Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/RvgDO-Ur0I0C_U8v0UbF-q2y3pQ.roa
File: RvgDO-Ur0I0C_U8v0UbF-q2y3pQ.roa (raw, json)
Hash identifier: L2gQt81Izsl7/eV3TgOxxi1VRU2544OJlIK9Xo7JoNo=
Subject key identifier: 46:F8:03:3B:E5:2B:D0:8D:02:FD:4F:2F:D1:46:C5:FA:AD:B2:DE:94
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 15666760
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/RvgDO-Ur0I0C_U8v0UbF-q2y3pQ.roa
Signing time: Sat 01 Jan 2022 11:55:40 +0000
ROA not before: Sat 01 Jan 2022 11:55:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209989
IP address blocks: 185.216.211.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 359032672 (0x15666760)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Jan 1 11:55:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=46f8033be52bd08d02fd4f2fd146c5faadb2de94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:5c:6a:19:70:74:6f:28:e8:d1:1b:06:ad:ae:
24:83:39:21:90:c5:8a:8b:f3:88:9a:41:e8:d7:0b:
61:b4:6f:26:46:3a:19:78:17:f9:01:56:70:57:72:
38:ad:60:4b:2e:32:32:f3:6c:84:72:23:2a:dc:d9:
cb:49:20:50:59:ff:30:b1:7b:12:38:18:8d:22:ef:
5a:24:fb:38:7e:33:72:6b:21:c1:e1:d8:9b:40:d7:
14:8d:68:6a:6e:54:f0:fd:17:41:2a:fa:d9:ea:5b:
17:10:c7:db:19:8e:36:f8:ae:bb:b7:04:98:e5:7f:
bd:47:c2:9c:6d:5b:3a:af:1a:3e:d7:73:f5:9d:4d:
ae:71:cc:9a:78:f3:ba:cc:09:b7:67:c8:6e:81:72:
9e:fc:e6:55:54:ac:65:e4:07:90:15:03:a1:07:c2:
50:7b:63:e1:eb:5d:32:27:13:5f:5b:30:08:b9:91:
e0:c3:3d:08:87:65:e5:df:6a:7f:5a:0a:ca:fd:2f:
75:45:3c:9c:15:73:62:72:72:08:88:55:25:03:7f:
ab:5d:54:dd:b9:87:0a:9b:3c:0d:fb:0e:3c:74:73:
e2:fb:03:32:a0:bd:07:75:eb:af:1d:82:18:19:b7:
38:13:c8:f5:62:85:9b:b6:57:42:9b:08:58:95:5d:
f2:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:F8:03:3B:E5:2B:D0:8D:02:FD:4F:2F:D1:46:C5:FA:AD:B2:DE:94
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/RvgDO-Ur0I0C_U8v0UbF-q2y3pQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.211.0/24
Signature Algorithm: sha256WithRSAEncryption
79:43:19:72:4c:0a:d0:34:29:cf:1b:58:42:74:30:63:ac:0a:
a9:9e:d1:1f:85:b2:5a:2b:d2:19:fc:1c:44:8d:42:7a:63:38:
f5:95:7e:c1:50:e6:b9:06:b3:50:29:ae:fb:54:ca:c5:61:4e:
d1:7c:6a:6e:51:06:fe:31:4a:42:5c:73:c8:31:f3:0f:5b:81:
33:70:b8:7f:d3:65:04:65:90:8e:5d:f4:57:ff:e4:3f:b2:8d:
39:0b:18:e6:a5:47:be:33:25:ca:b3:fc:39:1e:a6:2f:0c:e0:
29:2b:92:e1:09:d2:9f:08:06:4b:1a:b0:ad:51:11:04:24:42:
8c:9d:43:ce:b6:0a:92:d8:ae:43:5d:25:3e:c4:ea:9a:a4:e3:
ba:7b:c2:bb:f7:98:5e:7b:b6:19:99:ec:e6:da:d8:2b:6d:ce:
cb:0b:d8:3d:95:b2:5c:0c:60:4a:81:bf:5f:20:11:11:8c:3f:
f1:4c:7b:6f:a2:27:f3:4f:5c:7a:69:60:ff:c1:82:13:4c:4d:
75:5a:04:e5:30:c4:27:15:91:04:1b:b1:60:f7:4a:8b:85:e8:
60:1d:53:16:d6:78:c3:dc:f5:c4:7e:82:85:ec:dd:bb:8e:da:
b4:12:eb:ff:e5:48:e3:0c:7b:61:78:79:8b:c0:d9:aa:aa:f3:
f7:66:8a:e8
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFWZnYDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
MjU0YTlmM2EyNjY1MTNkZGM2OTM1ZDhiZTAyMmU3ZTUyMzBlYTEwMB4XDTIyMDEw
MTExNTU0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDZmODAzM2JlNTJi
ZDA4ZDAyZmQ0ZjJmZDE0NmM1ZmFhZGIyZGU5NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANBcahlwdG8o6NEbBq2uJIM5IZDFiovziJpB6NcLYbRvJkY6
GXgX+QFWcFdyOK1gSy4yMvNshHIjKtzZy0kgUFn/MLF7EjgYjSLvWiT7OH4zcmsh
weHYm0DXFI1oam5U8P0XQSr62epbFxDH2xmONviuu7cEmOV/vUfCnG1bOq8aPtdz
9Z1NrnHMmnjzuswJt2fIboFynvzmVVSsZeQHkBUDoQfCUHtj4etdMicTX1swCLmR
4MM9CIdl5d9qf1oKyv0vdUU8nBVzYnJyCIhVJQN/q11U3bmHCps8DfsOPHRz4vsD
MqC9B3Xrrx2CGBm3OBPI9WKFm7ZXQpsIWJVd8hkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRG+AM75SvQjQL9Ty/RRsX6rbLelDAfBgNVHSMEGDAWgBSiVKnzomZRPdxp
Ndi+Ai5+UjDqEDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L29sU3A4NkptVVQzY2FUWFl2Z0l1ZmxJdzZoQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTAvYjYwMzczLTgxOGUtNDBhOS05MzE5LWFkZGYwZTE4NDllYi8x
L1J2Z0RPLVVyMEkwQ19VOHYwVWJGLXEyeTNwUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTAv
YjYwMzczLTgxOGUtNDBhOS05MzE5LWFkZGYwZTE4NDllYi8xL29sU3A4NkptVVQz
Y2FUWFl2Z0l1ZmxJdzZoQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnY0zANBgkqhkiG9w0BAQsFAAOC
AQEAeUMZckwK0DQpzxtYQnQwY6wKqZ7RH4WyWivSGfwcRI1CemM49ZV+wVDmuQaz
UCmu+1TKxWFO0XxqblEG/jFKQlxzyDHzD1uBM3C4f9NlBGWQjl30V//kP7KNOQsY
5qVHvjMlyrP8OR6mLwzgKSuS4QnSnwgGSxqwrVERBCRCjJ1DzrYKktiuQ10lPsTq
mqTjunvCu/eYXnu2GZns5trYK23OywvYPZWyXAxgSoG/XyAREYw/8Ux7b6In809c
emlg/8GCE0xNdVoE5TDEJxWRBBuxYPdKi4XoYB1TFtZ4w9z1xH6Chezdu47atBLr
/+VI4wx7YXh5i8DZqqrz92aK6A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:50 2024 by rpki-client on console-fra.rpki-client.org