Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/_dLE2SvCvlpgs_lx6evco9JW4HM.roa
File: _dLE2SvCvlpgs_lx6evco9JW4HM.roa (raw, json)
Hash identifier: bpo0meJnI5LN9Mf4/IKQ5FfqWEjyUC/qCbVs7JFgXk4=
Subject key identifier: FD:D2:C4:D9:2B:C2:BE:5A:60:B3:F9:71:E9:EB:DC:A3:D2:56:E0:73
Certificate issuer: /CN=de456cdb4d140345c3dcaebfc7634d4e7cdcb913
Certificate serial: 0EEADC39
Authority key identifier: DE:45:6C:DB:4D:14:03:45:C3:DC:AE:BF:C7:63:4D:4E:7C:DC:B9:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3kVs200UA0XD3K6_x2NNTnzcuRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/_dLE2SvCvlpgs_lx6evco9JW4HM.roa
Signing time: Sat 01 Jan 2022 11:00:36 +0000
ROA not before: Sat 01 Jan 2022 11:00:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15577
IP address blocks: 185.99.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 250272825 (0xeeadc39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de456cdb4d140345c3dcaebfc7634d4e7cdcb913
Validity
Not Before: Jan 1 11:00:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fdd2c4d92bc2be5a60b3f971e9ebdca3d256e073
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:d8:dc:da:2a:14:69:91:03:fa:e4:76:b9:55:
95:34:bc:82:ea:b9:b6:b6:96:ad:01:6d:ac:63:ce:
e6:16:49:de:87:42:a0:b9:ef:2a:6c:42:09:53:90:
78:c9:65:e0:2f:b5:82:6e:37:4b:1a:e2:1a:7d:35:
33:24:2e:ae:5e:61:ba:50:ef:d0:3f:f2:8d:0a:3c:
36:5a:ff:b6:b4:93:28:99:a9:ba:4e:4c:e4:90:bd:
69:55:87:53:d3:b7:25:ad:f0:b7:00:7a:a8:16:a3:
43:23:2b:5b:36:4f:03:b1:83:78:63:69:83:b9:67:
1e:82:8a:4f:74:21:6c:4e:59:7a:9f:3d:1e:c2:a6:
04:b9:c3:ef:5b:9b:fd:39:91:29:f5:dc:cc:86:70:
94:c8:50:83:f1:6e:12:c6:10:f0:9c:64:35:ea:51:
53:f5:25:b9:4c:50:e4:23:99:e0:fa:b7:13:5b:ec:
cd:5a:65:c1:3d:22:17:8f:a7:96:c5:5c:db:9a:3a:
06:5b:71:11:7f:2f:70:28:5e:1e:05:56:fd:18:a7:
0c:1f:44:9f:98:c5:a9:c6:86:05:94:99:af:12:7e:
88:4f:e3:5e:3e:f5:01:eb:73:65:0e:87:46:5b:de:
59:f0:1d:aa:b2:a1:e2:85:d2:a4:06:3b:1d:e7:ec:
ff:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:D2:C4:D9:2B:C2:BE:5A:60:B3:F9:71:E9:EB:DC:A3:D2:56:E0:73
X509v3 Authority Key Identifier:
keyid:DE:45:6C:DB:4D:14:03:45:C3:DC:AE:BF:C7:63:4D:4E:7C:DC:B9:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3kVs200UA0XD3K6_x2NNTnzcuRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/_dLE2SvCvlpgs_lx6evco9JW4HM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.99.49.0/24
Signature Algorithm: sha256WithRSAEncryption
04:0b:46:c4:7e:7b:25:c6:1a:f9:66:d2:6a:1a:5e:95:ce:4b:
