Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/_LPQPYsZ1mu9MEFnHJ0U-viG0EY.roa
File: _LPQPYsZ1mu9MEFnHJ0U-viG0EY.roa (raw, json)
Hash identifier: w93GbqDI/5Bjxe3jgLYUK3gnqjeDa41355LNzsR7t7U=
Subject key identifier: FC:B3:D0:3D:8B:19:D6:6B:BD:30:41:67:1C:9D:14:FA:F8:86:D0:46
Certificate issuer: /CN=74198f7022b9560501db448af60301fa285e9236
Certificate serial: 12C19FE2
Authority key identifier: 74:19:8F:70:22:B9:56:05:01:DB:44:8A:F6:03:01:FA:28:5E:92:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dBmPcCK5VgUB20SK9gMB-ihekjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/_LPQPYsZ1mu9MEFnHJ0U-viG0EY.roa
Signing time: Sat 01 Jan 2022 04:01:13 +0000
ROA not before: Sat 01 Jan 2022 04:01:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34220
IP address blocks: 185.98.96.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 314679266 (0x12c19fe2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74198f7022b9560501db448af60301fa285e9236
Validity
Not Before: Jan 1 04:01:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fcb3d03d8b19d66bbd3041671c9d14faf886d046
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:71:ec:df:bd:db:59:50:fd:23:45:c3:00:53:
f2:dc:e9:15:63:a2:39:f9:8e:0f:df:f0:75:64:ea:
2e:fc:98:82:00:14:99:1d:52:52:ed:9a:24:01:fe:
7f:26:61:37:58:d0:98:97:00:59:fe:90:d1:83:0c:
19:70:b5:5f:d3:b6:35:26:a9:df:08:6b:0a:1c:7f:
27:b0:37:4c:8d:09:3b:dc:6f:cd:c6:66:11:c0:c2:
73:30:8e:6a:76:88:04:3f:fd:3e:59:86:ce:64:d8:
a6:e2:34:2e:b9:0d:3f:c8:18:53:03:b6:d5:de:bb:
2a:52:d5:d6:c9:04:b6:65:ab:ec:bb:03:7a:95:f3:
97:19:d2:dc:85:0a:6a:a1:49:70:42:03:34:88:4c:
f3:3d:60:ac:b8:1f:a9:b8:97:95:84:52:55:4b:f5:
d6:c0:11:78:e5:e3:1d:21:b0:7a:12:c2:75:d8:80:
39:d0:c8:c2:82:09:cf:92:13:77:0b:df:0e:8f:fd:
c1:4b:f0:dd:11:f4:bf:e8:48:2d:f1:b9:97:c2:91:
c9:db:de:92:b2:db:a7:51:94:4a:d0:15:25:e7:b3:
f3:10:95:0a:2d:a4:a9:be:82:1b:77:34:9e:27:78:
63:72:19:e5:1d:98:6d:9a:c2:64:a1:05:5a:36:50:
ea:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:B3:D0:3D:8B:19:D6:6B:BD:30:41:67:1C:9D:14:FA:F8:86:D0:46
X509v3 Authority Key Identifier:
keyid:74:19:8F:70:22:B9:56:05:01:DB:44:8A:F6:03:01:FA:28:5E:92:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dBmPcCK5VgUB20SK9gMB-ihekjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/_LPQPYsZ1mu9MEFnHJ0U-viG0EY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.98.96.0/22
Signature Algorithm: sha256WithRSAEncryption
42:ec:87:b6:2f:dd:f9:ed:de:5c:2c:f2:fc:85:df:8d:34:d7:
c3:10:25:1b:3c:a2:18:10:c3:52:af:50:08:d7:0e:e6:4c:32:
ea:24:cc:e1:0f:bd:4b:e3:56:13:d8:aa:b2:91:12:c1:f8:7e:
82:df:c3:96:8d:d5:b2:16:60:c8:eb:c5:57:26:68:ac:bf:b8:
2a:b9:e8:c0:7f:f7:ab:6c:68:0c:aa:d4:5d:48:cf:5c:76:40:
c2:40:5f:a4:af:d0:97:b6:c2:f3:0f:d3:4f:ab:b4:99:bd:72:
9e:4c:8a:13:94:28:be:2b:9c:bc:88:bd:fc:54:f0:66:6d:d8:
a2:2c:8e:27:2f:2c:f0:91:a0:83:8d:51:0a:6a:26:ec:fa:03:
83:2a:3f:d9:d1:f7:77:b1:7c:a7:60:f6:8b:e9:65:b6:64:82:
4e:8c:57:84:c7:c0:b0:e2:de:36:bf:9d:be:12:be:56:58:20:
84:cc:95:6c:e8:f4:fa:1f:dd:89:4d:c0:22:0f:ba:20:e1:63:
e7:5c:28:86:f6:a9:9b:83:56:b9:f8:43:2b:7f:d8:3f:40:15:
4c:f8:73:e5:15:91:30:32:58:ba:0a:9a:61:71:f6:60:3f:c4:
94:fb:09:5e:44:93:8a:20:5e:8d:38:69:4d:83:50:f4:b3:54:
dd:70:b0:a9
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEEsGf4jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDE5OGY3MDIyYjk1NjA1MDFkYjQ0OGFmNjAzMDFmYTI4NWU5MjM2MB4XDTIyMDEw
MTA0MDExM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmNiM2QwM2Q4YjE5
ZDY2YmJkMzA0MTY3MWM5ZDE0ZmFmODg2ZDA0NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKJx7N+921lQ/SNFwwBT8tzpFWOiOfmOD9/wdWTqLvyYggAU
mR1SUu2aJAH+fyZhN1jQmJcAWf6Q0YMMGXC1X9O2NSap3whrChx/J7A3TI0JO9xv
zcZmEcDCczCOanaIBD/9PlmGzmTYpuI0LrkNP8gYUwO21d67KlLV1skEtmWr7LsD
epXzlxnS3IUKaqFJcEIDNIhM8z1grLgfqbiXlYRSVUv11sAReOXjHSGwehLCddiA
OdDIwoIJz5ITdwvfDo/9wUvw3RH0v+hILfG5l8KRydvekrLbp1GUStAVJeez8xCV
Ci2kqb6CG3c0nid4Y3IZ5R2YbZrCZKEFWjZQ6n0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT8s9A9ixnWa70wQWccnRT6+IbQRjAfBgNVHSMEGDAWgBR0GY9wIrlWBQHb
RIr2AwH6KF6SNjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RCbVBjQ0s1VmdVQjIwU0s5Z01CLWloZWtqWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTMvMWJlNWUxLTU2YjQtNGM2Ni1iZWFiLTZmMTYzOTY2YWY4Yi8x
L19MUFFQWXNaMW11OU1FRm5ISjBVLXZpRzBFWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTMv
MWJlNWUxLTU2YjQtNGM2Ni1iZWFiLTZmMTYzOTY2YWY4Yi8xL2RCbVBjQ0s1VmdV
QjIwU0s5Z01CLWloZWtqWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArliYDANBgkqhkiG9w0BAQsFAAOC
AQEAQuyHti/d+e3eXCzy/IXfjTTXwxAlGzyiGBDDUq9QCNcO5kwy6iTM4Q+9S+NW
E9iqspESwfh+gt/Dlo3VshZgyOvFVyZorL+4KrnowH/3q2xoDKrUXUjPXHZAwkBf
pK/Ql7bC8w/TT6u0mb1ynkyKE5QoviucvIi9/FTwZm3YoiyOJy8s8JGgg41RCmom
7PoDgyo/2dH3d7F8p2D2i+lltmSCToxXhMfAsOLeNr+dvhK+VlgghMyVbOj0+h/d
iU3AIg+6IOFj51wohvapm4NWufhDK3/YP0AVTPhz5RWRMDJYugqaYXH2YD/ElPsJ
XkSTiiBejThpTYNQ9LNU3XCwqQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:14 2024 by rpki-client on console-ams.rpki-client.org