Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/9467c8-0c90-46e1-91c0-e107d9f16c2d/1/1-wpyvjYDGpix9rTPIoyZh6QANWo.roa
File: 1-wpyvjYDGpix9rTPIoyZh6QANWo.roa (raw, json)
Hash identifier: g/PiRXTYrFPEY7MRic8rbBNqxN5cJkQwewqma0oqS6A=
Subject key identifier: FB:0A:72:BE:36:03:1A:98:B1:F6:B4:CF:22:8C:99:87:A4:00:35:6A
Certificate issuer: /CN=afe4a0d5fda600c5d5b7f618f686d7e93051b4d7
Certificate serial: 0819785D
Authority key identifier: AF:E4:A0:D5:FD:A6:00:C5:D5:B7:F6:18:F6:86:D7:E9:30:51:B4:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r-Sg1f2mAMXVt_YY9obX6TBRtNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/9467c8-0c90-46e1-91c0-e107d9f16c2d/1/1-wpyvjYDGpix9rTPIoyZh6QANWo.roa
Signing time: Sat 01 Jan 2022 06:56:45 +0000
ROA not before: Sat 01 Jan 2022 06:56:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60003
IP address blocks: 185.60.72.0/22 maxlen: 22
2a02:71a0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135886941 (0x819785d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afe4a0d5fda600c5d5b7f618f686d7e93051b4d7
Validity
Not Before: Jan 1 06:56:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb0a72be36031a98b1f6b4cf228c9987a400356a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ab:9f:db:f2:ba:32:b4:f9:a3:2a:98:e0:02:
f6:09:84:bc:c2:db:6b:58:b7:02:67:c6:8c:22:09:
c7:dd:82:b8:f9:a7:76:c0:ff:f1:77:c8:7e:c0:b4:
b0:16:5b:40:80:1a:91:76:3d:f6:43:fc:6a:96:c9:
31:dc:42:1a:02:dc:b5:19:2e:5d:7f:57:72:70:85:
45:f5:e9:b9:df:71:ed:d6:d9:16:77:46:be:7b:02:
e6:01:ec:de:c5:01:56:03:34:6d:6e:22:bf:38:ba:
43:87:fd:23:ee:8a:68:0c:c9:b9:6b:51:b1:21:39:
93:b4:73:a2:02:3b:82:03:28:21:31:38:6b:b0:b6:
ec:b6:72:ea:9c:0c:86:d3:7b:eb:54:c1:23:6f:af:
b7:6e:80:da:de:1c:aa:dd:54:9b:a0:c6:30:7e:82:
67:59:5e:23:14:9a:a0:6b:6c:93:12:7d:47:29:85:
46:b2:27:14:27:b2:7c:8a:7a:56:c1:07:89:e0:f6:
a1:d8:be:7d:c2:4b:11:14:d2:eb:8e:30:de:d3:72:
e5:66:e6:1d:b3:f8:6e:1d:23:8d:7d:3a:42:ec:32:
64:f3:7f:67:59:ae:67:91:16:46:eb:98:de:48:8e:
e2:b6:a0:5f:cb:60:3b:62:91:ea:c3:1e:0d:68:f4:
7c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:0A:72:BE:36:03:1A:98:B1:F6:B4:CF:22:8C:99:87:A4:00:35:6A
X509v3 Authority Key Identifier:
keyid:AF:E4:A0:D5:FD:A6:00:C5:D5:B7:F6:18:F6:86:D7:E9:30:51:B4:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r-Sg1f2mAMXVt_YY9obX6TBRtNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9467c8-0c90-46e1-91c0-e107d9f16c2d/1/1-wpyvjYDGpix9rTPIoyZh6QANWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9467c8-0c90-46e1-91c0-e107d9f16c2d/1/r-Sg1f2mAMXVt_YY9obX6TBRtNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.60.72.0/22
IPv6:
2a02:71a0::/32
