Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/08a7ff-2cef-4248-9fe8-04c8f3eeceeb/1/X0dqx-g8XP-cM134h2uiYgPEmzw.roa
File: X0dqx-g8XP-cM134h2uiYgPEmzw.roa (raw, json)
Hash identifier: YOBlK1GhCHzh9jylnSD+TN67V7b8ql6lOZ42zvlzyLc=
Subject key identifier: 5F:47:6A:C7:E8:3C:5C:FF:9C:33:5D:F8:87:6B:A2:62:03:C4:9B:3C
Certificate issuer: /CN=571456649692e60566de008e126bbdd1d2ebed45
Certificate serial: 318426
Authority key identifier: 57:14:56:64:96:92:E6:05:66:DE:00:8E:12:6B:BD:D1:D2:EB:ED:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VxRWZJaS5gVm3gCOEmu90dLr7UU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/08a7ff-2cef-4248-9fe8-04c8f3eeceeb/1/X0dqx-g8XP-cM134h2uiYgPEmzw.roa
Signing time: Sat 01 Jan 2022 02:52:08 +0000
ROA not before: Sat 01 Jan 2022 02:52:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59853
IP address blocks: 185.68.230.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3245094 (0x318426)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=571456649692e60566de008e126bbdd1d2ebed45
Validity
Not Before: Jan 1 02:52:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f476ac7e83c5cff9c335df8876ba26203c49b3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:e5:c4:4f:77:33:c8:c3:a1:df:86:29:e7:28:
a2:53:d0:f1:93:25:5a:2c:ef:21:49:2d:43:9b:b8:
aa:09:01:8f:f2:36:5d:ea:be:cf:d8:ae:25:6e:2e:
83:21:73:1a:63:da:37:09:cd:b6:38:18:f8:37:cb:
a0:2e:65:1f:97:ad:a3:dd:ab:82:3e:d7:40:96:23:
5e:d3:1e:f9:b2:8f:f4:d5:bb:45:7c:e3:78:73:20:
89:98:54:54:c1:83:a8:9e:26:8d:37:6d:96:f6:11:
a1:2e:42:f5:11:a2:29:09:81:7b:bb:1d:b8:4c:4e:
f0:d1:51:0f:4c:3f:9a:d6:b5:73:3b:e7:98:77:de:
94:38:30:76:00:4e:7d:ae:17:9d:59:84:43:0a:b0:
a4:87:29:6b:2b:09:24:f8:0d:30:59:d8:c9:06:8c:
64:5d:5e:cb:93:b6:f7:7b:b1:40:b6:4d:e6:f3:f8:
19:71:a2:d3:bc:0b:03:36:1f:09:a4:64:c9:a2:55:
a1:45:94:26:34:18:43:b5:59:95:fb:93:d9:2c:d3:
04:79:ad:ac:51:dd:39:9e:9b:d0:b3:b0:84:ba:79:
19:f3:7a:6d:54:a6:f6:fd:0f:90:3c:ef:52:e3:70:
09:c8:f3:fb:6f:12:2a:b7:8c:26:5c:84:ec:ea:79:
88:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:47:6A:C7:E8:3C:5C:FF:9C:33:5D:F8:87:6B:A2:62:03:C4:9B:3C
X509v3 Authority Key Identifier:
keyid:57:14:56:64:96:92:E6:05:66:DE:00:8E:12:6B:BD:D1:D2:EB:ED:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VxRWZJaS5gVm3gCOEmu90dLr7UU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/08a7ff-2cef-4248-9fe8-04c8f3eeceeb/1/X0dqx-g8XP-cM134h2uiYgPEmzw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/08a7ff-2cef-4248-9fe8-04c8f3eeceeb/1/VxRWZJaS5gVm3gCOEmu90dLr7UU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.68.230.0/23
