Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/c6e217-03ff-4396-adfe-255f0c51bbe0/1/Q7rNUR7NBsEocqWuKQBtYpg7mHo.roa
File: Q7rNUR7NBsEocqWuKQBtYpg7mHo.roa (raw, json)
Hash identifier: Ts5KNRN0KRjgjEb4cn9krEp0DksSllo4IX3TzfhejSI=
Subject key identifier: 43:BA:CD:51:1E:CD:06:C1:28:72:A5:AE:29:00:6D:62:98:3B:98:7A
Certificate issuer: /CN=043692f2a1d1bc76ff7f9d29091beda08b7bc96c
Certificate serial: 0CD3DF56
Authority key identifier: 04:36:92:F2:A1:D1:BC:76:FF:7F:9D:29:09:1B:ED:A0:8B:7B:C9:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BDaS8qHRvHb_f50pCRvtoIt7yWw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/c6e217-03ff-4396-adfe-255f0c51bbe0/1/Q7rNUR7NBsEocqWuKQBtYpg7mHo.roa
Signing time: Sat 01 Jan 2022 07:04:15 +0000
ROA not before: Sat 01 Jan 2022 07:04:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204969
IP address blocks: 185.234.104.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 215211862 (0xcd3df56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=043692f2a1d1bc76ff7f9d29091beda08b7bc96c
Validity
Not Before: Jan 1 07:04:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=43bacd511ecd06c12872a5ae29006d62983b987a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:4c:60:e5:2a:e4:78:23:9a:83:f7:29:3a:58:
ec:54:13:82:32:dd:c2:ad:b5:06:7c:f4:36:a0:9d:
34:25:70:67:22:34:5d:38:78:64:ec:95:9f:16:05:
19:1f:4b:f4:3c:4a:94:9a:3a:ef:9d:e9:33:4e:de:
73:92:34:f3:e5:bf:1d:d4:60:2c:42:06:21:ef:ef:
fd:25:eb:09:45:55:8d:e3:f5:0c:42:de:86:c8:f2:
21:7e:98:7a:29:54:75:de:7f:ac:3d:a9:41:7e:23:
a2:4a:1f:ad:8b:43:51:a0:df:82:49:62:0d:5f:e5:
ee:9d:fa:93:6d:57:ec:ed:3c:c2:c8:c7:80:5e:31:
72:25:d1:cf:1d:6e:02:81:5c:c0:79:49:8d:5d:eb:
e5:29:81:c8:53:f7:8c:fd:a3:8c:6a:a2:44:7f:3c:
b6:44:96:7a:ec:34:6c:16:df:8a:cc:aa:28:9e:72:
e7:98:9c:d4:bf:ad:58:8b:00:3e:b1:d5:5a:8e:d4:
c5:0d:74:35:31:aa:b6:17:25:c0:64:f5:e1:39:ee:
3f:53:94:f1:80:d1:df:f8:c0:6a:c4:c5:2a:6d:81:
96:ab:33:3c:f4:03:87:c9:35:de:3d:a7:24:51:2f:
af:9b:9b:1e:fb:17:d9:44:f3:de:d8:8d:fc:b1:cc:
bd:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:BA:CD:51:1E:CD:06:C1:28:72:A5:AE:29:00:6D:62:98:3B:98:7A
X509v3 Authority Key Identifier:
keyid:04:36:92:F2:A1:D1:BC:76:FF:7F:9D:29:09:1B:ED:A0:8B:7B:C9:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BDaS8qHRvHb_f50pCRvtoIt7yWw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/c6e217-03ff-4396-adfe-255f0c51bbe0/1/Q7rNUR7NBsEocqWuKQBtYpg7mHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/c6e217-03ff-4396-adfe-255f0c51bbe0/1/BDaS8qHRvHb_f50pCRvtoIt7yWw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.104.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:ae:0c:70:c4:4b:d3:e7:4c:11:79:d9:e7:a9:b5:b0:64:71:
