Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/DxQ8697VPoFqam94115HGlyRj4Y.roa
File: DxQ8697VPoFqam94115HGlyRj4Y.roa (raw, json)
Hash identifier: 3lLi8WS3eQ0iMcCXmc1ct8W0IKsQFC1pqUzWWgXWbPM=
Subject key identifier: 0F:14:3C:EB:DE:D5:3E:81:6A:6A:6F:78:D7:5E:47:1A:5C:91:8F:86
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 07AC3338
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/DxQ8697VPoFqam94115HGlyRj4Y.roa
Signing time: Sat 01 Jan 2022 08:01:50 +0000
ROA not before: Sat 01 Jan 2022 08:01:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 133115
IP address blocks: 185.184.220.0/24 maxlen: 24
185.184.221.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128725816 (0x7ac3338)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jan 1 08:01:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f143cebded53e816a6a6f78d75e471a5c918f86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:4a:79:9c:dd:e3:18:1e:50:8b:a9:33:69:82:
a3:38:97:de:be:fc:08:82:66:f6:78:d7:e3:5f:7c:
0a:22:1d:96:ab:c6:7e:7b:75:dd:c5:87:68:0e:0e:
2b:ae:99:48:4f:95:c2:0c:d8:25:ed:c9:bc:09:a9:
1a:61:af:24:bb:e5:ff:ad:b4:9a:10:a7:5e:38:c1:
b1:ca:23:98:7e:a1:cf:4c:50:9e:c5:3e:42:2e:b1:
81:4f:76:fd:8d:9c:51:98:24:b0:54:54:40:57:ab:
26:11:66:c0:e7:83:0c:7e:c3:13:f7:22:a7:d6:91:
fc:fb:30:9f:fd:e1:be:94:30:68:53:29:82:0f:80:
56:df:5f:82:f1:dc:97:3a:7a:48:31:9f:9b:fc:c1:
5c:03:19:dd:d8:fb:12:f6:61:14:b9:4a:2e:db:3a:
30:36:04:07:a9:a1:2d:cd:78:cf:77:10:83:0a:52:
95:60:dc:3e:7c:bb:58:76:dd:e8:d6:5d:9a:b7:78:
fa:0e:c7:b1:85:4f:85:4a:2f:1e:bf:fa:51:86:44:
c7:88:7b:4a:0f:96:a8:40:44:65:e9:4a:95:ea:4f:
d1:d9:a9:66:e6:6c:48:49:29:b6:1a:92:5f:03:8e:
48:d6:36:13:7d:75:1f:46:04:64:24:42:17:4d:84:
3e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:14:3C:EB:DE:D5:3E:81:6A:6A:6F:78:D7:5E:47:1A:5C:91:8F:86
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/DxQ8697VPoFqam94115HGlyRj4Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.184.220.0/23
Signature Algorithm: sha256WithRSAEncryption
29:57:10:22:1d:6f:d9:e8:2b:5f:be:fc:a8:c4:26:d9:a4:e3:
76:a5:e6:1c:99:d8:43:df:a7:21:ea:a7:ea:b2:ec:31:b9:c3:
df:75:4e:65:f9:76:f6:64:0a:06:78:8a:f9:80:63:60:0f:c3:
c5:ae:da:a1:ca:cd:c3:06:27:37:31:ce:4d:2e:e9:69:50:30:
5e:a7:da:6d:a5:fb:c5:a5:a9:cd:ff:b2:fa:79:51:b8:69:31:
25:45:3c:38:de:73:f1:35:16:2a:26:a7:4d:6e:0a:eb:09:b6:
66:79:75:3c:c7:3a:ab:d6:79:4e:04:da:b8:af:67:28:aa:f8:
01:67:f0:e1:0a:13:50:27:e0:a1:10:9d:94:aa:48:3f:1a:87:
bc:c1:8d:f8:b5:77:b2:d5:2c:fe:c5:a5:4c:a0:f6:bb:3a:b4:
65:b2:9f:84:ec:bc:b0:26:4f:95:03:75:49:20:a1:a3:16:9f:
00:32:3a:4d:47:cf:46:f3:cf:55:57:dc:6f:e4:03:14:ff:45:
ba:a4:e0:75:6a:57:8a:d8:6d:f8:91:85:52:68:81:64:17:30:
63:73:b5:b3:6b:c2:10:76:d7:0e:44:25:7f:b5:3e:4b:38:dc:
f0:ac:82:f4:dd:e9:1d:d7:35:68:25:b2:05:0a:5a:ee:e3:e3:
30:9a:c4:da
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB6wzODANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NTc2ZWIyY2M0NjJlNmU0YmYwZGU2OWI5ZjYzNDg3NWRlYmJhYWUyMB4XDTIyMDEw
MTA4MDE1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGYxNDNjZWJkZWQ1
M2U4MTZhNmE2Zjc4ZDc1ZTQ3MWE1YzkxOGY4NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMJKeZzd4xgeUIupM2mCoziX3r78CIJm9njX4198CiIdlqvG
fnt13cWHaA4OK66ZSE+VwgzYJe3JvAmpGmGvJLvl/620mhCnXjjBscojmH6hz0xQ
nsU+Qi6xgU92/Y2cUZgksFRUQFerJhFmwOeDDH7DE/cip9aR/Pswn/3hvpQwaFMp
gg+AVt9fgvHclzp6SDGfm/zBXAMZ3dj7EvZhFLlKLts6MDYEB6mhLc14z3cQgwpS
lWDcPny7WHbd6NZdmrd4+g7HsYVPhUovHr/6UYZEx4h7Sg+WqEBEZelKlepP0dmp
ZuZsSEkpthqSXwOOSNY2E311H0YEZCRCF02EPiMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQPFDzr3tU+gWpqb3jXXkcaXJGPhjAfBgNVHSMEGDAWgBSldussxGLm5L8N
5pufY0h13ruq4jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3BYYnJMTVJpNXVTX0RlYWJuMk5JZGQ2N3F1SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODcvOTMxOTI3LTlmMzgtNDFiNi04N2ZhLTI1NGFjZDkyYjRlMS8x
L0R4UTg2OTdWUG9GcWFtOTQxMTVIR2x5Umo0WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODcv
OTMxOTI3LTlmMzgtNDFiNi04N2ZhLTI1NGFjZDkyYjRlMS8xL3BYYnJMTVJpNXVT
X0RlYWJuMk5JZGQ2N3F1SS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAbm43DANBgkqhkiG9w0BAQsFAAOC
AQEAKVcQIh1v2egrX778qMQm2aTjdqXmHJnYQ9+nIeqn6rLsMbnD33VOZfl29mQK
BniK+YBjYA/Dxa7aocrNwwYnNzHOTS7paVAwXqfabaX7xaWpzf+y+nlRuGkxJUU8
ON5z8TUWKianTW4K6wm2Znl1PMc6q9Z5TgTauK9nKKr4AWfw4QoTUCfgoRCdlKpI
PxqHvMGN+LV3stUs/sWlTKD2uzq0ZbKfhOy8sCZPlQN1SSChoxafADI6TUfPRvPP
VVfcb+QDFP9FuqTgdWpXitht+JGFUmiBZBcwY3O1s2vCEHbXDkQlf7U+Szjc8KyC
9N3pHdc1aCWyBQpa7uPjMJrE2g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:46 2024 by rpki-client on console-ams.rpki-client.org