Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/zIBxnghymwA4vupCZPxK0Lg_kgU.roa
File: zIBxnghymwA4vupCZPxK0Lg_kgU.roa (raw, json)
Hash identifier: 3q1cM8gY2+u2CVT2+nO2emS4kWRMzE7wroSV7e6qeLE=
Subject key identifier: CC:80:71:9E:08:72:9B:00:38:BE:EA:42:64:FC:4A:D0:B8:3F:92:05
Certificate issuer: /CN=d1fd3436d7a19a7343fa800d87a01af183da318b
Certificate serial: 01825D87E4C68BB74ED3C391E8FCEC89A52F
Authority key identifier: D1:FD:34:36:D7:A1:9A:73:43:FA:80:0D:87:A0:1A:F1:83:DA:31:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0f00NtehmnND-oANh6Aa8YPaMYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/zIBxnghymwA4vupCZPxK0Lg_kgU.roa
Signing time: Tue 02 Aug 2022 07:49:23 +0000
ROA not before: Tue 02 Aug 2022 07:49:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199412
IP address blocks: 185.13.208.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:5d:87:e4:c6:8b:b7:4e:d3:c3:91:e8:fc:ec:89:a5:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1fd3436d7a19a7343fa800d87a01af183da318b
Validity
Not Before: Aug 2 07:49:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc80719e08729b0038beea4264fc4ad0b83f9205
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:dc:03:c6:cc:9d:6b:f6:85:3f:aa:3b:b2:c9:
26:86:05:78:ef:44:74:2e:66:2b:e1:dd:2f:2e:75:
54:4f:48:69:7f:c2:e2:23:58:ca:d3:dd:4d:24:61:
50:5d:82:b2:ba:5b:12:d2:9f:76:ea:bc:d8:75:5d:
89:b7:01:a1:f0:cf:b2:be:07:f2:6f:51:e9:14:f7:
58:7b:17:99:5a:e3:42:f4:46:41:2c:19:84:71:08:
34:31:36:cd:c5:f2:76:27:49:de:d5:1f:b0:9a:3c:
43:9b:8f:2e:b1:9e:79:49:b8:66:21:e5:36:aa:79:
fd:c4:14:5c:61:12:90:0f:d6:f1:3c:bb:89:81:51:
d5:57:41:ad:4d:21:6a:db:a0:cd:d7:1e:5b:95:5c:
82:0b:da:81:c8:9a:99:90:7f:1f:62:f7:85:07:c2:
95:80:41:8b:f8:38:5f:81:c4:3e:31:4d:ba:57:c5:
ab:fa:f1:89:e0:39:89:34:a8:6f:ee:19:e6:a0:dd:
6e:36:9d:ae:6a:2b:f5:6d:20:f3:54:bb:96:3a:cb:
94:c9:1d:0d:ed:b4:18:e1:50:11:75:ae:4e:eb:d0:
13:cd:6c:97:29:dd:ea:de:17:f5:ea:c8:21:f9:be:
22:20:18:87:e9:b0:e1:3f:99:2b:6c:05:8b:3d:26:
64:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:80:71:9E:08:72:9B:00:38:BE:EA:42:64:FC:4A:D0:B8:3F:92:05
X509v3 Authority Key Identifier:
keyid:D1:FD:34:36:D7:A1:9A:73:43:FA:80:0D:87:A0:1A:F1:83:DA:31:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f00NtehmnND-oANh6Aa8YPaMYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/zIBxnghymwA4vupCZPxK0Lg_kgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.13.208.0/22
Signature Algorithm: sha256WithRSAEncryption
13:c3:25:b4:97:83:8d:7d:0f:2a:f4:5c:f0:c7:54:4f:3e:e0:
84:55:bb:24:21:20:56:eb:88:2d:4e:f7:4b:f3:b6:b0:bd:6d:
8a:0c:d7:fb:8c:d0:92:a3:af:66:fd:c5:72:d8:b6:d4:64:8b:
f4:65:38:8e:13:55:84:5d:65:6a:5f:ae:95:e6:22:4e:5d:e4:
7e:df:57:60:54:c9:77:4c:d4:a6:15:c6:18:55:ca:b3:ac:20:
30:72:51:93:9d:34:89:7b:04:78:f5:fc:f5:c4:da:49:89:b8:
e9:58:29:ac:f7:37:84:19:01:6b:6d:31:db:51:67:d9:73:dd:
e8:76:1a:63:a1:a8:20:d3:ed:e4:91:a4:81:d3:73:be:5f:de:
c6:9e:b0:6c:39:45:6a:17:56:d9:ce:7c:03:8c:1e:6f:52:65:
50:1f:eb:9e:55:d1:44:2c:84:cb:ef:0f:2c:25:1b:d5:85:89:
85:a1:a4:cb:0c:2f:b2:18:ee:02:12:c1:56:a4:5e:79:bd:7d:
08:79:f9:36:60:a2:bd:5f:ad:23:9a:81:d7:f3:59:fb:7e:6e:
5c:42:ff:e8:12:d1:1e:cd:d8:45:2f:9d:f3:cf:8f:2c:05:1e:
b5:ae:5c:b9:b6:ad:af:41:fb:3c:76:24:ee:d3:b7:dc:54:cf:
e6:7c:87:6c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYJdh+TGi7dO08OR6PzsiaUvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxZmQzNDM2ZDdhMTlhNzM0M2ZhODAwZDg3YTAxYWYxODNk
YTMxOGIwHhcNMjIwODAyMDc0OTIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYzgwNzE5ZTA4NzI5YjAwMzhiZWVhNDI2NGZjNGFkMGI4M2Y5MjA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuNwDxsyda/aFP6o7sskmhgV470R0
LmYr4d0vLnVUT0hpf8LiI1jK091NJGFQXYKyulsS0p926rzYdV2JtwGh8M+yvgfy
b1HpFPdYexeZWuNC9EZBLBmEcQg0MTbNxfJ2J0ne1R+wmjxDm48usZ55SbhmIeU2
qnn9xBRcYRKQD9bxPLuJgVHVV0GtTSFq26DN1x5blVyCC9qByJqZkH8fYveFB8KV
gEGL+DhfgcQ+MU26V8Wr+vGJ4DmJNKhv7hnmoN1uNp2uaiv1bSDzVLuWOsuUyR0N
7bQY4VARda5O69ATzWyXKd3q3hf16sgh+b4iIBiH6bDhP5krbAWLPSZkYQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMyAcZ4IcpsAOL7qQmT8StC4P5IFMB8GA1UdIwQY
MBaAFNH9NDbXoZpzQ/qADYegGvGD2jGLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGYwME50ZWhtbk5ELW9BTmg2QWE4WVBhTVlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy9iY2Q1ZTgtNWQxZi00NmIxLTk2YmMt
MzlhNjZjYmUxZTRkLzEveklCeG5naHltd0E0dnVwQ1pQeEswTGdfa2dVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yy9iY2Q1ZTgtNWQxZi00NmIxLTk2YmMtMzlhNjZjYmUxZTRk
LzEvMGYwME50ZWhtbk5ELW9BTmg2QWE4WVBhTVlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuQ3QMA0G
CSqGSIb3DQEBCwUAA4IBAQATwyW0l4ONfQ8q9Fzwx1RPPuCEVbskISBW64gtTvdL
87awvW2KDNf7jNCSo69m/cVy2LbUZIv0ZTiOE1WEXWVqX66V5iJOXeR+31dgVMl3
TNSmFcYYVcqzrCAwclGTnTSJewR49fz1xNpJibjpWCms9zeEGQFrbTHbUWfZc93o
dhpjoagg0+3kkaSB03O+X97GnrBsOUVqF1bZznwDjB5vUmVQH+ueVdFELITL7w8s
JRvVhYmFoaTLDC+yGO4CEsFWpF55vX0Iefk2YKK9X60jmoHX81n7fm5cQv/oEtEe
zdhFL53zz48sBR61rly5tq2vQfs8diTu07fcVM/mfIds
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:58 2023 by rpki-client on console-ams.rpki-client.org