Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/f28a75-d53f-4e9f-82dd-f0ed8fe82b97/1/1ng5iR2G8T0MV1HiHw1JbFC9vCM.roa
File: 1ng5iR2G8T0MV1HiHw1JbFC9vCM.roa (raw, json)
Hash identifier: fOii+SZ3nMNDU3D+0iXKJbbMdnBfTNj+e9hFxGB1okI=
Subject key identifier: D6:78:39:89:1D:86:F1:3D:0C:57:51:E2:1F:0D:49:6C:50:BD:BC:23
Certificate issuer: /CN=425bf4375f17a0357019690301f9419324ff7d44
Certificate serial: 05BC27CB
Authority key identifier: 42:5B:F4:37:5F:17:A0:35:70:19:69:03:01:F9:41:93:24:FF:7D:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qlv0N18XoDVwGWkDAflBkyT_fUQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/f28a75-d53f-4e9f-82dd-f0ed8fe82b97/1/1ng5iR2G8T0MV1HiHw1JbFC9vCM.roa
Signing time: Sat 01 Jan 2022 11:59:03 +0000
ROA not before: Sat 01 Jan 2022 11:59:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199989
IP address blocks: 185.6.65.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96217035 (0x5bc27cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=425bf4375f17a0357019690301f9419324ff7d44
Validity
Not Before: Jan 1 11:59:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d67839891d86f13d0c5751e21f0d496c50bdbc23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:2f:2a:f7:b8:5e:5a:ed:14:ef:55:9b:c5:93:
53:42:67:d1:ed:e0:74:b2:1b:67:05:56:28:bf:4c:
26:8f:03:e3:f6:97:7f:35:ef:96:b2:ed:bd:7e:5b:
f6:34:76:0e:68:cb:81:0a:5d:91:ae:b3:b6:79:93:
87:b5:f4:20:44:ad:c0:9a:8f:2d:d5:e1:78:ec:cf:
71:f3:73:a5:88:df:b4:c0:52:b9:cb:bb:8f:fc:33:
17:53:15:ad:0c:e5:29:18:cc:24:2a:d1:66:cd:d1:
75:9a:c5:d9:0d:93:7d:08:32:f6:b3:c9:e5:00:8f:
c3:fe:b8:03:28:6c:b5:41:5b:c3:b4:dd:e7:af:85:
81:75:aa:71:a1:14:cf:f6:6a:c7:f5:84:28:b7:02:
11:c5:db:6c:c9:b9:6f:29:d7:00:a7:c5:e8:22:93:
98:ed:15:26:26:5e:9d:77:ce:d8:25:9d:d6:f0:99:
28:a0:da:4c:75:eb:d2:93:8c:c8:39:c8:40:a9:e7:
78:2d:f0:70:3b:70:4f:41:e5:e0:5e:a1:93:25:98:
d6:d9:72:59:8e:c3:d7:d7:ad:2c:e4:d2:4e:61:d3:
bd:54:05:c2:78:13:53:45:4a:0e:ee:fa:a4:6d:65:
f6:39:eb:03:a9:c0:ad:54:18:17:e3:26:4c:67:40:
74:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:78:39:89:1D:86:F1:3D:0C:57:51:E2:1F:0D:49:6C:50:BD:BC:23
X509v3 Authority Key Identifier:
keyid:42:5B:F4:37:5F:17:A0:35:70:19:69:03:01:F9:41:93:24:FF:7D:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qlv0N18XoDVwGWkDAflBkyT_fUQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/f28a75-d53f-4e9f-82dd-f0ed8fe82b97/1/1ng5iR2G8T0MV1HiHw1JbFC9vCM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/f28a75-d53f-4e9f-82dd-f0ed8fe82b97/1/Qlv0N18XoDVwGWkDAflBkyT_fUQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.6.65.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:2b:d0:b6:bd:d7:16:57:ef:01:45:04:fa:5b:d2:1d:3d:60:
db:ef:b4:40:21:26:52:68:7c:19:70:07:88:f2:d3:aa:37:7b:
7c:a8:25:4e:8b:c2:10:54:c9:c0:f4:06:eb:e7:b0:27:ae:bf:
12:f2:66:08:7d:39:e5:7a:fc:99:33:4c:9e:db:28:73:a9:43:
24:05:b0:e1:07:08:4d:10:d6:ca:97:82:3d:0d:fc:8d:f5:6c:
44:aa:6f:39:ed:aa:11:3a:94:3f:12:2e:b3:31:76:6a:ae:84:
15:37:8a:c8:28:61:ff:de:e1:a4:b6:c0:15:f3:8a:b4:51:e5:
b0:d7:53:76:54:c3:7b:7d:28:d7:fe:94:d9:e5:78:8b:d7:76:
0a:e4:fc:70:3e:49:8b:1b:9b:49:d7:6b:db:86:ca:78:c2:b7:
77:39:b7:aa:f8:8a:38:08:99:9c:2b:73:89:95:e1:41:0b:0a:
95:a8:f6:3d:d5:14:64:66:cc:a7:2f:9e:ea:7a:f2:2f:6b:62:
c2:fa:c7:66:4c:2d:76:0c:19:fd:ef:02:36:32:d0:8b:e1:38:
98:6c:ab:3a:f5:46:52:c0:00:9d:b6:39:3f:b8:a2:a9:d9:3f:
b4:c6:31:05:00:45:3f:64:b3:d3:50:d8:fe:fe:e1:4e:18:4a:
36:0e:8a:99
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBbwnyzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
MjViZjQzNzVmMTdhMDM1NzAxOTY5MDMwMWY5NDE5MzI0ZmY3ZDQ0MB4XDTIyMDEw
MTExNTkwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDY3ODM5ODkxZDg2
ZjEzZDBjNTc1MWUyMWYwZDQ5NmM1MGJkYmMyMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM0vKve4XlrtFO9Vm8WTU0Jn0e3gdLIbZwVWKL9MJo8D4/aX
fzXvlrLtvX5b9jR2DmjLgQpdka6ztnmTh7X0IEStwJqPLdXheOzPcfNzpYjftMBS
ucu7j/wzF1MVrQzlKRjMJCrRZs3RdZrF2Q2TfQgy9rPJ5QCPw/64AyhstUFbw7Td
56+FgXWqcaEUz/Zqx/WEKLcCEcXbbMm5bynXAKfF6CKTmO0VJiZenXfO2CWd1vCZ
KKDaTHXr0pOMyDnIQKnneC3wcDtwT0Hl4F6hkyWY1tlyWY7D19etLOTSTmHTvVQF
wngTU0VKDu76pG1l9jnrA6nArVQYF+MmTGdAdBkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTWeDmJHYbxPQxXUeIfDUlsUL28IzAfBgNVHSMEGDAWgBRCW/Q3XxegNXAZ
aQMB+UGTJP99RDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1FsdjBOMThYb0RWd0dXa0RBZmxCa3lUX2ZVUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTUvZjI4YTc1LWQ1M2YtNGU5Zi04MmRkLWYwZWQ4ZmU4MmI5Ny8x
LzFuZzVpUjJHOFQwTVYxSGlIdzFKYkZDOXZDTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTUv
ZjI4YTc1LWQ1M2YtNGU5Zi04MmRkLWYwZWQ4ZmU4MmI5Ny8xL1FsdjBOMThYb0RW
d0dXa0RBZmxCa3lUX2ZVUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALkGQTANBgkqhkiG9w0BAQsFAAOC
AQEALSvQtr3XFlfvAUUE+lvSHT1g2++0QCEmUmh8GXAHiPLTqjd7fKglTovCEFTJ
wPQG6+ewJ66/EvJmCH055Xr8mTNMntsoc6lDJAWw4QcITRDWypeCPQ38jfVsRKpv
Oe2qETqUPxIuszF2aq6EFTeKyChh/97hpLbAFfOKtFHlsNdTdlTDe30o1/6U2eV4
i9d2CuT8cD5JixubSddr24bKeMK3dzm3qviKOAiZnCtziZXhQQsKlaj2PdUUZGbM
py+e6nryL2tiwvrHZkwtdgwZ/e8CNjLQi+E4mGyrOvVGUsAAnbY5P7iiqdk/tMYx
BQBFP2Sz01DY/v7hThhKNg6KmQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:42 2024 by rpki-client on console-ams.rpki-client.org