Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/tDjP2pz4GDBIhWEbotwEEJlm5LI.roa
File: tDjP2pz4GDBIhWEbotwEEJlm5LI.roa (raw, json)
Hash identifier: YTmyBTcQy+Sf1jGw4wBbSgIHa+mSDF1SKuIe+0G6s+Y=
Subject key identifier: B4:38:CF:DA:9C:F8:18:30:48:85:61:1B:A2:DC:04:10:99:66:E4:B2
Certificate issuer: /CN=388cccd78bf16533f33185443ea82dcdad920410
Certificate serial: 021B3D
Authority key identifier: 38:8C:CC:D7:8B:F1:65:33:F3:31:85:44:3E:A8:2D:CD:AD:92:04:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/tDjP2pz4GDBIhWEbotwEEJlm5LI.roa
Signing time: Thu 23 Jun 2022 10:11:24 +0000
ROA not before: Thu 23 Jun 2022 10:11:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51681
IP address blocks: 185.105.16.0/24 maxlen: 24
185.105.17.0/24 maxlen: 24
185.105.19.0/24 maxlen: 24
178.239.208.0/20 maxlen: 20
185.105.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138045 (0x21b3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=388cccd78bf16533f33185443ea82dcdad920410
Validity
Not Before: Jun 23 10:11:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b438cfda9cf818304885611ba2dc04109966e4b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:7f:a4:4c:bd:70:d1:96:d8:c3:71:88:7f:93:
24:76:b9:54:8a:86:5b:42:6f:50:f3:78:c8:8b:df:
f8:81:e9:bb:78:a5:2e:84:29:8b:d5:87:0f:21:cc:
85:77:2e:cb:34:dd:6b:28:c7:ed:f5:54:41:3b:f7:
2f:7f:76:3b:2b:9f:f7:26:44:93:30:30:96:8a:db:
fe:4d:66:91:4e:1e:fe:70:cc:c7:14:29:31:82:e0:
5f:fe:c2:6a:79:7b:0e:7a:52:67:84:8c:64:6b:02:
4a:24:5b:a0:34:52:12:a8:af:1a:4a:2a:10:07:67:
64:76:6a:84:e0:5f:64:b7:71:5a:da:02:88:6d:77:
26:71:a6:a1:7e:a3:54:8c:ff:68:cd:f1:04:91:17:
cb:2a:3f:03:64:34:5d:15:25:34:e0:51:70:19:a3:
8e:39:be:8a:ea:c2:df:2c:39:d5:aa:e7:a4:f5:de:
36:dc:63:cf:db:2e:aa:6c:d2:ef:e8:5c:d5:37:45:
32:8d:f4:d9:3b:f9:80:10:cc:f0:dc:32:b5:e6:c7:
23:f0:e9:1f:32:29:fb:11:b1:66:09:e6:0b:f8:c9:
10:36:5b:40:a4:f8:ba:d0:5b:51:82:65:2c:73:b2:
0f:4f:00:0a:31:c2:e8:95:ca:88:00:7d:79:79:c2:
6a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:38:CF:DA:9C:F8:18:30:48:85:61:1B:A2:DC:04:10:99:66:E4:B2
X509v3 Authority Key Identifier:
keyid:38:8C:CC:D7:8B:F1:65:33:F3:31:85:44:3E:A8:2D:CD:AD:92:04:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/tDjP2pz4GDBIhWEbotwEEJlm5LI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.239.208.0/20
185.105.16.0/22
Signature Algorithm: sha256WithRSAEncryption
73:e9:9e:ed:ba:09:4d:3e:bc:29:62:be:1b:38:bb:cc:ec:17:
d8:e8:d4:f5:58:72:a4:52:04:c7:da:3b:e6:c4:d9:e7:a4:8c:
e1:dd:26:10:cf:f0:15:6f:90:fd:c3:43:43:a5:1f:7f:c9:67:
5e:27:f0:99:cd:38:aa:0e:3c:8e:c6:6e:86:ce:ae:b5:d5:69:
04:b8:0c:77:ff:eb:cf:75:38:e4:5a:d7:eb:e7:f5:42:12:5c:
dc:b7:a5:a6:86:64:17:82:26:70:5d:b0:fe:13:89:d3:4e:4a:
18:58:11:38:ee:72:3b:f1:50:7c:c9:e4:27:c4:8c:f8:38:23:
b6:ab:17:1e:15:ff:38:bd:0b:db:4a:0c:4c:be:ac:37:4b:e5:
8c:3f:89:18:a3:7a:f9:4e:fb:73:62:65:f1:7e:81:c5:00:3f:
19:fa:13:2e:67:c7:a2:88:ca:39:c5:56:f0:2e:ff:6a:e8:b0:
6f:fe:5e:f7:da:bc:46:6d:e0:92:b4:10:dd:6a:46:65:21:d4:
e1:5e:06:a6:dd:03:2f:60:24:85:f8:26:a9:66:79:59:60:fa:
8e:df:60:92:3e:4d:13:71:c8:72:31:1c:c8:67:39:83:59:1e:
ca:cd:58:58:3e:bf:45:14:74:e9:ef:1a:78:46:7c:a2:b8:5c:
22:c7:c9:7f
-----BEGIN CERTIFICATE-----
MIIE9DCCA9ygAwIBAgIDAhs9MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDM4
OGNjY2Q3OGJmMTY1MzNmMzMxODU0NDNlYTgyZGNkYWQ5MjA0MTAwHhcNMjIwNjIz
MTAxMTI0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhiNDM4Y2ZkYTljZjgx
ODMwNDg4NTYxMWJhMmRjMDQxMDk5NjZlNGIyMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA43+kTL1w0ZbYw3GIf5MkdrlUioZbQm9Q83jIi9/4gem7eKUu
hCmL1YcPIcyFdy7LNN1rKMft9VRBO/cvf3Y7K5/3JkSTMDCWitv+TWaRTh7+cMzH
FCkxguBf/sJqeXsOelJnhIxkawJKJFugNFISqK8aSioQB2dkdmqE4F9kt3Fa2gKI
bXcmcaahfqNUjP9ozfEEkRfLKj8DZDRdFSU04FFwGaOOOb6K6sLfLDnVquek9d42
3GPP2y6qbNLv6FzVN0UyjfTZO/mAEMzw3DK15scj8OkfMin7EbFmCeYL+MkQNltA
pPi60FtRgmUsc7IPTwAKMcLolcqIAH15ecJquwIDAQABo4ICDzCCAgswHQYDVR0O
BBYEFLQ4z9qc+BgwSIVhG6LcBBCZZuSyMB8GA1UdIwQYMBaAFDiMzNeL8WUz8zGF
RD6oLc2tkgQQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
T0l6TTE0dnhaVFB6TVlWRVBxZ3R6YTJTQkJBLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC84NS82OGIxZDMtYzkzOC00MjNlLTkwZGQtMjEwOThhNjEzNTdlLzEv
dERqUDJwejRHREJJaFdFYm90d0VFSmxtNUxJLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS82
OGIxZDMtYzkzOC00MjNlLTkwZGQtMjEwOThhNjEzNTdlLzEvT0l6TTE0dnhaVFB6
TVlWRVBxZ3R6YTJTQkJBLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUG
CCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQEsu/QAwQCuWkQMA0GCSqGSIb3DQEB
CwUAA4IBAQBz6Z7tuglNPrwpYr4bOLvM7BfY6NT1WHKkUgTH2jvmxNnnpIzh3SYQ
z/AVb5D9w0NDpR9/yWdeJ/CZzTiqDjyOxm6Gzq611WkEuAx3/+vPdTjkWtfr5/VC
Elzct6WmhmQXgiZwXbD+E4nTTkoYWBE47nI78VB8yeQnxIz4OCO2qxceFf84vQvb
SgxMvqw3S+WMP4kYo3r5TvtzYmXxfoHFAD8Z+hMuZ8eiiMo5xVbwLv9q6LBv/l73
2rxGbeCStBDdakZlIdThXgam3QMvYCSF+CapZnlZYPqO32CSPk0TcchyMRzIZzmD
WR7KzVhYPr9FFHTp7xp4RnyiuFwix8l/
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:22 2024 by rpki-client on console-ams.rpki-client.org