Signature Algorithm: sha256WithRSAEncryption
90:4b:6a:4e:2b:56:01:1c:0d:94:ed:72:bf:3f:f5:c0:51:43:
0f:ea:e9:f2:82:eb:87:95:dc:e1:87:1b:9b:7a:ce:bf:14:1d:
15:18:4f:03:24:6e:1b:07:0b:c0:8f:0c:80:1b:5c:66:42:dd:
cb:ee:1e:25:4f:09:ce:82:ed:49:7d:26:3b:34:c0:23:51:ca:
0c:05:16:a2:30:1d:71:73:72:a9:39:be:eb:12:52:f4:a2:d2:
8e:5e:fa:2c:65:bc:e8:5a:d1:d1:97:41:60:10:e9:b4:c7:1f:
7e:8c:ec:e9:2b:ac:b3:2c:ae:6d:b5:3b:61:e8:e2:44:fd:8b:
3a:61:0e:ea:1a:b9:6d:06:58:62:7b:e4:ec:77:16:40:3a:41:
1d:93:6b:23:5a:5e:3b:c9:81:5e:0f:5e:55:b7:cb:de:4d:f0:
9e:e5:f5:b8:c3:31:80:11:ac:b7:d0:7d:e1:d2:ab:a4:53:88:
e8:2f:28:c1:ed:d2:40:5e:83:9d:43:5a:ba:78:f2:05:28:53:
f3:c8:0f:10:da:26:5f:80:a2:ed:0e:02:17:2f:d0:e1:6b:2b:
c3:d8:fe:25:a4:15:50:b1:cf:c1:b4:1e:b7:9a:2c:36:bf:ab:
32:99:61:fc:84:b4:a5:ad:02:85:24:45:5a:58:55:c0:4b:38:
cd:16:b8:c6
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDMYQmMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDU3
MTQ1NjY0OTY5MmU2MDU2NmRlMDA4ZTEyNmJiZGQxZDJlYmVkNDUwHhcNMjIwMTAx
MDI1MjA4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg1ZjQ3NmFjN2U4M2M1
Y2ZmOWMzMzVkZjg4NzZiYTI2MjAzYzQ5YjNjMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAluXET3czyMOh34Yp5yiiU9DxkyVaLO8hSS1Dm7iqCQGP8jZd
6r7P2K4lbi6DIXMaY9o3Cc22OBj4N8ugLmUfl62j3auCPtdAliNe0x75so/01btF
fON4cyCJmFRUwYOoniaNN22W9hGhLkL1EaIpCYF7ux24TE7w0VEPTD+a1rVzO+eY
d96UODB2AE59rhedWYRDCrCkhylrKwkk+A0wWdjJBoxkXV7Lk7b3e7FAtk3m8/gZ
caLTvAsDNh8JpGTJolWhRZQmNBhDtVmV+5PZLNMEea2sUd05npvQs7CEunkZ83pt
VKb2/Q+QPO9S43AJyPP7bxIqt4wmXITs6nmIDQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFF9HasfoPFz/nDNd+IdromIDxJs8MB8GA1UdIwQYMBaAFFcUVmSWkuYFZt4A
jhJrvdHS6+1FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
VnhSV1pKYVM1Z1ZtM2dDT0VtdTkwZExyN1VVLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9hNC8wOGE3ZmYtMmNlZi00MjQ4LTlmZTgtMDRjOGYzZWVjZWViLzEv
WDBkcXgtZzhYUC1jTTEzNGgydWlZZ1BFbXp3LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8w
OGE3ZmYtMmNlZi00MjQ4LTlmZTgtMDRjOGYzZWVjZWViLzEvVnhSV1pKYVM1Z1Zt
M2dDT0VtdTkwZExyN1VVLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuUTmMA0GCSqGSIb3DQEBCwUAA4IB
AQCQS2pOK1YBHA2U7XK/P/XAUUMP6unyguuHldzhhxubes6/FB0VGE8DJG4bBwvA
jwyAG1xmQt3L7h4lTwnOgu1JfSY7NMAjUcoMBRaiMB1xc3KpOb7rElL0otKOXvos
ZbzoWtHRl0FgEOm0xx9+jOzpK6yzLK5ttTth6OJE/Ys6YQ7qGrltBlhie+TsdxZA
OkEdk2sjWl47yYFeD15Vt8veTfCe5fW4wzGAEay30H3h0qukU4joLyjB7dJAXoOd
Q1q6ePIFKFPzyA8Q2iZfgKLtDgIXL9DhayvD2P4lpBVQsc/BtB63miw2v6symWH8
hLSlrQKFJEVaWFXASzjNFrjG
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:24 2024 by rpki-client on console-ams.rpki-client.org