Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/dda412-4545-48a6-bde2-9a37c6069bc1/1/rfdE2qft4McckRdq1PDQgwFIcB4.roa
File: rfdE2qft4McckRdq1PDQgwFIcB4.roa (raw, json)
Hash identifier: 7Gq37mX8U/BMWCNI95qSb7JSc2NSDR4SwtrNsbCULGo=
Subject key identifier: AD:F7:44:DA:A7:ED:E0:C7:1C:91:17:6A:D4:F0:D0:83:01:48:70:1E
Certificate issuer: /CN=0325034258f275b7c87e5f4f70706c0cf588efc3
Certificate serial: 05BB5A41
Authority key identifier: 03:25:03:42:58:F2:75:B7:C8:7E:5F:4F:70:70:6C:0C:F5:88:EF:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AyUDQljydbfIfl9PcHBsDPWI78M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/dda412-4545-48a6-bde2-9a37c6069bc1/1/rfdE2qft4McckRdq1PDQgwFIcB4.roa
Signing time: Sat 01 Jan 2022 07:01:32 +0000
ROA not before: Sat 01 Jan 2022 07:01:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206706
IP address blocks: 185.126.32.0/24 maxlen: 24
2a10:18c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96164417 (0x5bb5a41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0325034258f275b7c87e5f4f70706c0cf588efc3
Validity
Not Before: Jan 1 07:01:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=adf744daa7ede0c71c91176ad4f0d0830148701e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:0d:d2:68:37:51:dc:cd:a8:90:20:98:dd:30:
dd:c2:00:0c:48:12:df:1f:76:c2:67:80:47:cb:4e:
0d:ad:30:73:ed:3f:ae:14:f9:21:8a:69:0f:c0:63:
a2:41:6e:08:9d:7e:74:a0:91:96:82:89:72:b2:f5:
08:73:24:d7:39:46:e8:a1:bb:17:2d:16:16:26:36:
a8:8c:0f:c6:3e:04:b8:24:6d:f3:a4:4f:63:13:4d:
6e:d4:43:b5:87:f6:cc:42:f9:7f:df:62:75:5f:b0:
a5:c0:37:87:d1:7e:6f:54:4f:7b:84:81:a2:54:3d:
cf:ba:fd:a5:34:59:2f:54:9a:e3:ad:52:22:a5:f1:
fa:71:ca:ec:8d:92:1b:46:9f:90:07:f4:b9:b9:3d:
3e:50:64:ac:00:91:ab:67:d6:e8:6d:8b:64:79:8a:
cd:0c:1d:4a:4e:5f:b7:c8:a4:e6:11:5a:64:c5:70:
bb:41:79:66:3f:24:af:7b:82:0e:d6:9d:47:d9:4c:
1e:ea:87:99:3e:45:d4:78:98:97:04:66:73:68:e6:
12:a9:94:14:ae:33:3d:5a:f7:17:26:a6:6b:cc:ec:
82:00:5b:fa:d1:eb:74:f7:50:92:7f:41:16:63:d1:
79:a2:c0:87:38:bd:20:56:db:4a:8c:1f:6d:ce:ab:
f8:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:F7:44:DA:A7:ED:E0:C7:1C:91:17:6A:D4:F0:D0:83:01:48:70:1E
X509v3 Authority Key Identifier:
keyid:03:25:03:42:58:F2:75:B7:C8:7E:5F:4F:70:70:6C:0C:F5:88:EF:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AyUDQljydbfIfl9PcHBsDPWI78M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/dda412-4545-48a6-bde2-9a37c6069bc1/1/rfdE2qft4McckRdq1PDQgwFIcB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/dda412-4545-48a6-bde2-9a37c6069bc1/1/AyUDQljydbfIfl9PcHBsDPWI78M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.32.0/24