54:37:3a:2c:a2:78:2e:a1:73:19:49:56:95:1e:c3:53:97:66:
f1:55:da:f7:b3:10:3e:26:14:10:ec:39:3f:2e:d6:42:d1:5b:
0b:b4:da:8b:d6:3f:4b:09:67:07:2e:3e:0b:b1:aa:15:0c:1b:
23:73:97:ee:53:e1:09:55:6f:eb:17:24:57:c2:7f:60:95:9d:
8b:47:32:04:72:c5:ba:56:74:b1:83:7c:ad:df:0f:e2:7e:48:
19:38:da:50:3c:cc:ef:92:1b:46:3d:d1:63:a2:1a:fc:4c:69:
e8:cf:35:f6:c5:3c:1a:3e:86:16:64:5e:a3:95:fb:19:b3:ec:
6e:d5:26:de:da:04:6d:c4:d6:79:e5:bb:cf:06:dd:ad:6b:c9:
63:31:3c:40:89:68:e1:c5:ce:50:3b:ed:9b:c7:95:fb:ed:9c:
dd:ed:3b:9f:2f:9c:ae:88:02:ec:cb:55:39:fd:e7:a1:f4:ab:
6f:a8:21:00:c3:25:be:9a:90:50:bb:c9:40:a4:bc:6f:ca:e5:
bb:79:13:14:9f:c9:69:df:94:51:63:58:00:45:fa:9e:99:30:
a5:93:01:b1:d3:89:99:4f:83:48:5e:15:df:3d:99:2e:f1:51:
c4:8a:1a:2e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDNPfVjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NDM2OTJmMmExZDFiYzc2ZmY3ZjlkMjkwOTFiZWRhMDhiN2JjOTZjMB4XDTIyMDEw
MTA3MDQxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDNiYWNkNTExZWNk
MDZjMTI4NzJhNWFlMjkwMDZkNjI5ODNiOTg3YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI9MYOUq5HgjmoP3KTpY7FQTgjLdwq21Bnz0NqCdNCVwZyI0
XTh4ZOyVnxYFGR9L9DxKlJo6753pM07ec5I08+W/HdRgLEIGIe/v/SXrCUVVjeP1
DELehsjyIX6YeilUdd5/rD2pQX4jokofrYtDUaDfgkliDV/l7p36k21X7O08wsjH
gF4xciXRzx1uAoFcwHlJjV3r5SmByFP3jP2jjGqiRH88tkSWeuw0bBbfisyqKJ5y
55ic1L+tWIsAPrHVWo7UxQ10NTGqthclwGT14TnuP1OU8YDR3/jAasTFKm2Blqsz
PPQDh8k13j2nJFEvr5ubHvsX2UTz3tiN/LHMvYkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRDus1RHs0GwShypa4pAG1imDuYejAfBgNVHSMEGDAWgBQENpLyodG8dv9/
nSkJG+2gi3vJbDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JEYVM4cUhSdkhiX2Y1MHBDUnZ0b0l0N3lXdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODIvYzZlMjE3LTAzZmYtNDM5Ni1hZGZlLTI1NWYwYzUxYmJlMC8x
L1E3ck5VUjdOQnNFb2NxV3VLUUJ0WXBnN21Iby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODIv
YzZlMjE3LTAzZmYtNDM5Ni1hZGZlLTI1NWYwYzUxYmJlMC8xL0JEYVM4cUhSdkhi
X2Y1MHBDUnZ0b0l0N3lXdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArnqaDANBgkqhkiG9w0BAQsFAAOC
AQEAS64McMRL0+dMEXnZ56m1sGRxVDc6LKJ4LqFzGUlWlR7DU5dm8VXa97MQPiYU
EOw5Py7WQtFbC7Tai9Y/SwlnBy4+C7GqFQwbI3OX7lPhCVVv6xckV8J/YJWdi0cy
BHLFulZ0sYN8rd8P4n5IGTjaUDzM75IbRj3RY6Ia/Exp6M819sU8Gj6GFmReo5X7
GbPsbtUm3toEbcTWeeW7zwbdrWvJYzE8QIlo4cXOUDvtm8eV++2c3e07ny+crogC
7MtVOf3nofSrb6ghAMMlvpqQULvJQKS8b8rlu3kTFJ/Jad+UUWNYAEX6npkwpZMB
sdOJmU+DSF4V3z2ZLvFRxIoaLg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:12 2024 by rpki-client on console-fra.rpki-client.org