Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/b2b221-2ae9-45cc-ad1e-fcd3de868431/1/7WGitz5j0OkNlYfNI0tLVBFveoM.roa
File: 7WGitz5j0OkNlYfNI0tLVBFveoM.roa (raw, json)
Hash identifier: SAlyFSHtc2Z6Mot9hcNqwZylP/Q/TgTCa61AeY4FG5U=
Subject key identifier: ED:61:A2:B7:3E:63:D0:E9:0D:95:87:CD:23:4B:4B:54:11:6F:7A:83
Certificate issuer: /CN=fe3ecfb35993217c36743bcafaa7b0259d2e476a
Certificate serial: 094E9FDF
Authority key identifier: FE:3E:CF:B3:59:93:21:7C:36:74:3B:CA:FA:A7:B0:25:9D:2E:47:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_j7Ps1mTIXw2dDvK-qewJZ0uR2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/b2b221-2ae9-45cc-ad1e-fcd3de868431/1/7WGitz5j0OkNlYfNI0tLVBFveoM.roa
Signing time: Sat 01 Jan 2022 12:06:26 +0000
ROA not before: Sat 01 Jan 2022 12:06:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203102
IP address blocks: 185.144.64.0/22 maxlen: 22
185.144.66.0/24 maxlen: 24
185.144.65.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156147679 (0x94e9fdf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe3ecfb35993217c36743bcafaa7b0259d2e476a
Validity
Not Before: Jan 1 12:06:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed61a2b73e63d0e90d9587cd234b4b54116f7a83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:9d:06:03:10:cc:2c:cc:b3:59:c2:83:80:67:
25:30:84:4e:05:8f:f4:25:29:14:1a:d1:5e:cb:66:
4f:2a:a9:45:e2:e8:e6:3c:35:70:ba:a8:e9:b3:cc:
95:56:be:46:39:7f:18:60:53:94:91:81:fe:b3:6d:
27:62:31:14:d7:10:0a:6c:ee:15:d1:9d:18:59:05:
c4:7c:55:10:cc:14:75:61:5c:0b:3d:91:79:f5:3f:
bf:45:6c:ec:f6:76:85:ad:67:48:74:09:5e:4d:c2:
16:ac:2b:f2:75:f6:06:75:99:a8:0b:53:94:22:69:
77:62:8f:8f:f4:82:f9:07:9e:68:78:89:5b:b9:56:
49:80:c9:98:45:d3:5b:4d:f9:e3:28:19:84:22:17:
ee:7f:2d:e3:19:ad:a0:8f:f3:65:91:73:93:81:ad:
95:38:90:88:51:d3:ad:d5:7e:76:2a:7c:83:3c:e2:
50:0b:24:98:68:b9:a6:0a:63:77:8f:b0:c3:09:24:
0d:c6:fe:3c:fc:0a:a0:33:5a:30:b7:0f:e7:4c:f2:
a6:a6:1c:40:19:a7:ee:af:08:95:62:ce:70:70:37:
f9:f9:95:4f:c7:e5:42:a3:79:32:e3:df:82:4a:dd:
c3:19:8d:63:69:27:2c:d0:54:cf:26:41:03:8b:aa:
69:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:61:A2:B7:3E:63:D0:E9:0D:95:87:CD:23:4B:4B:54:11:6F:7A:83
X509v3 Authority Key Identifier:
keyid:FE:3E:CF:B3:59:93:21:7C:36:74:3B:CA:FA:A7:B0:25:9D:2E:47:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_j7Ps1mTIXw2dDvK-qewJZ0uR2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b2b221-2ae9-45cc-ad1e-fcd3de868431/1/7WGitz5j0OkNlYfNI0tLVBFveoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b2b221-2ae9-45cc-ad1e-fcd3de868431/1/_j7Ps1mTIXw2dDvK-qewJZ0uR2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.64.0/22