IPv6:
2a10:18c0::/29
Signature Algorithm: sha256WithRSAEncryption
0e:5b:0c:21:f1:e3:c2:f0:ea:d0:bb:83:1d:45:00:0e:40:e1:
4b:92:de:0b:35:70:8f:9e:8e:4e:e7:fc:6a:75:d2:1d:3e:e8:
c8:ce:8d:12:4a:8d:c0:f7:d7:73:2b:40:e4:f4:af:d9:1d:07:
ee:8f:c8:c9:3f:62:47:2a:6a:f6:a0:4c:be:11:7b:38:db:43:
48:71:7c:50:15:f9:f1:9f:51:1a:ac:c5:c2:8d:fa:b0:eb:28:
30:a3:0e:a7:c4:cc:ab:94:5f:fa:89:8d:f9:bc:3e:c4:a9:41:
f3:c6:d8:45:9c:5a:e3:c3:8e:c6:1e:29:ea:99:6d:e8:91:4d:
2b:f4:7a:1c:7e:8f:db:2a:f4:78:e2:63:03:db:c0:82:eb:f9:
da:9f:b9:37:38:ec:32:1a:7d:00:79:49:6a:17:71:e3:33:ca:
33:db:5d:99:d2:25:6d:16:94:da:28:e0:c9:1f:f5:2f:81:54:
9a:d3:32:ec:e0:e9:63:af:a3:4f:61:58:07:0f:40:48:3e:08:
2b:74:a0:6b:23:87:3a:72:5e:a9:28:f5:51:3d:3a:e4:8a:5a:
be:e7:ef:45:b1:72:58:8d:c4:7c:6e:09:d4:7a:dd:67:a3:ae:
11:bc:5e:ae:19:c3:26:ef:74:cb:38:d5:20:15:b7:43:e0:8f:
7d:b3:dc:05
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEBbtaQTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
MzI1MDM0MjU4ZjI3NWI3Yzg3ZTVmNGY3MDcwNmMwY2Y1ODhlZmMzMB4XDTIyMDEw
MTA3MDEzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWRmNzQ0ZGFhN2Vk
ZTBjNzFjOTExNzZhZDRmMGQwODMwMTQ4NzAxZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANUN0mg3UdzNqJAgmN0w3cIADEgS3x92wmeAR8tODa0wc+0/
rhT5IYppD8BjokFuCJ1+dKCRloKJcrL1CHMk1zlG6KG7Fy0WFiY2qIwPxj4EuCRt
86RPYxNNbtRDtYf2zEL5f99idV+wpcA3h9F+b1RPe4SBolQ9z7r9pTRZL1Sa461S
IqXx+nHK7I2SG0afkAf0ubk9PlBkrACRq2fW6G2LZHmKzQwdSk5ft8ik5hFaZMVw
u0F5Zj8kr3uCDtadR9lMHuqHmT5F1HiYlwRmc2jmEqmUFK4zPVr3Fyama8zsggBb
+tHrdPdQkn9BFmPReaLAhzi9IFbbSowfbc6r+KkCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBSt90Tap+3gxxyRF2rU8NCDAUhwHjAfBgNVHSMEGDAWgBQDJQNCWPJ1t8h+
X09wcGwM9YjvwzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0F5VURRbGp5ZGJmSWZsOVBjSEJzRFBXSTc4TS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODIvZGRhNDEyLTQ1NDUtNDhhNi1iZGUyLTlhMzdjNjA2OWJjMS8x
L3JmZEUycWZ0NE1jY2tSZHExUERRZ3dGSWNCNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODIv
ZGRhNDEyLTQ1NDUtNDhhNi1iZGUyLTlhMzdjNjA2OWJjMS8xL0F5VURRbGp5ZGJm
SWZsOVBjSEJzRFBXSTc4TS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEALl+IDANBAIAAjAHAwUDKhAYwDAN
BgkqhkiG9w0BAQsFAAOCAQEADlsMIfHjwvDq0LuDHUUADkDhS5LeCzVwj56OTuf8
anXSHT7oyM6NEkqNwPfXcytA5PSv2R0H7o/IyT9iRypq9qBMvhF7ONtDSHF8UBX5
8Z9RGqzFwo36sOsoMKMOp8TMq5Rf+omN+bw+xKlB88bYRZxa48OOxh4p6plt6JFN
K/R6HH6P2yr0eOJjA9vAguv52p+5NzjsMhp9AHlJahdx4zPKM9tdmdIlbRaU2ijg
yR/1L4FUmtMy7ODpY6+jT2FYBw9ASD4IK3SgayOHOnJeqSj1UT065IpavufvRbFy
WI3EfG4J1HrdZ6OuEbxerhnDJu90yzjVIBW3Q+CPfbPcBQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:21 2023 by rpki-client on console-ams.rpki-client.org