Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/13fb65-4ee7-4026-aa3a-9d56e3adca90/1/p5I7-FZW6BcjOA2Z8eR-BwoTSBk.roa
File: p5I7-FZW6BcjOA2Z8eR-BwoTSBk.roa (raw, json)
Hash identifier: Pvu9wRKuFIdpF5jr6GkC1nclwpOhi5rwsaCPbA/8PqQ=
Subject key identifier: A7:92:3B:F8:56:56:E8:17:23:38:0D:99:F1:E4:7E:07:0A:13:48:19
Certificate issuer: /CN=d612742b91d770fe8efbc9b5dcf8dc38984dd0f0
Certificate serial: 0F676110
Authority key identifier: D6:12:74:2B:91:D7:70:FE:8E:FB:C9:B5:DC:F8:DC:38:98:4D:D0:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1hJ0K5HXcP6O-8m13PjcOJhN0PA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/13fb65-4ee7-4026-aa3a-9d56e3adca90/1/p5I7-FZW6BcjOA2Z8eR-BwoTSBk.roa
Signing time: Sat 01 Jan 2022 08:59:11 +0000
ROA not before: Sat 01 Jan 2022 08:59:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58316
IP address blocks: 185.56.216.0/24 maxlen: 24
185.17.104.0/23 maxlen: 23
185.198.120.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 258433296 (0xf676110)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d612742b91d770fe8efbc9b5dcf8dc38984dd0f0
Validity
Not Before: Jan 1 08:59:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7923bf85656e81723380d99f1e47e070a134819
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:00:41:96:f4:f4:32:79:c2:bc:5d:3b:21:ac:
03:c5:c8:9e:01:f9:e6:6d:3c:60:f0:c0:48:a2:41:
c0:37:3a:4a:b3:98:2b:e4:6c:5e:9c:b2:79:6f:90:
73:9e:85:e5:f7:b3:94:7a:89:c2:5e:b2:8a:11:29:
be:6e:c7:bf:0f:e9:a2:36:56:cc:19:77:59:19:ee:
7c:db:1b:2c:9d:2a:92:54:c9:1c:85:31:6d:fe:77:
aa:b2:1d:ef:5c:35:52:f9:f2:f7:03:34:a2:15:1b:
b6:99:2f:e5:83:ac:e7:41:6f:95:a0:06:d5:10:1c:
ca:78:f3:3a:f9:90:b3:cc:b8:49:0b:ec:5b:65:ec:
88:55:71:9c:db:81:d6:9a:03:41:b5:6b:9b:0c:da:
7b:4c:fa:34:5b:d8:42:6b:f3:0c:ea:2d:02:95:69:
74:3a:e4:12:53:7c:26:cf:29:c5:6e:1c:d1:c1:aa:
26:0a:96:3c:29:51:11:eb:e4:dc:9e:de:19:7d:92:
f0:68:6d:18:fe:83:d6:d0:4d:ad:16:df:1c:33:26:
c3:54:7b:a9:ad:72:aa:da:7b:e6:fa:f7:d7:7d:24:
27:7a:7b:bc:a0:a6:47:c0:02:11:2f:e1:70:ca:5f:
1b:da:ec:5f:3a:b7:82:9a:c9:ca:0a:0e:7d:ea:25:
39:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:92:3B:F8:56:56:E8:17:23:38:0D:99:F1:E4:7E:07:0A:13:48:19
X509v3 Authority Key Identifier:
keyid:D6:12:74:2B:91:D7:70:FE:8E:FB:C9:B5:DC:F8:DC:38:98:4D:D0:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1hJ0K5HXcP6O-8m13PjcOJhN0PA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/13fb65-4ee7-4026-aa3a-9d56e3adca90/1/p5I7-FZW6BcjOA2Z8eR-BwoTSBk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/13fb65-4ee7-4026-aa3a-9d56e3adca90/1/1hJ0K5HXcP6O-8m13PjcOJhN0PA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.17.104.0/23
