Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/b00316-4893-4152-97e6-d8e2a357cd4b/1/3x3TfeTO_ZJ4tAz6evvFGEMuDkk.roa
File: 3x3TfeTO_ZJ4tAz6evvFGEMuDkk.roa (raw, json)
Hash identifier: IRB9TwcSw0zt54P1dxKF9s2SKu4/6mnupJ7pwciQANQ=
Subject key identifier: DF:1D:D3:7D:E4:CE:FD:92:78:B4:0C:FA:7A:FB:C5:18:43:2E:0E:49
Certificate issuer: /CN=29b899d7dfa63fc8862ec239201eb1f6c08f07f4
Certificate serial: 0181ED579ADEB7F70B20F0B349FDF47B0DAD
Authority key identifier: 29:B8:99:D7:DF:A6:3F:C8:86:2E:C2:39:20:1E:B1:F6:C0:8F:07:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KbiZ19-mP8iGLsI5IB6x9sCPB_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/b00316-4893-4152-97e6-d8e2a357cd4b/1/3x3TfeTO_ZJ4tAz6evvFGEMuDkk.roa
Signing time: Mon 11 Jul 2022 12:59:10 +0000
ROA not before: Mon 11 Jul 2022 12:59:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206004
IP address blocks: 185.194.200.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ed:57:9a:de:b7:f7:0b:20:f0:b3:49:fd:f4:7b:0d:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29b899d7dfa63fc8862ec239201eb1f6c08f07f4
Validity
Not Before: Jul 11 12:59:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df1dd37de4cefd9278b40cfa7afbc518432e0e49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:07:e7:5c:a1:d1:14:45:a9:7b:41:90:11:c8:
1c:42:d2:40:5f:d8:35:6f:30:93:72:18:4f:47:d0:
04:8a:67:c2:64:99:8e:7f:6a:1f:22:b1:aa:b4:3d:
81:01:1a:ea:ca:46:43:e4:42:6c:af:76:c9:ad:4d:
08:44:dd:2e:fd:8a:77:c4:f3:af:8c:39:8d:f1:8c:
b9:78:40:af:e0:60:6c:a1:12:67:3d:44:93:6f:ec:
a3:8e:53:ad:7e:7a:1d:ce:3c:82:d5:17:be:cc:97:
f6:0d:ff:b0:b3:a6:9a:49:8c:d1:30:1d:79:75:fa:
a8:76:42:5d:87:af:a2:09:c3:ff:c7:14:d4:23:c8:
14:f5:1b:6e:8a:1f:73:0d:44:d8:55:71:42:4a:70:
49:f1:6d:1d:81:1a:37:f5:26:82:08:5a:5f:7a:94:
dc:4a:c6:32:94:5a:c7:a2:18:27:1b:a6:a3:5a:dc:
1c:60:81:d4:8c:21:c7:de:61:bd:c1:14:1e:69:68:
a2:de:f9:79:a3:af:0e:d7:24:c6:4c:d2:56:2c:a5:
69:c4:96:4c:e3:b8:83:b9:46:0d:1f:31:f9:00:82:
06:93:8f:43:eb:03:2d:4a:4a:55:a8:9a:d4:b8:bf:
88:cf:0e:7c:28:f3:4b:44:39:ad:c0:61:08:c0:bd:
5f:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:1D:D3:7D:E4:CE:FD:92:78:B4:0C:FA:7A:FB:C5:18:43:2E:0E:49
X509v3 Authority Key Identifier:
keyid:29:B8:99:D7:DF:A6:3F:C8:86:2E:C2:39:20:1E:B1:F6:C0:8F:07:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KbiZ19-mP8iGLsI5IB6x9sCPB_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b00316-4893-4152-97e6-d8e2a357cd4b/1/3x3TfeTO_ZJ4tAz6evvFGEMuDkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b00316-4893-4152-97e6-d8e2a357cd4b/1/KbiZ19-mP8iGLsI5IB6x9sCPB_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.200.0/23
