Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/1af6ea-c736-4c20-a83c-67cd2b459aae/1/d_Am9ySxti-jvO99wOCoCEKw4xU.roa
File: d_Am9ySxti-jvO99wOCoCEKw4xU.roa (raw, json)
Hash identifier: vLHDNaahs4ZIPbgjc3t5NFlCKdQjXVZOz2NPnBUlc9g=
Subject key identifier: 77:F0:26:F7:24:B1:B6:2F:A3:BC:EF:7D:C0:E0:A8:08:42:B0:E3:15
Certificate issuer: /CN=8dd003af04774dd3e39730497989a3a171516252
Certificate serial: 01E233F1
Authority key identifier: 8D:D0:03:AF:04:77:4D:D3:E3:97:30:49:79:89:A3:A1:71:51:62:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jdADrwR3TdPjlzBJeYmjoXFRYlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/1af6ea-c736-4c20-a83c-67cd2b459aae/1/d_Am9ySxti-jvO99wOCoCEKw4xU.roa
Signing time: Sat 01 Jan 2022 05:01:37 +0000
ROA not before: Sat 01 Jan 2022 05:01:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211649
IP address blocks: 185.251.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31601649 (0x1e233f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8dd003af04774dd3e39730497989a3a171516252
Validity
Not Before: Jan 1 05:01:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77f026f724b1b62fa3bcef7dc0e0a80842b0e315
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:94:80:72:81:73:85:24:e1:3b:0f:21:0a:14:
ff:df:8d:fa:3b:29:67:c2:be:19:c9:76:66:2b:21:
04:d6:bf:33:5e:0f:32:55:17:95:68:a9:06:b2:72:
bc:be:6b:ce:7e:2c:04:59:7b:ca:7f:cf:ce:00:25:
0e:5a:3a:69:8c:41:d4:79:5a:7b:73:9f:ca:16:c2:
09:61:b0:f3:ab:92:40:f8:ae:35:c1:48:64:d4:5c:
7e:6a:44:27:f7:5a:a8:83:af:31:e2:b1:a9:5e:6d:
67:f6:d1:f3:d7:fc:76:4e:9b:bc:7f:e4:a0:59:b7:
1e:3c:71:12:e3:6c:67:ae:49:6d:70:16:6e:fa:ba:
40:ab:7a:b3:09:c1:64:53:d6:f8:76:df:69:cd:57:
77:a5:83:13:5b:4d:ee:53:ad:8e:d7:8b:2a:c0:03:
71:4e:98:4a:13:f3:60:b1:e3:59:c9:af:cb:23:a6:
95:e5:6b:a6:85:e7:d1:e5:8b:64:2e:86:bd:58:c5:
a4:00:b9:57:45:ee:85:46:bd:93:3c:52:6d:01:27:
4d:28:4c:e2:6b:32:53:02:01:da:8d:db:9a:73:a4:
ad:2e:9f:6d:6e:bb:95:4e:79:5f:56:40:f7:94:e8:
30:a5:bb:14:c4:62:5b:91:cb:f0:3b:32:81:84:9c:
e4:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:F0:26:F7:24:B1:B6:2F:A3:BC:EF:7D:C0:E0:A8:08:42:B0:E3:15
X509v3 Authority Key Identifier:
keyid:8D:D0:03:AF:04:77:4D:D3:E3:97:30:49:79:89:A3:A1:71:51:62:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jdADrwR3TdPjlzBJeYmjoXFRYlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/1af6ea-c736-4c20-a83c-67cd2b459aae/1/d_Am9ySxti-jvO99wOCoCEKw4xU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/1af6ea-c736-4c20-a83c-67cd2b459aae/1/jdADrwR3TdPjlzBJeYmjoXFRYlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.71.0/24
