Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/9-tQUz2cTffFRh18QghNsOMzJbo.roa
File: 9-tQUz2cTffFRh18QghNsOMzJbo.roa (raw, json)
Hash identifier: JNBhnyGGmzHJH8Qn03VTsEtOJf6d8RnKvJJTrjYAEfM=
Subject key identifier: F7:EB:50:53:3D:9C:4D:F7:C5:46:1D:7C:42:08:4D:B0:E3:33:25:BA
Certificate issuer: /CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Certificate serial: 09ED4B9A
Authority key identifier: 31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/9-tQUz2cTffFRh18QghNsOMzJbo.roa
Signing time: Tue 01 Feb 2022 15:43:26 +0000
ROA not before: Tue 01 Feb 2022 15:43:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34549
IP address blocks: 85.153.48.0/22 maxlen: 22
85.153.104.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166546330 (0x9ed4b9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Validity
Not Before: Feb 1 15:43:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f7eb50533d9c4df7c5461d7c42084db0e33325ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:16:16:78:e4:90:5b:1d:de:f3:59:a1:89:a9:
0e:d8:b3:2e:1f:34:b6:a2:bb:b8:7e:63:91:07:3d:
a5:9a:3e:1b:2b:d8:ba:1e:85:0a:64:8e:39:20:69:
94:83:59:34:35:bc:61:40:8e:d9:2e:04:36:68:7a:
9c:44:2e:e1:3f:b0:f1:b6:19:1b:e2:c3:6c:94:00:
df:b9:37:dc:2d:5c:ae:01:90:c0:06:1b:ce:d2:02:
9f:b4:95:9a:69:24:7e:ff:61:b9:19:c8:9e:fc:c7:
3e:76:bc:e1:b5:c8:d1:6f:92:ba:f1:ab:18:15:37:
bf:cd:49:13:b3:84:be:d3:8b:7a:87:05:f4:4c:53:
b7:3d:29:54:fc:31:54:8c:51:c7:ba:11:f6:87:ac:
10:0b:75:2c:80:f3:df:82:5d:47:68:81:61:e1:3b:
65:04:0b:84:6d:9e:d3:77:fe:a0:5b:71:d1:b6:7a:
43:32:92:4a:9c:97:63:1c:c1:73:3c:42:07:6c:86:
29:06:dc:e1:69:3e:b2:62:9e:e8:95:5c:73:d3:91:
1e:d5:7a:7a:c9:c0:db:3f:15:b0:05:e2:c8:6d:91:
6c:cc:97:46:37:d8:4a:70:b9:fa:bf:7e:ea:0f:c8:
c2:38:7a:a0:ed:c9:0f:1e:59:7a:f9:2d:57:9a:33:
cf:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:EB:50:53:3D:9C:4D:F7:C5:46:1D:7C:42:08:4D:B0:E3:33:25:BA
X509v3 Authority Key Identifier:
keyid:31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/9-tQUz2cTffFRh18QghNsOMzJbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/MaGF0OsMp4EcWGQl3g6WDhz-ths.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.153.48.0/22
85.153.104.0/22
Signature Algorithm: sha256WithRSAEncryption
67:85:d0:eb:5d:38:97:73:ae:75:d3:32:32:a0:d8:33:9f:a9:
a9:e0:74:b3:c5:20:47:cb:76:09:85:15:55:31:25:1c:a6:8d:
62:23:79:78:3e:97:99:2f:fa:30:8c:d8:e7:38:ee:21:dc:36:
fa:20:bc:3a:e0:fb:ab:ee:0b:30:fe:17:6a:e6:af:c9:db:e1:
af:b6:95:aa:10:cf:ab:98:bf:3a:7a:f9:b4:83:3c:20:13:d7:
ec:2a:c7:33:b7:d0:f8:ca:49:f5:64:1d:29:96:7d:63:f2:79:
84:34:e0:84:f1:27:80:5c:67:3f:18:06:75:ba:fb:be:eb:6c:
cd:d6:c5:ae:64:95:5d:2b:cb:13:67:44:b8:b9:ce:34:c5:74:
82:8b:b4:7d:bf:1a:50:b8:f4:2e:6b:ef:9e:0b:60:0b:45:c0:
d2:34:40:52:05:b4:c8:95:11:bb:20:b6:14:11:9d:c5:93:b6:
ad:bf:7f:5c:5e:d5:ef:d2:72:fc:7c:db:1d:30:5c:e2:01:17:
3b:8b:61:3d:2c:80:9f:59:34:d3:a9:b6:d0:db:e0:ee:be:58:
e4:f5:9d:24:ee:90:97:4d:c4:3b:21:92:72:43:46:46:4f:26:
ee:2e:e4:76:15:6e:af:6f:53:82:a0:74:a9:05:11:79:58:07:
17:37:f9:47
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIECe1LmjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
MWExODVkMGViMGNhNzgxMWM1ODY0MjVkZTBlOTYwZTFjZmViNjFiMB4XDTIyMDIw
MTE1NDMyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjdlYjUwNTMzZDlj
NGRmN2M1NDYxZDdjNDIwODRkYjBlMzMzMjViYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANMWFnjkkFsd3vNZoYmpDtizLh80tqK7uH5jkQc9pZo+GyvY
uh6FCmSOOSBplINZNDW8YUCO2S4ENmh6nEQu4T+w8bYZG+LDbJQA37k33C1crgGQ
wAYbztICn7SVmmkkfv9huRnInvzHPna84bXI0W+SuvGrGBU3v81JE7OEvtOLeocF
9ExTtz0pVPwxVIxRx7oR9oesEAt1LIDz34JdR2iBYeE7ZQQLhG2e03f+oFtx0bZ6
QzKSSpyXYxzBczxCB2yGKQbc4Wk+smKe6JVcc9ORHtV6esnA2z8VsAXiyG2RbMyX
RjfYSnC5+r9+6g/Iwjh6oO3JDx5ZevktV5ozz68CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBT361BTPZxN98VGHXxCCE2w4zMlujAfBgNVHSMEGDAWgBQxoYXQ6wyngRxY
ZCXeDpYOHP62GzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L01hR0YwT3NNcDRFY1dHUWwzZzZXRGh6LXRocy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODcvMDgxYzZlLTFkNjUtNGNjZC05NmY1LTFkY2M4NmMxMWU3NC8x
LzktdFFVejJjVGZmRlJoMThRZ2hOc09Nekpiby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODcv
MDgxYzZlLTFkNjUtNGNjZC05NmY1LTFkY2M4NmMxMWU3NC8xL01hR0YwT3NNcDRF
Y1dHUWwzZzZXRGh6LXRocy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAlWZMAMEAlWZaDANBgkqhkiG9w0B
AQsFAAOCAQEAZ4XQ6104l3OuddMyMqDYM5+pqeB0s8UgR8t2CYUVVTElHKaNYiN5
eD6XmS/6MIzY5zjuIdw2+iC8OuD7q+4LMP4Xauavydvhr7aVqhDPq5i/Onr5tIM8
IBPX7CrHM7fQ+MpJ9WQdKZZ9Y/J5hDTghPEngFxnPxgGdbr7vutszdbFrmSVXSvL
E2dEuLnONMV0gou0fb8aULj0LmvvngtgC0XA0jRAUgW0yJURuyC2FBGdxZO2rb9/
XF7V79Jy/HzbHTBc4gEXO4thPSyAn1k006m20Nvg7r5Y5PWdJO6Ql03EOyGSckNG
Rk8m7i7kdhVur29TgqB0qQUReVgHFzf5Rw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:34 2023 by rpki-client on console-ams.rpki-client.org