:6b:c6:f1:a2:46:da:3b:00:7e:7d:71:68:49:28:cf:40:c0:
92:a2:25:f5:ef:e0:27:4f:b5:44:8e:0a:c2:13:6e:d1:65:bc:
57:6a:d4:c4:bd:4c:06:06:57:c1:71:48:31:f9:3d:3d:cf:5c:
1c:5e:8b:fe:bb:72:9a:90:f9:47:e3:16:4f:a4:10:60:47:5a:
ca:82:bb:86:3b:b2:b5:54:90:74:66:87:56:03:6d:7d:16:39:
d7:68:49:dd:48:e5:c9:fa:87:08:df:46:b5:5c:e1:bf:80:13:
5d:6b:7f:a4:0f:59:05:42:ef:69:4b:2d:d2:8d:22:8f:00:f8:
61:49:f3:fa:36:9c:a8:57:c6:b9:1f:48:2e:76:61:95:80:be:
ea:44:95:7e:23:44:44:49:74:2e:98:8f:bc:09:1e:f6:5a:8a:
0a:ab:28:6b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA0QpITANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
ZTgzMWZkNzBjNmJkMzdhMmE3NWQ3YTBlYWMwMzFjOTJkYThlMTg1MB4XDTIyMDEw
MTA5NTcyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmYyZmJlNDVkOWE4
MDc5YmQ4MThlODZlYWRjMGE3OWIzMWMxYzEzMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKuLRG7+NVihCSHaGfEgU0jsaeqWvpmrHuCIv1pLo2bafeRp
w5wsGE0bGgZ3t41/farxhSwShoxz834n0i/UDzBNMjuYnw/lHOl8i95BWFt2CHNr
QFFDxmdhJatgQS2RQt3kYbo8dIebYsnDfMpC3Xo38WGr8583P6Ldcp2tIpzt+8cR
L82ReUY/prJyAuSqRIN5/VeWApSswhdrh2HOofqvkugGL/eZyv+8/Ts1HBTwer76
uySonObIyHdTqSmk3gPiPoBmQ6XP6G8u6pih/jJ8LEDzXe4fq7gfT+HKhI3KVZbe
kqL/F+cgy6fOKE1P0U9vF7uKdT16mN+5yOf/OA0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRvL75F2agHm9gY6G6twKebMcHBMzAfBgNVHSMEGDAWgBQOgx/XDGvTeip1
16DqwDHJLajhhTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0RvTWYxd3hyMDNvcWRkZWc2c0F4eVMybzRZVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODEvOThhNjYxLTQ0ZjUtNGEwNS1hY2FhLWU2NzU4MmYyMzA5Ny8x
L2J5LS1SZG1vQjV2WUdPaHVyY0NubXpIQndUTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODEv
OThhNjYxLTQ0ZjUtNGEwNS1hY2FhLWU2NzU4MmYyMzA5Ny8xL0RvTWYxd3hyMDNv
cWRkZWc2c0F4eVMybzRZVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnmZzANBgkqhkiG9w0BAQsFAAOC
AQEAWg6GqVTKGK0gxgWtB6KTiO+dQKhrcOsvJddqX/73+Ke2Il30+EgSHZlcaAYp
Grx9Qwi1fgAKm0Us+Ky/7HCBcKxB+vWOT/p+p66So70WGMqmT4zeQoWDoDvxomvG
8aJG2jsAfn1xaEkoz0DAkqIl9e/gJ0+1RI4KwhNu0WW8V2rUxL1MBgZXwXFIMfk9
Pc9cHF6L/rtympD5R+MWT6QQYEdayoK7hjuytVSQdGaHVgNtfRY512hJ3UjlyfqH
CN9GtVzhv4ATXWt/pA9ZBULvaUst0o0ijwD4YUnz+jacqFfGuR9ILnZhlYC+6kSV
fiNEREl0LpiPvAke9lqKCqsoaw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:41 2023 by rpki-client on console-fra.rpki-client.org