185.56.216.0/24
185.198.120.0/22
Signature Algorithm: sha256WithRSAEncryption
8e:38:8c:17:c4:b0:1b:49:94:19:63:ee:8d:43:54:2b:16:4c:
7a:ba:4c:58:ff:a2:93:2f:90:ac:f9:bb:5d:54:f3:f6:b4:e5:
f7:03:30:12:ec:e8:21:a8:43:2d:3b:2b:d0:27:1c:ce:ab:9d:
2c:12:76:93:66:45:c1:0b:9b:e7:e6:be:2f:89:33:d2:ea:52:
4a:6b:f2:e5:16:6d:0e:68:8b:03:88:83:31:84:01:56:92:30:
e2:d7:58:61:6d:0f:cc:29:47:32:1d:8e:df:ff:63:0f:50:8c:
08:9d:0b:30:14:ea:ca:eb:e6:d0:ed:17:d5:f2:b7:ed:2b:4d:
f5:73:ee:b8:f3:73:5c:d3:fe:b8:80:41:45:d5:ab:04:d6:9e:
1a:e7:99:95:63:ea:5f:92:73:65:84:b3:ff:86:09:cf:8f:ae:
15:74:21:b5:cb:da:85:33:ea:76:c3:23:52:c6:57:87:a8:97:
5a:87:c1:b4:89:46:17:8d:84:ee:5b:f8:58:ef:af:4d:5b:c8:
fa:f7:dd:e3:77:e0:ec:03:c9:23:8b:9e:d1:8b:f3:af:78:37:
0b:d5:ec:4f:47:76:d8:84:c7:d0:4e:67:d8:55:28:40:95:f0:
f8:b1:e9:e6:d3:fb:e1:24:30:ea:d6:7c:83:c5:47:9c:88:17:
1c:d2:8f:25
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIED2dhEDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NjEyNzQyYjkxZDc3MGZlOGVmYmM5YjVkY2Y4ZGMzODk4NGRkMGYwMB4XDTIyMDEw
MTA4NTkxMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTc5MjNiZjg1NjU2
ZTgxNzIzMzgwZDk5ZjFlNDdlMDcwYTEzNDgxOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKEAQZb09DJ5wrxdOyGsA8XIngH55m08YPDASKJBwDc6SrOY
K+RsXpyyeW+Qc56F5fezlHqJwl6yihEpvm7Hvw/pojZWzBl3WRnufNsbLJ0qklTJ
HIUxbf53qrId71w1Uvny9wM0ohUbtpkv5YOs50FvlaAG1RAcynjzOvmQs8y4SQvs
W2XsiFVxnNuB1poDQbVrmwzae0z6NFvYQmvzDOotApVpdDrkElN8Js8pxW4c0cGq
JgqWPClREevk3J7eGX2S8GhtGP6D1tBNrRbfHDMmw1R7qa1yqtp75vr3130kJ3p7
vKCmR8ACES/hcMpfG9rsXzq3gprJygoOfeolOY0CAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBSnkjv4VlboFyM4DZnx5H4HChNIGTAfBgNVHSMEGDAWgBTWEnQrkddw/o77
ybXc+Nw4mE3Q8DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzFoSjBLNUhYY1A2Ty04bTEzUGpjT0poTjBQQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTkvMTNmYjY1LTRlZTctNDAyNi1hYTNhLTlkNTZlM2FkY2E5MC8x
L3A1STctRlpXNkJjak9BMlo4ZVItQndvVFNCay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTkv
MTNmYjY1LTRlZTctNDAyNi1hYTNhLTlkNTZlM2FkY2E5MC8xLzFoSjBLNUhYY1A2
Ty04bTEzUGpjT0poTjBQQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAbkRaAMEALk42AMEArnGeDANBgkq
hkiG9w0BAQsFAAOCAQEAjjiMF8SwG0mUGWPujUNUKxZMerpMWP+iky+QrPm7XVTz
9rTl9wMwEuzoIahDLTsr0CcczqudLBJ2k2ZFwQub5+a+L4kz0upSSmvy5RZtDmiL
A4iDMYQBVpIw4tdYYW0PzClHMh2O3/9jD1CMCJ0LMBTqyuvm0O0X1fK37StN9XPu
uPNzXNP+uIBBRdWrBNaeGueZlWPqX5JzZYSz/4YJz4+uFXQhtcvahTPqdsMjUsZX
h6iXWofBtIlGF42E7lv4WO+vTVvI+vfd43fg7APJI4ue0Yvzr3g3C9XsT0d22ITH
0E5n2FUoQJXw+LHp5tP74SQw6tZ8g8VHnIgXHNKPJQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:35 2023 by rpki-client on console-ams.rpki-client.org