Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/XYafxnfsSpZGS0qoVzosXHwtOBk.roa
File: XYafxnfsSpZGS0qoVzosXHwtOBk.roa (raw, json)
Hash identifier: qpwf0u6GBYHbIpjoOAvPeyN985VODV6u7ZMc0ig0y3w=
Subject key identifier: 5D:86:9F:C6:77:EC:4A:96:46:4B:4A:A8:57:3A:2C:5C:7C:2D:38:19
Certificate issuer: /CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Certificate serial: 0184A7323505E90C16DEDB538C269C09DF16
Authority key identifier: E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/XYafxnfsSpZGS0qoVzosXHwtOBk.roa
Signing time: Thu 24 Nov 2022 01:13:16 +0000
ROA not before: Thu 24 Nov 2022 01:13:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212384
IP address blocks: 185.11.140.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a7:32:35:05:e9:0c:16:de:db:53:8c:26:9c:09:df:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Validity
Not Before: Nov 24 01:13:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d869fc677ec4a96464b4aa8573a2c5c7c2d3819
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:22:bf:9b:f3:82:d2:2a:32:cd:63:44:56:7f:
69:61:1a:25:2c:c5:a2:ed:7c:a7:69:64:34:0e:9d:
6d:4d:eb:5c:56:a1:e1:59:82:14:1e:01:5b:a9:71:
9b:97:95:6f:b2:01:85:ff:a2:85:6c:36:7b:9c:72:
c1:0e:31:94:27:6d:15:d8:4b:47:1d:a3:72:f2:b1:
5b:e5:4a:d2:4e:45:62:d0:bb:b4:fa:1f:ad:16:23:
43:60:f5:64:ce:ff:91:03:e4:c3:09:87:c8:d6:52:
fc:46:6c:ac:7c:63:a9:f9:9e:7e:5c:96:b2:f4:9e:
f3:64:c2:c9:56:64:ac:0a:2b:64:98:1c:4f:9f:a0:
fd:81:41:14:4c:ad:c4:4c:68:53:29:e9:bd:1d:dd:
34:4b:3c:0f:49:4d:7d:60:30:a2:7d:31:31:df:12:
50:f4:25:c6:a4:e7:23:6f:bb:49:b6:4e:33:8e:bd:
cc:ad:df:55:61:18:bf:22:92:16:21:f4:b9:7a:6e:
79:41:20:fe:55:82:c9:0e:2d:5d:48:2b:8a:3a:c2:
58:6c:79:81:6e:80:12:39:d6:71:85:f8:45:5a:fe:
89:88:96:34:31:ae:98:49:d5:c7:09:3a:c5:9f:bd:
5d:a4:44:c4:15:e5:9b:04:fd:d4:eb:ab:48:f1:90:
55:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:86:9F:C6:77:EC:4A:96:46:4B:4A:A8:57:3A:2C:5C:7C:2D:38:19
X509v3 Authority Key Identifier:
keyid:E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/XYafxnfsSpZGS0qoVzosXHwtOBk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.11.140.0/23
Signature Algorithm: sha256WithRSAEncryption
8a:b7:41:4e:a3:2c:de:fb:7d:95:0b:57:3c:65:be:ae:03:9c:
51:3b:43:b9:be:73:47:2c:0a:37:f7:e1:7a:3b:2b:7f:21:40:
87:47:e1:26:fb:c2:1d:6c:f9:7a:1c:e5:ef:57:72:5b:dd:c4:
8b:e3:1b:c9:a0:8e:5c:e4:0d:52:ee:17:5c:21:c0:47:e9:13:
b3:74:05:d3:5e:2e:ec:65:7f:8c:0f:d4:54:ac:3b:84:e8:94:
28:b3:45:a0:6d:1c:ad:63:d2:9b:cb:93:1c:ce:38:b9:3f:52:
54:70:6d:eb:24:15:98:c1:c2:3a:0b:0a:ca:80:4b:6b:fb:e4:
36:eb:04:3a:ac:e3:a8:48:5b:72:52:4f:6c:ac:91:bd:e0:21:
5a:18:26:b5:55:96:fc:c3:91:54:10:60:8f:51:e5:bc:3a:92:
24:5e:d1:ef:a3:96:39:08:51:1a:71:da:71:0b:ab:96:c7:11:
47:56:e4:d0:8b:0c:28:f2:8c:19:42:6c:13:b5:e8:b0:2a:71:
0f:3c:44:61:db:2f:8d:50:24:85:73:d8:1e:db:56:df:ae:11:
25:8a:12:05:95:5b:f0:00:5a:b5:3c:c4:51:7e:39:1a:d1:4b:
06:49:8c:c7:fc:3d:d3:6c:57:23:e5:d3:be:0e:6a:29:48:87:
d3:2a:0c:20
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYSnMjUF6QwW3ttTjCacCd8WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU4YjNlZWQxYzdhY2E2MzZkNjI0NTg1MmI4MDJlMGU3Mzc1
NGRmNjMwHhcNMjIxMTI0MDExMzE2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZDg2OWZjNjc3ZWM0YTk2NDY0YjRhYTg1NzNhMmM1YzdjMmQzODE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApCK/m/OC0ioyzWNEVn9pYRolLMWi
7XynaWQ0Dp1tTetcVqHhWYIUHgFbqXGbl5VvsgGF/6KFbDZ7nHLBDjGUJ20V2EtH
HaNy8rFb5UrSTkVi0Lu0+h+tFiNDYPVkzv+RA+TDCYfI1lL8RmysfGOp+Z5+XJay
9J7zZMLJVmSsCitkmBxPn6D9gUEUTK3ETGhTKem9Hd00SzwPSU19YDCifTEx3xJQ
9CXGpOcjb7tJtk4zjr3Mrd9VYRi/IpIWIfS5em55QSD+VYLJDi1dSCuKOsJYbHmB
boASOdZxhfhFWv6JiJY0Ma6YSdXHCTrFn71dpETEFeWbBP3U66tI8ZBVEwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF2Gn8Z37EqWRktKqFc6LFx8LTgZMB8GA1UdIwQY
MBaAFOiz7tHHrKY21iRYUrgC4Oc3VN9jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNkxQdTBjZXNwamJXSkZoU3VBTGc1emRVMzJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi8xNzczMjktMjhjZC00ODY0LTllMTYt
OTQ2NDA0ZWMxYWE0LzEvWFlhZnhuZnNTcFpHUzBxb1Z6b3NYSHd0T0JrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Zi8xNzczMjktMjhjZC00ODY0LTllMTYtOTQ2NDA0ZWMxYWE0
LzEvNkxQdTBjZXNwamJXSkZoU3VBTGc1emRVMzJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuQuMMA0G
CSqGSIb3DQEBCwUAA4IBAQCKt0FOoyze+32VC1c8Zb6uA5xRO0O5vnNHLAo39+F6
Oyt/IUCHR+Em+8IdbPl6HOXvV3Jb3cSL4xvJoI5c5A1S7hdcIcBH6ROzdAXTXi7s
ZX+MD9RUrDuE6JQos0WgbRytY9Kby5Mczji5P1JUcG3rJBWYwcI6CwrKgEtr++Q2
6wQ6rOOoSFtyUk9srJG94CFaGCa1VZb8w5FUEGCPUeW8OpIkXtHvo5Y5CFEacdpx
C6uWxxFHVuTQiwwo8owZQmwTteiwKnEPPERh2y+NUCSFc9ge21bfrhElihIFlVvw
AFq1PMRRfjka0UsGSYzH/D3TbFcj5dO+DmopSIfTKgwg
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:30 2024 by rpki-client on console-ams.rpki-client.org