Signature Algorithm: sha256WithRSAEncryption
f2:8a:43:4c:ca:44:25:43:36:fc:ad:59:17:ce:b3:40:9a:53:
f3:bc:79:a9:6f:5b:40:bf:a6:e5:aa:49:49:fb:72:46:f7:2e:
e4:e7:ef:bb:40:70:e4:88:75:d6:fb:48:84:11:0f:10:d1:44:
d0:19:34:b8:b5:27:69:e8:93:86:03:15:3e:bb:b7:7d:9b:58:
a8:33:57:9e:c8:5f:48:d7:a3:55:99:f1:1c:39:64:77:eb:60:
70:7c:be:46:7c:ed:ff:8f:3c:08:9e:18:d3:2b:9c:29:c2:09:
56:f7:f8:d4:16:11:08:7a:2e:c2:49:5d:70:f1:7c:c6:9b:21:
b2:60:32:6e:8d:84:a3:45:6e:a3:be:32:0a:a8:08:4f:54:fb:
de:17:56:4c:a9:46:9f:79:b7:6b:34:3d:e4:c0:d4:a5:4c:05:
e7:25:53:89:f0:21:9f:d0:8e:ea:5c:90:a7:e3:35:e5:1a:4b:
42:02:3b:cb:4e:b5:37:c4:46:bb:66:da:9b:d2:1e:82:29:49:
be:cf:92:b5:fd:32:6d:7d:bf:f6:cf:2a:79:7d:35:23:17:67:
bc:af:90:2e:77:bc:58:ef:26:9e:a1:46:2b:31:dc:cc:1f:e7:
da:07:71:ea:f9:2c:68:0a:fa:fa:15:fe:d6:70:a3:67:b1:96:
4f:0c:65:ea
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgIECBl4XTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
ZmU0YTBkNWZkYTYwMGM1ZDViN2Y2MThmNjg2ZDdlOTMwNTFiNGQ3MB4XDTIyMDEw
MTA2NTY0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmIwYTcyYmUzNjAz
MWE5OGIxZjZiNGNmMjI4Yzk5ODdhNDAwMzU2YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL2rn9vyujK0+aMqmOAC9gmEvMLba1i3AmfGjCIJx92CuPmn
dsD/8XfIfsC0sBZbQIAakXY99kP8apbJMdxCGgLctRkuXX9XcnCFRfXpud9x7dbZ
FndGvnsC5gHs3sUBVgM0bW4ivzi6Q4f9I+6KaAzJuWtRsSE5k7RzogI7ggMoITE4
a7C27LZy6pwMhtN761TBI2+vt26A2t4cqt1Um6DGMH6CZ1leIxSaoGtskxJ9RymF
RrInFCeyfIp6VsEHieD2odi+fcJLERTS644w3tNy5WbmHbP4bh0jjX06QuwyZPN/
Z1muZ5EWRuuY3kiO4ragX8tgO2KR6sMeDWj0fLkCAwEAAaOCAhkwggIVMB0GA1Ud
DgQWBBT7CnK+NgMamLH2tM8ijJmHpAA1ajAfBgNVHSMEGDAWgBSv5KDV/aYAxdW3
9hj2htfpMFG01zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ItU2cxZjJtQU1YVnRfWVk5b2JYNlRCUnROYy5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWIvOTQ2N2M4LTBjOTAtNDZlMS05MWMwLWUxMDdkOWYxNmMyZC8x
LzEtd3B5dmpZREdwaXg5clRQSW95Wmg2UUFOV28ucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Fi
Lzk0NjdjOC0wYzkwLTQ2ZTEtOTFjMC1lMTA3ZDlmMTZjMmQvMS9yLVNnMWYybUFN
WFZ0X1lZOW9iWDZUQlJ0TmMuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
LgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAK5PEgwDQQCAAIwBwMFACoCcaAw
DQYJKoZIhvcNAQELBQADggEBAPKKQ0zKRCVDNvytWRfOs0CaU/O8ealvW0C/puWq
SUn7ckb3LuTn77tAcOSIddb7SIQRDxDRRNAZNLi1J2nok4YDFT67t32bWKgzV57I
X0jXo1WZ8Rw5ZHfrYHB8vkZ87f+PPAieGNMrnCnCCVb3+NQWEQh6LsJJXXDxfMab
IbJgMm6NhKNFbqO+MgqoCE9U+94XVkypRp95t2s0PeTA1KVMBeclU4nwIZ/Qjupc
kKfjNeUaS0ICO8tOtTfERrtm2pvSHoIpSb7PkrX9Mm19v/bPKnl9NSMXZ7yvkC53
vFjvJp6hRisx3Mwf59oHcer5LGgK+voV/tZwo2exlk8MZeo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:51 2024 by rpki-client on console-ams.rpki-client.org