Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/d00889-e5ca-4090-a6a4-2ac6ff75beb0/1/sVgNkhtyRpo7nIdsKiUcC2kc45w.roa
File: sVgNkhtyRpo7nIdsKiUcC2kc45w.roa (raw, json)
Hash identifier: DF9NWgydmdMNhHhk8V+9uDIJhOhnbDFKL07Hr6bl5iw=
Subject key identifier: B1:58:0D:92:1B:72:46:9A:3B:9C:87:6C:2A:25:1C:0B:69:1C:E3:9C
Certificate issuer: /CN=a76dd9dad75877f7d28d14e08dc55b1330bd13b7
Certificate serial: 097CC5F9
Authority key identifier: A7:6D:D9:DA:D7:58:77:F7:D2:8D:14:E0:8D:C5:5B:13:30:BD:13:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p23Z2tdYd_fSjRTgjcVbEzC9E7c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/d00889-e5ca-4090-a6a4-2ac6ff75beb0/1/sVgNkhtyRpo7nIdsKiUcC2kc45w.roa
Signing time: Tue 28 Jun 2022 15:40:02 +0000
ROA not before: Tue 28 Jun 2022 15:40:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42216
IP address blocks: 185.165.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159172089 (0x97cc5f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a76dd9dad75877f7d28d14e08dc55b1330bd13b7
Validity
Not Before: Jun 28 15:40:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1580d921b72469a3b9c876c2a251c0b691ce39c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:47:e7:5a:8a:74:63:0a:ba:28:71:35:0e:b7:
08:6b:3e:25:bc:d8:45:4f:0d:4f:e8:f7:f4:7b:72:
cd:5f:49:db:00:53:52:3d:76:0e:9a:67:15:79:f5:
22:99:50:51:df:09:38:71:69:a5:48:f5:4e:36:4a:
ca:35:8d:e2:42:4d:6c:a2:26:1e:4d:da:83:f6:57:
d3:f2:59:e0:a1:76:3d:bc:bc:02:3c:98:0e:62:5a:
02:3b:1f:83:19:3a:f5:0d:6f:d6:0f:2d:cc:d4:f4:
68:e8:cc:9c:09:c9:c3:1d:6f:a0:83:fd:1e:59:ff:
bc:91:5b:3a:59:33:4a:9a:c2:5c:7b:2d:2a:92:39:
bb:99:b6:a6:27:cc:78:9a:b0:b7:eb:72:66:f2:99:
43:6d:c8:d1:c2:37:1c:46:e2:4b:7a:cc:1c:d5:82:
ee:f9:97:ee:7b:7d:54:37:a8:23:22:70:37:1c:f2:
3f:50:61:a1:23:8f:70:31:f4:85:3f:9a:71:06:b2:
90:ac:59:0e:66:ab:ca:00:ce:0c:6f:2b:1e:6e:89:
d2:73:35:52:14:76:ca:1a:21:0e:ba:77:ec:a1:c0:
78:e9:12:92:18:ec:73:53:0d:f5:1a:82:50:a0:60:
96:87:0a:86:f3:03:e6:a9:9f:2e:fe:3e:4c:a4:62:
9a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:58:0D:92:1B:72:46:9A:3B:9C:87:6C:2A:25:1C:0B:69:1C:E3:9C
X509v3 Authority Key Identifier:
keyid:A7:6D:D9:DA:D7:58:77:F7:D2:8D:14:E0:8D:C5:5B:13:30:BD:13:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p23Z2tdYd_fSjRTgjcVbEzC9E7c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d00889-e5ca-4090-a6a4-2ac6ff75beb0/1/sVgNkhtyRpo7nIdsKiUcC2kc45w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d00889-e5ca-4090-a6a4-2ac6ff75beb0/1/p23Z2tdYd_fSjRTgjcVbEzC9E7c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.76.0/24
