Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/e45577-65b1-4d43-853a-02abf8572fcb/1/d8JacUny06ObzJJ674Phbv1KVS8.roa
File: d8JacUny06ObzJJ674Phbv1KVS8.roa (raw, json)
Hash identifier: 672bP9NgkI9Cv4meI+aPAw2D/bE7Z6d3OXFVOTkk6eE=
Subject key identifier: 77:C2:5A:71:49:F2:D3:A3:9B:CC:92:7A:EF:83:E1:6E:FD:4A:55:2F
Certificate issuer: /CN=d48555f9a52727f6bcf715cb4750a2a4a6c35161
Certificate serial: 0AFD149E
Authority key identifier: D4:85:55:F9:A5:27:27:F6:BC:F7:15:CB:47:50:A2:A4:A6:C3:51:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1IVV-aUnJ_a89xXLR1CipKbDUWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/e45577-65b1-4d43-853a-02abf8572fcb/1/d8JacUny06ObzJJ674Phbv1KVS8.roa
Signing time: Sat 01 Jan 2022 11:55:54 +0000
ROA not before: Sat 01 Jan 2022 11:55:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 54103
IP address blocks: 130.185.172.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 184358046 (0xafd149e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d48555f9a52727f6bcf715cb4750a2a4a6c35161
Validity
Not Before: Jan 1 11:55:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77c25a7149f2d3a39bcc927aef83e16efd4a552f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:9b:cb:c8:0f:d4:2f:61:0a:1a:32:4e:85:48:
71:97:de:a6:bf:38:c3:12:5a:54:ff:c9:fe:72:20:
d3:94:3f:80:1b:46:2b:cf:9d:61:45:d1:52:0b:0e:
1a:af:f0:17:9e:cd:3f:48:61:bf:41:86:f8:5b:d6:
96:01:2b:9d:62:47:53:91:12:46:e6:64:62:6d:66:
5a:0b:03:3c:73:04:0c:78:1d:77:28:e4:0d:35:56:
24:95:f7:bb:20:ad:1c:e0:93:2e:20:65:6c:db:51:
4b:b8:c8:17:28:b7:eb:4f:41:b5:0c:fd:bd:8a:81:
0a:a0:aa:d2:44:99:66:31:88:7b:8a:c4:37:85:7c:
88:56:34:3b:97:0a:6f:04:3e:c9:22:b7:df:24:33:
1d:26:1a:e4:3e:f7:74:8e:b2:33:58:34:25:bc:f4:
2e:cd:9d:14:73:7e:ad:ab:7d:c3:02:66:ce:02:21:
20:9a:25:26:bc:cc:dc:d0:15:3e:6f:33:41:8c:b8:
9a:89:aa:b2:a9:1f:54:e3:51:22:35:ad:b2:82:23:
9b:5b:9e:a7:f2:99:a3:b0:c1:ea:12:d4:30:a6:8a:
dd:4f:a7:c2:eb:41:aa:f3:99:6f:7c:83:64:88:3a:
42:2a:16:47:89:7e:46:6b:f4:34:63:d0:39:6c:83:
e3:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:C2:5A:71:49:F2:D3:A3:9B:CC:92:7A:EF:83:E1:6E:FD:4A:55:2F
X509v3 Authority Key Identifier:
keyid:D4:85:55:F9:A5:27:27:F6:BC:F7:15:CB:47:50:A2:A4:A6:C3:51:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1IVV-aUnJ_a89xXLR1CipKbDUWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/e45577-65b1-4d43-853a-02abf8572fcb/1/d8JacUny06ObzJJ674Phbv1KVS8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/e45577-65b1-4d43-853a-02abf8572fcb/1/1IVV-aUnJ_a89xXLR1CipKbDUWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.185.172.0/22
