Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/abe6c0-e79d-4cdd-92ad-f21363071591/1/Xp6GYp5_VyKxwFRPDHU_aHAOVC4.roa
File: Xp6GYp5_VyKxwFRPDHU_aHAOVC4.roa (raw, json)
Hash identifier: CCsj3xJbKP2opcX779hqYaHDciZSTvVFJqB6wtM84E8=
Subject key identifier: 5E:9E:86:62:9E:7F:57:22:B1:C0:54:4F:0C:75:3F:68:70:0E:54:2E
Certificate issuer: /CN=4c18a44d54a47a5ea97dedfd5ed8379d7eea02d0
Certificate serial: BC890B
Authority key identifier: 4C:18:A4:4D:54:A4:7A:5E:A9:7D:ED:FD:5E:D8:37:9D:7E:EA:02:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TBikTVSkel6pfe39Xtg3nX7qAtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/abe6c0-e79d-4cdd-92ad-f21363071591/1/Xp6GYp5_VyKxwFRPDHU_aHAOVC4.roa
Signing time: Sat 01 Jan 2022 00:59:00 +0000
ROA not before: Sat 01 Jan 2022 00:59:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20874
IP address blocks: 185.111.161.0/24 maxlen: 24
185.111.162.0/24 maxlen: 24
185.111.163.0/24 maxlen: 24
185.111.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12355851 (0xbc890b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c18a44d54a47a5ea97dedfd5ed8379d7eea02d0
Validity
Not Before: Jan 1 00:59:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e9e86629e7f5722b1c0544f0c753f68700e542e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:96:ae:60:0d:8f:76:c4:8d:68:f7:e3:af:69:
96:ec:bd:fd:05:e8:c4:c3:7e:97:8d:2c:82:2b:95:
27:1e:5a:11:cd:f2:85:68:bf:63:e5:99:83:15:e1:
cf:a2:a1:3a:69:e6:7d:9d:c8:e6:25:1b:13:f8:34:
1c:95:d3:0d:4e:3d:02:e4:24:b0:b7:6c:4b:8d:1c:
6e:1a:05:36:d3:b9:0c:c9:1b:9e:84:50:5b:27:e9:
b9:e0:b2:aa:ba:fb:75:a9:88:62:2e:85:4d:df:c2:
aa:37:a6:f7:7e:67:54:50:71:32:f0:65:93:a6:bf:
e4:bf:5c:f1:ee:77:95:e3:d4:2d:ee:7b:0b:32:e6:
2f:1b:f9:21:41:25:65:49:72:9a:bb:47:03:33:da:
59:35:95:40:46:f2:d4:ab:fa:11:cb:e0:72:0c:6b:
9d:2b:86:4d:b6:64:72:ec:35:1a:f1:6c:9e:95:db:
8d:d8:e4:ed:00:ca:22:cb:37:7f:23:33:95:7b:3e:
bb:17:95:fd:62:e7:24:ac:7f:23:70:83:b7:ca:da:
cb:15:24:5f:a3:5a:96:e3:ad:8b:21:90:cd:fb:08:
f0:52:50:9c:56:de:aa:25:62:fc:a0:ec:13:c0:4b:
45:0b:92:7e:cc:fd:8b:b6:89:7f:45:19:92:e7:07:
5a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:9E:86:62:9E:7F:57:22:B1:C0:54:4F:0C:75:3F:68:70:0E:54:2E
X509v3 Authority Key Identifier:
keyid:4C:18:A4:4D:54:A4:7A:5E:A9:7D:ED:FD:5E:D8:37:9D:7E:EA:02:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TBikTVSkel6pfe39Xtg3nX7qAtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/abe6c0-e79d-4cdd-92ad-f21363071591/1/Xp6GYp5_VyKxwFRPDHU_aHAOVC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/abe6c0-e79d-4cdd-92ad-f21363071591/1/TBikTVSkel6pfe39Xtg3nX7qAtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.111.160.0/22