Signature Algorithm: sha256WithRSAEncryption
05:48:c4:0e:8a:6e:e7:33:e0:c3:61:8c:e6:07:97:e2:f7:30:
d5:57:b1:ba:1a:d3:68:59:d6:05:f0:21:c8:51:0d:57:a5:b9:
83:e4:45:1a:1b:5b:c1:06:94:77:52:fc:79:cf:a6:3d:ad:32:
68:03:2c:f0:0e:76:3d:a8:15:9a:72:18:55:c9:4d:ec:eb:03:
47:60:f7:dd:69:f3:6d:58:3f:33:48:0d:df:e8:b9:29:7a:73:
9f:21:0a:f7:85:93:bd:25:d7:6b:d6:ee:6a:52:ab:dc:22:c3:
7c:0c:63:a0:94:21:a0:ac:c5:b7:f5:7f:d3:1e:15:10:2e:1d:
39:60:17:11:64:92:00:ec:a8:7f:55:0d:45:6b:35:cc:3e:54:
ba:0a:39:70:50:39:c2:d7:20:29:b9:cf:b3:ec:26:68:30:1d:
83:7e:ae:bd:e1:3d:3a:f6:37:36:e4:ed:d2:1f:70:58:75:9e:
aa:88:08:b9:6f:65:78:0e:bc:7a:b0:a1:90:7c:6d:f3:16:57:
eb:11:f2:d3:ce:44:e9:31:b6:8c:e3:e7:12:81:4c:0b:d5:8d:
21:7a:45:a4:e6:e5:b7:e4:c5:00:43:79:1c:30:02:40:fc:6c:
a6:06:53:89:fb:a2:c0:ee:23:ed:d4:9f:d9:16:ac:ab:15:05:
27:95:61:e4
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAeIz8TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZGQwMDNhZjA0Nzc0ZGQzZTM5NzMwNDk3OTg5YTNhMTcxNTE2MjUyMB4XDTIyMDEw
MTA1MDEzN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzdmMDI2ZjcyNGIx
YjYyZmEzYmNlZjdkYzBlMGE4MDg0MmIwZTMxNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJGUgHKBc4Uk4TsPIQoU/9+N+jspZ8K+Gcl2ZishBNa/M14P
MlUXlWipBrJyvL5rzn4sBFl7yn/PzgAlDlo6aYxB1Hlae3OfyhbCCWGw86uSQPiu
NcFIZNRcfmpEJ/daqIOvMeKxqV5tZ/bR89f8dk6bvH/koFm3HjxxEuNsZ65JbXAW
bvq6QKt6swnBZFPW+Hbfac1Xd6WDE1tN7lOtjteLKsADcU6YShPzYLHjWcmvyyOm
leVrpoXn0eWLZC6GvVjFpAC5V0XuhUa9kzxSbQEnTShM4msyUwIB2o3bmnOkrS6f
bW67lU55X1ZA95ToMKW7FMRiW5HL8DsygYSc5GsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR38Cb3JLG2L6O8733A4KgIQrDjFTAfBgNVHSMEGDAWgBSN0AOvBHdN0+OX
MEl5iaOhcVFiUjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2pkQURyd1IzVGRQamx6QkplWW1qb1hGUllsSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTYvMWFmNmVhLWM3MzYtNGMyMC1hODNjLTY3Y2QyYjQ1OWFhZS8x
L2RfQW05eVN4dGktanZPOTl3T0NvQ0VLdzR4VS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTYv
MWFmNmVhLWM3MzYtNGMyMC1hODNjLTY3Y2QyYjQ1OWFhZS8xL2pkQURyd1IzVGRQ
amx6QkplWW1qb1hGUllsSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALn7RzANBgkqhkiG9w0BAQsFAAOC
AQEABUjEDopu5zPgw2GM5geX4vcw1VexuhrTaFnWBfAhyFENV6W5g+RFGhtbwQaU
d1L8ec+mPa0yaAMs8A52PagVmnIYVclN7OsDR2D33WnzbVg/M0gN3+i5KXpznyEK
94WTvSXXa9bualKr3CLDfAxjoJQhoKzFt/V/0x4VEC4dOWAXEWSSAOyof1UNRWs1
zD5Uugo5cFA5wtcgKbnPs+wmaDAdg36uveE9OvY3NuTt0h9wWHWeqogIuW9leA68
erChkHxt8xZX6xHy085E6TG2jOPnEoFMC9WNIXpFpOblt+TFAEN5HDACQPxspgZT
ifuiwO4j7dSf2RasqxUFJ5Vh5A==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:27 2023 by rpki-client on console-ams.rpki-client.org