Signature Algorithm: sha256WithRSAEncryption
58:59:d4:49:b1:05:6e:b8:56:df:21:79:38:cd:97:01:8f:83:
78:01:c9:29:e6:23:57:07:5b:e9:83:ad:27:f3:40:10:f2:41:
d7:c1:b0:92:9e:1f:44:a7:18:cc:e0:39:cb:72:18:8d:0e:96:
da:0a:04:18:88:81:69:2c:e0:4f:20:92:49:f1:cd:8b:d9:d6:
95:68:55:fc:94:cf:ec:7e:21:df:77:72:9b:44:81:a8:e2:d6:
93:a4:3f:73:54:6a:5a:9a:18:06:96:24:4e:b2:4d:37:1c:c0:
fc:e7:52:65:7a:eb:31:89:e5:f4:69:73:ea:5b:f7:f9:89:8c:
d1:46:3e:77:c5:e1:cd:1c:bc:40:09:12:e6:30:ec:bd:db:b4:
5a:a7:c4:78:d5:b5:24:22:31:c5:95:a7:5f:f6:53:a0:22:8a:
5c:52:f1:4c:ea:f4:60:bd:01:28:93:1f:23:ec:97:b5:24:05:
6b:09:f5:bd:69:ae:66:fa:c1:24:11:02:5a:9a:a0:83:f3:25:
a0:3d:d0:87:7b:24:c5:bd:69:7d:d6:61:d9:34:bd:2b:68:42:
2a:56:2a:9d:73:cd:8c:43:85:49:cb:ba:98:42:04:65:0f:59:
e2:59:52:ea:ac:fe:0b:5f:42:d1:06:51:d4:11:82:53:9a:ef:
fd:4b:db:33
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECv0UnjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NDg1NTVmOWE1MjcyN2Y2YmNmNzE1Y2I0NzUwYTJhNGE2YzM1MTYxMB4XDTIyMDEw
MTExNTU1NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzdjMjVhNzE0OWYy
ZDNhMzliY2M5MjdhZWY4M2UxNmVmZDRhNTUyZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN6by8gP1C9hChoyToVIcZfepr84wxJaVP/J/nIg05Q/gBtG
K8+dYUXRUgsOGq/wF57NP0hhv0GG+FvWlgErnWJHU5ESRuZkYm1mWgsDPHMEDHgd
dyjkDTVWJJX3uyCtHOCTLiBlbNtRS7jIFyi3609BtQz9vYqBCqCq0kSZZjGIe4rE
N4V8iFY0O5cKbwQ+ySK33yQzHSYa5D73dI6yM1g0Jbz0Ls2dFHN+rat9wwJmzgIh
IJolJrzM3NAVPm8zQYy4momqsqkfVONRIjWtsoIjm1uep/KZo7DB6hLUMKaK3U+n
wutBqvOZb3yDZIg6QioWR4l+Rmv0NGPQOWyD4zcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR3wlpxSfLTo5vMknrvg+Fu/UpVLzAfBgNVHSMEGDAWgBTUhVX5pScn9rz3
FctHUKKkpsNRYTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzFJVlYtYVVuSl9hODl4WExSMUNpcEtiRFVXRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWIvZTQ1NTc3LTY1YjEtNGQ0My04NTNhLTAyYWJmODU3MmZjYi8x
L2Q4SmFjVW55MDZPYnpKSjY3NFBoYnYxS1ZTOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWIv
ZTQ1NTc3LTY1YjEtNGQ0My04NTNhLTAyYWJmODU3MmZjYi8xLzFJVlYtYVVuSl9h
ODl4WExSMUNpcEtiRFVXRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAoK5rDANBgkqhkiG9w0BAQsFAAOC
AQEAWFnUSbEFbrhW3yF5OM2XAY+DeAHJKeYjVwdb6YOtJ/NAEPJB18Gwkp4fRKcY
zOA5y3IYjQ6W2goEGIiBaSzgTyCSSfHNi9nWlWhV/JTP7H4h33dym0SBqOLWk6Q/
c1RqWpoYBpYkTrJNNxzA/OdSZXrrMYnl9Glz6lv3+YmM0UY+d8XhzRy8QAkS5jDs
vdu0WqfEeNW1JCIxxZWnX/ZToCKKXFLxTOr0YL0BKJMfI+yXtSQFawn1vWmuZvrB
JBECWpqgg/MloD3Qh3skxb1pfdZh2TS9K2hCKlYqnXPNjEOFScu6mEIEZQ9Z4llS
6qz+C19C0QZR1BGCU5rv/UvbMw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:24 2024 by rpki-client on console-fra.rpki-client.org