Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/tSNUUrSc2gi0tu8s19km4Rpp8pE.roa
File: tSNUUrSc2gi0tu8s19km4Rpp8pE.roa (raw, json)
Hash identifier: BJJzZ/0T7niXbhpK7cWWjm7w3bnFZvbnZ0Wmr+gCp68=
Subject key identifier: B5:23:54:52:B4:9C:DA:08:B4:B6:EF:2C:D7:D9:26:E1:1A:69:F2:91
Certificate issuer: /CN=126c660b30f5692b2b16e289b24901c518fda520
Certificate serial: 0184C876D2809FF2690D6DD3D006C3A2D961
Authority key identifier: 12:6C:66:0B:30:F5:69:2B:2B:16:E2:89:B2:49:01:C5:18:FD:A5:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EmxmCzD1aSsrFuKJskkBxRj9pSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/tSNUUrSc2gi0tu8s19km4Rpp8pE.roa
Signing time: Wed 30 Nov 2022 12:15:40 +0000
ROA not before: Wed 30 Nov 2022 12:15:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201931
IP address blocks: 185.217.232.0/23 maxlen: 23
2a07:6882::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c8:76:d2:80:9f:f2:69:0d:6d:d3:d0:06:c3:a2:d9:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=126c660b30f5692b2b16e289b24901c518fda520
Validity
Not Before: Nov 30 12:15:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5235452b49cda08b4b6ef2cd7d926e11a69f291
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:8e:0f:d7:83:f8:85:3f:37:b6:5e:9b:8c:c6:
ac:60:62:32:dd:bb:eb:e1:8b:a6:88:98:80:1d:0e:
aa:be:d2:81:09:c6:6c:ac:c7:b2:8c:6b:51:24:47:
2c:a5:1e:25:87:01:79:aa:7f:6f:f9:46:54:59:8f:
28:a7:3c:9a:b5:5d:26:23:f8:61:bf:ba:38:54:55:
64:36:71:f6:31:f6:11:68:49:6f:3d:4e:56:b9:e7:
7c:ed:63:0e:d2:46:a0:71:68:8f:a9:11:8e:58:d6:
7e:ec:55:b8:37:19:fc:fd:ce:2d:87:63:11:8c:78:
55:be:28:d5:ed:0c:4c:32:8c:42:58:35:7c:a0:fa:
0f:89:49:06:9f:a1:1f:18:9e:be:18:ed:92:cf:a6:
b3:4b:c5:22:b0:c0:48:68:7c:46:3d:06:7a:64:0d:
87:12:66:bf:d7:10:b1:dd:40:09:2f:29:a1:03:3d:
2f:f5:64:29:29:dc:a1:75:78:8a:20:7f:98:aa:6c:
21:1b:4a:b5:86:bd:6a:63:91:07:d2:52:2b:a2:62:
cb:52:f9:b3:7d:a3:a4:9b:90:8c:1c:de:de:f6:62:
37:5c:37:1e:90:78:a8:d5:cb:15:d5:73:68:33:7a:
28:44:a9:b7:7b:32:ae:94:83:32:45:da:79:a4:5d:
68:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:23:54:52:B4:9C:DA:08:B4:B6:EF:2C:D7:D9:26:E1:1A:69:F2:91
X509v3 Authority Key Identifier:
keyid:12:6C:66:0B:30:F5:69:2B:2B:16:E2:89:B2:49:01:C5:18:FD:A5:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EmxmCzD1aSsrFuKJskkBxRj9pSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/tSNUUrSc2gi0tu8s19km4Rpp8pE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/EmxmCzD1aSsrFuKJskkBxRj9pSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.232.0/23
IPv6:
2a07:6882::/32
Signature Algorithm: sha256WithRSAEncryption