Signature Algorithm: sha256WithRSAEncryption
51:b5:c8:37:f5:e2:0f:81:07:00:1e:bb:ec:79:24:27:9f:a5:
81:bc:9c:d6:a2:1c:cb:23:e3:04:ab:d3:72:9d:0d:18:d9:2c:
be:b7:96:a7:3b:ef:42:8c:86:a3:8b:dc:57:b9:2e:1f:2d:53:
d4:58:36:30:8c:84:a4:c7:8e:5c:f3:6d:53:f3:87:1c:ad:e5:
47:3a:c5:5c:80:f6:4b:09:27:db:aa:33:e7:1e:29:ea:86:2f:
0a:bf:db:8e:56:a7:4c:a2:2c:ef:90:7e:66:17:28:df:f8:76:
ed:a6:51:29:c5:89:56:95:65:a7:11:3e:ce:de:91:65:07:1e:
d9:33:72:37:02:5e:fc:db:ca:52:0a:75:74:09:28:3b:8d:2e:
4c:97:98:15:26:8b:f4:39:bb:43:28:7c:48:77:fc:dc:92:a2:
9a:5d:da:31:ce:72:f7:32:4f:32:3b:e5:a4:8e:25:65:1e:3a:
34:74:f5:c1:48:1d:28:22:dc:c1:2a:e4:b7:6d:a3:ac:98:a1:
50:db:c1:3a:01:2d:71:af:3f:43:08:1a:8f:27:a9:b1:66:02:
88:84:82:b8:44:7e:22:51:1c:fa:bd:e6:d9:7e:4c:6f:ee:97:
ea:95:4e:06:10:9f:a6:49:e6:f0:e5:54:ba:2c:e3:e6:7d:78:
35:7a:7d:af
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYHtV5ret/cLIPCzSf30ew2tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5Yjg5OWQ3ZGZhNjNmYzg4NjJlYzIzOTIwMWViMWY2YzA4
ZjA3ZjQwHhcNMjIwNzExMTI1OTEwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZjFkZDM3ZGU0Y2VmZDkyNzhiNDBjZmE3YWZiYzUxODQzMmUwZTQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0QfnXKHRFEWpe0GQEcgcQtJAX9g1
bzCTchhPR9AEimfCZJmOf2ofIrGqtD2BARrqykZD5EJsr3bJrU0IRN0u/Yp3xPOv
jDmN8Yy5eECv4GBsoRJnPUSTb+yjjlOtfnodzjyC1Re+zJf2Df+ws6aaSYzRMB15
dfqodkJdh6+iCcP/xxTUI8gU9Rtuih9zDUTYVXFCSnBJ8W0dgRo39SaCCFpfepTc
SsYylFrHohgnG6ajWtwcYIHUjCHH3mG9wRQeaWii3vl5o68O1yTGTNJWLKVpxJZM
47iDuUYNHzH5AIIGk49D6wMtSkpVqJrUuL+Izw58KPNLRDmtwGEIwL1fnwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN8d033kzv2SeLQM+nr7xRhDLg5JMB8GA1UdIwQY
MBaAFCm4mdffpj/Ihi7COSAesfbAjwf0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2JpWjE5LW1QOGlHTHNJNUlCNng5c0NQQl9RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9iMDAzMTYtNDg5My00MTUyLTk3ZTYt
ZDhlMmEzNTdjZDRiLzEvM3gzVGZlVE9fWko0dEF6NmV2dkZHRU11RGtrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS9iMDAzMTYtNDg5My00MTUyLTk3ZTYtZDhlMmEzNTdjZDRi
LzEvS2JpWjE5LW1QOGlHTHNJNUlCNng5c0NQQl9RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBucLIMA0G
CSqGSIb3DQEBCwUAA4IBAQBRtcg39eIPgQcAHrvseSQnn6WBvJzWohzLI+MEq9Ny
nQ0Y2Sy+t5anO+9CjIaji9xXuS4fLVPUWDYwjISkx45c821T84ccreVHOsVcgPZL
CSfbqjPnHinqhi8Kv9uOVqdMoizvkH5mFyjf+HbtplEpxYlWlWWnET7O3pFlBx7Z
M3I3Al7828pSCnV0CSg7jS5Ml5gVJov0ObtDKHxId/zckqKaXdoxznL3Mk8yO+Wk
jiVlHjo0dPXBSB0oItzBKuS3baOsmKFQ28E6AS1xrz9DCBqPJ6mxZgKIhIK4RH4i
URz6vebZfkxv7pfqlU4GEJ+mSebw5VS6LOPmfXg1en2v
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:03 2024 by rpki-client on console-fra.rpki-client.org