Signature Algorithm: sha256WithRSAEncryption
59:7d:1c:81:80:43:6b:d7:e3:5b:3d:4a:4a:d1:7d:0b:68:b0:
42:8c:16:a4:db:61:96:83:5f:a6:b9:61:fe:27:3b:08:4e:e5:
20:a3:01:2c:80:de:dd:b0:1f:1c:e5:2e:2f:21:e9:93:72:b2:
bd:f6:e3:74:fd:cc:36:8b:a0:41:17:ea:28:4e:db:8d:9b:79:
03:24:c2:14:53:0b:aa:6c:5a:72:5e:7b:20:be:e6:22:29:b7:
ae:9f:c5:c2:7f:0a:81:87:70:f3:6a:a6:88:55:02:e5:ce:94:
2d:6e:1b:03:10:54:e0:54:ad:5c:25:a8:d7:29:2f:a2:18:12:
71:0a:35:84:3f:c9:39:d4:60:e8:e2:2e:5b:27:c9:58:60:e0:
75:cc:8b:f0:8b:65:4c:3b:75:70:68:49:26:5e:5e:30:b5:50:
03:26:e9:a2:e1:87:37:76:36:f8:2e:56:8b:21:cf:8d:cf:54:
15:d9:6b:2c:be:d4:61:64:0a:da:10:7a:cc:d4:a7:bc:99:50:
88:22:b1:42:28:fa:d8:75:0b:47:55:bc:71:60:05:a2:5b:7d:
d2:f3:cc:9f:ce:72:e2:ca:62:a0:a1:9a:cb:27:55:ab:86:1c:
f3:fc:58:87:45:b4:4e:11:c0:11:bc:8e:ee:56:85:53:a9:27:
30:f5:59:b2
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECXzF+TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NzZkZDlkYWQ3NTg3N2Y3ZDI4ZDE0ZTA4ZGM1NWIxMzMwYmQxM2I3MB4XDTIyMDYy
ODE1NDAwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjE1ODBkOTIxYjcy
NDY5YTNiOWM4NzZjMmEyNTFjMGI2OTFjZTM5YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMVH51qKdGMKuihxNQ63CGs+JbzYRU8NT+j39HtyzV9J2wBT
Uj12DppnFXn1IplQUd8JOHFppUj1TjZKyjWN4kJNbKImHk3ag/ZX0/JZ4KF2Pby8
AjyYDmJaAjsfgxk69Q1v1g8tzNT0aOjMnAnJwx1voIP9Hln/vJFbOlkzSprCXHst
KpI5u5m2pifMeJqwt+tyZvKZQ23I0cI3HEbiS3rMHNWC7vmX7nt9VDeoIyJwNxzy
P1BhoSOPcDH0hT+acQaykKxZDmarygDODG8rHm6J0nM1UhR2yhohDrp37KHAeOkS
khjsc1MN9RqCUKBglocKhvMD5qmfLv4+TKRimqUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSxWA2SG3JGmjuch2wqJRwLaRzjnDAfBgNVHSMEGDAWgBSnbdna11h399KN
FOCNxVsTML0TtzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3AyM1oydGRZZF9mU2pSVGdqY1ZiRXpDOUU3Yy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODkvZDAwODg5LWU1Y2EtNDA5MC1hNmE0LTJhYzZmZjc1YmViMC8x
L3NWZ05raHR5UnBvN25JZHNLaVVjQzJrYzQ1dy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODkv
ZDAwODg5LWU1Y2EtNDA5MC1hNmE0LTJhYzZmZjc1YmViMC8xL3AyM1oydGRZZF9m
U2pSVGdqY1ZiRXpDOUU3Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALmlTDANBgkqhkiG9w0BAQsFAAOC
AQEAWX0cgYBDa9fjWz1KStF9C2iwQowWpNthloNfprlh/ic7CE7lIKMBLIDe3bAf
HOUuLyHpk3KyvfbjdP3MNougQRfqKE7bjZt5AyTCFFMLqmxacl57IL7mIim3rp/F
wn8KgYdw82qmiFUC5c6ULW4bAxBU4FStXCWo1ykvohgScQo1hD/JOdRg6OIuWyfJ
WGDgdcyL8ItlTDt1cGhJJl5eMLVQAybpouGHN3Y2+C5WiyHPjc9UFdlrLL7UYWQK
2hB6zNSnvJlQiCKxQij62HULR1W8cWAFolt90vPMn85y4spioKGayydVq4Yc8/xY
h0W0ThHAEbyO7laFU6knMPVZsg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:04 2024 by rpki-client on console-fra.rpki-client.org