42:d0:c7:a0:de:f3:18:3b:78:d9:7f:10:ed:11:d1:c5:c8:da:
f8:77:ec:72:d7:20:94:ea:e0:f5:55:f8:08:70:bb:47:fe:11:
6f:b0:4d:5f:5f:45:9f:22:bf:21:00:eb:0f:21:71:9f:4c:d9:
1c:ff:2c:19:cb:b3:00:62:99:6e:14:17:3d:82:98:6e:8f:0d:
94:92:0f:94:1a:88:73:8a:1c:5a:2f:57:24:68:3f:e2:90:5d:
56:ec:fc:e6:40:39:d9:9c:37:5e:bc:ab:4e:f0:b1:8a:af:b5:
65:61:a2:eb:91:fb:81:79:82:b8:c9:c8:37:c4:e7:bc:01:4a:
0b:ae:00:b9:93:b2:85:40:5b:63:51:13:f5:bb:0f:ef:1b:6a:
ec:67:e3:a8:fd:39:85:c2:94:f9:80:28:8d:f9:2c:60:05:21:
43:2d:2e:e7:30:c9:dd:66:95:f2:cc:fb:40:ff:5d:9d:92:53:
d8:a4:cf:7f:51:2e:87:2d:ce:2e:8a:61:97:fd:c0:ee:13:e0:
48:df:b1:e6:ee:27:94:84:38:e6:0b:bd:d5:f2:0b:d0:37:9e:
3c:aa:b9:b3:c6:34:22:cd:87:95:3d:9b:2f:08:94:73:a7:b1:
43:84:39:2a:fa:46:7c:23:da:61:43:77:4c:90:e3:9a:37:22:
e3:1f:f2:49
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYTIdtKAn/JpDW3T0AbDotlhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEyNmM2NjBiMzBmNTY5MmIyYjE2ZTI4OWIyNDkwMWM1MThm
ZGE1MjAwHhcNMjIxMTMwMTIxNTQwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNTIzNTQ1MmI0OWNkYTA4YjRiNmVmMmNkN2Q5MjZlMTFhNjlmMjkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyI4P14P4hT83tl6bjMasYGIy3bvr
4YumiJiAHQ6qvtKBCcZsrMeyjGtRJEcspR4lhwF5qn9v+UZUWY8opzyatV0mI/hh
v7o4VFVkNnH2MfYRaElvPU5Wued87WMO0kagcWiPqRGOWNZ+7FW4Nxn8/c4th2MR
jHhVvijV7QxMMoxCWDV8oPoPiUkGn6EfGJ6+GO2Sz6azS8UisMBIaHxGPQZ6ZA2H
Ema/1xCx3UAJLymhAz0v9WQpKdyhdXiKIH+YqmwhG0q1hr1qY5EH0lIromLLUvmz
faOkm5CMHN7e9mI3XDcekHio1csV1XNoM3ooRKm3ezKulIMyRdp5pF1o+wIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFLUjVFK0nNoItLbvLNfZJuEaafKRMB8GA1UdIwQY
MBaAFBJsZgsw9WkrKxbiibJJAcUY/aUgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRW14bUN6RDFhU3NyRnVLSnNra0J4Umo5cFNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi9kYjc4N2YtYzI3YS00ZjIzLTk5YjIt
NDM4YWNiNzJmYzViLzEvdFNOVVVyU2MyZ2kwdHU4czE5a200UnBwOHBFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Zi9kYjc4N2YtYzI3YS00ZjIzLTk5YjItNDM4YWNiNzJmYzVi
LzEvRW14bUN6RDFhU3NyRnVLSnNra0J4Umo5cFNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBudnoMA0E
AgACMAcDBQAqB2iCMA0GCSqGSIb3DQEBCwUAA4IBAQBC0Meg3vMYO3jZfxDtEdHF
yNr4d+xy1yCU6uD1VfgIcLtH/hFvsE1fX0WfIr8hAOsPIXGfTNkc/ywZy7MAYplu
FBc9gphujw2Ukg+UGohzihxaL1ckaD/ikF1W7PzmQDnZnDdevKtO8LGKr7VlYaLr
kfuBeYK4ycg3xOe8AUoLrgC5k7KFQFtjURP1uw/vG2rsZ+Oo/TmFwpT5gCiN+Sxg
BSFDLS7nMMndZpXyzPtA/12dklPYpM9/US6HLc4uimGX/cDuE+BI37Hm7ieUhDjm
C73V8gvQN548qrmzxjQizYeVPZsvCJRzp7FDhDkq+kZ8I9phQ3dMkOOaNyLjH/JJ
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:22 2023 by rpki-client on console-fra.rpki-client.org