3a:fd:09:a4:7f:f3:2d:ca:58:5f:d3:18:09:b0:07:a1:95:3a:
9a:e9:b7:dd:70:f7:41:bc:0d:18:fc:5d:a8:32:52:b9:dd:04:
be:df:b7:de:2d:da:c2:ea:40:f7:8a:de:23:5a:45:a3:c4:85:
9a:e9:5e:bb:79:1d:30:6f:16:f9:73:81:b5:30:e6:f7:17:f6:
5b:32:33:60:d3:b7:dd:a9:59:82:55:95:e4:ba:56:ad:9a:83:
66:1b:6c:4b:6d:88:3b:8d:1c:be:bc:67:ff:89:dd:5c:e5:7b:
86:81:9d:f0:c2:c1:d2:48:5d:52:c9:f4:f2:ec:3e:5b:98:78:
5d:f2:b9:2e:b1:f1:f3:e7:32:0e:71:9d:61:4d:3b:95:55:4b:
88:29:0f:a3:b1:9d:b0:f1:1e:15:5f:8a:ec:4e:ac:65:5d:5b:
0e:e5:3d:34:28:46:90:45:c2:f9:f1:cb:6d:36:69:2d:47:5c:
fc:7f:4f:5d:dd:5f:bf:68:7f:c1:c8:fc:33:47:55:ed:93:00:
56:83:93:8d:86:61:fc:b6:13:1c:26:a4:ce:bd:08:7f:03:44:
b6:23:b9:9a:7d:c1:cc:e5:53:64:0c:69:46:e8:6f:83:75:37:
a6:55:7b:a9
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDurcOTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
ZTQ1NmNkYjRkMTQwMzQ1YzNkY2FlYmZjNzYzNGQ0ZTdjZGNiOTEzMB4XDTIyMDEw
MTExMDAzNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmRkMmM0ZDkyYmMy
YmU1YTYwYjNmOTcxZTllYmRjYTNkMjU2ZTA3MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJLY3NoqFGmRA/rkdrlVlTS8guq5traWrQFtrGPO5hZJ3odC
oLnvKmxCCVOQeMll4C+1gm43SxriGn01MyQurl5hulDv0D/yjQo8Nlr/trSTKJmp
uk5M5JC9aVWHU9O3Ja3wtwB6qBajQyMrWzZPA7GDeGNpg7lnHoKKT3QhbE5Zep89
HsKmBLnD71ub/TmRKfXczIZwlMhQg/FuEsYQ8JxkNepRU/UluUxQ5COZ4Pq3E1vs
zVplwT0iF4+nlsVc25o6BltxEX8vcCheHgVW/RinDB9En5jFqcaGBZSZrxJ+iE/j
Xj71AetzZQ6HRlveWfAdqrKh4oXSpAY7Hefs//kCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT90sTZK8K+WmCz+XHp69yj0lbgczAfBgNVHSMEGDAWgBTeRWzbTRQDRcPc
rr/HY01OfNy5EzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzNrVnMyMDBVQTBYRDNLNl94Mk5OVG56Y3VSTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTQvMjBjYjMzLWUyYmYtNDZhYS1hYmZhLTkyOGU3YmM2OTU3MC8x
L19kTEUyU3ZDdmxwZ3NfbHg2ZXZjbzlKVzRITS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTQv
MjBjYjMzLWUyYmYtNDZhYS1hYmZhLTkyOGU3YmM2OTU3MC8xLzNrVnMyMDBVQTBY
RDNLNl94Mk5OVG56Y3VSTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALljMTANBgkqhkiG9w0BAQsFAAOC
AQEABAtGxH57JcYa+WbSahpelc5LOv0JpH/zLcpYX9MYCbAHoZU6mum33XD3QbwN
GPxdqDJSud0Evt+33i3awupA94reI1pFo8SFmuleu3kdMG8W+XOBtTDm9xf2WzIz
YNO33alZglWV5LpWrZqDZhtsS22IO40cvrxn/4ndXOV7hoGd8MLB0khdUsn08uw+
W5h4XfK5LrHx8+cyDnGdYU07lVVLiCkPo7GdsPEeFV+K7E6sZV1bDuU9NChGkEXC
+fHLbTZpLUdc/H9PXd1fv2h/wcj8M0dV7ZMAVoOTjYZh/LYTHCakzr0IfwNEtiO5
mn3BzOVTZAxpRuhvg3U3plV7qQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:17 2024 by rpki-client on console-fra.rpki-client.org