Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/3a8e4c-9217-4b1f-b6fd-842437d27279/1/jnTkpvcLarz_yEaShhVM0ZbS9zY.roa
File: jnTkpvcLarz_yEaShhVM0ZbS9zY.roa (raw, json)
Hash identifier: kKu03iE7bH4wI5l9Gm88t8Vlv20O29gVPn4ELAJgDJM=
Subject key identifier: 8E:74:E4:A6:F7:0B:6A:BC:FF:C8:46:92:86:15:4C:D1:96:D2:F7:36
Certificate issuer: /CN=f38627e36a4e16bdc39f0b550d74fd71e442d2c2
Certificate serial: 09B9B0D4
Authority key identifier: F3:86:27:E3:6A:4E:16:BD:C3:9F:0B:55:0D:74:FD:71:E4:42:D2:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/84Yn42pOFr3DnwtVDXT9ceRC0sI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/3a8e4c-9217-4b1f-b6fd-842437d27279/1/jnTkpvcLarz_yEaShhVM0ZbS9zY.roa
Signing time: Sat 01 Jan 2022 09:54:42 +0000
ROA not before: Sat 01 Jan 2022 09:54:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62211
IP address blocks: 185.43.228.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163164372 (0x9b9b0d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f38627e36a4e16bdc39f0b550d74fd71e442d2c2
Validity
Not Before: Jan 1 09:54:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e74e4a6f70b6abcffc8469286154cd196d2f736
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:b3:b5:c8:aa:45:ff:62:65:2a:7d:89:4a:86:
25:55:cf:90:b9:00:eb:7e:a5:ec:1b:6d:f7:82:af:
34:55:66:87:49:12:cb:e2:29:a0:3a:b8:05:75:21:
a2:5c:89:f6:b6:ab:63:b6:d0:16:5a:b8:e0:29:9a:
83:31:6a:92:38:3f:a9:66:bf:41:6e:25:49:f2:81:
3d:57:b3:76:d5:42:f2:9e:0a:85:ad:a4:de:91:3a:
2e:30:f7:f5:8d:af:4f:db:ee:5f:d9:95:a1:84:86:
32:e5:01:19:cb:5a:b9:01:1f:b6:15:d4:b7:0f:c4:
97:3e:d9:f4:c9:17:f1:34:dd:ca:91:25:0a:e1:1f:
4d:28:cf:ff:43:04:a5:ae:f1:c7:85:f7:0d:8d:d0:
f0:37:83:7e:01:22:cc:cc:68:a2:56:f7:78:7c:a0:
4e:27:cb:54:32:6f:35:6d:76:92:65:ed:75:d9:66:
63:49:5b:30:3f:ae:b4:18:36:06:94:c6:71:61:06:
74:d2:09:94:83:89:85:ef:dd:41:c3:22:8e:0f:e4:
0b:d5:2f:0a:85:a8:5a:99:c2:0b:70:c4:57:79:9e:
98:79:a2:5c:2a:ef:55:e1:f5:b5:36:a5:46:a0:ef:
b2:65:50:e5:32:a9:95:29:30:be:61:f0:75:3f:30:
6b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:74:E4:A6:F7:0B:6A:BC:FF:C8:46:92:86:15:4C:D1:96:D2:F7:36
X509v3 Authority Key Identifier:
keyid:F3:86:27:E3:6A:4E:16:BD:C3:9F:0B:55:0D:74:FD:71:E4:42:D2:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/84Yn42pOFr3DnwtVDXT9ceRC0sI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3a8e4c-9217-4b1f-b6fd-842437d27279/1/jnTkpvcLarz_yEaShhVM0ZbS9zY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3a8e4c-9217-4b1f-b6fd-842437d27279/1/84Yn42pOFr3DnwtVDXT9ceRC0sI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.43.228.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:dc:10:99:44:aa:38:21:b9:e3:02:b9:11:f0:6d:ac:4a:0d:
aa:9e:3b:84:ba:41:6e:95:f9:0b:89:78:87:fa:ff:58:b3:d7:
e3:2f:94:30:14:76:34:28:66:a5:14:38:a2:53:71:9d:a7:5f:
47:60:b6:14:28:44:fe:c4:0a:50:16:24:03:5e:1a:03:1d:f4:
6e:16:f5:99:9e:bd:86:fd:5d:20:a8:b5:97:da:e1:e2:86:7b:
cd:c8:f6:28:a4:2a:aa:e7:3b:24:41:1a:04:d9:80:70:9a:be:
79:4e:1a:cd:ab:c7:9a:15:3d:0e:db:b9:b5:6b:d6:5d:2d:52:
f5:12:78:67:65:d1:e5:e7:fc:9f:eb:0c:d2:16:3c:15:76:d6:
2f:36:eb:ff:b9:45:ef:e7:33:d4:4f:ae:e5:6a:16:71:3b:b2:
56:58:fd:75:a0:a3:8d:29:c3:20:12:ba:cb:c1:72:fb:b4:de:
6d:ac:15:39:68:a2:08:70:f3:c7:71:76:58:ec:16:05:ca:54:
7d:f8:ca:c6:62:1e:99:42:43:e6:6c:e7:46:96:25:41:09:a5:
7a:76:76:62:59:08:9f:ad:91:6a:2e:fc:06:a5:bc:61:a1:e4:
a0:10:80:9a:91:00:99:a1:1a:6e:a0:cd:3e:e6:8a:78:9a:ed:
21:64:e9:38
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECbmw1DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
Mzg2MjdlMzZhNGUxNmJkYzM5ZjBiNTUwZDc0ZmQ3MWU0NDJkMmMyMB4XDTIyMDEw
MTA5NTQ0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGU3NGU0YTZmNzBi
NmFiY2ZmYzg0NjkyODYxNTRjZDE5NmQyZjczNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIaztciqRf9iZSp9iUqGJVXPkLkA636l7Btt94KvNFVmh0kS
y+IpoDq4BXUholyJ9rarY7bQFlq44CmagzFqkjg/qWa/QW4lSfKBPVezdtVC8p4K
ha2k3pE6LjD39Y2vT9vuX9mVoYSGMuUBGctauQEfthXUtw/Elz7Z9MkX8TTdypEl
CuEfTSjP/0MEpa7xx4X3DY3Q8DeDfgEizMxoolb3eHygTifLVDJvNW12kmXtddlm
Y0lbMD+utBg2BpTGcWEGdNIJlIOJhe/dQcMijg/kC9UvCoWoWpnCC3DEV3memHmi
XCrvVeH1tTalRqDvsmVQ5TKplSkwvmHwdT8wa+sCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSOdOSm9wtqvP/IRpKGFUzRltL3NjAfBgNVHSMEGDAWgBTzhifjak4WvcOf
C1UNdP1x5ELSwjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
Lzg0WW40MnBPRnIzRG53dFZEWFQ5Y2VSQzBzSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGQvM2E4ZTRjLTkyMTctNGIxZi1iNmZkLTg0MjQzN2QyNzI3OS8x
L2puVGtwdmNMYXJ6X3lFYVNoaFZNMFpiUzl6WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGQv
M2E4ZTRjLTkyMTctNGIxZi1iNmZkLTg0MjQzN2QyNzI3OS8xLzg0WW40MnBPRnIz
RG53dFZEWFQ5Y2VSQzBzSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArkr5DANBgkqhkiG9w0BAQsFAAOC
AQEAi9wQmUSqOCG54wK5EfBtrEoNqp47hLpBbpX5C4l4h/r/WLPX4y+UMBR2NChm
pRQ4olNxnadfR2C2FChE/sQKUBYkA14aAx30bhb1mZ69hv1dIKi1l9rh4oZ7zcj2
KKQqquc7JEEaBNmAcJq+eU4azavHmhU9Dtu5tWvWXS1S9RJ4Z2XR5ef8n+sM0hY8
FXbWLzbr/7lF7+cz1E+u5WoWcTuyVlj9daCjjSnDIBK6y8Fy+7TebawVOWiiCHDz
x3F2WOwWBcpUffjKxmIemUJD5mznRpYlQQmlenZ2YlkIn62Rai78BqW8YaHkoBCA
mpEAmaEabqDNPuaKeJrtIWTpOA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:15 2023 by rpki-client on console-fra.rpki-client.org