Signature Algorithm: sha256WithRSAEncryption
27:04:3f:13:e2:40:ba:c2:03:23:e2:0a:1f:f0:07:ce:cc:96:
3a:84:c9:8e:8d:dc:f4:05:a2:e0:ec:d4:57:1f:87:ca:ed:88:
c8:6b:27:f9:c7:3a:69:04:d4:45:1e:f8:de:24:62:6a:67:c3:
16:a2:e8:5c:38:74:60:77:8c:89:11:3b:c7:86:70:5d:ca:1e:
ae:3a:77:0f:d7:ff:c8:3a:df:88:06:6d:42:c9:51:44:34:fb:
a7:ca:1c:2d:4d:81:eb:e2:a9:c4:1a:a9:37:b0:12:b5:f9:aa:
ea:6d:28:4d:d3:fa:63:58:89:9f:e6:00:4c:5d:c7:15:48:b9:
87:ee:1c:ac:bf:4a:47:5d:80:80:0c:59:3c:e0:96:31:e5:6e:
16:0f:cd:68:4b:a5:ae:43:bd:04:a1:5b:0b:d6:c0:7a:9e:73:
59:af:c3:38:02:a2:55:0e:43:4e:dd:6b:26:20:2a:44:a8:3b:
c3:a8:9b:30:9e:97:92:16:33:b6:c6:4d:54:6c:90:82:b9:d5:
5c:44:ce:86:07:2f:44:24:28:74:7b:58:26:66:f8:ad:48:db:
8f:a4:58:c8:33:92:9f:a7:59:0b:b5:e0:1e:81:0c:70:1c:57:
f2:c2:1c:69:ac:3c:26:eb:65:23:58:47:1e:63:a5:04:e7:33:
e6:99:4d:c9
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEALyJCzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
YzE4YTQ0ZDU0YTQ3YTVlYTk3ZGVkZmQ1ZWQ4Mzc5ZDdlZWEwMmQwMB4XDTIyMDEw
MTAwNTkwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWU5ZTg2NjI5ZTdm
NTcyMmIxYzA1NDRmMGM3NTNmNjg3MDBlNTQyZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANqWrmANj3bEjWj3469pluy9/QXoxMN+l40sgiuVJx5aEc3y
hWi/Y+WZgxXhz6KhOmnmfZ3I5iUbE/g0HJXTDU49AuQksLdsS40cbhoFNtO5DMkb
noRQWyfpueCyqrr7damIYi6FTd/Cqjem935nVFBxMvBlk6a/5L9c8e53lePULe57
CzLmLxv5IUElZUlymrtHAzPaWTWVQEby1Kv6EcvgcgxrnSuGTbZkcuw1GvFsnpXb
jdjk7QDKIss3fyMzlXs+uxeV/WLnJKx/I3CDt8rayxUkX6NaluOtiyGQzfsI8FJQ
nFbeqiVi/KDsE8BLRQuSfsz9i7aJf0UZkucHWsECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRenoZinn9XIrHAVE8MdT9ocA5ULjAfBgNVHSMEGDAWgBRMGKRNVKR6Xql9
7f1e2DedfuoC0DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1RCaWtUVlNrZWw2cGZlMzlYdGczblg3cUF0QS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODIvYWJlNmMwLWU3OWQtNGNkZC05MmFkLWYyMTM2MzA3MTU5MS8x
L1hwNkdZcDVfVnlLeHdGUlBESFVfYUhBT1ZDNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODIv
YWJlNmMwLWU3OWQtNGNkZC05MmFkLWYyMTM2MzA3MTU5MS8xL1RCaWtUVlNrZWw2
cGZlMzlYdGczblg3cUF0QS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArlvoDANBgkqhkiG9w0BAQsFAAOC
AQEAJwQ/E+JAusIDI+IKH/AHzsyWOoTJjo3c9AWi4OzUVx+Hyu2IyGsn+cc6aQTU
RR743iRiamfDFqLoXDh0YHeMiRE7x4ZwXcoerjp3D9f/yDrfiAZtQslRRDT7p8oc
LU2B6+KpxBqpN7AStfmq6m0oTdP6Y1iJn+YATF3HFUi5h+4crL9KR12AgAxZPOCW
MeVuFg/NaEulrkO9BKFbC9bAep5zWa/DOAKiVQ5DTt1rJiAqRKg7w6ibMJ6XkhYz
tsZNVGyQgrnVXETOhgcvRCQodHtYJmb4rUjbj6RYyDOSn6dZC7XgHoEMcBxX8sIc
aaw8JutlI1hHHmOlBOcz5plNyQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:21 2023 by rpki-client on console-ams.rpki-client.org