Signature Algorithm: sha256WithRSAEncryption
ab:e6:c6:61:29:e0:e0:d8:36:7f:46:b5:e2:cf:ae:4d:4f:9f:
dc:7f:e0:1c:a6:c7:73:21:01:34:d3:8a:bd:64:86:c2:9a:2c:
01:65:42:01:a3:cf:fa:29:78:ec:7b:b5:67:94:88:8c:a5:90:
52:e9:c2:54:b1:a4:c5:f2:b1:96:8b:b5:43:37:37:30:64:a3:
a7:69:04:da:b4:2e:68:83:4f:fd:09:c4:8d:10:4c:27:89:0a:
a7:25:c0:b4:2c:77:d9:82:dd:bf:6b:0f:45:c1:45:6e:e0:74:
0c:3f:26:e0:7f:2f:98:71:49:46:cb:4c:6d:1f:44:0d:cd:69:
35:24:94:2a:cd:de:e2:af:17:62:2d:fc:5c:0d:db:b9:1b:69:
33:5c:9c:7b:ad:e4:da:63:9e:14:2b:83:5e:27:bd:30:b7:33:
87:5f:69:4c:32:1e:1c:16:b3:5f:51:f6:1c:fe:95:e5:fa:65:
0c:66:fd:17:7c:fa:87:9f:23:74:82:f8:57:85:89:96:35:a6:
7b:80:89:df:3f:e9:ed:75:08:41:fb:1c:a6:ae:1c:4b:16:c9:
d4:30:01:58:54:23:6f:5b:5b:48:7c:e2:f2:74:31:54:50:26:
25:4c:1d:a9:7c:18:93:99:7c:33:81:98:03:fa:1a:5b:19:10:
78:02:17:53
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECU6f3zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ZTNlY2ZiMzU5OTMyMTdjMzY3NDNiY2FmYWE3YjAyNTlkMmU0NzZhMB4XDTIyMDEw
MTEyMDYyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWQ2MWEyYjczZTYz
ZDBlOTBkOTU4N2NkMjM0YjRiNTQxMTZmN2E4MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJidBgMQzCzMs1nCg4BnJTCETgWP9CUpFBrRXstmTyqpReLo
5jw1cLqo6bPMlVa+Rjl/GGBTlJGB/rNtJ2IxFNcQCmzuFdGdGFkFxHxVEMwUdWFc
Cz2RefU/v0Vs7PZ2ha1nSHQJXk3CFqwr8nX2BnWZqAtTlCJpd2KPj/SC+QeeaHiJ
W7lWSYDJmEXTW0354ygZhCIX7n8t4xmtoI/zZZFzk4GtlTiQiFHTrdV+dip8gzzi
UAskmGi5pgpjd4+wwwkkDcb+PPwKoDNaMLcP50zypqYcQBmn7q8IlWLOcHA3+fmV
T8flQqN5MuPfgkrdwxmNY2knLNBUzyZBA4uqacMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTtYaK3PmPQ6Q2Vh80jS0tUEW96gzAfBgNVHSMEGDAWgBT+Ps+zWZMhfDZ0
O8r6p7AlnS5HajAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19qN1BzMW1USVh3MmREdkstcWV3SlowdVIyby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTcvYjJiMjIxLTJhZTktNDVjYy1hZDFlLWZjZDNkZTg2ODQzMS8x
LzdXR2l0ejVqME9rTmxZZk5JMHRMVkJGdmVvTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTcv
YjJiMjIxLTJhZTktNDVjYy1hZDFlLWZjZDNkZTg2ODQzMS8xL19qN1BzMW1USVh3
MmREdkstcWV3SlowdVIyby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArmQQDANBgkqhkiG9w0BAQsFAAOC
AQEAq+bGYSng4Ng2f0a14s+uTU+f3H/gHKbHcyEBNNOKvWSGwposAWVCAaPP+il4
7Hu1Z5SIjKWQUunCVLGkxfKxlou1Qzc3MGSjp2kE2rQuaINP/QnEjRBMJ4kKpyXA
tCx32YLdv2sPRcFFbuB0DD8m4H8vmHFJRstMbR9EDc1pNSSUKs3e4q8XYi38XA3b
uRtpM1yce63k2mOeFCuDXie9MLczh19pTDIeHBazX1H2HP6V5fplDGb9F3z6h58j
dIL4V4WJljWme4CJ3z/p7XUIQfscpq4cSxbJ1DABWFQjb1tbSHzi8nQxVFAmJUwd
qXwYk5l8M4GYA/oaWxkQeAIXUw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:56 2024 by rpki-client on console-ams.rpki-client.org